$ rpki-client -vvf repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft File: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft (raw, json) Hash identifier: 7Jup+3gulB0mteU1ZcB18hrjFVdeNV8DHNjDBnGisu0= Subject key identifier: C8:34:18:A4:47:4D:83:D4:C8:67:47:1C:DA:1D:53:28:56:C9:A2:1D Authority key identifier: 34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB Certificate issuer: /CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Certificate serial: 3B676740390280B07C5566D862E6AD9DACAD94A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft Manifest number: 0259 Signing time: Tue 24 Mar 2026 07:01:50 +0000 Manifest this update: Tue 24 Mar 2026 06:56:50 +0000 Manifest next update: Fri 27 Mar 2026 10:54:50 +0000 Files and hashes: 1: 3130332e3139312e35362e302f32332d3233203d3e20313331373433.roa (hash: 4X8Kz+hrvczZsab/uaMNm2DvsPE7IvXYSmEJwXv1W3g=) 2: 3130332e3139312e35372e302f32342d3234203d3e20313331373433.roa (hash: 1Ri1ZJBh09re6NP+bhwgfUJY8sYHU8itfO+apymQ4g0=) 3: 3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl (hash: m/gosx2iBMmex438PXiAuctQWmKmQhlrKaKHASEWBpA=) 4: 3130332e3139312e35362e302f32342d3234203d3e20313331373433.roa (hash: oupcLDUmMHLFoLDlfsFGLMKtLOlyWvfSlJ+uVUfUPvg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 10:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:67:67:40:39:02:80:b0:7c:55:66:d8:62:e6:ad:9d:ac:ad:94:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB Validity Not Before: Mar 24 06:56:50 2026 GMT Not After : Mar 27 10:54:50 2026 GMT Subject: CN=C83418A4474D83D4C867471CDA1D532856C9A21D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9d:8b:cd:98:ff:ae:c1:94:b4:9b:3d:ae:24: aa:34:98:59:8b:79:3c:68:24:2a:c4:26:35:f0:0b: ae:ba:36:63:3e:ed:16:b1:97:e0:2b:5d:c3:2f:6b: 2d:d5:39:01:8d:7c:85:00:55:12:d1:37:af:1b:af: e7:4c:12:40:d3:96:50:8b:15:bb:02:8f:0a:ff:84: 1f:5f:c4:44:88:30:c0:24:52:fa:64:02:7e:69:30: 6a:b4:fd:a3:11:af:0c:2c:af:67:38:91:04:79:b3: 89:8d:8f:8a:fa:79:ee:0c:38:9e:87:d3:4b:43:97: 86:71:15:d1:ac:84:2b:54:93:b2:d8:11:e7:8c:3f: e0:c3:31:ca:59:8c:cf:1d:ad:1e:26:09:65:00:a0: 63:b0:ef:29:1e:1c:4d:ce:99:5e:9c:2a:ff:aa:7a: 14:b8:71:4e:a7:85:d0:43:22:e0:f5:49:02:29:cc: f2:33:cf:b5:99:23:53:41:6e:2c:d9:bb:2a:13:5b: dc:29:99:34:82:44:00:0e:71:90:c8:89:be:52:72: a3:a2:a3:17:ff:9a:7f:90:53:14:04:15:0b:e2:fa: 64:77:ca:38:de:15:67:ed:20:00:39:fd:09:70:f7: 3a:de:b9:ca:eb:55:6a:24:16:8d:be:3d:98:46:b4: 46:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:34:18:A4:47:4D:83:D4:C8:67:47:1C:DA:1D:53:28:56:C9:A2:1D X509v3 Authority Key Identifier: keyid:34:48:C8:4D:DF:F9:B9:91:2D:9D:17:49:3F:EB:DB:9F:BA:0B:39:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9229ca50-e95c-45bb-9c30-63e12af7a5e1/0/3448C84DDFF9B9912D9D17493FEBDB9FBA0B39BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:32:b8:a5:e0:bf:fd:60:d2:56:0f:4c:23:07:ec:76:94:75: 4b:32:ff:d8:bd:7b:22:67:9a:c5:42:e7:09:e1:ce:88:28:49: c5:18:eb:28:ac:2d:c0:c7:1b:fa:43:d2:c4:26:f4:7c:c0:90: 7e:be:ca:83:cc:25:6e:ee:00:ee:6d:b1:dd:d8:f2:50:c4:96: a9:36:e7:55:84:8e:01:1b:3d:6e:6f:95:c7:3b:f5:23:28:d1: 86:84:4d:ae:1a:36:56:3d:8a:ac:69:cd:9e:29:a6:46:8e:4c: f9:90:fc:f3:87:8c:a7:3d:c4:9e:e6:51:2e:bb:66:88:85:7e: 5e:40:6c:1c:8a:f3:26:05:b0:4d:16:fd:79:88:18:b6:70:e6: 48:03:6a:b5:62:bb:fc:3e:d4:98:db:74:59:97:72:ae:8c:41: 15:d5:6b:86:2f:96:82:66:0d:cc:11:e8:8c:fc:e9:35:7d:05: e5:32:05:ca:9d:9e:09:f8:24:33:db:a8:4a:c3:02:35:f5:bd: cd:c1:13:c0:7a:ec:80:f3:0d:7e:92:52:a7:db:f4:9b:88:69: dc:c7:9a:8a:45:7c:13:36:7d:7f:dc:67:65:90:82:01:a4:91: be:35:00:16:1c:68:0e:f0:06:aa:b2:39:c6:e0:95:06:10:23: 6e:97:31:7b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO2dnQDkCgLB8VWbYYuatnaytlKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZC QTBCMzlCQjAeFw0yNjAzMjQwNjU2NTBaFw0yNjAzMjcxMDU0NTBaMDMxMTAvBgNV BAMTKEM4MzQxOEE0NDc0RDgzRDRDODY3NDcxQ0RBMUQ1MzI4NTZDOUEyMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDnYvNmP+uwZS0mz2uJKo0mFmL eTxoJCrEJjXwC666NmM+7Raxl+ArXcMvay3VOQGNfIUAVRLRN68br+dMEkDTllCL FbsCjwr/hB9fxESIMMAkUvpkAn5pMGq0/aMRrwwsr2c4kQR5s4mNj4r6ee4MOJ6H 00tDl4ZxFdGshCtUk7LYEeeMP+DDMcpZjM8drR4mCWUAoGOw7ykeHE3OmV6cKv+q ehS4cU6nhdBDIuD1SQIpzPIzz7WZI1NBbizZuyoTW9wpmTSCRAAOcZDIib5ScqOi oxf/mn+QUxQEFQvi+mR3yjjeFWftIAA5/Qlw9zreucrrVWokFo2+PZhGtEb/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyDQYpEdNg9TIZ0cc2h1TKFbJoh0wHwYDVR0j BBgwFoAUNEjITd/5uZEtnRdJP+vbn7oLObswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MjI5Y2E1MC1lOTVjLTQ1YmItOWMzMC02M2UxMmFmN2E1ZTEvMC8zNDQ4Qzg0RERG RjlCOTkxMkQ5RDE3NDkzRkVCREI5RkJBMEIzOUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRCOUZCQTBC MzlCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTIyOWNhNTAtZTk1Yy00NWJiLTlj MzAtNjNlMTJhZjdhNWUxLzAvMzQ0OEM4NERERkY5Qjk5MTJEOUQxNzQ5M0ZFQkRC OUZCQTBCMzlCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADgyuKXgv/1g0lYPTCMH7HaUdUsy/9i9eyJn msVC5wnhzogoScUY6yisLcDHG/pD0sQm9HzAkH6+yoPMJW7uAO5tsd3Y8lDElqk2 51WEjgEbPW5vlcc79SMo0YaETa4aNlY9iqxpzZ4ppkaOTPmQ/POHjKc9xJ7mUS67 ZoiFfl5AbByK8yYFsE0W/XmIGLZw5kgDarViu/w+1JjbdFmXcq6MQRXVa4YvloJm DcwR6Iz86TV9BeUyBcqdngn4JDPbqErDAjX1vc3BE8B67IDzDX6SUqfb9JuIadzH mopFfBM2fX/cZ2WQggGkkb41ABYcaA7wBqqyOcbglQYQI26XMXs= -----END CERTIFICATE-----Generated at Thu Mar 26 07:16:44 2026 by rpki-client