$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: U+G7Cogc15PeuSfVDOxckWhZNIYGw2eyu/Lj1StFPLo= Subject key identifier: C6:17:E9:5C:79:24:AC:4E:6A:49:A3:59:2D:13:2B:C9:64:AA:1C:78 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 4D24469F6EAE5FEB84D8A97FDAC4806A12BCF136 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 0563 Signing time: Thu 26 Mar 2026 05:20:45 +0000 Manifest this update: Thu 26 Mar 2026 05:15:45 +0000 Manifest next update: Sun 29 Mar 2026 17:15:45 +0000 Files and hashes: 1: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 2: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 3: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 4: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 5: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: NBeUVRfXEKryxG5yRYe+WgUY9MSk7LNlUzf3ovuiin0=) 6: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 7: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) 8: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 9: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 10: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Mar 2026 16:25:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:24:46:9f:6e:ae:5f:eb:84:d8:a9:7f:da:c4:80:6a:12:bc:f1:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Mar 26 05:15:45 2026 GMT Not After : Mar 29 17:15:45 2026 GMT Subject: CN=C617E95C7924AC4E6A49A3592D132BC964AA1C78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:03:d4:a9:64:e0:74:f3:5c:27:18:b3:65:06: 9a:44:d9:6b:42:1c:6f:cb:09:3e:c8:8a:19:f6:48: 2b:05:55:ad:e1:c1:55:26:cc:4f:24:fd:2e:63:75: e1:90:36:e9:f5:b2:f5:61:02:d5:a6:cb:71:77:97: 14:51:ec:32:ba:d6:58:aa:91:b1:cd:59:84:e0:17: a5:c7:64:5f:05:34:74:a7:bb:11:2c:60:95:31:7b: 29:a9:11:aa:9d:66:11:ae:94:e1:50:a8:64:1c:6f: f4:fe:e0:30:d0:db:0e:30:9e:d5:de:5c:1a:4f:00: 09:e2:93:d2:72:5f:b3:3a:a4:6b:1b:3c:ab:a0:e3: 99:a4:05:74:66:7e:72:78:ca:94:cb:21:2e:01:fb: f7:bd:4e:54:b9:f9:70:55:c0:15:11:0f:cd:94:4c: 40:32:6d:1f:71:1a:8c:6a:db:05:8c:95:ef:5b:12: 4d:2c:25:b0:26:bf:93:ea:b4:07:20:59:26:ff:3d: 10:c2:0e:d5:a1:35:7c:97:11:85:65:a4:37:d5:0e: 17:4a:cf:66:eb:6b:dc:57:5c:44:fb:5c:79:7e:94: a1:07:e8:8d:a6:c0:5e:65:c3:e0:56:13:a6:6a:14: 01:48:2c:63:88:a2:80:08:7f:05:c2:c3:d4:57:d1: b3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:17:E9:5C:79:24:AC:4E:6A:49:A3:59:2D:13:2B:C9:64:AA:1C:78 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:2d:52:43:f2:64:6f:28:88:ee:36:5d:09:2c:10:ba:7a:18: 43:52:0c:22:d8:07:cb:02:f3:0f:8e:ac:7e:9b:48:d5:41:2b: ac:0f:bd:c1:2f:0b:23:51:60:d5:9c:9c:b5:06:de:a3:b6:14: 7f:6e:a7:85:20:73:d8:37:72:9e:7e:f7:1a:7c:2b:a9:09:65: 67:02:a2:95:32:e7:55:be:05:05:87:30:fe:8f:3e:6d:6b:a7: 95:a1:40:7b:bb:f4:30:9a:15:2e:31:86:6a:6b:8d:d4:50:45: cb:e4:ce:f1:07:8a:61:95:3d:c4:66:f4:c2:7c:22:5f:f3:ad: 0f:22:a3:e1:41:ce:fe:0c:00:9f:1e:9e:14:db:46:22:5b:db: 50:8e:4c:77:f6:6f:c0:02:ed:ba:b3:eb:69:6d:39:21:78:6e: 15:bc:e9:03:40:8d:29:28:31:4d:21:b5:d6:ea:d5:ad:1e:3f: d8:7f:be:4f:f7:4c:53:eb:ff:a4:21:53:b3:57:4d:52:0e:dd: ca:48:8a:04:82:62:49:19:2d:6a:19:30:1e:31:ef:2f:93:99: 52:04:d7:f6:24:5f:82:39:a1:e6:87:68:0a:ea:76:9e:6c:f9: 7c:e0:ad:38:09:9c:cf:b0:77:e5:89:55:68:fa:2a:e1:c9:61: e1:66:78:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTSRGn26uX+uE2Kl/2sSAahK88TYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNjAzMjYwNTE1NDVaFw0yNjAzMjkxNzE1NDVaMDMxMTAvBgNV BAMTKEM2MTdFOTVDNzkyNEFDNEU2QTQ5QTM1OTJEMTMyQkM5NjRBQTFDNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3A9SpZOB081wnGLNlBppE2WtC HG/LCT7Iihn2SCsFVa3hwVUmzE8k/S5jdeGQNun1svVhAtWmy3F3lxRR7DK61liq kbHNWYTgF6XHZF8FNHSnuxEsYJUxeympEaqdZhGulOFQqGQcb/T+4DDQ2w4wntXe XBpPAAnik9JyX7M6pGsbPKug45mkBXRmfnJ4ypTLIS4B+/e9TlS5+XBVwBURD82U TEAybR9xGoxq2wWMle9bEk0sJbAmv5PqtAcgWSb/PRDCDtWhNXyXEYVlpDfVDhdK z2bra9xXXET7XHl+lKEH6I2mwF5lw+BWE6ZqFAFILGOIooAIfwXCw9RX0bP7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxhfpXHkkrE5qSaNZLRMryWSqHHgwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAgtUkPyZG8oiO42XQksELp6GENSDCLYB8sC 8w+OrH6bSNVBK6wPvcEvCyNRYNWcnLUG3qO2FH9up4Ugc9g3cp5+9xp8K6kJZWcC opUy51W+BQWHMP6PPm1rp5WhQHu79DCaFS4xhmprjdRQRcvkzvEHimGVPcRm9MJ8 Il/zrQ8io+FBzv4MAJ8enhTbRiJb21COTHf2b8AC7bqz62ltOSF4bhW86QNAjSko MU0htdbq1a0eP9h/vk/3TFPr/6QhU7NXTVIO3cpIigSCYkkZLWoZMB4x7y+TmVIE 1/YkX4I5oeaHaArqdp5s+XzgrTgJnM+wd+WJVWj6KuHJYeFmeL8= -----END CERTIFICATE-----Generated at Thu Mar 26 10:21:12 2026 by rpki-client