$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft File: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft (raw, json) Hash identifier: hZETCGGva3P2pVJhJl4v645pPmF5BlaX1I8YLUwKeHU= Subject key identifier: F3:23:7F:C4:F8:EC:FC:90:82:3F:52:68:9D:EA:6D:D2:C5:51:4F:23 Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 6DA42DFD3487CAAF678ED1ED441912DF0EAFF7ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft Manifest number: 0227 Signing time: Wed 25 Mar 2026 08:11:57 +0000 Manifest this update: Wed 25 Mar 2026 08:06:57 +0000 Manifest next update: Sat 28 Mar 2026 14:22:57 +0000 Files and hashes: 1: 3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa (hash: ZDbKc+ruTVuJcD/7oHmgIVR/dNEAa6RIgBC5ZgynInI=) 2: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl (hash: AKb2Jjh8kJpRQottT6XJwzEPMMU6T50GsJgA+7wE0OA=) 3: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (hash: ZSgY5OMesKAVjFXk2K7xGan10euYjEFEbhi4eeTqUI4=) 4: 3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa (hash: GQbGwj8/3pFXSYNr52t6SKb3/O8bij4qIjKoYgJR2e8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 14:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a4:2d:fd:34:87:ca:af:67:8e:d1:ed:44:19:12:df:0e:af:f7:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: Mar 25 08:06:57 2026 GMT Not After : Mar 28 14:22:57 2026 GMT Subject: CN=F3237FC4F8ECFC90823F52689DEA6DD2C5514F23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:aa:e5:28:2a:79:a3:64:11:6f:22:0b:86:06: 5a:e2:73:f9:56:ef:ec:a0:2f:ca:f0:4a:ca:0e:6f: 14:ac:f9:e9:db:c6:f9:2e:05:b5:78:07:7f:2b:b6: bd:37:f6:95:82:d5:51:fe:29:ab:5f:62:53:7c:2d: a8:56:b2:9d:32:cf:c0:32:c8:a7:0b:d0:8c:82:8d: 43:ea:9c:01:a1:9b:bc:13:ea:94:08:41:58:7a:ea: a8:a7:5f:01:2b:3e:6d:ef:41:ab:07:f7:1c:54:00: b7:08:57:f7:a7:af:cb:e4:ee:a6:26:c1:d6:f0:07: f9:c3:72:a9:74:a6:31:48:01:59:c3:28:42:89:25: fa:bc:c5:9e:62:f3:91:2c:56:15:fa:7d:e1:f3:e9: e8:6a:bb:1d:cc:40:bd:08:10:0e:ea:3e:43:a1:5e: 04:f3:ad:49:cc:8b:11:ee:d0:42:20:85:48:61:8d: f3:12:1d:02:52:e1:24:0a:f2:5c:02:44:d7:d8:f9: a9:d1:2d:3c:f1:4c:e7:9b:d7:74:d8:80:01:76:29: cf:ac:b2:bf:7a:b8:3e:46:76:c9:f3:59:fd:34:a8: ae:e7:32:00:f2:12:57:72:bd:4d:a3:41:21:6d:37: da:fe:e4:03:f8:41:d5:8f:19:56:72:7f:30:21:09: f1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:23:7F:C4:F8:EC:FC:90:82:3F:52:68:9D:EA:6D:D2:C5:51:4F:23 X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:14:8c:73:80:ee:81:c9:40:96:81:b6:95:28:31:f0:91:e3: 00:ea:65:14:33:e5:a8:6b:5b:f8:70:3f:44:e6:d0:18:ae:a7: 9e:25:4b:70:72:f2:73:ef:8e:7e:13:3d:aa:08:f5:bf:9c:c8: 12:59:75:f4:4f:01:56:8e:80:aa:78:2b:d0:be:d4:b1:15:cd: fe:f3:2f:07:76:bb:6c:d8:31:9a:6b:3b:66:ce:db:67:8a:cc: 5a:79:66:14:ed:0d:06:5d:12:d2:0d:d3:e7:ef:cf:d7:cc:a7: 70:f5:e0:3c:74:64:f1:54:b3:c4:f3:d9:72:e9:4f:ad:67:41: 6e:62:39:60:fa:47:01:02:92:ec:f0:40:ba:c7:95:f3:a8:04: c5:af:85:1c:5b:9f:0b:e4:c6:75:98:f5:3f:98:8d:85:21:fd: 4c:c3:ba:a7:cf:e5:03:ff:12:66:20:1c:f6:cd:2c:a3:cf:9b: f8:3e:85:d5:16:d0:3e:62:9a:44:3e:c7:e7:f6:14:b7:73:6a: ae:b5:9c:dc:8f:bf:65:24:ae:bd:d8:3a:82:37:77:9f:1f:a9: f8:9a:63:41:77:61:1d:23:37:03:05:b0:73:14:36:5e:e8:6a: ea:5e:4f:48:6b:08:b8:59:62:3b:77:62:9f:2b:66:54:61:75: ec:4e:17:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbaQt/TSHyq9njtHtRBkS3w6v9+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNjAzMjUwODA2NTdaFw0yNjAzMjgxNDIyNTdaMDMxMTAvBgNV BAMTKEYzMjM3RkM0RjhFQ0ZDOTA4MjNGNTI2ODlERUE2REQyQzU1MTRGMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBquUoKnmjZBFvIguGBlric/lW 7+ygL8rwSsoObxSs+enbxvkuBbV4B38rtr039pWC1VH+KatfYlN8LahWsp0yz8Ay yKcL0IyCjUPqnAGhm7wT6pQIQVh66qinXwErPm3vQasH9xxUALcIV/enr8vk7qYm wdbwB/nDcql0pjFIAVnDKEKJJfq8xZ5i85EsVhX6feHz6ehqux3MQL0IEA7qPkOh XgTzrUnMixHu0EIghUhhjfMSHQJS4SQK8lwCRNfY+anRLTzxTOeb13TYgAF2Kc+s sr96uD5GdsnzWf00qK7nMgDyEldyvU2jQSFtN9r+5AP4QdWPGVZyfzAhCfFpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8yN/xPjs/JCCP1Jonept0sVRTyMwHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWU2MWU1YWUtZTQ1Zi00ZWUzLThm NmItN2NiNTlkNjE3ODNiLzAvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2 REVCNkMyMUM3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEgUjHOA7oHJQJaBtpUoMfCR4wDqZRQz5ahr W/hwP0Tm0Biup54lS3By8nPvjn4TPaoI9b+cyBJZdfRPAVaOgKp4K9C+1LEVzf7z Lwd2u2zYMZprO2bO22eKzFp5ZhTtDQZdEtIN0+fvz9fMp3D14Dx0ZPFUs8Tz2XLp T61nQW5iOWD6RwECkuzwQLrHlfOoBMWvhRxbnwvkxnWY9T+YjYUh/UzDuqfP5QP/ EmYgHPbNLKPPm/g+hdUW0D5imkQ+x+f2FLdzaq61nNyPv2Ukrr3YOoI3d58fqfia Y0F3YR0jNwMFsHMUNl7oaupeT0hrCLhZYjt3Yp8rZlRhdexOF7w= -----END CERTIFICATE-----Generated at Thu Mar 26 10:13:35 2026 by rpki-client