$ rpki-client -vvf rpki-rsync.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/3B7FE3B2042531E0B36242D947F82DF031754FD3.mft File: 3B7FE3B2042531E0B36242D947F82DF031754FD3.mft (raw, json) Hash identifier: TKP86Xa+dxhW+4a7H+LG+VOpmx8Jxl5CFGXlNnKA4qk= Subject key identifier: 1C:1E:76:EA:7D:85:DD:B3:72:52:AA:81:C5:91:24:81:AA:14:CD:46 Authority key identifier: 3B:7F:E3:B2:04:25:31:E0:B3:62:42:D9:47:F8:2D:F0:31:75:4F:D3 Certificate issuer: /CN=3B7FE3B2042531E0B36242D947F82DF031754FD3 Certificate serial: 2E63C24CD1FBCC3D00A0A97886C88FE5C8F2BBB5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B7FE3B2042531E0B36242D947F82DF031754FD3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/3B7FE3B2042531E0B36242D947F82DF031754FD3.mft Manifest number: 0F Signing time: Tue 12 May 2026 18:13:27 +0000 Manifest this update: Tue 12 May 2026 18:08:27 +0000 Manifest next update: Wed 13 May 2026 21:50:27 +0000 Files and hashes: 1: 323030313a6466303a396530303a3a2f34382d3438203d3e20313332313634.roa (hash: nG1oS5kPYmQFB9gUVJnLfk54lZwsWyYkdNpEIO9gT/M=) 2: 3130332e35302e3231372e302f32342d3234203d3e20313332313634.roa (hash: pTAxtDqCoq1lZ0weKvW5ktevS+0YSpgq+YtzT/tKQzQ=) 3: 3B7FE3B2042531E0B36242D947F82DF031754FD3.crl (hash: yAInYZqx+1YS1kHpQ5TNXyn8T5jwyt5MMh8CN3g0Ulk=) 4: 3130332e35302e3231362e302f32342d3234203d3e20313332313634.roa (hash: 137GCdmWkDay1INFZoJTq4DPdPLmTUTYDzr+pVTMq4w=) 5: 3130332e362e3131372e302f32342d3234203d3e20313332313634.roa (hash: NeiRD0Vhv/h8RWipDP6Q873ht3qdQPfYf3BUMU4aFVw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/3B7FE3B2042531E0B36242D947F82DF031754FD3.crl rsync://rpki-rsync.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/3B7FE3B2042531E0B36242D947F82DF031754FD3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B7FE3B2042531E0B36242D947F82DF031754FD3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:63:c2:4c:d1:fb:cc:3d:00:a0:a9:78:86:c8:8f:e5:c8:f2:bb:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B7FE3B2042531E0B36242D947F82DF031754FD3 Validity Not Before: May 12 18:08:27 2026 GMT Not After : May 13 21:50:27 2026 GMT Subject: CN=1C1E76EA7D85DDB37252AA81C5912481AA14CD46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:95:cb:ae:c8:4b:22:fc:54:62:40:3c:e1:eb: 6a:34:c1:83:ce:ce:e9:57:95:36:41:45:e3:fd:3f: 84:94:d8:e5:ba:66:55:93:c1:20:3a:37:eb:9c:0b: 7e:a9:f3:f7:d9:34:c5:10:8d:7d:6a:4d:a7:5c:fd: f3:f5:ea:8b:86:af:98:0d:e9:22:89:3b:0f:9a:af: 62:35:40:ef:db:1e:d2:bc:62:40:e2:a7:7a:ea:66: 6d:da:1d:c0:b7:aa:a5:90:59:e4:e4:47:ad:6c:a4: 5c:9f:14:ac:2d:9c:67:9d:b1:4d:6e:f4:39:54:df: 83:39:e9:1d:52:b3:e2:0e:a3:af:f5:cf:73:77:ff: 85:d3:e4:28:95:72:99:ae:47:73:65:c4:a3:43:28: 32:fd:2f:c7:09:c3:60:8a:5e:bb:4c:3d:94:8d:c9: ff:ba:75:cb:6e:94:94:d3:9a:d2:b3:36:e0:45:98: b9:f8:2e:da:99:d0:64:05:87:70:b8:59:eb:b8:bf: d8:07:ee:18:cd:a1:87:9c:10:44:1f:ce:8c:88:07: 1d:57:be:9b:4e:60:eb:ff:71:a8:37:6f:34:f7:20: ca:ed:58:09:3f:1e:9e:fb:3b:19:38:6d:3f:39:2d: 9e:fc:f3:4b:3d:f8:1d:90:03:06:7b:80:42:1d:6e: ab:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:1E:76:EA:7D:85:DD:B3:72:52:AA:81:C5:91:24:81:AA:14:CD:46 X509v3 Authority Key Identifier: keyid:3B:7F:E3:B2:04:25:31:E0:B3:62:42:D9:47:F8:2D:F0:31:75:4F:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/3B7FE3B2042531E0B36242D947F82DF031754FD3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3B7FE3B2042531E0B36242D947F82DF031754FD3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9141f884-d5c9-4336-9a5c-777419e56dce/0/3B7FE3B2042531E0B36242D947F82DF031754FD3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:72:c6:16:26:4c:7a:17:e0:06:f2:ca:7b:20:a4:6e:91:d7: a0:b3:8a:b8:69:e6:f9:fe:1a:31:c1:3d:92:cb:10:3f:49:b2: b3:ff:10:68:ee:28:51:3a:93:d3:14:6e:31:44:b9:e9:ae:dc: 88:7a:3f:75:98:95:80:68:7b:1f:91:43:3c:e0:70:98:a0:f6: b8:04:2e:97:de:8a:da:1d:60:34:a4:2c:80:5d:0e:5b:e4:f1: c8:1f:8f:4d:99:05:1a:15:62:7f:ed:61:79:2f:f8:a6:eb:5d: b0:74:b2:fc:13:bb:6c:c2:65:5e:32:9c:e1:0a:df:6c:41:3c: b6:1f:df:3a:91:df:d1:17:a0:78:36:99:35:d4:b4:d6:41:53: e1:20:25:2a:0f:09:7e:76:8a:07:28:85:e8:cf:04:ee:4f:bd: 17:bf:e1:25:13:85:d9:04:f8:4b:e2:a9:69:22:f9:95:ad:11: a4:60:c2:7f:b0:dd:fe:ba:5e:01:d8:33:a8:41:66:ad:4d:aa: c4:34:61:f3:a3:f4:52:c7:44:01:ed:39:e5:3b:2f:97:7f:3a: c4:64:cd:4e:c1:9e:ad:8f:f5:17:33:c2:ec:3f:23:20:6f:d9: d5:d5:d8:19:43:4c:b0:e6:1e:0c:d7:b8:91:bb:86:f3:70:64: 4f:a9:d1:9d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULmPCTNH7zD0AoKl4hsiP5cjyu7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I3RkUzQjIwNDI1MzFFMEIzNjI0MkQ5NDdGODJERjAz MTc1NEZEMzAeFw0yNjA1MTIxODA4MjdaFw0yNjA1MTMyMTUwMjdaMDMxMTAvBgNV BAMTKDFDMUU3NkVBN0Q4NUREQjM3MjUyQUE4MUM1OTEyNDgxQUExNENENDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFlcuuyEsi/FRiQDzh62o0wYPO zulXlTZBReP9P4SU2OW6ZlWTwSA6N+ucC36p8/fZNMUQjX1qTadc/fP16ouGr5gN 6SKJOw+ar2I1QO/bHtK8YkDip3rqZm3aHcC3qqWQWeTkR61spFyfFKwtnGedsU1u 9DlU34M56R1Ss+IOo6/1z3N3/4XT5CiVcpmuR3NlxKNDKDL9L8cJw2CKXrtMPZSN yf+6dctulJTTmtKzNuBFmLn4LtqZ0GQFh3C4Weu4v9gH7hjNoYecEEQfzoyIBx1X vptOYOv/cag3bzT3IMrtWAk/Hp77Oxk4bT85LZ7880s9+B2QAwZ7gEIdbqttAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHB526n2F3bNyUqqBxZEkgaoUzUYwHwYDVR0j BBgwFoAUO3/jsgQlMeCzYkLZR/gt8DF1T9MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTE0MWY4ODQtZDVjOS00MzM2LTlhNWMtNzc3NDE5ZTU2ZGNlLzAvM0I3RkUzQjIw NDI1MzFFMEIzNjI0MkQ5NDdGODJERjAzMTc1NEZEMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zQjdGRTNCMjA0MjUzMUUwQjM2MjQyRDk0N0Y4MkRGMDMxNzU0 RkQzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOTE0MWY4ODQtZDVjOS00MzM2LTlh NWMtNzc3NDE5ZTU2ZGNlLzAvM0I3RkUzQjIwNDI1MzFFMEIzNjI0MkQ5NDdGODJE RjAzMTc1NEZEMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIxyxhYmTHoX4AbyynsgpG6R16Czirhp5vn+ GjHBPZLLED9JsrP/EGjuKFE6k9MUbjFEuemu3Ih6P3WYlYBoex+RQzzgcJig9rgE LpfeitodYDSkLIBdDlvk8cgfj02ZBRoVYn/tYXkv+KbrXbB0svwTu2zCZV4ynOEK 32xBPLYf3zqR39EXoHg2mTXUtNZBU+EgJSoPCX52igcohejPBO5PvRe/4SUThdkE +EviqWki+ZWtEaRgwn+w3f66XgHYM6hBZq1NqsQ0YfOj9FLHRAHtOeU7L5d/OsRk zU7Bnq2P9Rczwuw/IyBv2dXV2BlDTLDmHgzXuJG7hvNwZE+p0Z0= -----END CERTIFICATE-----Generated at Wed May 13 04:16:04 2026 by rpki-client