$ rpki-client -vvf repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft File: B2650BD2D997B6C198A4B362B7395AC364683312.mft (raw, json) Hash identifier: QUAFlh4QfTDsLJjEidkamAi23oimDJeqIRNzkXjDMUs= Subject key identifier: A7:47:B1:64:03:E9:3A:F2:B6:35:E0:2A:DD:CB:37:FF:62:72:09:25 Authority key identifier: B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12 Certificate issuer: /CN=B2650BD2D997B6C198A4B362B7395AC364683312 Certificate serial: 72661920BE845F6EC3E9285CB2A485D42554A34B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft Manifest number: 0233 Signing time: Wed 18 Mar 2026 16:41:03 +0000 Manifest this update: Wed 18 Mar 2026 16:36:03 +0000 Manifest next update: Sat 21 Mar 2026 18:23:03 +0000 Files and hashes: 1: B2650BD2D997B6C198A4B362B7395AC364683312.crl (hash: zDUY+nj6xEsJMGA6Qr/pDMGUIBk4wIvz4fOf94MCph0=) 2: 3130332e31372e33332e302f32342d3234203d3e20313530323238.roa (hash: Din5W7YK7LMJbRJUi9wsZasS4GJU6jj09R0J09VzjXg=) 3: 3130332e31372e33322e302f32342d3234203d3e20313530323238.roa (hash: IFrFNgL9nGnkBy6pVhjob4v5DLOWZyxcdQ+rkKOm7OM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 18:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:66:19:20:be:84:5f:6e:c3:e9:28:5c:b2:a4:85:d4:25:54:a3:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2650BD2D997B6C198A4B362B7395AC364683312 Validity Not Before: Mar 18 16:36:03 2026 GMT Not After : Mar 21 18:23:03 2026 GMT Subject: CN=A747B16403E93AF2B635E02ADDCB37FF62720925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bb:1a:b6:7b:f2:ea:81:e0:27:d8:9e:e6:47: 53:85:87:95:33:24:eb:96:53:27:e4:87:ed:11:bf: 72:55:00:16:2c:dd:48:e1:5e:ea:95:bf:e7:e8:97: 3a:60:85:cc:8b:f2:eb:c0:e3:90:c4:bc:26:e1:3d: e1:6c:ba:b3:69:5d:76:0f:a1:23:22:c2:0d:37:db: 20:24:09:51:52:3e:5c:bc:2c:8c:33:90:d4:dc:12: 86:8b:fd:c3:75:61:7f:ca:6b:b3:f5:84:ce:14:e8: 98:de:69:9b:33:66:0d:1e:80:94:06:e8:2f:ce:26: 53:b3:ce:2c:15:ac:c5:fb:b1:f8:49:f5:cf:3c:43: 00:6f:0c:59:aa:71:07:7a:45:14:1e:56:67:80:2c: 51:38:01:db:1a:d9:c2:3a:1f:b2:df:a0:43:f7:7f: 03:58:61:51:60:d3:ad:88:3d:24:9d:35:b4:65:b9: 00:c8:c1:2a:ec:50:a4:61:20:b0:40:8b:30:49:88: e3:68:5e:4f:fe:85:9a:ac:06:b1:bf:0f:0b:cd:54: 92:c4:31:0d:0d:c8:35:53:25:c4:0a:01:73:10:f1: 3d:33:23:f7:a0:ea:16:7a:e3:04:ba:2c:74:7f:f4: d8:6d:54:54:9f:ac:7f:d7:ff:ea:0a:c1:29:84:47: 1b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:47:B1:64:03:E9:3A:F2:B6:35:E0:2A:DD:CB:37:FF:62:72:09:25 X509v3 Authority Key Identifier: keyid:B2:65:0B:D2:D9:97:B6:C1:98:A4:B3:62:B7:39:5A:C3:64:68:33:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B2650BD2D997B6C198A4B362B7395AC364683312.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b905766-440e-4bcb-ae72-3e78831ce9dc/0/B2650BD2D997B6C198A4B362B7395AC364683312.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:c0:fa:f8:fc:30:90:6d:d9:6f:21:80:cc:ef:d6:81:b6:e3: 21:40:b6:5a:3b:8f:2a:fb:69:3b:a9:15:bd:4c:62:f8:03:43: 29:37:22:19:88:41:48:96:b4:62:44:1c:1f:cc:7c:55:b0:0d: b3:dd:a4:fc:7f:c5:ae:b6:d3:ba:c7:e7:5e:56:9e:f0:46:1d: e5:30:e7:17:8c:de:ad:ed:54:47:59:20:d9:5f:27:7e:63:a5: 5b:62:b6:d6:01:e7:da:49:7a:30:8a:f4:10:52:f2:02:d9:2a: 1e:4a:63:4a:c3:fa:48:f4:f1:56:00:5c:ba:c9:74:64:2b:58: 98:32:b6:0e:f4:92:33:42:8a:5a:ec:6d:dd:77:99:de:99:4b: 0e:a0:9e:00:18:17:41:b9:d1:e9:a9:be:59:3c:94:95:ab:a0: fd:4d:88:89:e3:b2:5e:08:cf:f4:7f:3c:ea:3a:79:cb:f4:f2: 14:9b:26:df:0c:36:59:f0:07:66:af:03:09:39:00:8c:39:f7: 37:d5:b7:ef:ad:a5:df:56:a0:3c:e4:c4:1d:4a:8e:49:47:b6: 54:5d:2f:ed:86:6c:b0:19:56:34:cc:b8:a0:73:de:66:0e:4b: 88:c0:50:fa:80:37:6f:df:39:46:2a:ec:b0:d3:59:f6:0e:b4: 65:3a:20:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcmYZIL6EX27D6ShcsqSF1CVUo0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVBQzM2 NDY4MzMxMjAeFw0yNjAzMTgxNjM2MDNaFw0yNjAzMjExODIzMDNaMDMxMTAvBgNV BAMTKEE3NDdCMTY0MDNFOTNBRjJCNjM1RTAyQUREQ0IzN0ZGNjI3MjA5MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCuxq2e/LqgeAn2J7mR1OFh5Uz JOuWUyfkh+0Rv3JVABYs3UjhXuqVv+folzpghcyL8uvA45DEvCbhPeFsurNpXXYP oSMiwg032yAkCVFSPly8LIwzkNTcEoaL/cN1YX/Ka7P1hM4U6JjeaZszZg0egJQG 6C/OJlOzziwVrMX7sfhJ9c88QwBvDFmqcQd6RRQeVmeALFE4Adsa2cI6H7LfoEP3 fwNYYVFg062IPSSdNbRluQDIwSrsUKRhILBAizBJiONoXk/+hZqsBrG/DwvNVJLE MQ0NyDVTJcQKAXMQ8T0zI/eg6hZ64wS6LHR/9NhtVFSfrH/X/+oKwSmERxsnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUp0exZAPpOvK2NeAq3cs3/2JyCSUwHwYDVR0j BBgwFoAUsmUL0tmXtsGYpLNitzlaw2RoMxIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjkwNTc2Ni00NDBlLTRiY2ItYWU3Mi0zZTc4ODMxY2U5ZGMvMC9CMjY1MEJEMkQ5 OTdCNkMxOThBNEIzNjJCNzM5NUFDMzY0NjgzMzEyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVBQzM2NDY4 MzMxMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2I5MDU3NjYtNDQwZS00YmNiLWFl NzItM2U3ODgzMWNlOWRjLzAvQjI2NTBCRDJEOTk3QjZDMTk4QTRCMzYyQjczOTVB QzM2NDY4MzMxMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIXA+vj8MJBt2W8hgMzv1oG24yFAtlo7jyr7 aTupFb1MYvgDQyk3IhmIQUiWtGJEHB/MfFWwDbPdpPx/xa6207rH515WnvBGHeUw 5xeM3q3tVEdZINlfJ35jpVtittYB59pJejCK9BBS8gLZKh5KY0rD+kj08VYAXLrJ dGQrWJgytg70kjNCilrsbd13md6ZSw6gngAYF0G50empvlk8lJWroP1NiInjsl4I z/R/POo6ecv08hSbJt8MNlnwB2avAwk5AIw59zfVt++tpd9WoDzkxB1KjklHtlRd L+2GbLAZVjTMuKBz3mYOS4jAUPqAN2/fOUYq7LDTWfYOtGU6IHE= -----END CERTIFICATE-----Generated at Fri Mar 20 20:31:15 2026 by rpki-client