$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft File: 17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft (raw, json) Hash identifier: urOlkXmWwa0OK00i787vxspwmC1GvtqCcYIXc0vW69Q= Subject key identifier: 50:9A:8A:8A:11:AF:C8:85:03:CB:85:C3:4D:3B:A1:D8:02:44:7C:73 Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 1CAF403C2753BAB7E081889D33CE1B6D3F9A8FD8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft Manifest number: 0539 Signing time: Fri 20 Mar 2026 21:12:03 +0000 Manifest this update: Fri 20 Mar 2026 21:07:03 +0000 Manifest next update: Mon 23 Mar 2026 21:30:03 +0000 Files and hashes: 1: 323430323a383738303a313031623a3a2f34382d3438203d3e203633383639.roa (hash: 8AGJuasHzMx2A0Z5FMrDF0ItFI5j8FsNffDHrANNPzk=) 2: 323430323a383738303a313037393a3a2f34382d3438203d3e203633383539.roa (hash: 35RT49VcdlH2atWjsCg6L0WgE2qQ9S/7bPi9DmsolG0=) 3: 323430323a383738303a313031343a3a2f34382d3438203d3e203633383539.roa (hash: Jtpz3rD9Yyq75ZXEV4fiIf87MNhg9y+hSwsJYEZnsqo=) 4: 323430323a383738303a313032393a3a2f34382d3438203d3e203633383539.roa (hash: Fjwx5F8zq6Bao0/JJ+bYnmsLorBjg0yTe85cwHjfkt8=) 5: 323430323a383738303a313036633a3a2f34382d3438203d3e203633383539.roa (hash: H86q0MXuPDiz0d9A8HFLw1Gbla25BLJJwrd8COSuUdo=) 6: 323430323a383738303a313037373a3a2f34382d3438203d3e203633383539.roa (hash: uezMtm9yfboQIT5jcCNmn+YeTeFhBFZYzV1MJBfEVkA=) 7: 3130332e34372e3133322e302f32342d3234203d3e203633383539.roa (hash: KrQXE8D2Q5Yo3g//mdDYJidQwyMwsHM3lR4ILfL9Uvk=) 8: 323430323a383738303a313031323a3a2f34382d3438203d3e203633383539.roa (hash: SRFJg0vpyyqKeKF1R3zw8dkZHQA/T/+WhtuVLiz2IAY=) 9: 323430323a383738303a313030303a3a2f34382d3438203d3e203633383539.roa (hash: yK5Kt5H9WNZtX/HNNL0bv286Z16/92qoWYRV6znuTLQ=) 10: 323430323a383738303a313035363a3a2f34382d3438203d3e203633383539.roa (hash: Apikojh/WZyuhxTN0KNy8rD1xo4n1AVmCyXIBJU31/A=) 11: 17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl (hash: JYG7i691BSuTaofoGIK+mpMBsb966Vaye3RNAAxrM1I=) 12: 323430323a383738303a313037383a3a2f34382d3438203d3e203633383539.roa (hash: b048LjXG7Bj6FmjU04I9jx+4VjHctbpMHIoz4fjos0M=) 13: 323430323a383738303a313034303a3a2f34382d3438203d3e203633383539.roa (hash: LtsY6F7RWeW7yw6MfcxK4/FDMV5Uh6YfSStPg96dZtg=) 14: 3130332e34372e3133342e302f32342d3234203d3e203633383539.roa (hash: ISUPB5yjW6tmMrkjewjTPmASyvfsPyLCAirfzGZHkUw=) 15: 323430323a383738303a313030333a3a2f34382d3438203d3e203633383539.roa (hash: RKKEsjHh5z97kVU5mU+p8a2FB1mdxlEpk6vbiTV6FSg=) 16: 3130332e34372e3133332e302f32342d3234203d3e203633383539.roa (hash: EZteEph/2m/6PSU4HhniFTSW+lioN4P6OqCDsqE63rs=) 17: 323430323a383738303a313036313a3a2f34382d3438203d3e203633383539.roa (hash: 0jHuQjZuXjUclLGYHYYiSz8XXDbuCdUdap7bcYY7D/U=) 18: 323430323a383738303a313031363a3a2f34382d3438203d3e203633383539.roa (hash: jGsShgBdcmu1xFDvQxHLm/DzmZkaJd0+o4fg3Jrx1As=) 19: 323430323a383738303a313034383a3a2f34382d3438203d3e203633383539.roa (hash: asRSm/iZTgBSaWKZf/851/YblFfjUE7kb+XhnDf2GjA=) 20: 323430323a383738303a313035613a3a2f34382d3438203d3e203633383539.roa (hash: vzxPnkksVZcJ0CZ9tDZ5dyPi1kCAeq8TKScOR0f2w9Y=) 21: 3130332e34372e3133352e302f32342d3234203d3e203633383539.roa (hash: Lg5dQN6opERAWYn9yaTR81th2kNEptreAqT5F7qUOxg=) 22: 323430323a383738303a313033313a3a2f34382d3438203d3e203633383539.roa (hash: ZDGtcl7rEMehNcGPUjXPGqQXmm/zm0vKOPolU4kYDiM=) 23: 323430323a383738303a313030353a3a2f34382d3438203d3e203633383539.roa (hash: 9HOvzyY5uf3RSlvWhbs3K286WgpBS+cdqK+8tFA4y1E=) 24: 323430323a383738303a313035373a3a2f34382d3438203d3e203633383539.roa (hash: NvPPSaT8BwrSe2+lBxElFJmmu54GgVbBcHfUoGBsY20=) 25: 323430323a383738303a313030393a3a2f34382d3438203d3e203633383539.roa (hash: cLkVLv+vK6mcj4WuUAKMOjuXWW7BFHPYNRSpLVGMP1U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Mar 2026 21:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:af:40:3c:27:53:ba:b7:e0:81:88:9d:33:ce:1b:6d:3f:9a:8f:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: Mar 20 21:07:03 2026 GMT Not After : Mar 23 21:30:03 2026 GMT Subject: CN=509A8A8A11AFC88503CB85C34D3BA1D802447C73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:ff:41:8d:4a:45:0b:ef:90:5c:00:ce:46: c1:07:dd:bc:89:bb:93:b8:c0:99:42:cc:0b:00:34: e5:38:63:b7:bc:4e:1b:23:db:b8:38:1b:c2:d6:74: 29:7f:56:eb:b7:70:7c:6d:0e:6f:4d:56:f4:db:0b: 35:c0:f6:ef:ce:9c:43:49:0f:5a:d8:f7:f3:5e:5c: 01:94:05:c2:f0:7a:fe:2d:29:98:00:1f:a8:d9:67: 7b:42:0b:70:5b:d0:49:20:ee:e9:51:02:e2:3a:8e: c1:92:d6:5f:49:a4:8d:4a:c5:76:56:2c:cc:d7:21: 3a:9f:1d:95:dc:27:43:7e:12:cc:c0:a5:68:c6:f5: 65:a5:91:bb:6f:75:cc:42:07:bd:9a:2a:47:d1:68: 27:a5:0c:22:96:79:c5:e5:1a:71:2d:51:df:09:10: 44:bc:51:7b:ec:94:5e:8b:14:dd:f9:cd:e1:41:f6: 2f:c1:ab:38:53:8c:f1:11:62:ea:d5:56:1f:9e:6f: 18:0d:2f:56:7d:cf:e2:c6:37:f6:58:de:e6:cd:9c: 1f:db:bc:1f:ad:8f:37:17:ed:a7:79:b5:0c:c9:7d: ba:d0:b1:a3:f8:74:2a:54:21:84:0d:6d:e9:71:0a: 2b:1d:a0:a7:de:ed:a6:67:f1:d2:62:b5:e1:30:30: 1c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:9A:8A:8A:11:AF:C8:85:03:CB:85:C3:4D:3B:A1:D8:02:44:7C:73 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:90:7f:7a:dd:38:d4:dc:0c:d3:97:9a:28:64:30:ef:69:c3: a5:67:ee:0d:5b:a2:08:91:dc:8b:aa:fd:ed:bd:0b:f7:2a:b8: 74:97:7b:00:73:71:da:ae:a4:5d:0f:2f:d1:14:34:85:5c:a3: 4d:9b:a9:85:f9:2e:50:0b:40:5f:8e:12:96:c7:c4:57:89:3b: a4:5b:f9:61:df:8e:35:92:b8:12:70:3e:5b:bb:3e:eb:c1:98: ed:b6:a4:d9:fa:76:cc:f4:3d:12:fc:1d:1b:58:52:28:8d:43: 58:da:e7:4d:cf:e0:5a:01:a9:35:ac:0d:92:a4:b6:37:ef:c2: ef:0f:65:ab:d3:46:89:6f:99:ed:55:09:31:dd:e6:0e:f1:e5: 3c:70:2b:75:b6:87:17:ec:d1:fe:dc:ed:a6:0b:53:7b:e5:dd: d0:a5:b2:d4:ed:f1:59:b3:4e:a8:21:e9:fb:b1:4c:37:79:4d: a4:32:0c:8f:81:28:4e:15:0c:91:d4:d9:7a:54:f3:1e:81:a7: cc:1b:2e:3e:01:35:0c:78:0f:6e:59:88:82:05:4d:31:01:49: 83:02:ba:5c:c9:1e:55:9c:84:26:34:3e:05:15:01:9b:cb:bd: 68:17:66:b9:a4:de:90:0a:25:21:e1:de:ae:25:7b:bd:f5:bd: 05:c3:bc:b4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHK9APCdTurfggYidM84bbT+aj9gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yNjAzMjAyMTA3MDNaFw0yNjAzMjMyMTMwMDNaMDMxMTAvBgNV BAMTKDUwOUE4QThBMTFBRkM4ODUwM0NCODVDMzREM0JBMUQ4MDI0NDdDNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE8P9BjUpFC++QXADORsEH3byJ u5O4wJlCzAsANOU4Y7e8Thsj27g4G8LWdCl/Vuu3cHxtDm9NVvTbCzXA9u/OnENJ D1rY9/NeXAGUBcLwev4tKZgAH6jZZ3tCC3Bb0Ekg7ulRAuI6jsGS1l9JpI1KxXZW LMzXITqfHZXcJ0N+EszApWjG9WWlkbtvdcxCB72aKkfRaCelDCKWecXlGnEtUd8J EES8UXvslF6LFN35zeFB9i/BqzhTjPERYurVVh+ebxgNL1Z9z+LGN/ZY3ubNnB/b vB+tjzcX7ad5tQzJfbrQsaP4dCpUIYQNbelxCisdoKfe7aZn8dJiteEwMByrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUJqKihGvyIUDy4XDTTuh2AJEfHMwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2JiYjI3MzQtZTVmYS00MGViLTg1 OTgtYjdjZDEwMTM0M2NhLzAvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBB NTkyN0E3NDRFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANOQf3rdONTcDNOXmihkMO9pw6Vn7g1bogiR 3Iuq/e29C/cquHSXewBzcdqupF0PL9EUNIVco02bqYX5LlALQF+OEpbHxFeJO6Rb +WHfjjWSuBJwPlu7PuvBmO22pNn6dsz0PRL8HRtYUiiNQ1ja503P4FoBqTWsDZKk tjfvwu8PZavTRolvme1VCTHd5g7x5TxwK3W2hxfs0f7c7aYLU3vl3dClstTt8Vmz Tqgh6fuxTDd5TaQyDI+BKE4VDJHU2XpU8x6Bp8wbLj4BNQx4D25ZiIIFTTEBSYMC ulzJHlWchCY0PgUVAZvLvWgXZrmk3pAKJSHh3q4le731vQXDvLQ= -----END CERTIFICATE-----Generated at Sat Mar 21 08:15:38 2026 by rpki-client