$ rpki-client -vvf repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft File: 03832B38693F0F23EF49480775A2493B9E3F7FA0.mft (raw, json) Hash identifier: CNLdrj715PRuTvTvYKzWTCKxYO8feeZN6MbKaPkY3qo= Subject key identifier: 64:9E:70:D7:DC:59:C8:6E:65:23:F0:E9:C5:C2:6A:6A:8E:5C:A6:C6 Authority key identifier: 03:83:2B:38:69:3F:0F:23:EF:49:48:07:75:A2:49:3B:9E:3F:7F:A0 Certificate issuer: /CN=03832B38693F0F23EF49480775A2493B9E3F7FA0 Certificate serial: 6322DFF1E1C87003BB10A2628165326CF36FD374 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft Manifest number: 037C Signing time: Tue 17 Mar 2026 18:50:57 +0000 Manifest this update: Tue 17 Mar 2026 18:45:57 +0000 Manifest next update: Sat 21 Mar 2026 00:35:57 +0000 Files and hashes: 1: 3130332e3135352e3235302e302f32332d3234203d3e203137383834.roa (hash: C109hu1BJkl1pWWKKoRbk9sf7Lmm7AwONWDQ76EwY1Q=) 2: 03832B38693F0F23EF49480775A2493B9E3F7FA0.crl (hash: m3Yvupn3Z+IqWBYi/pE6ZwP5M0aiA414FZqi3n67xpU=) 3: 323030313a6466343a646638303a3a2f34382d3438203d3e20313431303730.roa (hash: pmzgckCGAS5Ljr2SgdcTD9JmH8nize0p1NnNdSRs+P0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.crl rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Mar 2026 00:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:22:df:f1:e1:c8:70:03:bb:10:a2:62:81:65:32:6c:f3:6f:d3:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=03832B38693F0F23EF49480775A2493B9E3F7FA0 Validity Not Before: Mar 17 18:45:57 2026 GMT Not After : Mar 21 00:35:57 2026 GMT Subject: CN=649E70D7DC59C86E6523F0E9C5C26A6A8E5CA6C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:15:c5:8d:1e:c2:cf:96:65:a8:23:5a:84:fc: 75:55:4e:01:77:0c:2a:90:2e:00:4b:a7:67:63:77: 60:aa:6b:f4:e7:df:15:80:c2:48:7f:ee:cc:0d:4e: e7:e5:09:b1:47:65:da:74:57:81:a2:ff:18:37:e1: f6:b8:6f:19:1f:55:58:a5:f6:a1:e7:18:2a:58:6a: e4:4d:4a:6e:e1:61:ea:fa:65:51:56:eb:02:6d:a1: b8:01:e8:3a:ab:af:e4:2e:0a:db:44:06:35:1f:c9: aa:3f:b6:ac:4c:c7:da:a3:00:14:34:79:b7:cd:f4: 55:7f:0d:cf:19:fd:d4:43:88:3a:0b:24:c7:59:3d: 3c:52:18:c2:9c:1d:d8:d7:3c:7c:29:5d:e5:5d:91: e3:c2:9a:0e:ae:3d:a3:88:b0:0e:c8:e7:31:d2:00: c7:11:91:f8:e9:67:49:ba:19:f8:e9:7d:7a:bf:ed: 0c:27:f9:46:54:7b:f7:d4:8c:8f:95:12:b9:e9:85: 58:67:2e:7f:2a:ff:88:71:8c:85:eb:ab:4c:f3:71: 66:85:09:d7:94:77:48:64:78:71:90:c1:42:a3:6c: ed:4b:ac:3c:1e:9b:8d:4d:59:fa:52:b9:db:7d:b4: e2:47:c8:b0:f5:ba:76:be:cd:0b:0b:8a:db:74:83: 15:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9E:70:D7:DC:59:C8:6E:65:23:F0:E9:C5:C2:6A:6A:8E:5C:A6:C6 X509v3 Authority Key Identifier: keyid:03:83:2B:38:69:3F:0F:23:EF:49:48:07:75:A2:49:3B:9E:3F:7F:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/03832B38693F0F23EF49480775A2493B9E3F7FA0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b6ed0584-ac2d-4664-bc11-d026ddbfaf7c/0/03832B38693F0F23EF49480775A2493B9E3F7FA0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:87:73:a2:72:22:fb:18:7e:45:cd:b5:e4:82:9b:79:74:86: b0:40:3e:55:61:81:6f:8e:29:07:4d:90:d5:da:3c:9e:ec:33: 09:c0:5d:22:39:d2:92:e3:59:79:b3:cd:71:d2:15:36:77:cb: 58:fd:f2:87:40:24:64:97:8c:27:7d:f1:a7:7b:8d:b2:89:05: 7f:80:d2:17:65:93:7e:bc:0c:25:e6:51:43:6f:3c:92:75:af: a3:a4:fe:7f:ea:31:0e:f8:1a:a1:25:9b:bf:59:7a:95:e7:e7: 74:06:2b:d6:c5:7c:a1:86:44:b5:69:64:4e:58:82:c2:d6:6c: cb:bc:88:11:22:c3:00:05:56:7e:9a:c2:0a:00:d7:f5:e2:0e: 89:30:8d:da:4c:66:b0:13:a6:21:c4:c5:c8:b1:56:19:c4:dc: 78:32:78:5a:d6:aa:75:90:4f:9b:5f:22:d9:6e:8b:c4:c3:a0: 66:01:86:12:73:d0:f9:a9:48:f5:8a:7d:75:c1:9a:1d:8a:07: 25:df:ae:6c:4a:5c:35:9c:75:44:dc:92:5d:85:8d:ed:7b:f4: 37:bd:a1:b5:41:6a:6f:61:ab:93:63:c6:3c:12:99:62:30:9e: ea:6f:2c:82:63:dc:b8:87:7e:46:fd:9f:9a:2a:07:54:74:a9: 72:96:13:15 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYyLf8eHIcAO7EKJigWUybPNv03QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM4MzJCMzg2OTNGMEYyM0VGNDk0ODA3NzVBMjQ5M0I5 RTNGN0ZBMDAeFw0yNjAzMTcxODQ1NTdaFw0yNjAzMjEwMDM1NTdaMDMxMTAvBgNV BAMTKDY0OUU3MEQ3REM1OUM4NkU2NTIzRjBFOUM1QzI2QTZBOEU1Q0E2QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsFcWNHsLPlmWoI1qE/HVVTgF3 DCqQLgBLp2djd2Cqa/Tn3xWAwkh/7swNTuflCbFHZdp0V4Gi/xg34fa4bxkfVVil 9qHnGCpYauRNSm7hYer6ZVFW6wJtobgB6Dqrr+QuCttEBjUfyao/tqxMx9qjABQ0 ebfN9FV/Dc8Z/dRDiDoLJMdZPTxSGMKcHdjXPHwpXeVdkePCmg6uPaOIsA7I5zHS AMcRkfjpZ0m6GfjpfXq/7Qwn+UZUe/fUjI+VErnphVhnLn8q/4hxjIXrq0zzcWaF CdeUd0hkeHGQwUKjbO1LrDwem41NWfpSudt9tOJHyLD1una+zQsLitt0gxV/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZJ5w19xZyG5lI/DpxcJqao5cpsYwHwYDVR0j BBgwFoAUA4MrOGk/DyPvSUgHdaJJO54/f6AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NmVkMDU4NC1hYzJkLTQ2NjQtYmMxMS1kMDI2ZGRiZmFmN2MvMC8wMzgzMkIzODY5 M0YwRjIzRUY0OTQ4MDc3NUEyNDkzQjlFM0Y3RkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDM4MzJCMzg2OTNGMEYyM0VGNDk0ODA3NzVBMjQ5M0I5RTNG N0ZBMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjZlZDA1ODQtYWMyZC00NjY0LWJj MTEtZDAyNmRkYmZhZjdjLzAvMDM4MzJCMzg2OTNGMEYyM0VGNDk0ODA3NzVBMjQ5 M0I5RTNGN0ZBMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKuHc6JyIvsYfkXNteSCm3l0hrBAPlVhgW+O KQdNkNXaPJ7sMwnAXSI50pLjWXmzzXHSFTZ3y1j98odAJGSXjCd98ad7jbKJBX+A 0hdlk368DCXmUUNvPJJ1r6Ok/n/qMQ74GqElm79ZepXn53QGK9bFfKGGRLVpZE5Y gsLWbMu8iBEiwwAFVn6awgoA1/XiDokwjdpMZrATpiHExcixVhnE3HgyeFrWqnWQ T5tfItlui8TDoGYBhhJz0PmpSPWKfXXBmh2KByXfrmxKXDWcdUTckl2Fje179De9 obVBam9hq5NjxjwSmWIwnupvLIJj3LiHfkb9n5oqB1R0qXKWExU= -----END CERTIFICATE-----Generated at Thu Mar 19 09:40:25 2026 by rpki-client