$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: 1MPdq4Y5Ih9Hz/fYu+xKg1RcdVhoxnhRL474TP6EZkM= Subject key identifier: E9:95:06:EA:9E:7B:8E:12:F6:7B:B0:FE:05:45:AA:5E:E0:E0:F4:BE Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 70165DAEBB3275143A56769C49280251BE817532 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 0329 Signing time: Thu 05 Mar 2026 17:31:20 +0000 Manifest this update: Thu 05 Mar 2026 17:26:20 +0000 Manifest next update: Mon 09 Mar 2026 03:36:20 +0000 Files and hashes: 1: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: w7hhnf/FTuAGkmq8Vk3j59oZrJqwMRfaCtBw2Rblgpk=) 2: 3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa (hash: RvlNgfW0J+bVY7d2yjeoXrc2sRB1/6Dnvn34DHTz4kU=) 3: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: wEdCO3YyXLUpfkiKLdOWDdPh+9yeo9Z0D5c9ufB6gOc=) 4: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: 0qCM2olgS4oE+YIGItrwN9xQiW2Tx+5S0Vcz+QMGK2k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 03:36:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:16:5d:ae:bb:32:75:14:3a:56:76:9c:49:28:02:51:be:81:75:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Mar 5 17:26:20 2026 GMT Not After : Mar 9 03:36:20 2026 GMT Subject: CN=E99506EA9E7B8E12F67BB0FE0545AA5EE0E0F4BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:1b:1b:c6:c6:18:cf:6d:0d:cd:45:ff:8d:e3: 4a:98:9f:ff:b8:fb:4b:87:f1:09:6a:cd:2f:dc:3f: 5d:e7:9a:7e:9d:73:39:69:e4:f8:3d:e6:fe:5a:7f: cf:31:52:1d:51:ea:9a:56:41:39:e1:7d:ce:44:38: e6:ef:c6:02:d1:9f:f3:67:59:78:de:34:c3:34:58: fa:b6:c7:45:62:75:87:8e:ef:31:8b:2a:41:5d:2f: 79:56:30:1f:b4:3f:c0:0d:9c:a5:69:03:6f:6a:b0: f1:6d:5c:84:8b:ed:44:4a:c4:c1:ff:a7:26:73:81: 1d:d8:d4:c4:fc:00:0d:71:13:8d:87:7e:60:2f:1c: 84:ce:ac:03:56:96:10:bc:04:7c:9a:02:54:f3:4a: 92:be:4b:0a:c4:55:fc:0d:90:30:01:95:2b:fe:3e: ba:63:e1:8e:ca:2a:d0:e8:75:62:ae:cc:cf:ea:8c: 63:62:5f:8f:f5:eb:09:69:85:7d:3f:63:cf:6d:26: cd:ae:33:f5:4a:f6:f3:e5:8f:ee:3a:98:fe:0d:33: 43:01:a9:51:ce:d6:8d:18:f9:12:4a:eb:41:53:e1: 6c:48:2d:a0:45:28:34:b4:8d:93:8a:a0:f7:36:20: 4b:3f:6d:df:a3:5b:f5:6f:e6:96:d7:6d:75:0e:4d: 74:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:95:06:EA:9E:7B:8E:12:F6:7B:B0:FE:05:45:AA:5E:E0:E0:F4:BE X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:07:5e:2e:8c:64:a5:aa:4c:8d:f2:f0:2b:1f:a3:9e:f7:1c: 38:6f:50:9f:8d:86:cc:a6:d6:59:23:49:a2:d8:58:cc:31:0b: ee:b5:1b:a2:a5:d6:67:65:33:a3:68:c2:b0:9a:a7:7a:ad:14: b4:6c:5d:a7:19:a9:87:08:92:55:df:b8:de:ac:0e:99:95:fc: 92:7b:5e:21:28:ec:38:6d:d8:a8:99:94:1f:d9:bb:93:46:cb: cb:2a:18:2d:1e:fb:16:0f:26:cc:84:63:c7:49:9c:62:e7:e6: 6c:1e:ae:54:eb:0a:05:98:e5:e1:81:b9:bb:fa:5d:ad:22:30: f9:1c:6c:65:e4:ad:6e:e4:08:47:f2:3d:f7:a3:1c:bb:8f:d0: 43:cf:22:5a:35:82:28:88:02:6e:0d:a3:6b:4e:73:35:93:0a: 23:d8:f1:94:a9:ca:cf:80:99:0b:b7:61:9f:f6:9f:50:ff:13: 22:4a:01:a8:b5:47:a4:e8:84:55:a4:e7:b6:45:e6:19:1c:00: 1c:9c:ed:a1:78:5a:ae:f8:b0:05:60:06:a2:62:6c:78:00:89: 59:e1:b5:06:7a:77:a5:1f:06:e6:81:34:92:0d:31:16:1c:28: 23:d9:31:e7:91:78:5a:ee:7b:a6:7d:6f:af:95:70:3f:78:91: d4:e0:c8:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcBZdrrsydRQ6VnacSSgCUb6BdTIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNjAzMDUxNzI2MjBaFw0yNjAzMDkwMzM2MjBaMDMxMTAvBgNV BAMTKEU5OTUwNkVBOUU3QjhFMTJGNjdCQjBGRTA1NDVBQTVFRTBFMEY0QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNGxvGxhjPbQ3NRf+N40qYn/+4 +0uH8QlqzS/cP13nmn6dczlp5Pg95v5af88xUh1R6ppWQTnhfc5EOObvxgLRn/Nn WXjeNMM0WPq2x0VidYeO7zGLKkFdL3lWMB+0P8ANnKVpA29qsPFtXISL7URKxMH/ pyZzgR3Y1MT8AA1xE42HfmAvHITOrANWlhC8BHyaAlTzSpK+SwrEVfwNkDABlSv+ Prpj4Y7KKtDodWKuzM/qjGNiX4/16wlphX0/Y89tJs2uM/VK9vPlj+46mP4NM0MB qVHO1o0Y+RJK60FT4WxILaBFKDS0jZOKoPc2IEs/bd+jW/Vv5pbXbXUOTXRpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6ZUG6p57jhL2e7D+BUWqXuDg9L4wHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABAHXi6MZKWqTI3y8Csfo573HDhvUJ+Nhsym 1lkjSaLYWMwxC+61G6Kl1mdlM6NowrCap3qtFLRsXacZqYcIklXfuN6sDpmV/JJ7 XiEo7Dht2KiZlB/Zu5NGy8sqGC0e+xYPJsyEY8dJnGLn5mwerlTrCgWY5eGBubv6 Xa0iMPkcbGXkrW7kCEfyPfejHLuP0EPPIlo1giiIAm4No2tOczWTCiPY8ZSpys+A mQu3YZ/2n1D/EyJKAai1R6TohFWk57ZF5hkcAByc7aF4Wq74sAVgBqJibHgAiVnh tQZ6d6UfBuaBNJINMRYcKCPZMeeReFrue6Z9b6+VcD94kdTgyLc= -----END CERTIFICATE-----Generated at Sat Mar 7 21:03:45 2026 by rpki-client