$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft File: 25D788BD2A450C01354B9AB70826895FDFF56208.mft (raw, json) Hash identifier: TSc2BODtWoZdpT5x6Knb5VHc/0Ae5oQBtdrvcXo/EN0= Subject key identifier: C3:00:39:BD:1F:2A:0B:93:28:A1:DE:59:48:0E:6B:88:49:2D:44:F2 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 7CE60DFE82D6B823D5D82091857D1E5253F8036C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft Manifest number: 03B8 Signing time: Thu 16 Apr 2026 06:01:12 +0000 Manifest this update: Thu 16 Apr 2026 05:56:12 +0000 Manifest next update: Sun 19 Apr 2026 08:57:12 +0000 Files and hashes: 1: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (hash: 7KmVFtPmF1PKTzL10ZTaJivGdGaijKq3y/u3fcta36Y=) 2: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (hash: BfvR/So226bitOLhPr9CHxhxgb1Q7qOXOhbe2UXDXlU=) 3: 25D788BD2A450C01354B9AB70826895FDFF56208.crl (hash: 2JYF6mZGfM09aRBrM86Qd4mjB9XEW2ezRZq2eHZOVVA=) 4: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (hash: AmegGicy5qm/oTOOAYDY/mxE94xy3VzwbgGfQNAYu1w=) 5: 3132332e3235332e3234382e302f32332d3234203d3e20313336383235.roa (hash: QI58DXpB52DfIuMgMkSoG294cwRWUIiNYLhET6AYpiI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 08:57:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:e6:0d:fe:82:d6:b8:23:d5:d8:20:91:85:7d:1e:52:53:f8:03:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Apr 16 05:56:12 2026 GMT Not After : Apr 19 08:57:12 2026 GMT Subject: CN=C30039BD1F2A0B9328A1DE59480E6B88492D44F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:8d:38:98:d1:61:de:4c:51:7d:47:1a:dc:ad: 80:94:e5:06:42:88:4f:18:35:03:b2:e2:35:cf:4d: 0a:a4:fb:18:89:71:de:71:87:85:c3:9a:93:59:8d: 4f:e5:d4:c4:a1:de:df:27:cd:f9:48:e2:38:7e:cf: 25:72:52:54:6b:57:ad:ab:87:80:e7:8b:74:12:b1: e2:54:01:85:8e:7b:12:dd:ea:a4:65:79:4d:21:00: 49:48:72:13:8c:c2:d3:95:85:88:a5:4d:a3:ec:f3: 32:96:ad:83:dc:59:59:e9:b7:24:16:35:8b:a7:4a: 0c:2b:dd:b7:71:ff:4a:53:30:cf:6b:44:6c:b6:6d: 5b:80:cc:c1:8b:a4:f5:09:24:df:86:b3:36:3c:ac: d6:62:6e:d6:66:16:77:fb:d9:64:15:a8:df:11:bc: c4:05:25:6b:64:b6:e6:b1:70:1a:52:75:06:6c:08: 6b:a0:34:dd:fc:33:db:ca:44:79:c2:23:27:e0:1d: 66:a8:aa:dd:2f:16:4a:9f:3b:f2:cd:1c:cb:cc:50: b4:d5:4f:88:fc:e0:4e:b1:b0:36:12:0f:3a:fe:2d: 33:f6:c4:a1:ab:35:e3:35:1a:d8:3f:5c:2b:b4:85: d3:41:f9:18:a4:6c:b6:64:ca:5a:ba:6c:37:1d:55: 57:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:00:39:BD:1F:2A:0B:93:28:A1:DE:59:48:0E:6B:88:49:2D:44:F2 X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:d0:6f:14:e4:bf:b2:1a:a6:5e:49:99:60:83:3f:88:d0:f3: f1:26:80:52:2c:ac:be:04:da:88:e1:c3:bd:ee:9a:38:f9:a6: ce:f1:0d:a0:e4:90:b9:6c:c6:b7:a5:52:69:72:70:4e:3d:97: 42:19:7d:7f:a3:b2:20:80:78:f1:d0:8d:67:43:d0:d0:6b:1c: 51:75:51:52:0d:dd:aa:c2:e2:a2:18:d2:fc:0d:b1:91:69:1f: 3a:76:65:47:21:fd:4f:40:bd:83:df:b5:e1:27:50:9a:5a:17: 01:3b:b2:65:89:eb:8f:ba:7a:e7:0a:3f:2c:ea:ef:28:36:11: 2b:2a:95:11:71:37:d8:fc:dc:2f:e6:4e:6d:33:0c:1f:f7:9c: 30:fe:ad:d2:c2:20:03:cc:20:b3:d0:45:93:cf:27:0d:90:ee: 08:84:63:91:97:62:77:c8:55:f4:74:37:1f:df:da:cd:4a:02: a4:a6:5e:15:df:60:d6:d1:69:59:fc:17:38:f7:21:1b:4b:8b: 55:6f:8a:5d:9b:f3:a9:e3:1f:80:29:97:49:9d:a5:15:8e:09: ba:2f:27:f1:1e:ed:8f:61:e9:bf:4e:36:fa:71:1d:46:51:98: 95:68:7d:9c:7c:3c:a4:2b:6c:8f:da:2e:98:98:de:79:20:ff: 24:56:93:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfOYN/oLWuCPV2CCRhX0eUlP4A2wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNjA0MTYwNTU2MTJaFw0yNjA0MTkwODU3MTJaMDMxMTAvBgNV BAMTKEMzMDAzOUJEMUYyQTBCOTMyOEExREU1OTQ4MEU2Qjg4NDkyRDQ0RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4jTiY0WHeTFF9RxrcrYCU5QZC iE8YNQOy4jXPTQqk+xiJcd5xh4XDmpNZjU/l1MSh3t8nzflI4jh+zyVyUlRrV62r h4Dni3QSseJUAYWOexLd6qRleU0hAElIchOMwtOVhYilTaPs8zKWrYPcWVnptyQW NYunSgwr3bdx/0pTMM9rRGy2bVuAzMGLpPUJJN+GszY8rNZibtZmFnf72WQVqN8R vMQFJWtktuaxcBpSdQZsCGugNN38M9vKRHnCIyfgHWaoqt0vFkqfO/LNHMvMULTV T4j84E6xsDYSDzr+LTP2xKGrNeM1Gtg/XCu0hdNB+RikbLZkylq6bDcdVVf3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwwA5vR8qC5Mood5ZSA5riEktRPIwHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZhNzY2NWEtYjUwYi00YTQ1LWE4 ZjktMGQ2OWJkN2Q3NDNkLzAvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5 NUZERkY1NjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKjQbxTkv7Iapl5JmWCDP4jQ8/EmgFIsrL4E 2ojhw73umjj5ps7xDaDkkLlsxrelUmlycE49l0IZfX+jsiCAePHQjWdD0NBrHFF1 UVIN3arC4qIY0vwNsZFpHzp2ZUch/U9AvYPfteEnUJpaFwE7smWJ64+6eucKPyzq 7yg2ESsqlRFxN9j83C/mTm0zDB/3nDD+rdLCIAPMILPQRZPPJw2Q7giEY5GXYnfI VfR0Nx/f2s1KAqSmXhXfYNbRaVn8Fzj3IRtLi1Vvil2b86njH4Apl0mdpRWOCbov J/Ee7Y9h6b9ONvpxHUZRmJVofZx8PKQrbI/aLpiY3nkg/yRWk9s= -----END CERTIFICATE-----Generated at Fri Apr 17 16:25:06 2026 by rpki-client