$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: 83bFnyXUWifJICm9recxyashQdi8AWUdYJbX2NoXQ4w= Subject key identifier: 03:52:95:C1:7F:03:15:4F:AE:DD:1C:AA:CC:38:BA:9A:B5:EB:96:54 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 2501CF78D6EA11958FD433062D32AC60569DF8DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 01CF Signing time: Thu 16 Apr 2026 09:03:47 +0000 Manifest this update: Thu 16 Apr 2026 08:58:47 +0000 Manifest next update: Sun 19 Apr 2026 14:17:47 +0000 Files and hashes: 1: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: tGsxHZhGe4/2/ACl9hPF5viO7gvqxQq2KBfcz/uB7FU=) 2: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: pfTSxKS79GT5bYmr+9p0zSKX+VexPR1paBIjNhJVHQQ=) 3: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2BnWrJcTBV/RpDi3D22giZMTg6Gkl4p0EeXx+Wd/SUE=) 4: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: V7LTrj5sulUAgVBEYflngOIu8QjXhhq/Ng4O5cmR0eU=) 5: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: QLawy/JoU9dF3OpTqDQLfk1eRjEWgB8j8LAqMF/DItA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 14:17:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:01:cf:78:d6:ea:11:95:8f:d4:33:06:2d:32:ac:60:56:9d:f8:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Apr 16 08:58:47 2026 GMT Not After : Apr 19 14:17:47 2026 GMT Subject: CN=035295C17F03154FAEDD1CAACC38BA9AB5EB9654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:dd:6b:bc:63:25:a9:f6:af:81:2c:d3:59:4e: 5c:e1:04:ad:ed:a4:17:be:e6:d9:0d:bf:4f:cd:81: 9a:e6:33:bf:81:34:bb:20:e4:47:25:90:3c:c2:2a: 7f:50:58:c2:8e:47:9d:12:e3:d2:ad:a3:bd:ee:bb: 06:2c:ed:11:01:f7:f5:58:0a:3b:10:97:43:a0:6b: db:b9:ac:d5:ef:7f:a9:ee:a8:c6:ac:5b:dc:18:0c: 2c:6e:fe:d6:f4:9e:62:5c:ef:b7:09:6a:b1:99:03: 4c:f5:bb:cf:09:a6:58:7a:bf:99:10:53:56:78:ca: 7b:66:ce:25:b3:be:91:de:5d:80:3f:7f:07:29:0d: 09:b9:ab:8e:8a:c5:75:17:48:68:d6:3e:8c:cd:7d: c3:51:9a:6d:f6:8d:1d:bd:e1:d1:0b:57:e2:bc:c6: 1d:a6:92:e4:51:94:c5:d8:25:bf:8e:ce:ad:cd:b6: b2:b2:55:1c:1a:9c:5c:60:5e:ff:e8:de:da:71:09: d4:7a:b4:b7:2b:37:3d:32:7e:bc:55:dd:e2:ca:4b: 0f:e5:0d:28:74:a1:ad:07:bf:c2:70:e1:d5:6a:35: 41:d1:9b:83:fc:fe:b0:f9:31:00:67:89:21:49:e2: e5:d2:90:78:e1:ab:39:48:4d:69:79:c1:63:77:4a: c9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:52:95:C1:7F:03:15:4F:AE:DD:1C:AA:CC:38:BA:9A:B5:EB:96:54 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:16:b4:ec:ee:fc:cc:ed:b5:a6:68:fd:d7:6c:03:78:d8:5f: 1c:76:66:25:b4:b9:68:b1:12:62:fe:67:2b:41:b9:8b:ec:12: 79:bc:e0:92:15:e7:0b:46:6a:16:65:74:fd:11:75:bb:ae:5b: 31:de:57:5b:d2:e0:a7:a3:7d:eb:d7:cb:46:76:51:b3:ec:27: 27:77:2b:09:d5:5f:25:14:01:2d:8b:f1:d8:91:6f:c7:be:47: 91:fe:de:34:1f:79:8e:ec:9b:b8:c4:0c:a8:13:bc:8d:3f:d4: b1:91:04:04:a6:aa:ce:5a:a8:cc:c7:8e:20:83:a4:1e:ae:29: 93:39:31:6d:f5:2b:85:cb:67:34:78:6c:55:49:3d:ca:9e:cf: 27:f0:17:46:25:b5:0a:da:78:c0:ee:c5:38:5f:05:53:3d:93: b7:9f:b8:11:1d:53:d5:b8:90:e2:7c:d6:83:6d:fc:44:3d:79: b2:d4:d1:bf:70:7d:3f:45:8e:8d:57:64:ea:87:9e:bb:af:f2: 94:27:a0:1b:b2:5b:39:32:4a:d6:ea:4b:43:dc:46:38:75:6e: 05:b9:bc:eb:30:79:39:cd:f4:da:1d:a8:8e:72:a3:86:50:f3: 41:0b:2f:41:99:0a:2f:99:ae:ca:5f:23:17:58:ca:6d:3b:d7: 3b:4e:ac:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJQHPeNbqEZWP1DMGLTKsYFad+NowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNjA0MTYwODU4NDdaFw0yNjA0MTkxNDE3NDdaMDMxMTAvBgNV BAMTKDAzNTI5NUMxN0YwMzE1NEZBRUREMUNBQUNDMzhCQTlBQjVFQjk2NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+3Wu8YyWp9q+BLNNZTlzhBK3t pBe+5tkNv0/NgZrmM7+BNLsg5EclkDzCKn9QWMKOR50S49Kto73uuwYs7REB9/VY CjsQl0Oga9u5rNXvf6nuqMasW9wYDCxu/tb0nmJc77cJarGZA0z1u88Jplh6v5kQ U1Z4yntmziWzvpHeXYA/fwcpDQm5q46KxXUXSGjWPozNfcNRmm32jR294dELV+K8 xh2mkuRRlMXYJb+Ozq3NtrKyVRwanFxgXv/o3tpxCdR6tLcrNz0yfrxV3eLKSw/l DSh0oa0Hv8Jw4dVqNUHRm4P8/rD5MQBniSFJ4uXSkHjhqzlITWl5wWN3SskDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUA1KVwX8DFU+u3RyqzDi6mrXrllQwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAIWtOzu/MzttaZo/ddsA3jYXxx2ZiW0uWix EmL+ZytBuYvsEnm84JIV5wtGahZldP0RdbuuWzHeV1vS4KejfevXy0Z2UbPsJyd3 KwnVXyUUAS2L8diRb8e+R5H+3jQfeY7sm7jEDKgTvI0/1LGRBASmqs5aqMzHjiCD pB6uKZM5MW31K4XLZzR4bFVJPcqezyfwF0YltQraeMDuxThfBVM9k7efuBEdU9W4 kOJ81oNt/EQ9ebLU0b9wfT9Fjo1XZOqHnruv8pQnoBuyWzkyStbqS0PcRjh1bgW5 vOsweTnN9NodqI5yo4ZQ80ELL0GZCi+ZrspfIxdYym071ztOrMc= -----END CERTIFICATE-----Generated at Fri Apr 17 17:10:50 2026 by rpki-client