$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft File: 645C9D445B2796662EE98A03E50C124F3E962CAB.mft (raw, json) Hash identifier: q/4MSDTh4Nt1JbkF1NoAJhhV79HboqaJ+WK3wP1sNYA= Subject key identifier: 0F:A4:36:78:7E:95:4C:82:DF:60:20:62:BD:20:DA:84:4D:06:F5:17 Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 755DAE619FC0CA8C56B65E654AD0FB6DA3B62D30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft Manifest number: 040C Signing time: Thu 16 Apr 2026 00:41:18 +0000 Manifest this update: Thu 16 Apr 2026 00:36:18 +0000 Manifest next update: Sun 19 Apr 2026 02:58:18 +0000 Files and hashes: 1: 3130332e3130302e3137342e302f32342d3234203d3e20313336383431.roa (hash: +SeGBM9CdtDOWXU9iixLlEgCajKedvFQm/V7StxkJlo=) 2: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (hash: SMPg/3qiOryd428jAGKTXmMedIlqTpx2BfnFfzgQnCk=) 3: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (hash: bgUQl2KKDVdxSEkmrD5bo1yuFXhp8F+vNio9ZlmO2Lc=) 4: 645C9D445B2796662EE98A03E50C124F3E962CAB.crl (hash: S6p8I9zRvT1Xewgm2sHGIdamiNKd6tyw9ttYaTBGKug=) 5: 323430313a626534303a3a2f33322d3438203d3e20313336383431.roa (hash: 8QSbauO9NNotVx0xsCiC0xHQEL8XE+fwtGOjSQB5tIM=) 6: 323430313a626534303a3130303a3a2f34382d3438203d3e20313336383431.roa (hash: e9MuQpUdmZSWJyLwqKXY1nxQlgwTqEZ4CpPjIrRXOr8=) 7: 3130332e3130302e3137352e302f32342d3234203d3e20313336383431.roa (hash: IX4uPd9N3SkfP7LEqX7tm7Aw2XVAAH51yq8xtLADMD0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 02:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:5d:ae:61:9f:c0:ca:8c:56:b6:5e:65:4a:d0:fb:6d:a3:b6:2d:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Apr 16 00:36:18 2026 GMT Not After : Apr 19 02:58:18 2026 GMT Subject: CN=0FA436787E954C82DF602062BD20DA844D06F517 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:13:b6:f6:cb:2c:e4:cc:7c:5f:da:2e:3d:6f: 55:52:fb:44:cf:16:64:af:29:c0:c2:04:a3:0c:8a: 4d:68:8a:67:08:8c:38:b5:4e:22:46:f1:cd:a9:83: a2:09:47:ad:54:be:09:fa:1e:2a:2d:4d:66:2f:56: 75:f9:5c:54:0f:4b:36:62:c9:b2:d3:ae:44:f0:e2: 41:ac:4a:95:47:e5:30:6a:08:d9:0c:2e:05:93:bd: 08:35:fe:8c:2d:26:a5:ab:6e:a3:35:1d:0a:11:76: ca:4a:c0:09:9a:2c:4b:67:36:c6:1c:52:99:fc:16: 33:eb:13:36:e2:77:d7:1d:81:cb:2b:44:1a:c4:70: 57:de:04:46:04:4f:77:d4:35:20:a7:0c:70:84:c3: 3d:6c:a6:4d:a5:ea:e2:df:a6:57:f7:b3:5a:88:5a: b4:fe:5a:97:7c:70:4e:2e:b9:8b:2f:36:58:ea:9d: 7e:00:e8:41:6f:22:9f:25:c2:3a:81:4a:27:98:a1: 65:0b:a7:31:51:7b:52:b9:d7:99:a7:56:55:04:48: 09:8d:55:0b:e0:d1:20:ca:34:4b:bd:87:48:e3:1f: 20:fd:61:4f:ce:f7:02:99:75:4d:cc:bd:ab:ee:21: d5:6c:1b:57:1d:b5:1f:d9:a7:61:1a:df:2c:6d:3d: 2c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:A4:36:78:7E:95:4C:82:DF:60:20:62:BD:20:DA:84:4D:06:F5:17 X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:68:3a:81:29:58:e3:eb:ec:fe:35:5d:02:34:1b:8b:ee:63: 6d:d5:77:4d:97:23:ee:13:51:87:00:59:05:22:c4:60:ad:98: 57:22:80:e2:f5:ee:61:51:d2:46:2f:7d:c6:99:88:70:5f:d7: 72:91:32:c8:51:af:26:d6:6d:47:ab:e5:6d:07:82:3c:cd:cd: dc:e8:e5:20:b1:11:28:26:be:fc:3b:9a:25:11:83:a2:7a:91: 88:e3:62:93:82:57:2b:a6:94:aa:54:c7:27:b6:00:95:b5:a0: a5:18:a9:7b:62:06:78:d1:ae:fd:32:0f:bd:3c:f6:63:11:d6: d3:8c:05:c3:12:74:ec:79:ca:b1:b6:22:1c:50:34:93:c7:ce: 1b:b1:94:1d:26:07:e4:07:26:42:f4:52:2f:23:3b:bc:d5:cc: 30:c7:6f:18:d6:26:39:18:e9:45:31:a1:4c:62:b1:fb:3b:ac: 4e:64:7e:e8:ba:0c:ca:00:9d:f0:56:46:d9:40:b4:a2:da:04: 8f:7d:28:b0:50:fb:b7:7c:be:a9:b7:42:0c:f1:71:8e:17:93: 91:20:fe:04:54:16:0e:89:23:55:2d:1b:0a:f1:58:3c:b2:b8: 8e:3d:50:0a:a4:b9:29:fc:00:9e:b6:e8:90:7c:a4:8d:b3:a5: 18:3d:fa:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdV2uYZ/AyoxWtl5lStD7baO2LTAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNjA0MTYwMDM2MThaFw0yNjA0MTkwMjU4MThaMDMxMTAvBgNV BAMTKDBGQTQzNjc4N0U5NTRDODJERjYwMjA2MkJEMjBEQTg0NEQwNkY1MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmE7b2yyzkzHxf2i49b1VS+0TP FmSvKcDCBKMMik1oimcIjDi1TiJG8c2pg6IJR61Uvgn6HiotTWYvVnX5XFQPSzZi ybLTrkTw4kGsSpVH5TBqCNkMLgWTvQg1/owtJqWrbqM1HQoRdspKwAmaLEtnNsYc Upn8FjPrEzbid9cdgcsrRBrEcFfeBEYET3fUNSCnDHCEwz1spk2l6uLfplf3s1qI WrT+Wpd8cE4uuYsvNljqnX4A6EFvIp8lwjqBSieYoWULpzFRe1K515mnVlUESAmN VQvg0SDKNEu9h0jjHyD9YU/O9wKZdU3MvavuIdVsG1cdtR/Zp2Ea3yxtPSzBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUD6Q2eH6VTILfYCBivSDahE0G9RcwHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDczMDRiODMtMzBhYS00YmJmLTlm ZDctMmZjZWFkYmYwMDMwLzAvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEy NEYzRTk2MkNBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFxoOoEpWOPr7P41XQI0G4vuY23Vd02XI+4T UYcAWQUixGCtmFcigOL17mFR0kYvfcaZiHBf13KRMshRrybWbUer5W0HgjzNzdzo 5SCxESgmvvw7miURg6J6kYjjYpOCVyumlKpUxye2AJW1oKUYqXtiBnjRrv0yD708 9mMR1tOMBcMSdOx5yrG2IhxQNJPHzhuxlB0mB+QHJkL0Ui8jO7zVzDDHbxjWJjkY 6UUxoUxisfs7rE5kfui6DMoAnfBWRtlAtKLaBI99KLBQ+7d8vqm3QgzxcY4Xk5Eg /gRUFg6JI1UtGwrxWDyyuI49UAqkuSn8AJ626JB8pI2zpRg9+nE= -----END CERTIFICATE-----Generated at Fri Apr 17 11:44:03 2026 by rpki-client