$ rpki-client -vvf repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft File: D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft (raw, json) Hash identifier: ldQtuEDE1uwOdD9iFLKC2UsjyinvlEnOwrXhGfN0XXE= Subject key identifier: 68:30:2B:55:E5:B4:45:82:3F:8F:BB:B0:6F:B5:51:2A:1B:95:AF:7D Authority key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Certificate issuer: /CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Certificate serial: 2B03B54A8DA5ED791CDAA9AAFEB7547075E91120 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft Manifest number: 0256 Signing time: Fri 17 Apr 2026 22:51:17 +0000 Manifest this update: Fri 17 Apr 2026 22:46:17 +0000 Manifest next update: Tue 21 Apr 2026 08:31:17 +0000 Files and hashes: 1: D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl (hash: 4/EAm8c0ZCCWlLeqqfGSqM1bwcHOHo6pmxdGqZqsTZg=) 2: 3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa (hash: qzLGHfcWhuFFpcCWkM64jiLAbtuonm9KkM2Hh0roSHc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 04:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:03:b5:4a:8d:a5:ed:79:1c:da:a9:aa:fe:b7:54:70:75:e9:11:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Validity Not Before: Apr 17 22:46:17 2026 GMT Not After : Apr 21 08:31:17 2026 GMT Subject: CN=68302B55E5B445823F8FBBB06FB5512A1B95AF7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:54:2d:0a:5b:2b:c8:b0:4c:c5:8e:13:10:4b: bf:d4:03:14:39:17:34:bd:bc:7e:88:b9:d6:f4:03: d7:43:2a:91:62:fe:e5:0f:1c:4c:f4:0f:66:19:93: 35:e3:d0:ce:3c:97:80:84:5e:29:60:2c:17:b3:a2: 44:98:21:88:23:14:45:39:51:dd:73:8e:44:7b:97: 48:22:a1:da:6c:2c:94:11:5b:be:20:96:df:11:63: 50:7e:86:43:e3:a9:2b:3c:5c:af:7c:04:85:a0:9b: 3c:f2:2d:8a:17:50:72:74:89:af:dc:ef:7d:87:69: b8:2c:7c:fa:94:b0:9e:44:b9:a3:12:13:30:bf:1e: 5d:10:91:03:eb:38:df:33:93:b2:81:b3:46:84:a7: 42:6d:a4:04:e2:f0:a3:cc:20:15:f0:2b:f9:d3:bf: 5d:db:d9:00:ba:ad:64:b2:9d:d4:37:5a:09:8d:1f: 9b:39:94:c0:ed:35:58:82:c8:9d:9b:4b:c8:23:0c: 49:f9:e1:25:9d:bc:29:d3:78:35:0e:0d:61:a9:f9: 57:e4:5f:f6:05:49:11:a8:ea:b7:43:50:fc:00:43: 6c:4f:9e:99:ce:0f:99:ec:1e:e2:b5:74:29:ea:47: fa:ed:56:3b:4f:30:ea:f7:d1:3c:90:7e:37:f5:88: 0d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:30:2B:55:E5:B4:45:82:3F:8F:BB:B0:6F:B5:51:2A:1B:95:AF:7D X509v3 Authority Key Identifier: keyid:D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:f5:c3:d8:5d:d5:09:5b:bd:85:e0:98:b8:0c:9a:bc:de:f4: da:11:91:f0:c5:76:2a:ad:2a:c1:14:bf:20:8a:55:23:e7:c9: e4:1e:38:ae:1e:0f:27:62:c8:ff:44:e3:f8:b7:71:39:75:ca: db:4a:02:01:d5:96:1e:d1:19:de:e7:5f:56:00:c9:fd:55:fd: 02:0b:86:6c:22:ef:d4:34:f9:aa:81:08:01:1e:5e:68:6c:4b: 33:7b:62:79:c0:e8:54:89:30:ec:61:64:c8:3c:77:2a:25:98: dc:3f:da:5d:40:3b:ae:e6:4e:7f:90:d4:3b:e1:16:0e:29:24: 78:47:fc:e2:80:9c:c2:fb:96:73:db:e8:da:1d:4c:6d:f1:c0: 03:24:ab:f3:02:96:bf:5f:87:cb:6c:37:53:6b:8f:5c:7b:8d: d7:f4:0b:e3:d7:37:9c:50:cd:93:d2:c8:07:1c:80:92:68:30: 2f:32:0a:a7:f7:e9:60:b8:9a:e8:4e:9e:56:13:01:6d:6e:ce: 46:77:92:cd:84:3a:a4:3d:ab:5b:88:a9:e0:13:19:98:5a:27: 53:27:ed:da:99:22:4b:af:77:50:1d:79:b8:45:79:8e:21:b8: 9a:ca:6b:9f:3b:87:ee:7d:23:74:03:ec:79:63:da:96:92:39: de:15:19:d2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKwO1So2l7Xkc2qmq/rdUcHXpESAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAx RUMyNkREMTAeFw0yNjA0MTcyMjQ2MTdaFw0yNjA0MjEwODMxMTdaMDMxMTAvBgNV BAMTKDY4MzAyQjU1RTVCNDQ1ODIzRjhGQkJCMDZGQjU1MTJBMUI5NUFGN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzVC0KWyvIsEzFjhMQS7/UAxQ5 FzS9vH6Iudb0A9dDKpFi/uUPHEz0D2YZkzXj0M48l4CEXilgLBezokSYIYgjFEU5 Ud1zjkR7l0giodpsLJQRW74glt8RY1B+hkPjqSs8XK98BIWgmzzyLYoXUHJ0ia/c 732HabgsfPqUsJ5EuaMSEzC/Hl0QkQPrON8zk7KBs0aEp0JtpATi8KPMIBXwK/nT v13b2QC6rWSyndQ3WgmNH5s5lMDtNViCyJ2bS8gjDEn54SWdvCnTeDUODWGp+Vfk X/YFSRGo6rdDUPwAQ2xPnpnOD5nsHuK1dCnqR/rtVjtPMOr30TyQfjf1iA3zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaDArVeW0RYI/j7uwb7VRKhuVr30wHwYDVR0j BBgwFoAU1BccTAaXWkMJ/Fny00DWgB7CbdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMC9ENDE3MUM0QzA2 OTc1QTQzMDlGQzU5RjJEMzQwRDY4MDFFQzI2REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAxRUMy NkREMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDc2ODBkMGQtZTI0MC00YWFmLWJj MjMtMjgyMzU5MzczMjg5LzAvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2 ODAxRUMyNkREMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAT1w9hd1QlbvYXgmLgMmrze9NoRkfDFdiqt KsEUvyCKVSPnyeQeOK4eDydiyP9E4/i3cTl1yttKAgHVlh7RGd7nX1YAyf1V/QIL hmwi79Q0+aqBCAEeXmhsSzN7YnnA6FSJMOxhZMg8dyolmNw/2l1AO67mTn+Q1Dvh Fg4pJHhH/OKAnML7lnPb6NodTG3xwAMkq/MClr9fh8tsN1Nrj1x7jdf0C+PXN5xQ zZPSyAccgJJoMC8yCqf36WC4muhOnlYTAW1uzkZ3ks2EOqQ9q1uIqeATGZhaJ1Mn 7dqZIkuvd1AdebhFeY4huJrKa587h+59I3QD7Hlj2paSOd4VGdI= -----END CERTIFICATE-----Generated at Sat Apr 18 01:30:14 2026 by rpki-client