$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: +TlFjZ7/8W4hGsam+paBxAxtmGpwcmVVEkCLXKs97Fk= Subject key identifier: 7F:5E:1E:D8:C2:F4:ED:F3:3D:9C:BE:86:AB:DB:E0:AF:BA:3F:A8:3E Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 1874D9C44B0E3E7A76914E50D8E686C80AFAC560 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 0203 Signing time: Thu 16 Apr 2026 19:02:37 +0000 Manifest this update: Thu 16 Apr 2026 18:57:37 +0000 Manifest next update: Sun 19 Apr 2026 23:41:37 +0000 Files and hashes: 1: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: dNAaPaM2B/NyCDxuHHJGQf8w1qMwFwtTXSbo1MZYpfI=) 2: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: OMSstG+v7qZjFWCJ4NvuRl4cKaVI80js4sry1SoLSN0=) 3: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: 96CJnoxRV4HGvhsn3PFsL8qIqJQvuSs5NCO8lzcHZm0=) 4: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: U3QvM9qWK+TJhBGDojanDKA8oPNCYIB5ZhNuA/z08gw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 23:41:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:74:d9:c4:4b:0e:3e:7a:76:91:4e:50:d8:e6:86:c8:0a:fa:c5:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Apr 16 18:57:37 2026 GMT Not After : Apr 19 23:41:37 2026 GMT Subject: CN=7F5E1ED8C2F4EDF33D9CBE86ABDBE0AFBA3FA83E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f9:ae:79:72:58:86:77:c3:93:18:e6:ed:dd: 75:8a:55:bd:ec:12:6f:ea:4b:1f:85:bf:f8:5e:c2: d8:95:f3:50:63:79:ef:1c:a8:74:95:99:e5:60:b1: b2:42:a5:f5:1e:8e:d8:3b:6d:0b:ab:fe:26:ee:15: de:45:e2:cc:3c:26:d2:4a:57:7b:41:09:f2:8b:4e: b1:33:de:2b:3c:69:92:2b:c0:de:4d:77:5f:53:94: b1:8e:ae:1c:e3:05:45:74:ca:01:41:dc:b2:b3:4c: b6:45:4e:77:cb:e1:2a:82:72:80:0a:39:e6:23:95: 2a:36:e4:2b:73:50:2f:a0:0b:ac:69:5e:84:a9:57: de:71:08:3d:91:35:0f:6c:70:e5:f7:30:bc:b7:d9: 4e:45:25:60:8b:d8:cd:20:e8:de:0a:66:4f:05:23: 7a:f4:87:08:65:5e:4c:4e:cd:48:4a:7f:92:f3:96: 7b:b0:10:02:39:e6:1d:fa:b5:b1:d0:b5:fc:6e:6c: cc:d6:13:5c:67:4b:c2:4f:e2:18:2d:83:63:90:0c: 5a:64:03:c8:78:75:4f:83:e7:df:56:fd:31:5c:44: b1:1b:84:b7:5e:4f:aa:6a:2f:a2:b1:84:9e:ab:e3: 59:54:d8:38:ba:1b:1e:85:3f:b0:11:c2:5e:d0:65: e0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:5E:1E:D8:C2:F4:ED:F3:3D:9C:BE:86:AB:DB:E0:AF:BA:3F:A8:3E X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:01:d2:31:f6:92:26:2b:6f:1f:42:ae:58:b1:7a:35:11:59: 31:5f:64:e4:f1:fc:b2:02:56:d9:8a:40:01:02:93:16:41:b0: 1d:1c:51:c7:b3:1e:bb:be:83:23:a3:d5:d7:b4:7d:c5:e8:75: 3c:ff:92:1b:94:cb:07:85:51:91:b3:3e:cf:8e:4a:cb:77:f7: db:c3:63:07:48:3c:cd:dd:4e:be:16:8d:9c:55:9e:48:d3:ba: 25:19:57:93:26:81:62:b2:cb:fd:c5:c3:81:02:9f:a7:49:b5: ee:66:42:ff:46:00:bf:a7:a1:cc:53:31:c9:f1:3f:47:41:08: 71:e0:7d:a1:29:0e:e9:ff:d7:98:ab:4e:72:e2:40:d8:f2:a2: e6:2a:1e:dd:f2:51:65:d0:8d:0f:a3:e4:e2:b4:6c:12:a2:73: 45:f1:a6:2e:06:f7:97:ad:95:ec:17:03:28:e7:a1:8e:01:08: 61:4a:22:61:b7:67:30:77:46:55:94:fa:4f:a7:64:dc:c2:69: 73:d7:e0:db:05:a5:af:3b:b3:0a:c5:7f:8a:50:21:2e:d6:88: 53:a1:4e:c0:f0:44:47:0f:dc:44:f1:34:8b:a4:e0:a6:ff:71: c0:a3:c2:18:4f:cd:54:8c:e7:4a:04:99:98:e0:27:0b:a7:0e: 60:a3:d3:84 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGHTZxEsOPnp2kU5Q2OaGyAr6xWAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNjA0MTYxODU3MzdaFw0yNjA0MTkyMzQxMzdaMDMxMTAvBgNV BAMTKDdGNUUxRUQ4QzJGNEVERjMzRDlDQkU4NkFCREJFMEFGQkEzRkE4M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI+a55cliGd8OTGObt3XWKVb3s Em/qSx+Fv/hewtiV81Bjee8cqHSVmeVgsbJCpfUejtg7bQur/ibuFd5F4sw8JtJK V3tBCfKLTrEz3is8aZIrwN5Nd19TlLGOrhzjBUV0ygFB3LKzTLZFTnfL4SqCcoAK OeYjlSo25CtzUC+gC6xpXoSpV95xCD2RNQ9scOX3MLy32U5FJWCL2M0g6N4KZk8F I3r0hwhlXkxOzUhKf5LzlnuwEAI55h36tbHQtfxubMzWE1xnS8JP4hgtg2OQDFpk A8h4dU+D599W/TFcRLEbhLdeT6pqL6KxhJ6r41lU2Di6Gx6FP7ARwl7QZeAbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf14e2ML07fM9nL6Gq9vgr7o/qD4wHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACsB0jH2kiYrbx9CrlixejURWTFfZOTx/LIC VtmKQAECkxZBsB0cUcezHru+gyOj1de0fcXodTz/khuUyweFUZGzPs+OSst399vD YwdIPM3dTr4WjZxVnkjTuiUZV5MmgWKyy/3Fw4ECn6dJte5mQv9GAL+nocxTMcnx P0dBCHHgfaEpDun/15irTnLiQNjyouYqHt3yUWXQjQ+j5OK0bBKic0Xxpi4G95et lewXAyjnoY4BCGFKImG3ZzB3RlWU+k+nZNzCaXPX4NsFpa87swrFf4pQIS7WiFOh TsDwREcP3ETxNIuk4Kb/ccCjwhhPzVSM50oEmZjgJwunDmCj04Q= -----END CERTIFICATE-----Generated at Fri Apr 17 12:04:38 2026 by rpki-client