$ rpki-client -vvf repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft File: 528A271B82B6185862B06F250499140113F6FE20.mft (raw, json) Hash identifier: yC+SevWbVdbzVXDd/94oVaF9fuBiVvYUhFYcqmw8lDY= Subject key identifier: A8:50:9C:18:1D:5E:59:32:2B:D7:35:F4:C0:F8:0E:D3:F6:09:5D:54 Authority key identifier: 52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 Certificate issuer: /CN=528A271B82B6185862B06F250499140113F6FE20 Certificate serial: 22F96A5AC0777C1A5134A775ABA9851DD9EC192F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft Manifest number: 0277 Signing time: Fri 17 Apr 2026 19:41:08 +0000 Manifest this update: Fri 17 Apr 2026 19:36:08 +0000 Manifest next update: Tue 21 Apr 2026 03:20:08 +0000 Files and hashes: 1: 3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa (hash: KE1lMtasfHajvAT4hQBitWQJIMm3oss3cXTQ3t2jS64=) 2: 528A271B82B6185862B06F250499140113F6FE20.crl (hash: UMo1tJ5Gh/e/vBzpzbgNg3ct2l+DujBXnkJhMAaT4G8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 03:20:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f9:6a:5a:c0:77:7c:1a:51:34:a7:75:ab:a9:85:1d:d9:ec:19:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A271B82B6185862B06F250499140113F6FE20 Validity Not Before: Apr 17 19:36:08 2026 GMT Not After : Apr 21 03:20:08 2026 GMT Subject: CN=A8509C181D5E59322BD735F4C0F80ED3F6095D54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ed:58:39:86:2f:19:99:56:4a:28:b3:d7:ac: 88:80:83:6f:8a:64:56:1d:10:7f:de:9b:c8:b5:fd: 9c:9e:15:9f:ea:3a:77:2c:17:b3:c4:1b:79:67:fe: a5:dc:fc:09:e0:79:ba:93:c3:e4:34:f6:cb:b5:d1: f4:61:91:1f:34:4e:5c:3a:1f:63:c2:9a:97:ef:9d: a9:2d:01:a1:59:34:ca:6d:3d:31:67:84:49:f9:2d: b9:07:ff:77:7f:8c:87:0b:c3:aa:c9:04:14:3f:c8: ef:73:73:84:34:cc:2b:b6:00:50:aa:d5:59:8a:ea: 63:8d:d8:fa:68:f3:1b:04:e9:fb:e6:52:1e:ed:a0: 60:32:39:1b:0a:0e:23:93:1f:d4:95:4b:c8:d1:91: 4f:24:65:be:52:65:2d:7b:c4:3d:40:a0:0a:88:7a: d3:e7:dd:17:b2:77:32:13:25:06:37:6d:77:4e:58: f9:47:ec:01:0c:9b:01:77:b5:91:32:56:60:29:0c: 69:99:78:61:2c:7d:58:36:f5:90:42:a3:01:8e:d9: 76:9d:a7:64:3a:b3:2a:5d:0d:85:d5:e9:9f:07:df: 11:0c:de:04:70:20:de:96:46:c0:a6:06:39:c9:99: ce:4c:0f:48:a6:5c:f4:74:d5:6b:9e:a3:9b:a6:55: 2e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:50:9C:18:1D:5E:59:32:2B:D7:35:F4:C0:F8:0E:D3:F6:09:5D:54 X509v3 Authority Key Identifier: keyid:52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9d:fb:4f:e3:82:6b:9d:0a:b9:e5:d4:3a:b2:8b:17:d7:3a: 6e:e9:e7:b6:70:cb:16:8a:0e:9e:99:b9:86:0b:29:ca:83:06: 69:f2:f2:e4:e4:ce:0b:2f:72:2e:23:0f:fb:d0:82:8b:93:17: 2e:64:84:9d:d8:7f:6b:3f:62:b4:c2:50:93:3a:60:d3:5d:68: 75:ea:3f:59:70:94:ff:e1:39:5e:0a:ac:67:15:1e:2c:97:13: 8a:a9:b0:fa:3e:04:93:62:20:7a:d4:c5:2b:6e:97:1d:f1:06: 0c:e6:23:50:fc:51:67:f6:ae:02:90:62:c5:ca:e2:1d:b4:a5: 35:7e:bd:32:a1:be:54:a6:bb:b9:ef:96:c3:a8:cb:7b:55:ed: 7a:31:4a:22:8f:f7:f3:5f:57:d5:c9:2f:f2:57:4c:17:2e:dd: b1:3a:4b:a4:0d:33:0f:62:ac:b2:3d:86:2c:9d:1d:31:0b:db: 9d:f5:f9:12:c0:4c:53:8a:84:d8:6f:40:9d:88:19:03:b6:24: 94:ec:fb:29:12:fd:04:a1:1e:66:dc:b4:77:b6:ab:3a:b0:18: ad:ff:5b:77:1d:e9:a3:b8:ad:b0:54:0a:47:22:91:09:31:cb: 47:3e:18:0f:8c:bd:39:f4:d3:c4:f9:19:b5:1e:fc:85:f6:f9: 8e:a0:df:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIvlqWsB3fBpRNKd1q6mFHdnsGS8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDEx M0Y2RkUyMDAeFw0yNjA0MTcxOTM2MDhaFw0yNjA0MjEwMzIwMDhaMDMxMTAvBgNV BAMTKEE4NTA5QzE4MUQ1RTU5MzIyQkQ3MzVGNEMwRjgwRUQzRjYwOTVENTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv7Vg5hi8ZmVZKKLPXrIiAg2+K ZFYdEH/em8i1/ZyeFZ/qOncsF7PEG3ln/qXc/AngebqTw+Q09su10fRhkR80Tlw6 H2PCmpfvnaktAaFZNMptPTFnhEn5LbkH/3d/jIcLw6rJBBQ/yO9zc4Q0zCu2AFCq 1VmK6mON2Ppo8xsE6fvmUh7toGAyORsKDiOTH9SVS8jRkU8kZb5SZS17xD1AoAqI etPn3ReydzITJQY3bXdOWPlH7AEMmwF3tZEyVmApDGmZeGEsfVg29ZBCowGO2Xad p2Q6sypdDYXV6Z8H3xEM3gRwIN6WRsCmBjnJmc5MD0imXPR01Wueo5umVS4JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqFCcGB1eWTIr1zX0wPgO0/YJXVQwHwYDVR0j BBgwFoAUUoonG4K2GFhisG8lBJkUARP2/iAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWQzY2M4YS05NzM4LTQ1MWItYTc5OC03Yjc2YjA5NDBiNGIvMC81MjhBMjcxQjgy QjYxODU4NjJCMDZGMjUwNDk5MTQwMTEzRjZGRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDExM0Y2 RkUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGFkM2NjOGEtOTczOC00NTFiLWE3 OTgtN2I3NmIwOTQwYjRiLzAvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0 MDExM0Y2RkUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFyd+0/jgmudCrnl1DqyixfXOm7p57ZwyxaK Dp6ZuYYLKcqDBmny8uTkzgsvci4jD/vQgouTFy5khJ3Yf2s/YrTCUJM6YNNdaHXq P1lwlP/hOV4KrGcVHiyXE4qpsPo+BJNiIHrUxStulx3xBgzmI1D8UWf2rgKQYsXK 4h20pTV+vTKhvlSmu7nvlsOoy3tV7XoxSiKP9/NfV9XJL/JXTBcu3bE6S6QNMw9i rLI9hiydHTEL2531+RLATFOKhNhvQJ2IGQO2JJTs+ykS/QShHmbctHe2qzqwGK3/ W3cd6aO4rbBUCkcikQkxy0c+GA+MvTn008T5GbUe/IX2+Y6g328= -----END CERTIFICATE-----Generated at Fri Apr 17 22:21:57 2026 by rpki-client