$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft File: DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft (raw, json) Hash identifier: y0sa5myuKf9jmcr0Yn0oFN41XOWqnEvIaogDn9BuG6I= Subject key identifier: 12:89:4E:C2:B9:9F:49:53:98:88:33:D7:16:87:65:CE:B5:CD:BD:F0 Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 3A5FA42235E155A6670E74A65684E428E3C58394 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft Manifest number: 0122 Signing time: Sat 18 Apr 2026 10:12:04 +0000 Manifest this update: Sat 18 Apr 2026 10:07:04 +0000 Manifest next update: Tue 21 Apr 2026 12:34:04 +0000 Files and hashes: 1: 3130332e38312e3131312e302f32342d3234203d3e20313530393538.roa (hash: CSEyFnNOQdFjnYqiU1M0FD+ncVnXGi/YiRfm0U9hHlg=) 2: 3130332e38312e3131302e302f32342d3234203d3e20313530393538.roa (hash: l+woQG8NGXwscppt3BLv8pY3gFICf9F1+Mc2HYpLxj0=) 3: 3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa (hash: yOguTTJn/ofmmFRzNxB5PQD5Wur97XppCIr80azCbnE=) 4: DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl (hash: feg2ASyVTCf8F2ozLdHzjpWQQDUDtY/a0gUHITj51VE=) 5: 323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa (hash: BIDljILBNKsrSwzyZxnTSaIaANst4K6p4IMi96hI1tI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:34:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5f:a4:22:35:e1:55:a6:67:0e:74:a6:56:84:e4:28:e3:c5:83:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Apr 18 10:07:04 2026 GMT Not After : Apr 21 12:34:04 2026 GMT Subject: CN=12894EC2B99F4953988833D7168765CEB5CDBDF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:28:f9:f8:77:5b:2a:e2:34:8a:2b:8b:d4:48: 4a:b1:c6:46:a5:f7:c0:06:59:79:93:35:49:9a:bf: 16:01:24:bb:b7:65:96:c1:e3:f4:b9:f3:68:b4:e7: 15:27:1f:d5:ea:06:3b:0a:20:54:34:27:42:5a:c3: 4a:00:49:71:8a:15:83:11:e7:ea:e1:36:23:82:33: b2:f2:a2:2c:62:bc:09:ce:26:be:01:f3:37:c5:9a: 10:66:6e:c1:64:93:cc:19:5f:06:c0:50:f4:dc:0c: 04:bd:fa:b2:6d:aa:c7:61:75:7c:fc:28:c8:25:98: 32:0f:76:95:2c:34:07:e6:24:18:d4:88:13:38:47: 76:d2:05:e3:11:2d:90:6c:72:4a:13:44:0d:dc:a7: df:16:3e:89:48:69:4f:8c:45:69:bc:3f:a5:8e:3f: 87:91:17:0b:db:61:ec:05:de:ee:9e:37:4c:0c:88: 53:39:70:b6:76:13:ad:92:48:a9:62:cf:45:9c:1d: 22:cd:67:ff:f5:3e:0b:80:58:db:62:76:58:d4:db: 2c:b3:e0:a0:e7:f0:5e:d7:f4:63:0c:b4:93:8b:c6: 73:35:37:73:4c:dd:2f:d4:df:6f:87:68:49:ac:6c: cd:68:b5:ec:2e:b0:3c:4c:8f:e8:77:00:18:bf:47: b9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:89:4E:C2:B9:9F:49:53:98:88:33:D7:16:87:65:CE:B5:CD:BD:F0 X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:f6:23:35:47:c6:79:86:69:86:82:f1:90:55:39:95:03:f9: 1d:99:6f:fb:8e:c0:90:a4:1e:d5:47:c3:94:88:e2:5a:c6:4f: 7a:fd:48:da:b8:d1:e5:fa:50:6d:ae:d6:46:a1:bc:bc:6a:8a: 89:aa:69:54:41:b8:ab:a1:19:a3:de:33:31:1f:28:59:62:51: e1:4f:c8:72:ea:09:c8:56:cd:22:c1:f9:b5:d7:b4:58:ad:e0: d4:82:03:86:bd:14:c9:5e:9f:f0:79:34:d3:9f:a0:74:72:7c: a0:f2:98:0f:61:e9:82:14:70:12:75:a9:2d:4c:75:86:56:eb: e8:aa:5c:00:fa:26:7a:33:e1:70:85:f5:e0:f6:ae:cb:d3:ef: 4e:2f:e1:05:80:bb:10:5f:7f:8c:1b:d4:15:79:6f:59:f4:f5: 4e:6d:db:8d:a0:ff:a9:94:da:e4:53:6c:72:b4:14:8c:ea:c5: 5d:2f:30:1b:ed:2e:44:da:57:4f:11:4c:70:a9:df:29:dd:0c: 9a:eb:96:81:b3:68:f3:51:ca:10:45:2c:d8:16:a5:8b:e8:ec: 53:ea:cd:42:a5:eb:10:06:65:09:7f:19:79:f4:79:09:aa:0e: cd:b7:ab:b1:7b:cf:ab:3b:97:6c:9b:69:6f:2b:ce:61:a7:1a: 04:1e:b2:a7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOl+kIjXhVaZnDnSmVoTkKOPFg5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNjA0MTgxMDA3MDRaFw0yNjA0MjExMjM0MDRaMDMxMTAvBgNV BAMTKDEyODk0RUMyQjk5RjQ5NTM5ODg4MzNENzE2ODc2NUNFQjVDREJERjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkKPn4d1sq4jSKK4vUSEqxxkal 98AGWXmTNUmavxYBJLu3ZZbB4/S582i05xUnH9XqBjsKIFQ0J0Jaw0oASXGKFYMR 5+rhNiOCM7LyoixivAnOJr4B8zfFmhBmbsFkk8wZXwbAUPTcDAS9+rJtqsdhdXz8 KMglmDIPdpUsNAfmJBjUiBM4R3bSBeMRLZBsckoTRA3cp98WPolIaU+MRWm8P6WO P4eRFwvbYewF3u6eN0wMiFM5cLZ2E62SSKliz0WcHSLNZ//1PguAWNtidljU2yyz 4KDn8F7X9GMMtJOLxnM1N3NM3S/U32+HaEmsbM1otewusDxMj+h3ABi/R7mZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEolOwrmfSVOYiDPXFodlzrXNvfAwHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGYwYmNkYzMtMGZlYS00NzQ3LTk5 MDctNjU2NDg2YmFlOGRhLzAvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlG MzYwRDJDNDYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACz2IzVHxnmGaYaC8ZBVOZUD+R2Zb/uOwJCk HtVHw5SI4lrGT3r9SNq40eX6UG2u1kahvLxqiomqaVRBuKuhGaPeMzEfKFliUeFP yHLqCchWzSLB+bXXtFit4NSCA4a9FMlen/B5NNOfoHRyfKDymA9h6YIUcBJ1qS1M dYZW6+iqXAD6Jnoz4XCF9eD2rsvT704v4QWAuxBff4wb1BV5b1n09U5t242g/6mU 2uRTbHK0FIzqxV0vMBvtLkTaV08RTHCp3yndDJrrloGzaPNRyhBFLNgWpYvo7FPq zUKl6xAGZQl/GXn0eQmqDs23q7F7z6s7l2ybaW8rzmGnGgQesqc= -----END CERTIFICATE-----Generated at Sun Apr 19 11:37:04 2026 by rpki-client