$ rpki-client -vvf repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft File: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft (raw, json) Hash identifier: UCijzZ6T3WaP7uZkHgBOypxcF2p3Sxwf3JXqkI65HNA= Subject key identifier: D1:89:94:25:EA:26:A4:F8:11:40:64:9E:16:A1:E6:9E:EF:95:7E:53 Authority key identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A Certificate issuer: /CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Certificate serial: 14238DEA2ACF61CB7A570FAD6AEF1105AD7489E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft Manifest number: F6 Signing time: Fri 17 Apr 2026 09:20:56 +0000 Manifest this update: Fri 17 Apr 2026 09:15:56 +0000 Manifest next update: Mon 20 Apr 2026 12:45:56 +0000 Files and hashes: 1: 3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa (hash: pR6eogbZvQzPFnI0kZLcItGmRoYFBBreikW5pxdST7Q=) 2: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl (hash: BCTyi1l74gcbrKZ7RxMfHBKObJyAcrymNi8ayJTg1S4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 20:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:23:8d:ea:2a:cf:61:cb:7a:57:0f:ad:6a:ef:11:05:ad:74:89:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Validity Not Before: Apr 17 09:15:56 2026 GMT Not After : Apr 20 12:45:56 2026 GMT Subject: CN=D1899425EA26A4F81140649E16A1E69EEF957E53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:17:d7:ed:61:72:8c:65:a3:d1:21:30:ab:bb: e1:19:0b:55:d2:5f:9c:72:04:62:1f:ef:25:88:3c: e7:42:87:07:06:67:39:eb:71:9e:11:c1:96:6a:8e: 71:87:72:50:1f:f6:5d:80:5d:8e:95:2a:a2:98:6d: d0:32:f2:fa:c9:41:8f:57:ba:7d:d9:d2:9b:89:aa: 6a:33:59:2c:de:e0:76:2b:d7:bd:ad:92:20:7d:41: 49:57:b0:e7:dd:1a:fa:fa:2c:59:bd:2e:ad:25:2a: 18:47:d6:74:cd:4f:e7:e7:70:fb:8e:d8:4d:68:7a: c8:92:e2:a2:db:e2:6b:2f:ad:5d:2d:95:34:fc:a3: 0a:30:96:59:67:a7:8f:85:05:ed:04:27:aa:1a:2e: dc:88:dd:12:79:d6:fe:2a:cc:45:0f:ce:2f:a2:cb: 8d:9a:1c:4a:26:67:f4:9b:7c:5d:32:63:7c:7e:95: 31:80:26:26:67:64:43:46:56:f7:c0:ec:0a:24:b0: 11:05:6d:74:03:3a:9c:b2:d3:b4:c8:88:3c:38:68: f7:67:d8:59:c7:0a:5a:6d:d1:25:16:30:bc:49:25: 4e:16:ec:5a:80:97:d6:52:ea:bc:96:7b:25:18:17: dd:33:d7:c3:75:7a:61:03:4f:53:42:7c:f3:3c:6e: 16:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:89:94:25:EA:26:A4:F8:11:40:64:9E:16:A1:E6:9E:EF:95:7E:53 X509v3 Authority Key Identifier: keyid:52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:17:6a:2f:36:91:60:1b:73:fa:cf:bf:02:d6:de:8d:00:27: 77:d8:b5:64:42:74:67:7b:48:ab:39:cf:27:be:ea:cf:75:cb: 44:65:8f:a6:2c:42:e7:34:3a:b5:04:3a:8f:e3:00:79:90:d5: 02:57:95:b4:89:a0:de:dd:b0:78:22:01:57:5b:e5:3e:42:5c: 88:d3:16:dc:9e:b7:d6:75:90:c2:85:d9:e7:52:99:6a:5a:30: f4:d2:5e:8f:79:47:b9:b8:68:e8:63:83:8e:20:ce:c0:e7:ec: b3:67:ef:77:58:be:5e:e7:e5:85:b0:22:63:3b:81:52:08:94: 32:62:30:26:95:be:d0:51:83:e8:17:2f:9c:da:14:ae:61:0f: a8:eb:72:33:fa:a5:57:d4:18:72:2a:1e:ec:e2:77:ba:94:14: b8:1b:23:ee:fd:14:2e:15:5a:a6:14:09:8b:03:6e:64:03:f5: 3f:0a:2e:af:d0:e2:13:7b:86:3d:6f:bd:b3:fd:e5:b1:37:74: 5c:11:d2:c7:d4:4b:c4:3e:79:d0:bb:c1:8f:2c:eb:8a:55:f0: 9a:9b:68:e7:32:0f:60:d5:54:d9:86:db:d2:f0:1a:75:49:7e: c8:49:9c:d4:cb:11:72:ea:f3:9a:82:67:40:37:42:e2:06:86: 2b:73:4c:1c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFCON6irPYct6Vw+tau8RBa10ieQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0Iz OUU1Q0YzQTAeFw0yNjA0MTcwOTE1NTZaFw0yNjA0MjAxMjQ1NTZaMDMxMTAvBgNV BAMTKEQxODk5NDI1RUEyNkE0RjgxMTQwNjQ5RTE2QTFFNjlFRUY5NTdFNTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGF9ftYXKMZaPRITCru+EZC1XS X5xyBGIf7yWIPOdChwcGZznrcZ4RwZZqjnGHclAf9l2AXY6VKqKYbdAy8vrJQY9X un3Z0puJqmozWSze4HYr172tkiB9QUlXsOfdGvr6LFm9Lq0lKhhH1nTNT+fncPuO 2E1oesiS4qLb4msvrV0tlTT8owowlllnp4+FBe0EJ6oaLtyI3RJ51v4qzEUPzi+i y42aHEomZ/SbfF0yY3x+lTGAJiZnZENGVvfA7AoksBEFbXQDOpyy07TIiDw4aPdn 2FnHClpt0SUWMLxJJU4W7FqAl9ZS6ryWeyUYF90z18N1emEDT1NCfPM8bhZzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0YmUJeompPgRQGSeFqHmnu+VflMwHwYDVR0j BBgwFoAUUrnB5fC680XEDy55ZpxjyznlzzowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGE4NTkwZS1lNGRjLTQ0MTYtYTZmYS1mYjc4ZDZkZDEyZDcvMC81MkI5QzFFNUYw QkFGMzQ1QzQwRjJFNzk2NjlDNjNDQjM5RTVDRjNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0IzOUU1 Q0YzQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTBhODU5MGUtZTRkYy00NDE2LWE2 ZmEtZmI3OGQ2ZGQxMmQ3LzAvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYz Q0IzOUU1Q0YzQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFsXai82kWAbc/rPvwLW3o0AJ3fYtWRCdGd7 SKs5zye+6s91y0Rlj6YsQuc0OrUEOo/jAHmQ1QJXlbSJoN7dsHgiAVdb5T5CXIjT Ftyet9Z1kMKF2edSmWpaMPTSXo95R7m4aOhjg44gzsDn7LNn73dYvl7n5YWwImM7 gVIIlDJiMCaVvtBRg+gXL5zaFK5hD6jrcjP6pVfUGHIqHuzid7qUFLgbI+79FC4V WqYUCYsDbmQD9T8KLq/Q4hN7hj1vvbP95bE3dFwR0sfUS8Q+edC7wY8s64pV8Jqb aOcyD2DVVNmG29LwGnVJfshJnNTLEXLq85qCZ0A3QuIGhitzTBw= -----END CERTIFICATE-----Generated at Fri Apr 17 11:12:45 2026 by rpki-client