$ rpki-client -vvf repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft File: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft (raw, json) Hash identifier: MPQLZcoluaPnqlPozz56JIWt/nuGpwzIXcL9XvLeUmw= Subject key identifier: 70:91:13:81:F1:83:7A:A8:55:B7:67:CF:89:E3:3C:30:26:2D:7A:02 Authority key identifier: 2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F Certificate issuer: /CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Certificate serial: 78E2C53524C0929F0A59C6BB9D5E05C2BD1FBF99 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft Manifest number: 0154 Signing time: Thu 16 Apr 2026 00:01:00 +0000 Manifest this update: Wed 15 Apr 2026 23:56:00 +0000 Manifest next update: Sun 19 Apr 2026 08:53:00 +0000 Files and hashes: 1: 3130332e3135362e3131302e302f32342d3234203d3e20313431303839.roa (hash: lTXXqDvVb99/4yIHlkQaywB5MQKhKyYSxakzkjkU+yg=) 2: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl (hash: eo9D43Pj2fWNefSBgdwI2L0dWvjZJ9OSkc1HR9v7510=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 08:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:e2:c5:35:24:c0:92:9f:0a:59:c6:bb:9d:5e:05:c2:bd:1f:bf:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Validity Not Before: Apr 15 23:56:00 2026 GMT Not After : Apr 19 08:53:00 2026 GMT Subject: CN=70911381F1837AA855B767CF89E33C30262D7A02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5f:14:8c:41:72:c9:3f:b6:18:1f:a9:2e:79: 85:40:92:ce:2e:f0:65:2a:03:2a:b1:3a:11:63:d5: cc:50:d8:9c:ac:d0:4a:88:bf:04:24:f6:53:73:d2: 56:81:83:25:d5:8f:6b:91:64:fe:38:2a:b8:51:6f: 4d:1a:81:e0:bc:da:3a:54:49:dc:82:68:8b:21:98: 97:d4:b8:38:9e:4f:63:85:33:e0:e9:4e:d6:33:81: 0d:68:db:72:5b:91:10:27:ca:50:af:0e:26:0c:56: f4:85:16:0c:24:19:2c:4e:c1:14:36:30:2f:c5:81: 7e:f6:f4:cf:b8:3a:3c:39:30:10:60:d4:31:70:1d: 45:d7:12:29:07:b4:6e:30:5d:dd:4b:6f:3f:62:2b: 4c:c3:cd:15:0b:8c:d2:7a:55:dc:3b:d3:9f:92:c8: 72:93:1b:26:17:50:27:94:0d:a2:88:67:07:88:8f: 3b:e3:b0:4a:d2:19:5c:cd:82:8d:ed:91:b5:3a:6a: 0f:93:cb:07:e8:c4:bb:a7:41:31:08:47:1a:63:ec: 0e:6d:bd:8c:38:3c:32:fd:2e:79:6b:5b:c8:4b:2d: 07:8f:e1:fa:66:a5:05:73:92:ac:c6:ac:51:89:16: 0a:c8:d0:4d:81:1a:2a:5f:0c:08:ff:f7:23:27:57: 3a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:91:13:81:F1:83:7A:A8:55:B7:67:CF:89:E3:3C:30:26:2D:7A:02 X509v3 Authority Key Identifier: keyid:2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:0b:76:51:18:ef:16:6b:f0:a0:36:73:47:2b:b9:30:cf:4b: 1e:8b:8a:dd:95:5b:b6:25:db:50:97:cb:30:f6:43:1a:0b:93: 3b:ca:56:fd:f9:ba:97:4d:e8:da:4a:00:63:f1:f9:28:28:97: 2d:36:4d:e1:d0:69:ac:72:90:32:2b:af:bd:1a:86:bf:1e:b2: 0c:a6:af:7f:86:a8:01:e9:4b:11:5c:6e:ce:1c:e9:5e:b5:ba: 9e:7f:63:20:b0:a6:86:77:ac:53:4a:65:2b:c5:58:01:38:9b: e9:14:fa:34:91:74:22:94:46:9c:a4:56:63:26:54:da:55:df: 1d:9d:7b:75:56:ff:19:ae:00:03:03:26:04:05:bf:d1:de:f5: 57:41:f7:fc:33:7d:90:a3:66:d6:66:07:f6:7a:9c:53:78:29: d1:f1:5d:88:ba:74:88:49:c5:dc:ad:8f:71:e9:b4:77:8f:dc: 60:61:66:04:13:9c:99:ba:47:33:bc:6d:20:fe:58:be:2f:c8: 8c:00:be:a0:47:8c:16:78:d9:83:76:a6:1c:ac:0f:06:1b:0b: 73:62:d4:e6:8f:e5:8e:c1:fd:b5:52:92:2f:32:ac:80:5d:00: 1e:40:af:94:a8:13:03:41:22:3b:33:ad:e2:bb:15:2c:26:75: bf:54:af:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeOLFNSTAkp8KWca7nV4Fwr0fv5kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0 RTk0RjEyRjAeFw0yNjA0MTUyMzU2MDBaFw0yNjA0MTkwODUzMDBaMDMxMTAvBgNV BAMTKDcwOTExMzgxRjE4MzdBQTg1NUI3NjdDRjg5RTMzQzMwMjYyRDdBMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEXxSMQXLJP7YYH6kueYVAks4u 8GUqAyqxOhFj1cxQ2Jys0EqIvwQk9lNz0laBgyXVj2uRZP44KrhRb00ageC82jpU SdyCaIshmJfUuDieT2OFM+DpTtYzgQ1o23JbkRAnylCvDiYMVvSFFgwkGSxOwRQ2 MC/FgX729M+4Ojw5MBBg1DFwHUXXEikHtG4wXd1Lbz9iK0zDzRULjNJ6Vdw705+S yHKTGyYXUCeUDaKIZweIjzvjsErSGVzNgo3tkbU6ag+TywfoxLunQTEIRxpj7A5t vYw4PDL9LnlrW8hLLQeP4fpmpQVzkqzGrFGJFgrI0E2BGipfDAj/9yMnVzqvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcJETgfGDeqhVt2fPieM8MCYtegIwHwYDVR0j BBgwFoAULVF9wCTO/Pr4DPf9OSJGiU6U8S8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDMzYTFjNi0wZjcwLTRjOTgtOTZiMC1jYWI1ODEyNmFiOTQvMC8yRDUxN0RDMDI0 Q0VGQ0ZBRjgwQ0Y3RkQzOTIyNDY4OTRFOTRGMTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0RTk0 RjEyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQzM2ExYzYtMGY3MC00Yzk4LTk2 YjAtY2FiNTgxMjZhYjk0LzAvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2 ODk0RTk0RjEyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACgLdlEY7xZr8KA2c0cruTDPSx6Lit2VW7Yl 21CXyzD2QxoLkzvKVv35updN6NpKAGPx+Sgoly02TeHQaaxykDIrr70ahr8esgym r3+GqAHpSxFcbs4c6V61up5/YyCwpoZ3rFNKZSvFWAE4m+kU+jSRdCKURpykVmMm VNpV3x2de3VW/xmuAAMDJgQFv9He9VdB9/wzfZCjZtZmB/Z6nFN4KdHxXYi6dIhJ xdytj3HptHeP3GBhZgQTnJm6RzO8bSD+WL4vyIwAvqBHjBZ42YN2physDwYbC3Ni 1OaP5Y7B/bVSki8yrIBdAB5Ar5SoEwNBIjszreK7FSwmdb9Ur7k= -----END CERTIFICATE-----Generated at Fri Apr 17 12:41:53 2026 by rpki-client