$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: 3C3xUItHQtHrFfT7pbuBRHPDOGPiGEneMYl1LQG03FE= Subject key identifier: 1F:37:43:0E:9B:FE:60:F3:63:02:FB:DF:E4:C5:BD:6C:48:32:4D:52 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 611179F37F94C390A77B7BACB30042CA3103908A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 0566 Signing time: Thu 16 Apr 2026 08:11:05 +0000 Manifest this update: Thu 16 Apr 2026 08:06:05 +0000 Manifest next update: Sun 19 Apr 2026 15:54:05 +0000 Files and hashes: 1: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: 5CQgZezG8X6Tkce8GGCztEMcPDF8UqBXxC4f+vxvm/U=) 2: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: iUOhLSK71QoxS/WtDF2icd32d4ftR5T3bY2f32rlO8c=) 3: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: 43ScMK1xGJHkc43OYqRAxNw2Nmb59FaJi1G0FFtsD2M=) 4: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: MXBGQMZZnkxQYOXSQ7+/6q4lx3/IejyNoDpgGnlhGU4=) 5: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: Hl8MdE/LfLP9veWjqyALsJsbBZo/BnkTdZYuAxUUNAQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:11:79:f3:7f:94:c3:90:a7:7b:7b:ac:b3:00:42:ca:31:03:90:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Apr 16 08:06:05 2026 GMT Not After : Apr 19 15:54:05 2026 GMT Subject: CN=1F37430E9BFE60F36302FBDFE4C5BD6C48324D52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c1:57:49:97:9d:6a:89:b8:00:78:a5:43:f2: 84:e1:1a:dd:4a:11:e6:9c:8a:3d:9d:36:62:e6:58: 99:4e:3d:02:72:f7:85:83:96:45:14:ca:6d:24:bc: 08:ae:2f:27:3f:9a:af:64:75:f4:b4:45:ec:27:4b: 71:df:51:94:08:73:b4:8b:52:4a:f1:da:77:6b:08: 6d:4b:0d:26:a2:18:8f:1b:70:48:e1:83:0e:c7:06: 4d:82:6d:98:70:b6:09:97:ec:ab:86:0e:0a:46:bc: 1f:bb:a0:16:30:9e:67:3f:f0:13:d3:54:94:68:d5: 90:74:70:81:03:80:e4:30:da:ce:56:1d:f6:fc:44: bb:0c:01:d4:55:5c:33:60:23:3d:9c:bc:1e:a4:de: 70:4b:3a:7b:d0:08:51:fa:78:34:7e:7c:5e:ba:b8: 80:23:e3:28:1b:f8:af:c9:03:40:18:ea:49:56:e6: 8a:17:a1:72:d2:69:3b:b2:e3:e6:b2:78:19:ce:b2: b5:33:8d:5c:17:fe:db:c0:31:f2:ae:6f:77:11:36: 75:cc:27:9d:bb:5a:ca:e3:28:ab:ae:b2:2f:c1:01: 10:af:f7:d4:99:7c:04:db:4c:5c:79:27:a5:1f:8c: eb:87:12:f1:5f:8a:a4:52:cc:9f:3f:25:3f:86:e0: 29:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:37:43:0E:9B:FE:60:F3:63:02:FB:DF:E4:C5:BD:6C:48:32:4D:52 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:b9:a5:e6:46:31:97:c2:27:41:97:31:26:c7:2b:69:e4:87: a4:f0:29:a8:02:2f:94:78:64:0e:89:73:c0:b9:37:f6:81:0f: 6f:a1:67:6f:cc:58:46:17:52:0f:ab:e6:52:a3:74:e3:b4:1b: ab:5e:4d:55:50:3b:58:5d:13:a0:c8:ad:57:c5:4e:67:ec:c2: aa:e9:45:2a:4a:f4:9b:54:44:29:57:3e:41:6c:4c:5a:12:38: d0:7b:a2:31:6a:9c:cd:f5:2b:51:7e:74:63:52:c7:16:71:d1: df:69:c9:25:88:50:4b:75:c1:d3:d7:a0:65:00:cb:c6:fd:87: 46:f3:74:1d:04:18:11:79:ac:c6:09:a4:15:bc:74:d7:98:19: f4:02:d4:f8:22:68:8f:c9:b6:ed:70:4c:81:f1:54:31:84:d0: 5e:13:19:2e:b6:bd:0e:75:70:eb:34:91:27:55:3a:63:69:e5: de:c0:29:38:ee:6d:1f:a7:7e:64:cf:7d:d0:8f:9b:6c:45:d5: c6:8f:52:65:80:35:a7:86:51:29:ee:dc:3d:a1:30:d9:29:8e: fd:3b:2c:01:b9:09:d9:b9:d5:d9:51:78:b2:a8:e5:1e:f7:f2: 73:50:86:cc:b0:b8:0e:f7:8a:6e:7a:b3:e5:18:7d:7e:8c:01: 26:1c:df:d3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYRF583+Uw5Cne3usswBCyjEDkIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNjA0MTYwODA2MDVaFw0yNjA0MTkxNTU0MDVaMDMxMTAvBgNV BAMTKDFGMzc0MzBFOUJGRTYwRjM2MzAyRkJERkU0QzVCRDZDNDgzMjRENTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMwVdJl51qibgAeKVD8oThGt1K Eeacij2dNmLmWJlOPQJy94WDlkUUym0kvAiuLyc/mq9kdfS0RewnS3HfUZQIc7SL Ukrx2ndrCG1LDSaiGI8bcEjhgw7HBk2CbZhwtgmX7KuGDgpGvB+7oBYwnmc/8BPT VJRo1ZB0cIEDgOQw2s5WHfb8RLsMAdRVXDNgIz2cvB6k3nBLOnvQCFH6eDR+fF66 uIAj4ygb+K/JA0AY6klW5ooXoXLSaTuy4+ayeBnOsrUzjVwX/tvAMfKub3cRNnXM J527WsrjKKuusi/BARCv99SZfATbTFx5J6UfjOuHEvFfiqRSzJ8/JT+G4CkRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHzdDDpv+YPNjAvvf5MW9bEgyTVIwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAES5peZGMZfCJ0GXMSbHK2nkh6TwKagCL5R4 ZA6Jc8C5N/aBD2+hZ2/MWEYXUg+r5lKjdOO0G6teTVVQO1hdE6DIrVfFTmfswqrp RSpK9JtURClXPkFsTFoSONB7ojFqnM31K1F+dGNSxxZx0d9pySWIUEt1wdPXoGUA y8b9h0bzdB0EGBF5rMYJpBW8dNeYGfQC1PgiaI/Jtu1wTIHxVDGE0F4TGS62vQ51 cOs0kSdVOmNp5d7AKTjubR+nfmTPfdCPm2xF1caPUmWANaeGUSnu3D2hMNkpjv07 LAG5Cdm51dlReLKo5R738nNQhsywuA73im56s+UYfX6MASYc39M= -----END CERTIFICATE-----Generated at Sat Apr 18 00:01:44 2026 by rpki-client