$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft File: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft (raw, json) Hash identifier: XNefmsbI6rcI5diMJncWGXXs3pHvFeRUNEk/dKjk784= Subject key identifier: 79:CA:32:07:E4:29:BD:C5:1E:0B:9F:99:0C:A4:F6:FF:5C:CA:6F:75 Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 34EED28928F49BDBB9F5CDFD4F5C0C3066B9CFBD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft Manifest number: 0524 Signing time: Sat 18 Apr 2026 16:41:59 +0000 Manifest this update: Sat 18 Apr 2026 16:36:59 +0000 Manifest next update: Wed 22 Apr 2026 02:33:59 +0000 Files and hashes: 1: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (hash: voGeHKK4ikA3uaKs2J+WeJLtpIfTnr3JdLSLAJpRJmc=) 2: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (hash: VKvXvb3BP6384nLUH1LdjT/mbF098hu6bIg7H4DeDLk=) 3: 3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa (hash: 1I55HZV9ASBX91G1gmKkN8XsoZ52BjLH6TscAGFfb1w=) 4: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl (hash: NQW1l/Lb8SGAdG1fXTcA4kKnYCjzhV3NazOa5x9KZIs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 02:33:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:ee:d2:89:28:f4:9b:db:b9:f5:cd:fd:4f:5c:0c:30:66:b9:cf:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Apr 18 16:36:59 2026 GMT Not After : Apr 22 02:33:59 2026 GMT Subject: CN=79CA3207E429BDC51E0B9F990CA4F6FF5CCA6F75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d9:3e:b1:5b:56:de:de:f7:e2:3f:d6:82:20: bc:55:f3:f4:4c:95:03:f7:b2:5f:0c:1b:f1:85:60: 8d:d3:63:6d:08:87:e9:55:c2:32:6c:bb:d1:84:92: f2:08:f4:01:2e:29:56:af:a3:d1:98:a7:bd:63:06: 99:4c:7b:9f:44:5e:29:31:95:36:30:e3:73:32:7a: d7:fe:dd:03:72:c4:41:13:88:26:72:ea:ce:cd:86: 35:b2:a3:50:3f:b0:91:f4:86:d2:bb:c1:07:41:d2: ca:fb:2c:68:a8:8b:cf:e9:b5:0b:9f:3a:7a:96:df: cf:d9:f8:1a:ce:43:72:ca:b3:63:cb:8c:11:83:92: 93:e4:b8:de:80:e6:20:c5:89:e4:0d:f0:82:42:03: fc:8b:33:75:41:8b:49:70:cf:59:cf:f2:82:a8:87: 25:ac:72:66:99:15:9d:a1:60:b9:61:01:b9:15:af: ab:10:a4:66:3b:1c:11:8d:7c:5c:71:0b:e4:51:4c: b0:05:5d:88:cb:f3:d6:39:17:c1:ba:5b:cc:4c:f2: fd:39:26:b0:4a:d1:a4:72:f4:22:f8:aa:46:a9:ff: 75:b8:15:a4:74:7a:c1:c0:ab:93:b8:91:68:98:c1: 44:11:d2:73:64:3c:2c:b8:06:e9:a7:fb:92:b2:cc: 97:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:CA:32:07:E4:29:BD:C5:1E:0B:9F:99:0C:A4:F6:FF:5C:CA:6F:75 X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:3e:45:dc:ca:b0:51:5e:a8:08:cd:7a:0c:29:a9:fa:9b:7d: 90:d8:d3:05:a2:a4:3a:09:6e:8a:3b:94:71:f4:fe:03:9c:3f: 66:eb:e1:77:e3:2e:4a:9b:fd:8c:56:c2:2a:38:7e:4e:67:b1: 43:62:e6:70:1e:e4:fe:02:20:6f:64:43:ca:be:2c:96:de:8c: 65:24:29:04:95:0e:1a:d8:ea:df:66:46:6a:a8:5a:2f:c5:8c: 27:bc:d5:0a:3d:b2:ba:e5:60:6d:51:1f:63:76:11:98:86:0d: f7:f1:d0:48:ce:97:4b:67:be:3f:87:d8:e7:f9:42:38:9c:24: d7:d1:3c:e5:16:d3:f3:6d:76:f9:a7:7d:4e:3a:0f:09:49:52: 57:d0:0a:2f:10:c9:f0:b8:5b:63:5a:33:6c:12:ef:59:89:45: 92:84:fc:38:70:e2:74:57:cb:15:b2:2f:b0:9f:9e:04:50:c4: c9:b7:5d:fa:d0:60:34:7c:88:14:ac:c6:c7:60:1f:d5:a6:d5: 69:1b:e9:95:2a:c3:cf:39:9c:27:50:7a:01:d1:07:f6:30:8f: 5e:04:c2:f9:5f:59:1f:a4:d7:8b:7c:c2:a9:62:89:c5:f1:ca: 7c:30:22:3a:98:ad:bc:df:e6:f6:d6:77:65:de:4a:e0:dc:84: 28:30:ce:ab -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNO7SiSj0m9u59c39T1wMMGa5z70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNjA0MTgxNjM2NTlaFw0yNjA0MjIwMjMzNTlaMDMxMTAvBgNV BAMTKDc5Q0EzMjA3RTQyOUJEQzUxRTBCOUY5OTBDQTRGNkZGNUNDQTZGNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw2T6xW1be3vfiP9aCILxV8/RM lQP3sl8MG/GFYI3TY20Ih+lVwjJsu9GEkvII9AEuKVavo9GYp71jBplMe59EXikx lTYw43Myetf+3QNyxEETiCZy6s7NhjWyo1A/sJH0htK7wQdB0sr7LGioi8/ptQuf OnqW38/Z+BrOQ3LKs2PLjBGDkpPkuN6A5iDFieQN8IJCA/yLM3VBi0lwz1nP8oKo hyWscmaZFZ2hYLlhAbkVr6sQpGY7HBGNfFxxC+RRTLAFXYjL89Y5F8G6W8xM8v05 JrBK0aRy9CL4qkap/3W4FaR0esHAq5O4kWiYwUQR0nNkPCy4Bumn+5KyzJdLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUecoyB+QpvcUeC5+ZDKT2/1zKb3UwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjAwNDIzM2YtYmIyYy00N2Q3LTkw MWMtZTNjODJmOGQ0MjNjLzAvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5 MzcyRUJEMkExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADY+RdzKsFFeqAjNegwpqfqbfZDY0wWipDoJ boo7lHH0/gOcP2br4XfjLkqb/YxWwio4fk5nsUNi5nAe5P4CIG9kQ8q+LJbejGUk KQSVDhrY6t9mRmqoWi/FjCe81Qo9srrlYG1RH2N2EZiGDffx0EjOl0tnvj+H2Of5 QjicJNfRPOUW0/NtdvmnfU46DwlJUlfQCi8QyfC4W2NaM2wS71mJRZKE/Dhw4nRX yxWyL7CfngRQxMm3XfrQYDR8iBSsxsdgH9Wm1Wkb6ZUqw885nCdQegHRB/Ywj14E wvlfWR+k14t8wqliicXxynwwIjqYrbzf5vbWd2XeSuDchCgwzqs= -----END CERTIFICATE-----Generated at Sun Apr 19 11:52:54 2026 by rpki-client