$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft File: AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft (raw, json) Hash identifier: Qyupvnw6UstZh4sHh/c0zv6TiJgIU6NHrl6J5N6t2mk= Subject key identifier: 9A:0A:1A:F2:C0:0B:77:CB:1E:B2:68:0D:CA:13:72:45:FF:63:8A:42 Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 2A508CA11F0BF4D8807675B37D23E7A2687F62AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft Manifest number: 01D4 Signing time: Fri 17 Apr 2026 15:02:52 +0000 Manifest this update: Fri 17 Apr 2026 14:57:52 +0000 Manifest next update: Mon 20 Apr 2026 21:43:52 +0000 Files and hashes: 1: AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl (hash: qcyED3NwFCI0NTL2IHsJ9E6xBXEwpWrM0u8OrblTDSY=) 2: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (hash: ZMfXiy/JpcZ5/R5r/67ApqG37uunQGLZSSD7RK2meHg=) 3: 3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa (hash: XRR8oor//V2IuRQmaPl+QnumcGK2doN5NfQKW3qBvPE=) 4: 3130332e3135392e36332e302f32342d3234203d3e20313431353931.roa (hash: nmctoMYkDgA8/S7N7kyu78eibNA+g17O1Xuhn/JxhXc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 21:43:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:50:8c:a1:1f:0b:f4:d8:80:76:75:b3:7d:23:e7:a2:68:7f:62:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: Apr 17 14:57:52 2026 GMT Not After : Apr 20 21:43:52 2026 GMT Subject: CN=9A0A1AF2C00B77CB1EB2680DCA137245FF638A42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:98:5f:5f:27:f5:23:36:c5:13:9c:67:74:5f: df:a6:b4:ed:e5:4c:21:8a:45:df:b3:1e:da:8f:8a: 28:26:9c:93:03:0b:83:59:08:7a:16:e1:17:bc:e6: 9e:47:25:db:35:99:f6:a7:ad:37:bb:fb:fc:f5:55: 77:d7:28:9c:5c:36:cb:b5:47:fa:22:01:84:9a:5d: ea:88:30:6c:f9:8c:bc:28:70:07:54:d9:5c:2c:cc: 8e:76:83:d3:79:e1:f3:c1:44:49:85:21:43:44:02: 2a:cb:2c:2c:37:bc:fc:ed:de:50:14:24:9f:0d:bc: 68:87:04:b3:6b:15:75:23:35:45:65:b7:29:ad:5a: 1a:42:03:c1:3c:c9:2c:21:f7:86:22:5b:0b:ac:f0: 39:69:60:3e:2f:8b:42:99:09:5c:58:60:22:7a:8d: e5:a4:9c:32:96:c2:72:57:e7:49:14:92:12:c5:16: a6:37:9f:08:a0:7c:65:5e:89:65:b5:ac:3c:66:29: 9e:2a:d8:1a:0b:7e:94:ea:f3:14:2b:8e:ec:47:6f: 8e:e3:fa:aa:5a:6b:e3:40:ed:9c:63:80:64:06:63: 3e:4c:f4:a6:94:d1:8f:31:e8:0b:fe:4f:67:43:a0: ef:d7:c7:3e:53:55:cf:af:fd:ed:23:27:6c:8c:ea: 12:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0A:1A:F2:C0:0B:77:CB:1E:B2:68:0D:CA:13:72:45:FF:63:8A:42 X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:f8:97:c6:5a:ac:3f:d3:3e:d2:a0:f2:76:c3:9a:fd:62:4c: ac:e0:f5:05:2e:57:7c:00:c4:73:ee:ca:ea:c7:36:f8:ba:ea: 8f:b1:e6:18:25:1b:10:19:71:3b:62:a1:66:82:8d:59:8a:6e: 10:ae:20:a8:f5:d6:52:8d:fa:9a:36:5c:83:5a:30:b2:a7:77: 57:ec:2a:a9:af:e4:bf:04:b2:77:7c:08:ea:6c:30:ed:5c:e5: 38:fd:ce:42:24:8b:15:43:af:ee:54:5e:db:c6:4f:b5:39:f8: 5d:99:6b:59:1f:7d:c9:b3:f6:9e:f3:05:04:15:c0:44:26:d2: ad:5c:d9:11:e1:6b:b3:61:23:6f:53:1c:fb:fb:57:67:cf:d8: ee:38:28:8d:0c:a1:67:60:c1:5c:9f:f2:31:2d:26:b5:b9:7d: 09:61:d1:dd:99:5a:79:d2:32:31:a2:72:59:e0:2b:35:5e:38: 35:91:70:de:86:24:ed:9b:a1:82:90:c4:c2:01:ed:b7:ea:cc: 78:62:2c:d0:e8:a7:36:e3:d5:0e:f3:63:71:f5:79:09:73:bc: 4e:72:6f:fc:44:a9:87:6e:42:c5:cc:62:dd:83:12:a9:bb:73: f7:b0:4b:63:2d:0d:41:a6:c6:d2:31:c4:2f:1d:96:fa:f2:65: bf:69:26:0b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKlCMoR8L9NiAdnWzfSPnomh/Yq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNjA0MTcxNDU3NTJaFw0yNjA0MjAyMTQzNTJaMDMxMTAvBgNV BAMTKDlBMEExQUYyQzAwQjc3Q0IxRUIyNjgwRENBMTM3MjQ1RkY2MzhBNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMmF9fJ/UjNsUTnGd0X9+mtO3l TCGKRd+zHtqPiigmnJMDC4NZCHoW4Re85p5HJds1mfanrTe7+/z1VXfXKJxcNsu1 R/oiAYSaXeqIMGz5jLwocAdU2VwszI52g9N54fPBREmFIUNEAirLLCw3vPzt3lAU JJ8NvGiHBLNrFXUjNUVltymtWhpCA8E8ySwh94YiWwus8DlpYD4vi0KZCVxYYCJ6 jeWknDKWwnJX50kUkhLFFqY3nwigfGVeiWW1rDxmKZ4q2BoLfpTq8xQrjuxHb47j +qpaa+NA7ZxjgGQGYz5M9KaU0Y8x6Av+T2dDoO/Xxz5TVc+v/e0jJ2yM6hLvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmgoa8sALd8sesmgNyhNyRf9jikIwHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBjMTcxZjQtYmQxMS00OGVkLTg3 ZjAtMjdlYTEyMDkwNjRmLzAvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkx OTNGMDU0ODFCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIf4l8ZarD/TPtKg8nbDmv1iTKzg9QUuV3wA xHPuyurHNvi66o+x5hglGxAZcTtioWaCjVmKbhCuIKj11lKN+po2XINaMLKnd1fs Kqmv5L8Esnd8COpsMO1c5Tj9zkIkixVDr+5UXtvGT7U5+F2Za1kffcmz9p7zBQQV wEQm0q1c2RHha7NhI29THPv7V2fP2O44KI0MoWdgwVyf8jEtJrW5fQlh0d2ZWnnS MjGiclngKzVeODWRcN6GJO2boYKQxMIB7bfqzHhiLNDopzbj1Q7zY3H1eQlzvE5y b/xEqYduQsXMYt2DEqm7c/ewS2MtDUGmxtIxxC8dlvryZb9pJgs= -----END CERTIFICATE-----Generated at Sat Apr 18 00:02:45 2026 by rpki-client