$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft File: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft (raw, json) Hash identifier: 5pMCA8n5ttQWjz5EpX4gj56XjvWXjpCNvOemscavAWk= Subject key identifier: DE:AE:97:5B:C3:9E:67:E6:E5:9D:B8:6A:7C:84:F4:C3:80:7A:41:CF Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 34BDF3C2341A23F630FEE92719BCAB1D77446F00 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft Manifest number: 0505 Signing time: Wed 15 Apr 2026 22:40:48 +0000 Manifest this update: Wed 15 Apr 2026 22:35:48 +0000 Manifest next update: Sun 19 Apr 2026 07:05:48 +0000 Files and hashes: 1: 323430363a633634303a3a2f33322d3332203d3e20313431313337.roa (hash: 5V8TdCs3cgs+nmmoF4z5Y22rIV0qGc1uTgZVGMrslKU=) 2: 323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa (hash: Mt5SrkBl0TnCuOW6KjiUo7KU17URT0CCUG/IFHUWPhI=) 3: 3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa (hash: laLJUGonDC43HjG3ZGNawYIEQ9ln67j38UngxvM2zgQ=) 4: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl (hash: R9SPo2tRP08li2aPqEbLhmIk8Zion0pOpWLyOpzs4D8=) 5: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (hash: Hp5JXQrEPxCMGP++NvFxm2uvusi9TtoQlGvA7/UOH1I=) 6: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (hash: DTVsh2XoacQGQ0M4VZPcXWe9xYvlSB7Zv3KJ/YTK1Yw=) 7: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (hash: MfxGUIrhtjjGajjX90ABbBqTVuaaEFP6XuBr1Yslsx0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 07:05:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:bd:f3:c2:34:1a:23:f6:30:fe:e9:27:19:bc:ab:1d:77:44:6f:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Apr 15 22:35:48 2026 GMT Not After : Apr 19 07:05:48 2026 GMT Subject: CN=DEAE975BC39E67E6E59DB86A7C84F4C3807A41CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f4:0b:31:61:7c:ae:92:5c:57:ed:90:77:5d: fe:60:c2:8a:c6:d4:4b:5e:58:13:7e:54:f4:bf:cb: a9:94:8c:e3:f7:6c:97:28:1b:da:aa:9d:57:07:01: 1d:61:a0:1a:af:26:8a:85:39:26:a2:ff:de:d2:a4: 87:90:ec:61:9f:ce:47:bb:68:7c:01:31:6d:38:18: 64:9b:04:5e:bc:fb:de:a0:7a:0f:44:a8:82:f9:c0: 44:9a:4d:81:5d:95:42:81:50:92:c1:6b:6e:d6:c3: 78:e4:64:4e:c0:2b:16:33:8e:73:65:28:58:61:85: 64:bb:8a:06:4b:30:61:1a:70:2f:fc:f4:76:a6:ff: ab:fe:2d:4f:b6:90:5a:67:ba:fc:23:c5:1b:e3:1e: 38:8b:76:8c:86:f9:bd:b9:c2:1e:fa:f7:ad:70:85: ec:67:40:9a:b6:d6:7e:da:eb:e0:50:91:38:f0:0d: a8:0e:07:7e:6d:85:0c:63:d6:01:ee:cf:d0:cb:89: 8a:83:48:fc:97:8e:37:18:7a:67:37:e5:ab:6f:b4: 76:9b:1e:2b:2c:d1:05:d0:2f:f9:3c:4c:0d:04:f1: ea:19:41:15:51:9f:cd:f4:26:84:4e:fa:7c:ae:7f: 28:73:55:2e:14:28:46:98:d7:55:67:9b:d7:b9:3a: e5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:AE:97:5B:C3:9E:67:E6:E5:9D:B8:6A:7C:84:F4:C3:80:7A:41:CF X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:96:e4:70:b8:0b:3e:59:c0:0b:57:a2:5d:48:36:c4:88:4e: ec:20:14:85:20:00:ad:58:a7:e6:11:58:01:06:4d:36:ac:77: 20:36:86:02:cd:fc:64:fb:29:e9:4d:1c:6f:0c:e0:81:0e:7c: b7:c0:0e:cf:70:77:92:50:d6:f3:5c:9d:39:7f:e7:58:74:99: b6:ad:64:14:18:c7:30:36:eb:45:0a:8a:bd:82:95:4f:83:31: e7:30:42:9f:b7:0a:e6:4f:3f:26:9f:32:80:9a:2c:12:55:3a: c9:55:14:f5:89:19:1f:0e:da:1b:b2:c4:62:e2:82:f1:b5:d7: 70:08:ea:81:9d:00:6c:c0:9c:f3:aa:63:ce:77:71:93:eb:46: 09:c7:4d:cd:cf:a9:1c:59:f1:c1:b7:0c:af:24:9e:96:11:93: c9:dd:0c:76:ad:9a:cd:fd:e2:10:bb:97:22:f5:1f:80:1a:7a: b5:f1:42:ee:3f:dc:a0:ac:b8:e1:0f:2e:54:11:d3:fa:d5:40: fa:10:0c:98:0f:79:ea:2b:39:a0:48:da:af:1b:fc:bd:dd:d1: 70:0d:cd:0d:06:f5:e0:b7:be:e2:b2:49:66:78:4c:3f:82:b8: 86:32:80:8b:c3:10:9a:59:97:3b:d8:f9:76:1b:be:6f:8d:b1: c7:a9:08:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNL3zwjQaI/Yw/uknGbyrHXdEbwAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNjA0MTUyMjM1NDhaFw0yNjA0MTkwNzA1NDhaMDMxMTAvBgNV BAMTKERFQUU5NzVCQzM5RTY3RTZFNTlEQjg2QTdDODRGNEMzODA3QTQxQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe9AsxYXyuklxX7ZB3Xf5gworG 1EteWBN+VPS/y6mUjOP3bJcoG9qqnVcHAR1hoBqvJoqFOSai/97SpIeQ7GGfzke7 aHwBMW04GGSbBF68+96geg9EqIL5wESaTYFdlUKBUJLBa27Ww3jkZE7AKxYzjnNl KFhhhWS7igZLMGEacC/89Ham/6v+LU+2kFpnuvwjxRvjHjiLdoyG+b25wh76961w hexnQJq21n7a6+BQkTjwDagOB35thQxj1gHuz9DLiYqDSPyXjjcYemc35atvtHab Hiss0QXQL/k8TA0E8eoZQRVRn830JoRO+nyufyhzVS4UKEaY11Vnm9e5OuXrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3q6XW8OeZ+blnbhqfIT0w4B6Qc8wHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjQ5MDM0NWUtMmQ1Ny00MzQ5LWI3 OGYtYzhiMThhNDQyNDQ1LzAvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5 NUNBNzlDQUFEOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEeW5HC4Cz5ZwAtXol1INsSITuwgFIUgAK1Y p+YRWAEGTTasdyA2hgLN/GT7KelNHG8M4IEOfLfADs9wd5JQ1vNcnTl/51h0mbat ZBQYxzA260UKir2ClU+DMecwQp+3CuZPPyafMoCaLBJVOslVFPWJGR8O2huyxGLi gvG113AI6oGdAGzAnPOqY853cZPrRgnHTc3PqRxZ8cG3DK8knpYRk8ndDHatms39 4hC7lyL1H4AaerXxQu4/3KCsuOEPLlQR0/rVQPoQDJgPeeorOaBI2q8b/L3d0XAN zQ0G9eC3vuKySWZ4TD+CuIYygIvDEJpZlzvY+XYbvm+NscepCPI= -----END CERTIFICATE-----Generated at Fri Apr 17 18:29:09 2026 by rpki-client