$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: Hhg1uXSbmSkJEmLWJEuxvDkWUJuMBp4PTh1ZJrfRkQY= Subject key identifier: A9:B6:FC:F8:32:E6:8F:D2:FF:D3:A8:6F:43:CF:60:35:9B:11:9E:52 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 49A0311BB6129D862CBC3516229E1ECBD20560C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 0222 Signing time: Sat 18 Apr 2026 12:02:40 +0000 Manifest this update: Sat 18 Apr 2026 11:57:40 +0000 Manifest next update: Tue 21 Apr 2026 20:46:40 +0000 Files and hashes: 1: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: zhqZ7RGI0tO3dMYp/zKA35ro3kaUVBOqhlZMl3D5exo=) 2: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: 1yTR12zVNlgV/3lhF5YF8WQX2wlBuTs2UGOXRfg1gpk=) 3: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: bKAiHhmlEj4IgvE00Lo3377sGcryUEP8JoeR2a9n6WM=) 4: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: uNA/yO7Jurn3EZm3l95rlsLVpHCEIuUhUwihJjKDdLE=) 5: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: Hj/Oe+Radw8pbluCv/VN2XxQ+sX4+0STYPYTyYPvjyc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:a0:31:1b:b6:12:9d:86:2c:bc:35:16:22:9e:1e:cb:d2:05:60:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Apr 18 11:57:40 2026 GMT Not After : Apr 21 20:46:40 2026 GMT Subject: CN=A9B6FCF832E68FD2FFD3A86F43CF60359B119E52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:73:ae:8c:dd:4d:68:f8:39:78:61:83:23:9d: 95:b3:8f:a3:a7:0a:d0:83:ae:20:7e:44:04:5f:ca: 56:8d:9b:e1:cf:8f:b3:b1:d7:1b:16:b7:a6:58:d7: 8f:66:16:67:90:5b:0e:32:bd:26:bc:7b:4e:7e:b1: e0:49:17:66:9f:60:3e:51:e2:62:22:b6:50:5f:03: 4e:92:0b:31:24:92:5a:f1:9b:9b:99:34:7e:67:95: f8:07:41:92:d1:9a:8c:c4:16:c8:c3:0e:ac:33:57: 1e:b9:97:69:2f:85:d1:26:7c:b3:78:30:40:a9:d5: bb:0c:5b:56:eb:59:7c:72:53:2e:aa:08:89:c1:c4: 5b:1b:f0:1e:35:48:42:40:fa:c1:fb:4a:ad:de:07: 4e:d7:ab:63:6e:df:ed:dc:0b:01:ed:23:1a:a4:3f: 38:8a:65:dc:36:01:40:5e:c1:9e:95:46:e0:52:71: 42:48:81:e4:1d:4c:c6:28:51:c6:21:74:33:d1:28: 95:6b:a2:eb:fa:0a:5e:f5:5c:8f:0b:2d:ff:bd:0a: b3:87:65:d0:34:a3:2f:0a:82:46:1f:1a:4d:bb:79: dc:91:12:27:85:06:42:42:4e:de:67:d0:73:ca:43: 13:aa:06:a3:c8:24:39:56:f8:e8:77:2d:38:da:c6: 2e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B6:FC:F8:32:E6:8F:D2:FF:D3:A8:6F:43:CF:60:35:9B:11:9E:52 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:3d:17:f1:e1:c3:0c:5d:e4:a5:71:2b:85:89:fe:da:cf:16: 14:9b:88:f8:67:5a:2b:3f:a6:f7:88:13:a3:f4:29:a3:dc:0b: 30:6d:b4:0a:9d:0a:68:79:65:f1:16:59:ef:47:54:ff:8c:a6: 08:fc:81:15:43:f7:65:37:06:5e:63:b5:b5:d7:ca:63:23:57: 81:60:89:a0:79:f7:3f:58:b3:85:0e:04:69:d9:58:82:c2:b9: c7:ab:08:f8:4e:11:8c:2b:ba:53:38:5f:1a:b4:24:70:83:f2: f5:ba:e8:23:8c:29:9d:fb:85:84:dc:fe:eb:b5:7d:2e:5f:5d: 6d:5d:7c:cb:d6:b1:19:b7:20:cd:05:43:2e:5b:9d:7e:22:29: db:06:83:4e:ca:a4:64:4e:56:cd:ba:e5:85:8e:6d:bc:65:d0: 52:41:08:95:e7:09:92:c6:6b:cf:a3:35:32:cc:5f:d9:ff:0e: a7:fd:8f:9d:e4:c1:69:fd:66:a1:53:d4:98:8c:01:2e:8a:da: dc:31:76:f4:c0:bb:d9:04:d1:6c:ee:6c:76:12:79:d1:7d:23: f6:0e:d7:d6:39:7c:01:b1:2d:6b:3c:18:22:ab:70:ea:4b:e5: c5:84:b4:98:8b:94:45:c1:3d:5b:22:37:74:a4:17:bf:c2:a5: f5:dc:e5:41 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSaAxG7YSnYYsvDUWIp4ey9IFYMQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNjA0MTgxMTU3NDBaFw0yNjA0MjEyMDQ2NDBaMDMxMTAvBgNV BAMTKEE5QjZGQ0Y4MzJFNjhGRDJGRkQzQTg2RjQzQ0Y2MDM1OUIxMTlFNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzc66M3U1o+Dl4YYMjnZWzj6On CtCDriB+RARfylaNm+HPj7Ox1xsWt6ZY149mFmeQWw4yvSa8e05+seBJF2afYD5R 4mIitlBfA06SCzEkklrxm5uZNH5nlfgHQZLRmozEFsjDDqwzVx65l2kvhdEmfLN4 MECp1bsMW1brWXxyUy6qCInBxFsb8B41SEJA+sH7Sq3eB07Xq2Nu3+3cCwHtIxqk PziKZdw2AUBewZ6VRuBScUJIgeQdTMYoUcYhdDPRKJVrouv6Cl71XI8LLf+9CrOH ZdA0oy8KgkYfGk27edyREieFBkJCTt5n0HPKQxOqBqPIJDlW+Oh3LTjaxi7LAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqbb8+DLmj9L/06hvQ89gNZsRnlIwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACM9F/Hhwwxd5KVxK4WJ/trPFhSbiPhnWis/ pveIE6P0KaPcCzBttAqdCmh5ZfEWWe9HVP+Mpgj8gRVD92U3Bl5jtbXXymMjV4Fg iaB59z9Ys4UOBGnZWILCucerCPhOEYwrulM4Xxq0JHCD8vW66COMKZ37hYTc/uu1 fS5fXW1dfMvWsRm3IM0FQy5bnX4iKdsGg07KpGROVs265YWObbxl0FJBCJXnCZLG a8+jNTLMX9n/Dqf9j53kwWn9ZqFT1JiMAS6K2twxdvTAu9kE0WzubHYSedF9I/YO 19Y5fAGxLWs8GCKrcOpL5cWEtJiLlEXBPVsiN3SkF7/CpfXc5UE= -----END CERTIFICATE-----Generated at Sun Apr 19 10:24:35 2026 by rpki-client