$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: Utl3fRzUnpxLSRkzNTJrytY7483hMKkKrF5EgHAUzbg= Subject key identifier: E5:FA:DE:C4:63:44:39:FD:92:03:A5:9A:38:29:CC:0F:11:68:A5:18 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 7AC3F38FFEFA266C1F48EBB566ADD1866A314013 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 0569 Signing time: Wed 15 Apr 2026 11:30:53 +0000 Manifest this update: Wed 15 Apr 2026 11:25:53 +0000 Manifest next update: Sat 18 Apr 2026 21:33:53 +0000 Files and hashes: 1: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: t7h7NpL02iS1jWP6nds0Pfxxl73dvjn3DePZ1ZwQN6A=) 2: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) 3: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: lR3gX6Bwr4ANHz1p/BofTqPyE1vSZC884k0IFEXkQqw=) 4: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: C0CDuWEVU0SX0hds00E1HGuGHRio6g8DwzULftVgj6I=) 5: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 6: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 7: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: ZeQ/G35c/J7hJXCvQZ6ieAUy4NBWFOv66XK2TZxgUwU=) 8: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) 9: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 21:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c3:f3:8f:fe:fa:26:6c:1f:48:eb:b5:66:ad:d1:86:6a:31:40:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Apr 15 11:25:53 2026 GMT Not After : Apr 18 21:33:53 2026 GMT Subject: CN=E5FADEC4634439FD9203A59A3829CC0F1168A518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ef:66:81:a3:bb:e2:af:7a:d6:10:4f:0b:bf: e5:ba:ca:65:ed:2a:bc:df:73:e3:7a:62:60:9b:34: cb:58:4a:e2:14:24:1d:ef:4a:36:49:07:0f:72:80: 4b:f2:a6:64:43:d2:bb:73:0b:df:01:e5:6a:e6:7c: 6d:ca:5f:9e:fd:2a:ba:fd:98:c5:d3:bd:91:f7:a8: a2:16:a8:a1:28:13:af:c1:df:d4:de:15:ac:f2:4e: aa:29:fa:0b:20:4f:6f:78:f8:7e:33:45:72:3e:08: 37:0a:e3:c6:35:d0:5d:ff:b0:b8:16:4c:10:68:0e: 9a:36:c1:9e:c8:d7:b7:c3:36:19:01:19:21:c3:5e: 7f:ff:2f:06:cd:2b:0d:81:f2:3a:94:61:83:ff:73: bc:cd:c9:38:24:14:02:95:3e:1a:af:05:c1:73:5e: 47:75:c9:bb:24:8d:73:2a:15:86:0f:71:8e:d0:0d: e4:ab:ed:91:f4:7d:6b:b2:4d:e4:c3:a1:14:bd:7a: f6:6c:79:7e:4d:13:d9:70:f7:0c:df:c1:30:18:2c: 6d:02:65:e8:a6:0d:4a:f3:41:b1:fe:34:e0:e2:c9: 36:58:36:40:7b:ce:db:52:43:66:62:3f:f8:7f:61: 7f:40:52:71:1e:e2:52:5e:d9:f3:1f:97:49:2b:1d: 51:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FA:DE:C4:63:44:39:FD:92:03:A5:9A:38:29:CC:0F:11:68:A5:18 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:70:2d:7b:58:ac:ce:d9:11:45:29:8e:f2:a1:5e:9d:fb:16: 9c:4e:fe:24:8b:42:d4:9d:76:fc:c6:7d:9e:a9:b6:9a:71:52: e1:2a:b5:db:61:f7:94:90:41:0d:3f:8c:56:de:b9:5f:f5:b1: 46:f5:c5:97:37:62:54:b7:14:c8:0f:6b:05:9d:a1:f0:ed:93: 1d:20:a7:4f:44:ca:06:31:ff:e0:a6:ce:7d:a4:42:f4:0a:95: 6c:24:a5:e7:2d:25:64:52:1e:e1:71:6e:48:44:d7:1b:85:b0: 86:a8:63:b6:f9:3e:1a:0c:ce:8f:76:53:44:36:35:b4:d5:10: e2:47:3d:ee:d8:87:56:80:c4:f6:13:d8:46:c5:4d:64:7c:7a: ce:5c:f1:53:f3:f9:e3:72:3b:a5:a4:82:22:98:b6:73:05:aa: b0:bb:a0:63:c0:10:98:c4:b7:c8:70:68:d7:72:d1:ec:15:03: 68:01:aa:15:e0:43:4a:95:4f:3c:40:42:88:aa:79:b3:69:6f: 63:e6:ab:b1:7e:a1:a3:bb:f4:01:e6:b7:06:5d:55:58:cc:db: ff:3c:79:a0:8a:4f:a4:cf:d3:84:35:94:2d:64:83:fd:4f:20: d7:89:3f:13:11:46:a2:6a:32:5d:bc:d5:85:27:41:68:50:86: 0f:0c:50:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUesPzj/76JmwfSOu1Zq3RhmoxQBMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNjA0MTUxMTI1NTNaFw0yNjA0MTgyMTMzNTNaMDMxMTAvBgNV BAMTKEU1RkFERUM0NjM0NDM5RkQ5MjAzQTU5QTM4MjlDQzBGMTE2OEE1MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr72aBo7vir3rWEE8Lv+W6ymXt Krzfc+N6YmCbNMtYSuIUJB3vSjZJBw9ygEvypmRD0rtzC98B5WrmfG3KX579Krr9 mMXTvZH3qKIWqKEoE6/B39TeFazyTqop+gsgT294+H4zRXI+CDcK48Y10F3/sLgW TBBoDpo2wZ7I17fDNhkBGSHDXn//LwbNKw2B8jqUYYP/c7zNyTgkFAKVPhqvBcFz Xkd1ybskjXMqFYYPcY7QDeSr7ZH0fWuyTeTDoRS9evZseX5NE9lw9wzfwTAYLG0C ZeimDUrzQbH+NODiyTZYNkB7zttSQ2ZiP/h/YX9AUnEe4lJe2fMfl0krHVEVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5frexGNEOf2SA6WaOCnMDxFopRgwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADZwLXtYrM7ZEUUpjvKhXp37FpxO/iSLQtSd dvzGfZ6ptppxUuEqtdth95SQQQ0/jFbeuV/1sUb1xZc3YlS3FMgPawWdofDtkx0g p09EygYx/+Cmzn2kQvQKlWwkpectJWRSHuFxbkhE1xuFsIaoY7b5PhoMzo92U0Q2 NbTVEOJHPe7Yh1aAxPYT2EbFTWR8es5c8VPz+eNyO6WkgiKYtnMFqrC7oGPAEJjE t8hwaNdy0ewVA2gBqhXgQ0qVTzxAQoiqebNpb2Pmq7F+oaO79AHmtwZdVVjM2/88 eaCKT6TP04Q1lC1kg/1PINeJPxMRRqJqMl281YUnQWhQhg8MUEQ= -----END CERTIFICATE-----Generated at Fri Apr 17 18:37:17 2026 by rpki-client