$ rpki-client -vvf repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft File: 24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft (raw, json) Hash identifier: 7YV1mMDMbKV/xKkP6WkmIkocrbaNYR9vVZhD9P0ikC4= Subject key identifier: 38:1E:04:EE:D5:DB:01:69:C9:DF:D8:5C:E7:65:B4:A5:2D:BD:12:34 Authority key identifier: 24:D5:D4:62:77:BE:98:F8:0E:C6:AF:90:1F:D4:32:2A:A2:FA:B2:08 Certificate issuer: /CN=24D5D46277BE98F80EC6AF901FD4322AA2FAB208 Certificate serial: 52A43B260C187912A8E63F9C84864A1D44CCD188 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft Manifest number: 21 Signing time: Thu 16 Apr 2026 02:01:38 +0000 Manifest this update: Thu 16 Apr 2026 01:56:38 +0000 Manifest next update: Sun 19 Apr 2026 05:32:38 +0000 Files and hashes: 1: 3135312e3135382e37352e302f32342d3234203d3e20313331343534.roa (hash: XFhFebLIPZULajE3nvQRfK4ZgyC1cbWqHGjSgE8qiuc=) 2: 24D5D46277BE98F80EC6AF901FD4322AA2FAB208.crl (hash: GF7OqYx8yAXEcOZo0XjpGyAgE+vRgf9YfnVHCRTQjfg=) 3: 3135312e3135382e37342e302f32332d3233203d3e20313331343534.roa (hash: l2sRWuDj9NuoGun/QwVKlUMfqQ/mBD+QWaXv9jkfzHs=) 4: 3135312e3135382e37342e302f32342d3234203d3e20313331343534.roa (hash: b3du5SkGrit+NpSd21sUl+osf6ePmLbD1q8TLf83bBw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.crl rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/12345F115AC4B62A51F5274C54C81E86463BD0BA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/EjRfEVrEtipR9SdMVMgehkY70Lo.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 05:32:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a4:3b:26:0c:18:79:12:a8:e6:3f:9c:84:86:4a:1d:44:cc:d1:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24D5D46277BE98F80EC6AF901FD4322AA2FAB208 Validity Not Before: Apr 16 01:56:38 2026 GMT Not After : Apr 19 05:32:38 2026 GMT Subject: CN=381E04EED5DB0169C9DFD85CE765B4A52DBD1234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:7e:6a:c3:dd:8d:54:90:d0:3b:d6:c8:35: a5:2a:f0:49:e9:10:b2:6d:50:19:77:58:2f:1c:fe: 9e:7e:93:d3:3c:50:d2:e1:7a:8d:87:a4:24:98:46: 53:18:95:5f:62:cd:01:ac:fb:c8:6e:dd:0f:8e:29: 61:18:df:60:7e:1b:bc:8f:1e:75:27:1a:ed:08:2a: 45:03:97:99:6a:54:0a:44:8d:3f:50:ab:ba:ff:db: e1:5f:6c:5b:66:f2:26:f7:8e:a8:01:33:fa:18:d3: 6a:86:e3:4c:ea:7d:5e:ad:90:1b:52:05:46:42:29: 50:eb:e9:eb:78:65:c1:7c:d4:3c:e4:51:f2:05:d1: 08:cc:ae:2d:9b:77:c9:6d:e7:4e:59:8a:df:66:3e: 75:b8:1e:9e:e7:30:91:ca:7e:c5:89:41:0e:ff:5b: ef:be:de:bf:14:51:e2:fa:ea:84:0f:f1:5f:9b:8d: b4:d4:96:db:90:80:68:32:2a:b4:c8:ea:cf:8e:37: e3:59:7d:cc:ec:65:a4:2a:c9:2e:d2:e3:0e:fd:01: 01:b6:36:ce:00:3e:95:f6:88:33:ec:30:74:0f:9b: ae:56:34:94:e6:57:c8:ff:37:5e:c4:a0:d6:33:b5: a6:ae:07:84:05:46:20:7c:fd:21:db:1f:30:ab:71: 9d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:1E:04:EE:D5:DB:01:69:C9:DF:D8:5C:E7:65:B4:A5:2D:BD:12:34 X509v3 Authority Key Identifier: keyid:24:D5:D4:62:77:BE:98:F8:0E:C6:AF:90:1F:D4:32:2A:A2:FA:B2:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/0/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/1/24D5D46277BE98F80EC6AF901FD4322AA2FAB208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:3e:ff:17:41:1f:f5:ac:7b:a6:8e:12:07:26:f6:94:7f:90: 09:3e:53:1f:1d:84:92:80:5b:c5:10:3a:d1:2d:86:3d:9b:ea: ce:6f:59:45:a1:ee:7e:2a:b7:c6:92:5d:d0:9b:ae:59:59:50: 24:d5:cf:cb:33:4f:85:80:4a:cb:17:60:77:72:3a:27:2b:a6: 36:49:45:16:5d:b7:d9:86:90:3b:43:8d:85:f3:5c:77:f8:48: 74:77:03:99:79:a1:78:b5:3c:db:0d:4f:f8:3f:a8:77:45:cb: 3a:8d:c1:02:bd:46:b2:9a:fe:70:a1:4b:f6:76:7a:70:b2:5f: d9:ad:34:16:85:8d:4d:48:b8:7f:a6:82:f2:d5:f9:1a:dc:01: 6e:d9:5e:39:f8:81:d2:f2:fd:7c:11:1c:13:ef:75:c7:fd:58: 45:fb:38:c7:16:a7:f3:d3:fe:f4:67:cc:50:85:16:ef:10:65: fd:79:83:09:bf:db:70:48:6e:02:7d:02:e0:0c:90:04:0e:1a: b0:7c:c7:4e:eb:19:70:3b:bf:12:e8:a8:fc:d0:38:cd:cb:40: 73:28:12:01:f9:9b:eb:4e:dc:8e:67:c0:d7:0f:3f:0e:a8:af: 8a:d1:77:05:83:29:c2:f0:30:36:e2:d7:73:f8:ea:ad:ba:47: 50:17:92:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUqQ7JgwYeRKo5j+chIZKHUTM0YgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRENUQ0NjI3N0JFOThGODBFQzZBRjkwMUZENDMyMkFB MkZBQjIwODAeFw0yNjA0MTYwMTU2MzhaFw0yNjA0MTkwNTMyMzhaMDMxMTAvBgNV BAMTKDM4MUUwNEVFRDVEQjAxNjlDOURGRDg1Q0U3NjVCNEE1MkRCRDEyMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5mH5qw92NVJDQO9bINaUq8Enp ELJtUBl3WC8c/p5+k9M8UNLheo2HpCSYRlMYlV9izQGs+8hu3Q+OKWEY32B+G7yP HnUnGu0IKkUDl5lqVApEjT9Qq7r/2+FfbFtm8ib3jqgBM/oY02qG40zqfV6tkBtS BUZCKVDr6et4ZcF81DzkUfIF0QjMri2bd8lt505Zit9mPnW4Hp7nMJHKfsWJQQ7/ W+++3r8UUeL66oQP8V+bjbTUltuQgGgyKrTI6s+ON+NZfczsZaQqyS7S4w79AQG2 Ns4APpX2iDPsMHQPm65WNJTmV8j/N17EoNYztaauB4QFRiB8/SHbHzCrcZ05AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOB4E7tXbAWnJ39hc52W0pS29EjQwHwYDVR0j BBgwFoAUJNXUYne+mPgOxq+QH9QyKqL6sggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZWYxNmYzMS02MGNlLTQ3YTctYWU4ZC01YTI4YzUxMWM5NDcvMS8yNEQ1RDQ2Mjc3 QkU5OEY4MEVDNkFGOTAxRkQ0MzIyQUEyRkFCMjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzAvMjRENUQ0NjI3N0JFOThGODBFQzZBRjkwMUZENDMyMkFBMkZB QjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmVmMTZmMzEtNjBjZS00N2E3LWFl OGQtNWEyOGM1MTFjOTQ3LzEvMjRENUQ0NjI3N0JFOThGODBFQzZBRjkwMUZENDMy MkFBMkZBQjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADg+/xdBH/Wse6aOEgcm9pR/kAk+Ux8dhJKA W8UQOtEthj2b6s5vWUWh7n4qt8aSXdCbrllZUCTVz8szT4WASssXYHdyOicrpjZJ RRZdt9mGkDtDjYXzXHf4SHR3A5l5oXi1PNsNT/g/qHdFyzqNwQK9RrKa/nChS/Z2 enCyX9mtNBaFjU1IuH+mgvLV+RrcAW7ZXjn4gdLy/XwRHBPvdcf9WEX7OMcWp/PT /vRnzFCFFu8QZf15gwm/23BIbgJ9AuAMkAQOGrB8x07rGXA7vxLoqPzQOM3LQHMo EgH5m+tO3I5nwNcPPw6or4rRdwWDKcLwMDbi13P46q26R1AXkm8= -----END CERTIFICATE-----Generated at Sat Apr 18 03:22:36 2026 by rpki-client