$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft File: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft (raw, json) Hash identifier: fs7MySX4YpQOcJ9kWWGhtNR9QIg4dgb+0Ws3MRp6SLo= Subject key identifier: A2:01:61:1F:67:DE:64:E1:24:F9:D0:6C:A9:4A:64:DA:36:99:1B:52 Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Certificate serial: 7A31D8B854DF6A78D696F3E119D42B91CA87D2C6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft Manifest number: 0160 Signing time: Thu 16 Apr 2026 22:40:59 +0000 Manifest this update: Thu 16 Apr 2026 22:35:59 +0000 Manifest next update: Mon 20 Apr 2026 08:57:59 +0000 Files and hashes: 1: 3230332e3134352e35382e302f32342d3234203d3e20313432333735.roa (hash: 8PwAQvSewzdVUf4Jq+quL23phhlsATOC3lb6zK0pxD0=) 2: 3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa (hash: ILDuTAsK8lVD87kg3m/pYLNNkFpQ3NK/TkzPdZb+cXI=) 3: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (hash: Ytw+F2IuhNctJo7Mq4Aaa3GXpRtkG7WpHGa2dilsfso=) 4: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl (hash: 5jgzOkU8ogDUlDfpOJgCNibFlR13e/vWcF1Ah84+hWw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 08:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:31:d8:b8:54:df:6a:78:d6:96:f3:e1:19:d4:2b:91:ca:87:d2:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Validity Not Before: Apr 16 22:35:59 2026 GMT Not After : Apr 20 08:57:59 2026 GMT Subject: CN=A201611F67DE64E124F9D06CA94A64DA36991B52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9e:3e:b7:9e:60:da:3a:56:56:36:25:bd:c9: b2:f4:bc:cd:7a:0d:8b:eb:a9:4f:9e:fb:e4:9f:2b: 2b:d9:c6:2c:f6:be:8b:5b:c4:be:08:03:40:35:1c: 69:eb:c8:dc:06:c6:72:8e:66:1a:b2:1b:15:5d:fb: 55:a6:ac:ea:68:70:c0:32:85:28:f3:69:f9:07:e0: 70:d8:d6:98:e7:b2:f6:75:95:df:00:ef:9d:7a:45: 7f:da:5e:56:12:52:7e:e7:57:18:ce:03:3b:c1:08: fd:3e:af:9b:71:e4:94:41:96:93:be:49:87:5f:a4: 23:24:4f:39:70:87:c7:6d:41:92:35:a7:ee:80:e8: a8:e6:01:01:44:d6:35:58:81:6c:6e:4f:4c:d3:25: 68:9a:d2:2c:07:ff:10:f5:53:a7:50:34:32:77:b2: ae:bb:95:26:43:03:5b:ba:65:5d:86:51:24:60:4d: 92:ba:61:ca:92:6c:0c:0e:44:10:2c:91:c7:de:b4: fb:eb:0c:bd:36:b8:49:28:70:63:02:e7:a3:95:24: 86:66:e2:91:4f:5b:ac:b7:90:d8:5d:45:10:2f:28: 3f:3a:63:73:e7:95:65:e7:8b:25:ec:cd:0c:23:31: 60:a7:91:34:a3:c1:70:f0:44:51:35:f9:ce:b2:2e: 39:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:01:61:1F:67:DE:64:E1:24:F9:D0:6C:A9:4A:64:DA:36:99:1B:52 X509v3 Authority Key Identifier: keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:31:52:7d:b4:7c:eb:8e:e4:b2:cc:29:56:67:71:85:9d:87: fe:a1:f6:a8:40:03:83:8c:50:84:8a:a0:d1:bc:f1:7b:f3:79: 39:3b:28:10:6b:03:c6:f6:b5:c0:1e:e1:9d:a6:47:ff:5c:a0: 22:6f:33:57:da:c8:25:2a:c4:dd:85:0d:ad:5c:16:24:83:21: 69:76:fc:98:46:e6:42:84:de:cf:ab:90:73:38:8c:c4:44:ce: b2:45:ae:25:5a:77:42:87:12:74:e6:ca:c3:b1:72:6b:b6:79: 30:8d:a8:2e:8b:9c:7f:12:b2:bd:2c:5e:b2:61:21:cc:5a:d6: 91:10:6c:d4:18:81:12:7b:50:84:a5:d1:74:e3:b9:d2:95:d8: d8:4b:3b:d8:48:af:57:26:28:6d:ac:07:9b:b1:97:d3:7c:99: ff:47:92:b9:30:f1:e7:ad:ea:ed:7a:dd:c1:52:dc:da:b3:ba: b6:a4:6d:83:b7:d0:17:30:78:a4:cd:f1:26:22:60:0f:ab:85: a7:5d:ba:6a:47:d6:16:89:df:1d:71:47:f6:bf:88:31:c5:49: 69:7e:9a:e9:79:fc:15:ba:5e:54:0e:5d:57:38:28:b5:a2:17: 32:76:d9:c0:7d:70:8a:54:c5:03:a6:1e:48:88:31:ea:17:63: b8:78:f2:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUejHYuFTfanjWlvPhGdQrkcqH0sYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFC NTMwNjMzNjAeFw0yNjA0MTYyMjM1NTlaFw0yNjA0MjAwODU3NTlaMDMxMTAvBgNV BAMTKEEyMDE2MTFGNjdERTY0RTEyNEY5RDA2Q0E5NEE2NERBMzY5OTFCNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXnj63nmDaOlZWNiW9ybL0vM16 DYvrqU+e++SfKyvZxiz2votbxL4IA0A1HGnryNwGxnKOZhqyGxVd+1WmrOpocMAy hSjzafkH4HDY1pjnsvZ1ld8A7516RX/aXlYSUn7nVxjOAzvBCP0+r5tx5JRBlpO+ SYdfpCMkTzlwh8dtQZI1p+6A6KjmAQFE1jVYgWxuT0zTJWia0iwH/xD1U6dQNDJ3 sq67lSZDA1u6ZV2GUSRgTZK6YcqSbAwORBAskcfetPvrDL02uEkocGMC56OVJIZm 4pFPW6y3kNhdRRAvKD86Y3PnlWXniyXszQwjMWCnkTSjwXDwRFE1+c6yLjl1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUogFhH2feZOEk+dBsqUpk2jaZG1IwHwYDVR0j BBgwFoAUwvlWsSaIS179jdrc6w4z4bUwYzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmFhM2JlYi01NzYxLTRjMzQtODhkMy0wMTVjY2M2NDAwMmYvMC9DMkY5NTZCMTI2 ODg0QjVFRkQ4RERBRENFQjBFMzNFMUI1MzA2MzM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFCNTMw NjMzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzZhYTNiZWItNTc2MS00YzM0LTg4 ZDMtMDE1Y2NjNjQwMDJmLzAvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMz RTFCNTMwNjMzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADQxUn20fOuO5LLMKVZncYWdh/6h9qhAA4OM UISKoNG88XvzeTk7KBBrA8b2tcAe4Z2mR/9coCJvM1fayCUqxN2FDa1cFiSDIWl2 /JhG5kKE3s+rkHM4jMREzrJFriVad0KHEnTmysOxcmu2eTCNqC6LnH8Ssr0sXrJh Icxa1pEQbNQYgRJ7UISl0XTjudKV2NhLO9hIr1cmKG2sB5uxl9N8mf9Hkrkw8eet 6u163cFS3NqzurakbYO30BcweKTN8SYiYA+rhaddumpH1haJ3x1xR/a/iDHFSWl+ mul5/BW6XlQOXVc4KLWiFzJ22cB9cIpUxQOmHkiIMeoXY7h48vI= -----END CERTIFICATE-----Generated at Sat Apr 18 00:06:02 2026 by rpki-client