$ rpki-client -vvf repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft File: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft (raw, json) Hash identifier: DKdH2rZrdWtZ4VpT8Q6fOBRcPFgR/ipHjkHy9dm6DHE= Subject key identifier: 52:78:1B:58:7D:29:AA:39:50:C2:F1:1A:E2:AB:5B:98:6E:FA:46:B6 Authority key identifier: 45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 Certificate issuer: /CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Certificate serial: 19B83A8D4FD83B34FBFFF839B4ADAA2D11321077 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject info access: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft Manifest number: 024C Signing time: Sat 18 Apr 2026 16:01:54 +0000 Manifest this update: Sat 18 Apr 2026 15:56:54 +0000 Manifest next update: Tue 21 Apr 2026 16:02:54 +0000 Files and hashes: 1: 323030313a6466303a666534303a3a2f34382d3438203d3e20313439393133.roa (hash: a5a2FZuaU8+YwWyJiNpJaq/a07NXsjnc5SwcHCXziC4=) 2: 458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl (hash: NLCZC4zqaWo8oZKpwZq9Y2fb0nO/BAVIlr2hATR44Ms=) 3: 3130332e3139312e35342e302f32342d3234203d3e20313439393133.roa (hash: CllgKLcIRd3lX7KQsM2tAZpeFF8Rj9z8kpx3sCEVEDA=) 4: 3130332e3139312e35352e302f32342d3234203d3e20313439393133.roa (hash: MzEupSrXlebebmZ66Gd92DusEJ4mRAdQ/8taDo8z+bk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 16:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:b8:3a:8d:4f:d8:3b:34:fb:ff:f8:39:b4:ad:aa:2d:11:32:10:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33 Validity Not Before: Apr 18 15:56:54 2026 GMT Not After : Apr 21 16:02:54 2026 GMT Subject: CN=52781B587D29AA3950C2F11AE2AB5B986EFA46B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:1d:e3:c0:6c:cd:16:b6:45:36:ee:bc:41:5d: 2f:35:8a:ef:17:77:c0:07:ac:8d:b8:76:c1:51:2d: 9f:ff:93:0e:27:ac:57:88:fe:00:75:14:c7:f2:44: 4d:1c:b4:99:46:a5:1f:ff:21:6c:2b:f3:0d:ee:ce: cb:39:58:24:d0:30:bb:64:60:24:57:03:4d:98:42: 3a:c6:0a:68:cf:5d:e5:8e:7d:3d:11:87:bb:8d:0c: ff:08:25:0f:99:f4:2e:cb:6f:1d:2f:b1:d2:45:68: 9e:d0:b5:99:e6:11:3a:95:39:72:7d:03:8e:67:e2: 91:4c:24:a9:44:82:9f:50:19:d6:3e:38:c8:dd:0b: 19:76:fd:ca:1b:ff:18:b8:c5:5c:12:0c:ad:a4:57: 06:de:56:c7:5d:3f:fb:05:f0:0d:d8:f3:6f:7b:f0: f4:82:a4:85:81:56:aa:59:59:5d:c5:99:f5:59:72: c7:2f:45:e9:55:e4:87:00:72:15:15:d1:9f:d4:a5: 39:61:d8:37:e8:f8:23:4f:8c:1a:23:fe:7b:b6:c6: 78:37:21:82:e2:48:06:51:ad:0d:93:86:90:90:2f: 70:13:67:91:dc:d0:67:c2:fb:37:d9:9c:03:3d:b7: 35:62:17:8f:cf:54:f3:dd:ac:e2:91:df:a2:36:b4: 7e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:78:1B:58:7D:29:AA:39:50:C2:F1:1A:E2:AB:5B:98:6E:FA:46:B6 X509v3 Authority Key Identifier: keyid:45:8D:9A:2B:4C:22:FF:50:16:AE:2E:24:72:9D:23:E2:BE:0D:FD:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/386d6ba1-1f73-4776-8a6a-4f45120792b1/0/458D9A2B4C22FF5016AE2E24729D23E2BE0DFD33.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b3:9c:f8:97:58:9f:c2:53:1d:64:96:16:7e:50:08:63:6e:23: 28:22:e1:a2:81:45:d4:94:65:e5:cd:f9:0f:44:d2:e4:97:33: b5:ec:6b:3f:b0:12:03:a0:53:8a:e8:90:1a:8d:3d:a7:df:8a: 81:ed:b3:72:68:82:e2:12:75:20:0d:74:5a:9d:4e:2a:44:5b: 71:b8:18:01:8d:e1:db:ee:87:da:a7:4b:a3:80:76:a0:4a:1e: 2b:6e:91:8c:ac:45:ca:15:07:7a:9b:79:59:e8:73:5e:7b:f1: da:58:70:9a:7f:97:5b:dd:54:91:04:36:8b:34:d9:c5:49:f6: 75:6d:04:43:35:aa:47:e0:56:c3:59:61:8e:14:ba:e3:62:de: 5b:d6:23:fa:9b:b2:2e:13:0f:dd:01:eb:94:86:ab:26:a6:e0: 49:c7:6f:c3:05:bf:dd:2e:5b:04:e4:3f:05:26:e9:0a:fc:10: e1:21:23:80:f8:c0:9c:a7:6a:1f:48:59:9f:e0:4c:50:22:e8: c9:1e:48:6e:7b:0b:ad:63:0f:48:35:a5:16:d0:ef:4f:bf:7d: 0a:cb:ee:8b:78:bb:16:c0:74:dd:6f:c9:e0:d4:b1:85:50:2c: 89:01:5a:70:99:a2:cd:d5:06:67:cb:18:66:9d:e3:46:fa:07: dd:ee:79:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGbg6jU/YOzT7//g5tK2qLREyEHcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJC RTBERkQzMzAeFw0yNjA0MTgxNTU2NTRaFw0yNjA0MjExNjAyNTRaMDMxMTAvBgNV BAMTKDUyNzgxQjU4N0QyOUFBMzk1MEMyRjExQUUyQUI1Qjk4NkVGQTQ2QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBHePAbM0WtkU27rxBXS81iu8X d8AHrI24dsFRLZ//kw4nrFeI/gB1FMfyRE0ctJlGpR//IWwr8w3uzss5WCTQMLtk YCRXA02YQjrGCmjPXeWOfT0Rh7uNDP8IJQ+Z9C7Lbx0vsdJFaJ7QtZnmETqVOXJ9 A45n4pFMJKlEgp9QGdY+OMjdCxl2/cob/xi4xVwSDK2kVwbeVsddP/sF8A3Y8297 8PSCpIWBVqpZWV3FmfVZcscvRelV5IcAchUV0Z/UpTlh2Dfo+CNPjBoj/nu2xng3 IYLiSAZRrQ2ThpCQL3ATZ5Hc0GfC+zfZnAM9tzViF4/PVPPdrOKR36I2tH6lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUngbWH0pqjlQwvEa4qtbmG76RrYwHwYDVR0j BBgwFoAURY2aK0wi/1AWri4kcp0j4r4N/TMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ODZkNmJhMS0xZjczLTQ3NzYtOGE2YS00ZjQ1MTIwNzkyYjEvMC80NThEOUEyQjRD MjJGRjUwMTZBRTJFMjQ3MjlEMjNFMkJFMERGRDMzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIzRTJCRTBE RkQzMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzg2ZDZiYTEtMWY3My00Nzc2LThh NmEtNGY0NTEyMDc5MmIxLzAvNDU4RDlBMkI0QzIyRkY1MDE2QUUyRTI0NzI5RDIz RTJCRTBERkQzMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALOc+JdYn8JTHWSWFn5QCGNuIygi4aKBRdSU ZeXN+Q9E0uSXM7Xsaz+wEgOgU4rokBqNPaffioHts3JoguISdSANdFqdTipEW3G4 GAGN4dvuh9qnS6OAdqBKHitukYysRcoVB3qbeVnoc1578dpYcJp/l1vdVJEENos0 2cVJ9nVtBEM1qkfgVsNZYY4UuuNi3lvWI/qbsi4TD90B65SGqyam4EnHb8MFv90u WwTkPwUm6Qr8EOEhI4D4wJynah9IWZ/gTFAi6MkeSG57C61jD0g1pRbQ70+/fQrL 7ot4uxbAdN1vyeDUsYVQLIkBWnCZos3VBmfLGGad40b6B93ueew= -----END CERTIFICATE-----Generated at Sun Apr 19 12:46:53 2026 by rpki-client