$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: IArNPT+sbHs5h922y6nwHZpJ5YrYQk77FgmzXZrfj9Q= Subject key identifier: 1B:4B:F9:07:4D:17:72:00:2C:4F:23:55:75:50:08:1B:B4:F0:C4:5D Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 5194EC12663038E1302C2E1795DFF344FB70A109 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 023B Signing time: Fri 17 Apr 2026 11:00:58 +0000 Manifest this update: Fri 17 Apr 2026 10:55:58 +0000 Manifest next update: Mon 20 Apr 2026 11:14:58 +0000 Files and hashes: 1: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) 2: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: s7xt6atAlnuk0NCp/3UKrnkCS/YpsE7vKEiGKhHlUBE=) 3: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: 9nyIco6Qw20abWn3XBvbWEWXOejG20knU1gy7cfLySE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 11:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:94:ec:12:66:30:38:e1:30:2c:2e:17:95:df:f3:44:fb:70:a1:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Apr 17 10:55:58 2026 GMT Not After : Apr 20 11:14:58 2026 GMT Subject: CN=1B4BF9074D1772002C4F23557550081BB4F0C45D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4e:23:f0:3b:a1:61:7d:52:85:0e:8e:9a:8d: ba:e9:c8:51:13:6b:c0:0c:79:28:67:a1:1e:f0:19: 7d:8a:97:6e:ab:9b:5f:fb:3c:cf:44:ff:d4:c4:21: 41:e6:94:58:88:63:3f:90:c1:1a:57:c4:b4:7c:a5: 87:7b:d7:72:63:e0:84:03:68:1f:1c:ad:62:00:86: c0:4b:7d:32:93:56:3e:24:04:b8:16:cc:ff:51:93: c5:2d:9d:9a:de:3e:8e:d7:2a:3d:d9:03:16:7f:51: 51:9a:8d:a4:c1:6f:a1:0d:52:21:cf:af:d4:a8:8f: 09:04:14:04:b8:ab:91:8e:a7:f9:f3:9f:24:07:b6: 1a:a8:2d:ab:d6:ce:4f:69:bc:dc:2a:fa:f5:e7:cc: 14:86:53:1a:48:85:16:1e:dd:21:0c:47:6f:59:51: 25:61:51:70:32:37:8e:1d:a5:cc:5e:1d:f9:1a:05: 9d:ad:92:d6:52:43:91:7b:e5:bc:ae:6e:bb:2e:31: e1:4a:19:34:d2:eb:5a:c0:10:dd:81:1c:5d:42:02: d4:c6:32:dc:17:9e:db:4a:6a:dc:db:ba:e5:73:b8: 63:5b:01:59:49:ac:6f:81:b2:11:e1:b5:4b:b3:53: 9a:70:f6:6f:d1:25:2c:2a:fa:c5:e2:69:25:75:c7: 76:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:4B:F9:07:4D:17:72:00:2C:4F:23:55:75:50:08:1B:B4:F0:C4:5D X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:e7:86:4f:7b:e0:de:97:e5:86:b0:16:14:4e:82:43:1d:1b: 86:6d:cc:8c:8f:6d:0d:e3:a7:a7:7a:69:83:d2:cc:1f:55:eb: 00:e6:f8:bd:54:84:c7:4d:c5:37:83:07:e3:c0:35:41:e3:ae: a3:b6:ee:81:f3:c9:81:6f:61:e3:a1:52:78:61:9c:fd:fa:98: d4:2d:f5:18:57:8a:06:44:86:36:21:21:3f:02:94:f0:d1:ef: cc:be:e5:5a:4c:80:f9:d0:c8:c9:16:b2:9b:cd:80:78:a0:6d: 5e:2b:9c:dc:46:a9:52:2e:b1:2c:4f:cb:b2:20:4f:fe:35:25: c8:bf:2c:4c:42:2c:90:63:0b:cc:56:a6:9b:d8:f0:3c:78:22: 9f:db:30:c9:dd:53:27:96:f9:87:ee:1e:d5:60:bd:e7:ca:c9: 53:dd:21:05:95:1d:5d:3b:d9:65:f2:6c:45:c6:af:d2:45:c8: 1f:d6:a5:3f:5a:cd:01:1f:8c:e1:ee:c4:17:ba:7d:c2:fd:03: 80:bd:9b:5e:fd:c5:ad:39:1f:85:15:5c:4a:99:72:56:6c:cb: d0:d7:c2:8d:87:37:01:21:27:37:e4:b1:36:64:34:59:8e:37: 7c:16:59:47:cc:da:ff:a5:d9:d9:7c:be:5d:bd:32:06:5f:4f: 52:95:f5:9a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUZTsEmYwOOEwLC4Xld/zRPtwoQkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNjA0MTcxMDU1NThaFw0yNjA0MjAxMTE0NThaMDMxMTAvBgNV BAMTKDFCNEJGOTA3NEQxNzcyMDAyQzRGMjM1NTc1NTAwODFCQjRGMEM0NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYTiPwO6FhfVKFDo6ajbrpyFET a8AMeShnoR7wGX2Kl26rm1/7PM9E/9TEIUHmlFiIYz+QwRpXxLR8pYd713Jj4IQD aB8crWIAhsBLfTKTVj4kBLgWzP9Rk8UtnZrePo7XKj3ZAxZ/UVGajaTBb6ENUiHP r9SojwkEFAS4q5GOp/nznyQHthqoLavWzk9pvNwq+vXnzBSGUxpIhRYe3SEMR29Z USVhUXAyN44dpcxeHfkaBZ2tktZSQ5F75byubrsuMeFKGTTS61rAEN2BHF1CAtTG MtwXnttKatzbuuVzuGNbAVlJrG+BshHhtUuzU5pw9m/RJSwq+sXiaSV1x3bVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUG0v5B00XcgAsTyNVdVAIG7TwxF0wHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACTnhk974N6X5YawFhROgkMdG4ZtzIyPbQ3j p6d6aYPSzB9V6wDm+L1UhMdNxTeDB+PANUHjrqO27oHzyYFvYeOhUnhhnP36mNQt 9RhXigZEhjYhIT8ClPDR78y+5VpMgPnQyMkWspvNgHigbV4rnNxGqVIusSxPy7Ig T/41Jci/LExCLJBjC8xWppvY8Dx4Ip/bMMndUyeW+YfuHtVgvefKyVPdIQWVHV07 2WXybEXGr9JFyB/WpT9azQEfjOHuxBe6fcL9A4C9m179xa05H4UVXEqZclZsy9DX wo2HNwEhJzfksTZkNFmON3wWWUfM2v+l2dl8vl29MgZfT1KV9Zo= -----END CERTIFICATE-----Generated at Fri Apr 17 19:06:59 2026 by rpki-client