$ rpki-client -vvf repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft File: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft (raw, json) Hash identifier: 10vFWmh0vZCAv05TttjJfjHtWwXGi7kcI4VkErM3JCQ= Subject key identifier: AF:53:16:D4:CF:95:08:34:E9:3F:34:F6:D8:79:75:E7:C8:60:09:D4 Authority key identifier: 2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 Certificate issuer: /CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Certificate serial: 308F219E768C9731B73AD5DF95176FBFE53AC1E5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft Manifest number: 01F0 Signing time: Thu 16 Apr 2026 06:30:46 +0000 Manifest this update: Thu 16 Apr 2026 06:25:46 +0000 Manifest next update: Sun 19 Apr 2026 17:14:46 +0000 Files and hashes: 1: 3130332e3137372e3231392e302f32342d3234203d3e20313331373639.roa (hash: Er3SZg2wUj/P2Phj94Rs/pKQreK157hBoR/0FApk3DI=) 2: 2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl (hash: 9jZEATmijZYOW0TI6h5Zlr8qE8q8TA0/sMaP4DSljIw=) 3: 3130332e3137372e3231382e302f32342d3234203d3e20313331373639.roa (hash: NgiCiwYgDeYQaPatps9fGhPQzocYHvig3vWSvQTITq4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 17:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:8f:21:9e:76:8c:97:31:b7:3a:d5:df:95:17:6f:bf:e5:3a:c1:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AAFA81414EDCB1032235F2240FE06773F3E6F16 Validity Not Before: Apr 16 06:25:46 2026 GMT Not After : Apr 19 17:14:46 2026 GMT Subject: CN=AF5316D4CF950834E93F34F6D87975E7C86009D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ab:d4:6b:6d:ec:4c:51:e5:2f:84:0c:30:4c: 63:e7:79:e4:87:59:f9:18:e6:47:0d:12:65:de:2b: da:aa:72:d7:2d:c1:c1:de:86:e7:43:0b:11:12:ec: 98:eb:f0:4f:2e:6b:01:82:18:6c:49:2e:a7:a1:6c: de:72:65:46:93:e1:c7:10:f8:9c:43:2c:ab:84:4d: dd:c6:5e:89:ca:b9:22:e5:c2:74:25:f5:83:d6:49: ad:78:9e:ce:59:2f:c1:17:63:36:a4:ad:ed:ef:8f: b2:bf:48:1a:26:34:fb:1c:31:ad:b8:10:2a:11:71: 7c:df:8e:ec:c4:fe:3d:94:0e:c2:32:78:d1:d9:92: bb:90:d5:5c:e5:0e:cc:23:8a:1b:a0:ca:bd:6e:52: 95:fc:4d:79:75:52:0c:ec:04:16:01:5d:3e:d6:0b: 7b:f0:be:77:70:e4:af:5f:e1:73:f8:7e:cc:44:01: da:1d:72:d7:c3:7c:82:0f:7b:51:0e:4b:2b:4e:81: a0:89:57:6d:b1:02:eb:74:77:17:fe:a9:b2:17:fd: d9:48:8c:04:40:fc:74:35:c7:81:fa:89:c2:db:7a: 24:08:29:1d:e0:9e:3c:d6:bd:89:e8:2a:54:ee:2c: 23:36:4c:1e:1d:a9:93:0c:7f:b1:5e:d2:c0:74:19: a2:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:53:16:D4:CF:95:08:34:E9:3F:34:F6:D8:79:75:E7:C8:60:09:D4 X509v3 Authority Key Identifier: keyid:2A:AF:A8:14:14:ED:CB:10:32:23:5F:22:40:FE:06:77:3F:3E:6F:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2AAFA81414EDCB1032235F2240FE06773F3E6F16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ab8e60f-f993-4534-9da0-f285a8603f69/0/2AAFA81414EDCB1032235F2240FE06773F3E6F16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:d0:77:40:81:31:9b:df:f4:68:ca:a5:d5:1c:a5:25:21:99: df:fb:f8:75:91:39:f0:e2:6c:f6:9d:ec:d3:c6:10:06:77:cc: 27:ee:11:b0:16:b3:86:6e:1d:e0:c3:74:97:2c:73:b8:55:8b: d5:3b:5a:ef:33:51:74:92:21:b8:ea:88:85:ea:4f:22:cb:65: 63:15:a3:55:b7:a3:b6:1b:ea:0a:71:d7:0a:6b:40:66:41:f5: ed:1f:9c:e0:83:7b:d1:8f:a2:bf:96:df:75:e2:bc:0a:d0:c1: bf:5c:27:74:3c:9b:09:df:0f:b0:f4:37:84:d5:d0:fb:cf:b6: 70:17:56:06:aa:86:00:2e:c9:4d:0d:aa:cd:9e:ce:81:76:b5: ac:43:b7:95:fc:ea:5d:94:ed:e2:42:e2:ad:2b:b4:3e:d9:d7: 3c:b6:18:62:a6:13:2e:98:69:26:88:48:3e:63:b7:ef:b2:58: 7b:81:a7:c6:15:52:6b:47:b6:f8:20:02:a2:13:72:cf:3c:14: 35:57:36:51:32:01:7d:c8:ac:46:0d:99:b3:1d:c5:b8:4e:2d: e0:eb:fc:41:ce:58:f8:4f:8f:68:7b:b6:f2:15:33:c4:d6:7b: 3c:ae:5a:ec:d3:3d:6d:50:ec:da:7c:41:a3:d0:bf:7f:9c:f6: 3d:ef:6d:c3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMI8hnnaMlzG3OtXflRdvv+U6weUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2Nzcz RjNFNkYxNjAeFw0yNjA0MTYwNjI1NDZaFw0yNjA0MTkxNzE0NDZaMDMxMTAvBgNV BAMTKEFGNTMxNkQ0Q0Y5NTA4MzRFOTNGMzRGNkQ4Nzk3NUU3Qzg2MDA5RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIq9RrbexMUeUvhAwwTGPneeSH WfkY5kcNEmXeK9qqctctwcHehudDCxES7Jjr8E8uawGCGGxJLqehbN5yZUaT4ccQ +JxDLKuETd3GXonKuSLlwnQl9YPWSa14ns5ZL8EXYzakre3vj7K/SBomNPscMa24 ECoRcXzfjuzE/j2UDsIyeNHZkruQ1VzlDswjihugyr1uUpX8TXl1UgzsBBYBXT7W C3vwvndw5K9f4XP4fsxEAdodctfDfIIPe1EOSytOgaCJV22xAut0dxf+qbIX/dlI jARA/HQ1x4H6icLbeiQIKR3gnjzWvYnoKlTuLCM2TB4dqZMMf7Fe0sB0GaKdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUr1MW1M+VCDTpPzT22Hl158hgCdQwHwYDVR0j BBgwFoAUKq+oFBTtyxAyI18iQP4Gdz8+bxYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWI4ZTYwZi1mOTkzLTQ1MzQtOWRhMC1mMjg1YTg2MDNmNjkvMC8yQUFGQTgxNDE0 RURDQjEwMzIyMzVGMjI0MEZFMDY3NzNGM0U2RjE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2NzczRjNF NkYxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FiOGU2MGYtZjk5My00NTM0LTlk YTAtZjI4NWE4NjAzZjY5LzAvMkFBRkE4MTQxNEVEQ0IxMDMyMjM1RjIyNDBGRTA2 NzczRjNFNkYxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFDQd0CBMZvf9GjKpdUcpSUhmd/7+HWROfDi bPad7NPGEAZ3zCfuEbAWs4ZuHeDDdJcsc7hVi9U7Wu8zUXSSIbjqiIXqTyLLZWMV o1W3o7Yb6gpx1wprQGZB9e0fnOCDe9GPor+W33XivArQwb9cJ3Q8mwnfD7D0N4TV 0PvPtnAXVgaqhgAuyU0Nqs2ezoF2taxDt5X86l2U7eJC4q0rtD7Z1zy2GGKmEy6Y aSaISD5jt++yWHuBp8YVUmtHtvggAqITcs88FDVXNlEyAX3IrEYNmbMdxbhOLeDr /EHOWPhPj2h7tvIVM8TWezyuWuzTPW1Q7Np8QaPQv3+c9j3vbcM= -----END CERTIFICATE-----Generated at Sat Apr 18 05:51:59 2026 by rpki-client