$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft File: 2985976A4B3081770748882703E16497964D05A6.mft (raw, json) Hash identifier: BdE74dOVi6T2TUNEkfPJbVqk5i+AnCFYIxxpXCH4WMo= Subject key identifier: 00:B5:16:8F:88:97:58:1B:79:A7:B4:70:3C:2E:29:9A:63:83:13:E1 Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 4CA921BD81A6202C81E77B5E36BB0DB33EBA2F22 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft Manifest number: 0255 Signing time: Thu 16 Apr 2026 15:11:19 +0000 Manifest this update: Thu 16 Apr 2026 15:06:19 +0000 Manifest next update: Sun 19 Apr 2026 22:14:19 +0000 Files and hashes: 1: 2985976A4B3081770748882703E16497964D05A6.crl (hash: tMGDAJhn0O3ffLRgDXfew9meB2Dt0wySPAvYqCVcxqw=) 2: 3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa (hash: RrW5I2lzLuA+7ZMS1LEMZMinrm7Ftg4PYDdGcwSGY08=) 3: 3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa (hash: s3jB5rGy3ygjsQ7KSNEtfVl4k8P8QCufhhtVBzaX2IQ=) 4: 3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa (hash: fbMC3foKpfnHAAX7CqNwv+8CUIBKmVdM4iWFdYY2w+c=) 5: 3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa (hash: h0i6o1md9zXeZ9ZcSa+PGKss268qYszF+iOxTtMdu4E=) 6: 323430333a38303a3a2f33322d3332203d3e20313334363233.roa (hash: 6DmXkqMFBwmOgmu7GrU8MAR3khWhl6gAoERCQcW2kCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 22:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:a9:21:bd:81:a6:20:2c:81:e7:7b:5e:36:bb:0d:b3:3e:ba:2f:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Apr 16 15:06:19 2026 GMT Not After : Apr 19 22:14:19 2026 GMT Subject: CN=00B5168F8897581B79A7B4703C2E299A638313E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c2:69:58:c8:a3:11:44:a3:6a:ff:f7:48:2c: fd:ff:4e:01:46:3e:21:64:08:37:bf:bd:38:03:66: 7c:7a:73:b7:51:c8:45:27:de:58:27:4e:ba:a5:ea: 49:94:26:db:0f:6e:fc:6a:40:90:8b:4f:c5:09:92: d0:1a:3f:b9:9c:7e:0b:b0:f6:8b:56:c5:82:5b:9f: 8d:a4:5d:e2:88:56:fb:1b:32:a3:ab:8f:b7:79:ea: a7:c8:a5:93:6f:e1:12:3e:33:86:ab:c2:2b:0b:e7: c8:d7:91:f2:43:a3:e2:57:10:d2:fa:51:bd:35:4f: 88:26:f5:ba:2e:3a:62:b9:78:e1:15:46:88:ae:48: 0c:77:64:6a:9f:d3:f6:7f:94:4d:2b:1e:3b:2f:24: e0:6f:73:6c:51:cf:08:6a:47:0c:d2:11:4c:88:b1: bd:10:bf:09:36:d3:16:4c:ae:e3:2b:d1:48:cd:79: 0f:b5:fb:e8:ca:fd:a3:30:a0:3c:e2:bd:db:90:39: e0:b7:6c:43:77:72:fa:a8:91:64:0f:4e:23:8d:34: e3:16:f2:53:99:6c:87:d9:80:f6:30:e5:63:5e:08: 1c:d2:05:c9:87:f7:e1:34:28:c3:2e:d5:47:01:c2: 56:86:f1:2a:59:7c:23:1d:f7:0e:7d:27:8a:3d:8b: de:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B5:16:8F:88:97:58:1B:79:A7:B4:70:3C:2E:29:9A:63:83:13:E1 X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e1:bc:58:90:a4:1a:e8:57:bf:14:11:af:94:f9:72:6c:d5:bb: e0:1c:1e:c7:15:97:53:89:26:a0:fd:13:1e:e8:8e:1b:18:f5: ae:f6:48:6e:e6:7e:f2:98:74:bb:04:ee:43:e9:fa:d5:27:65: 99:57:e9:d3:46:c1:59:12:c2:9a:a6:62:c8:1b:bb:6a:f3:ee: 7e:56:b7:33:54:c3:fb:94:89:7f:54:de:bb:19:e1:10:14:35: 9c:6c:15:7d:4b:78:04:36:c3:da:3a:6d:07:62:f3:ba:e9:65: 83:d6:10:a9:fa:c8:57:44:ce:27:bd:d0:91:0c:1c:64:2c:11: f3:ec:2a:a0:db:32:6d:32:6b:b1:1d:ca:41:18:3f:8e:4a:85: 00:25:93:9a:24:b2:6d:60:9c:45:43:34:26:6f:aa:3a:e8:65: 0d:6d:0f:a7:7a:aa:98:db:17:1b:2a:00:0b:a7:ff:6f:29:8b: 0d:47:ca:7a:33:39:f2:ad:57:e1:53:d2:3c:a3:a0:b7:9b:ab: da:2d:dc:ca:dc:7c:b3:ce:d2:99:ca:50:40:50:bd:be:04:8f: 3b:fc:d9:c7:af:92:f2:57:97:17:e7:4e:02:2b:e3:c3:8f:bd: 63:2f:45:78:42:9e:29:88:69:51:8c:53:5c:77:b8:e3:55:56: ca:26:7d:32 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTKkhvYGmICyB53teNrsNsz66LyIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNjA0MTYxNTA2MTlaFw0yNjA0MTkyMjE0MTlaMDMxMTAvBgNV BAMTKDAwQjUxNjhGODg5NzU4MUI3OUE3QjQ3MDNDMkUyOTlBNjM4MzEzRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbwmlYyKMRRKNq//dILP3/TgFG PiFkCDe/vTgDZnx6c7dRyEUn3lgnTrql6kmUJtsPbvxqQJCLT8UJktAaP7mcfguw 9otWxYJbn42kXeKIVvsbMqOrj7d56qfIpZNv4RI+M4arwisL58jXkfJDo+JXENL6 Ub01T4gm9bouOmK5eOEVRoiuSAx3ZGqf0/Z/lE0rHjsvJOBvc2xRzwhqRwzSEUyI sb0Qvwk20xZMruMr0UjNeQ+1++jK/aMwoDzivduQOeC3bEN3cvqokWQPTiONNOMW 8lOZbIfZgPYw5WNeCBzSBcmH9+E0KMMu1UcBwlaG8SpZfCMd9w59J4o9i95FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUALUWj4iXWBt5p7RwPC4pmmODE+EwHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2VkMTAwZGYtMDQ0MS00MzgxLWEz ZmEtNTg3ZGI5ZTljMmYwLzAvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0 OTc5NjREMDVBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOG8WJCkGuhXvxQRr5T5cmzVu+AcHscVl1OJ JqD9Ex7ojhsY9a72SG7mfvKYdLsE7kPp+tUnZZlX6dNGwVkSwpqmYsgbu2rz7n5W tzNUw/uUiX9U3rsZ4RAUNZxsFX1LeAQ2w9o6bQdi87rpZYPWEKn6yFdEzie90JEM HGQsEfPsKqDbMm0ya7EdykEYP45KhQAlk5oksm1gnEVDNCZvqjroZQ1tD6d6qpjb FxsqAAun/28piw1HynozOfKtV+FT0jyjoLebq9ot3MrcfLPO0pnKUEBQvb4Ejzv8 2cevkvJXlxfnTgIr48OPvWMvRXhCnimIaVGMU1x3uONVVsomfTI= -----END CERTIFICATE-----Generated at Fri Apr 17 19:44:28 2026 by rpki-client