$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: BYF1MHBC14TrTcIH6GE0IHJMS3az29UpShq0c+8gw14= Subject key identifier: A4:6F:63:9A:6C:7C:65:50:13:56:DF:25:4B:78:AC:7E:6E:DC:7B:A3 Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 4FFCEF9F8E20E0D94B5A0365E4371CEAB3B6076B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 0327 Signing time: Sun 19 Apr 2026 04:41:24 +0000 Manifest this update: Sun 19 Apr 2026 04:36:24 +0000 Manifest next update: Wed 22 Apr 2026 16:19:24 +0000 Files and hashes: 1: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: Dc4qfVtP8INNtKjh1IR53nYnK3S3BQyGrJeyd5Z5XHM=) 2: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: fOQRxNS62Adl1ibsgxjsqv4vt6fqqrujvTe6FCJvs+o=) 3: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: QO9yzDb4CC7G7ZrOt9x3m3LlZY080vHY8ADNw1G145c=) 4: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: QdIixnzSq8N8sCH+dxKebIKtXdrr8qVttS8Xci0wB7M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:fc:ef:9f:8e:20:e0:d9:4b:5a:03:65:e4:37:1c:ea:b3:b6:07:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Apr 19 04:36:24 2026 GMT Not After : Apr 22 16:19:24 2026 GMT Subject: CN=A46F639A6C7C65501356DF254B78AC7E6EDC7BA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:83:18:0f:e8:17:3b:fd:03:97:e1:5c:56:a8: 48:18:6a:58:91:58:d3:df:31:e1:26:d3:eb:6e:5a: 26:90:89:64:ea:b1:b6:a5:22:ba:11:24:59:9d:03: f0:18:45:a3:f2:8d:e2:c5:5f:13:f7:b2:61:93:1d: bc:c1:e9:b4:dc:e1:3e:64:b7:21:f5:f0:eb:08:16: eb:19:c0:0d:55:79:dd:4a:28:20:8d:e3:aa:c2:e2: 48:7a:62:6b:3e:e0:9d:28:ed:19:ab:05:61:44:22: e3:d4:f5:50:70:98:11:77:63:a4:3a:d7:58:c6:e1: bf:f9:3a:ae:4e:f4:7e:72:1b:b8:93:44:d0:77:84: 26:c1:59:1d:f1:12:d4:fc:24:eb:21:62:5c:f9:03: db:19:6e:0a:90:39:31:dc:55:bd:ee:54:4f:ca:e0: b6:92:71:8c:18:b9:2e:df:36:f9:9e:06:f6:38:5b: 88:ad:23:b3:95:63:8d:7f:de:5b:a9:92:1c:82:a9: 90:c5:e1:bd:63:f0:43:17:75:91:10:85:98:00:ac: f5:97:21:a6:d1:99:01:5a:f7:06:b5:49:53:8f:5b: 0d:5e:ab:30:a8:25:a5:17:0f:fc:f6:f6:02:f7:47: 1f:98:81:ba:a3:3f:1a:f7:9c:7d:16:57:6d:04:00: 08:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:6F:63:9A:6C:7C:65:50:13:56:DF:25:4B:78:AC:7E:6E:DC:7B:A3 X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:5a:51:52:9f:28:86:74:fd:50:cf:a9:6c:70:c1:0f:87:5b: f1:35:d9:8f:98:64:71:7e:d3:a4:d1:24:ea:7b:94:b5:93:ce: fc:67:cb:27:d5:1b:70:e6:2f:d0:ab:dd:c1:88:c4:df:d3:b4: c7:f7:e1:a6:2e:59:69:33:25:6d:b7:d4:69:e4:ec:8d:b2:21: f9:79:3a:4f:82:65:6d:f7:b7:d7:32:cf:d8:6b:0d:a1:43:4a: 1a:95:a8:56:ee:5c:ee:5d:53:02:71:cd:30:5d:71:4a:45:30: 20:40:18:b5:df:b1:ed:2e:d5:2d:47:e2:da:66:9d:ec:c3:e5: b4:7f:b5:b2:b0:09:c9:4b:70:90:1b:e0:84:4f:97:7c:5e:c6: cd:6b:cf:55:ba:94:0a:33:a2:9d:34:1b:3d:44:97:3c:18:ff: f9:d7:f4:fb:b1:95:67:ba:47:42:60:12:96:66:c9:03:76:48: ab:d8:8b:af:c3:8e:cd:e4:a6:bc:da:c0:e7:df:ba:c2:b1:d4: 6d:82:64:9f:e2:9b:6e:7c:e5:de:b4:22:1b:d5:71:fe:4e:db: 14:b1:12:b9:e0:d2:cf:ee:57:a4:49:ff:6c:96:d8:1f:4d:a7: 87:d5:b6:f6:00:ef:5d:7d:f8:5b:43:41:14:ba:82:4e:2b:a4: 9a:2d:90:4e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT/zvn44g4NlLWgNl5Dcc6rO2B2swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNjA0MTkwNDM2MjRaFw0yNjA0MjIxNjE5MjRaMDMxMTAvBgNV BAMTKEE0NkY2MzlBNkM3QzY1NTAxMzU2REYyNTRCNzhBQzdFNkVEQzdCQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbgxgP6Bc7/QOX4VxWqEgYaliR WNPfMeEm0+tuWiaQiWTqsbalIroRJFmdA/AYRaPyjeLFXxP3smGTHbzB6bTc4T5k tyH18OsIFusZwA1Ved1KKCCN46rC4kh6Yms+4J0o7RmrBWFEIuPU9VBwmBF3Y6Q6 11jG4b/5Oq5O9H5yG7iTRNB3hCbBWR3xEtT8JOshYlz5A9sZbgqQOTHcVb3uVE/K 4LaScYwYuS7fNvmeBvY4W4itI7OVY41/3lupkhyCqZDF4b1j8EMXdZEQhZgArPWX IabRmQFa9wa1SVOPWw1eqzCoJaUXD/z29gL3Rx+YgbqjPxr3nH0WV20EAAj5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpG9jmmx8ZVATVt8lS3isfm7ce6MwHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAABaUVKfKIZ0/VDPqWxwwQ+HW/E12Y+YZHF+ 06TRJOp7lLWTzvxnyyfVG3DmL9Cr3cGIxN/TtMf34aYuWWkzJW231Gnk7I2yIfl5 Ok+CZW33t9cyz9hrDaFDShqVqFbuXO5dUwJxzTBdcUpFMCBAGLXfse0u1S1H4tpm nezD5bR/tbKwCclLcJAb4IRPl3xexs1rz1W6lAozop00Gz1ElzwY//nX9PuxlWe6 R0JgEpZmyQN2SKvYi6/Djs3kprzawOffusKx1G2CZJ/im2585d60IhvVcf5O2xSx Erng0s/uV6RJ/2yW2B9Np4fVtvYA7119+FtDQRS6gk4rpJotkE4= -----END CERTIFICATE-----Generated at Sun Apr 19 10:23:22 2026 by rpki-client