$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft File: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft (raw, json) Hash identifier: 9Qmhir7+ap5kIm1Azv5q3E2AC6S26OIOARw0en1MvOM= Subject key identifier: 15:29:F8:03:66:0A:3A:48:59:B9:ED:9D:06:E2:BA:DD:4A:3A:6E:38 Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 7040A01E31FA931E3E14A834760D6432CF671F89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft Manifest number: 03DF Signing time: Thu 16 Apr 2026 00:12:48 +0000 Manifest this update: Thu 16 Apr 2026 00:07:48 +0000 Manifest next update: Sun 19 Apr 2026 01:01:48 +0000 Files and hashes: 1: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (hash: jLcNXh3PdlCUsOrK8Wn6cIHJ87Bgrp1+sOpFF9srttE=) 2: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (hash: iZk4nKRAyYY4CGj+caK3PfJut3d/hrLgka43LgJ9lgQ=) 3: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (hash: ylDWnunXe+P0sSpHe2ems7WUQ+PsguFxQzvub0cWxiw=) 4: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl (hash: odjUCgjpJAvYDZ51ob6FzEovFcJ8IJN1+Gf/dZy2tME=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 01:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:40:a0:1e:31:fa:93:1e:3e:14:a8:34:76:0d:64:32:cf:67:1f:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: Apr 16 00:07:48 2026 GMT Not After : Apr 19 01:01:48 2026 GMT Subject: CN=1529F803660A3A4859B9ED9D06E2BADD4A3A6E38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:0a:fe:1a:76:ec:3c:ee:85:bf:79:65:94: 81:66:14:15:14:e1:7d:f6:7e:38:96:a7:90:d4:47: b0:c9:a1:62:56:23:a2:2a:79:3a:40:6e:ca:e9:da: 61:43:79:9c:b7:9c:07:32:61:22:45:22:2a:f7:0b: 16:87:d4:be:e1:27:92:a1:f7:ea:e1:aa:56:eb:27: 77:e4:dc:78:bd:9e:a6:65:c0:9f:21:ef:f7:a2:5e: 6a:25:ba:61:cb:b9:7a:0c:00:bf:77:e0:79:a4:35: 3f:8f:cf:b7:bc:78:54:fa:eb:c6:cf:e1:c1:2a:9a: 0a:f8:03:24:07:46:a3:39:e6:55:35:73:3a:33:07: d5:c0:09:1c:12:2e:30:03:d6:40:0f:ca:af:30:cc: 83:54:be:ac:14:07:65:7f:93:ea:b6:15:60:97:3c: 3f:f7:ea:fc:0a:37:73:70:72:76:b9:df:71:51:22: 3f:e1:fa:c9:33:6d:db:cc:51:a8:d5:10:15:2f:fc: e3:bd:f9:c9:b3:30:38:6e:fe:3e:89:e7:34:4b:62: 83:94:8f:bb:96:fd:9a:a6:c2:a1:69:5a:f3:46:4a: 2f:bd:f7:b6:00:41:58:ee:dd:9f:76:e3:bc:56:7c: 89:55:c0:7b:e7:29:4f:d9:71:ba:94:f1:4e:6c:7d: 38:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:29:F8:03:66:0A:3A:48:59:B9:ED:9D:06:E2:BA:DD:4A:3A:6E:38 X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:78:73:51:8e:a1:f2:11:22:f7:fa:a0:bd:2c:4a:d7:20:a5: b5:34:3d:c5:0d:b4:c6:65:e6:f6:b5:ba:e1:33:01:dc:87:6b: a8:03:86:6d:7e:99:12:07:44:51:ea:cf:53:ce:77:d2:82:8d: 74:da:12:1e:0f:d2:66:65:7f:28:d2:57:42:d4:88:41:dc:f5: be:8a:01:cb:5f:47:85:90:b1:38:a8:80:06:62:f2:04:60:5c: 89:16:df:c5:7c:35:50:3f:bd:89:10:4f:7b:22:49:fe:78:80: 1a:51:3e:de:5b:b5:93:6a:90:f0:cd:5c:f6:80:f2:c7:38:d1: f3:b2:89:73:31:ab:ba:88:3a:e9:6d:f6:6a:78:9f:c5:6c:0b: a5:78:a2:5c:9d:ee:0b:8c:2c:7c:0f:1c:f9:4c:49:eb:82:06: 6f:5a:b2:e4:76:05:16:9c:02:f9:93:e8:19:d2:bc:cc:58:a7: 32:73:26:70:69:6b:c5:ef:7d:66:a5:b3:c5:1d:3f:46:f9:c1: a3:12:69:61:cd:d6:6d:f6:b4:5e:29:5c:c9:e5:c7:4e:01:f6: 4c:df:a3:45:48:d3:d4:dc:04:a1:c1:db:0b:c3:9d:e3:e7:c3: 7c:0a:3f:7e:52:8e:e3:24:7b:49:24:e6:25:7d:08:10:de:22: b7:46:4a:b3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcECgHjH6kx4+FKg0dg1kMs9nH4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNjA0MTYwMDA3NDhaFw0yNjA0MTkwMTAxNDhaMDMxMTAvBgNV BAMTKDE1MjlGODAzNjYwQTNBNDg1OUI5RUQ5RDA2RTJCQURENEEzQTZFMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNZgr+GnbsPO6Fv3lllIFmFBUU 4X32fjiWp5DUR7DJoWJWI6IqeTpAbsrp2mFDeZy3nAcyYSJFIir3CxaH1L7hJ5Kh 9+rhqlbrJ3fk3Hi9nqZlwJ8h7/eiXmolumHLuXoMAL934HmkNT+Pz7e8eFT668bP 4cEqmgr4AyQHRqM55lU1czozB9XACRwSLjAD1kAPyq8wzINUvqwUB2V/k+q2FWCX PD/36vwKN3Nwcna533FRIj/h+skzbdvMUajVEBUv/OO9+cmzMDhu/j6J5zRLYoOU j7uW/ZqmwqFpWvNGSi+997YAQVju3Z9247xWfIlVwHvnKU/ZcbqU8U5sfTh5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFSn4A2YKOkhZue2dBuK63Uo6bjgwHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDQyMTk4NWItYTBlNi00ZTA1LWJl ZjYtZmU2ZjVhNmUyZjQzLzAvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUy RDRDRkQ3RTI2Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAh4c1GOofIRIvf6oL0sStcgpbU0PcUNtMZl 5va1uuEzAdyHa6gDhm1+mRIHRFHqz1POd9KCjXTaEh4P0mZlfyjSV0LUiEHc9b6K ActfR4WQsTiogAZi8gRgXIkW38V8NVA/vYkQT3siSf54gBpRPt5btZNqkPDNXPaA 8sc40fOyiXMxq7qIOult9mp4n8VsC6V4olyd7guMLHwPHPlMSeuCBm9asuR2BRac AvmT6BnSvMxYpzJzJnBpa8XvfWals8UdP0b5waMSaWHN1m32tF4pXMnlx04B9kzf o0VI09TcBKHB2wvDnePnw3wKP35SjuMke0kk5iV9CBDeIrdGSrM= -----END CERTIFICATE-----Generated at Sat Apr 18 00:00:35 2026 by rpki-client