$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: UpRWttq5QeOs+Yjb8+eqfqstkBZAsTjxrG/jplnEHk4= Subject key identifier: 89:49:BB:FE:84:FC:88:8C:62:BD:43:D8:2B:55:FB:12:F3:EC:E4:8D Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 0136292896598175B410E393E29247FE0F6FF9AD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 0574 Signing time: Fri 17 Apr 2026 09:52:22 +0000 Manifest this update: Fri 17 Apr 2026 09:47:22 +0000 Manifest next update: Mon 20 Apr 2026 20:16:22 +0000 Files and hashes: 1: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: tLzip6pluW4kS8q/xNkX5NOxfLZpZ4mdvSRQjE8Ako0=) 2: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: Qy3YB44oGm1fsoZxMBzAxCT+a2Srz9xUsvecCC/x8l0=) 3: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: 9xklfE4ToaNUXHfz0ScOS9CrgCGo8s6jfw/9Yuz7c2I=) 4: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: L3wXXsnBA+OZbTlcmfk9tvtnuCN6qKltUcu107Tb7ZI=) 5: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 18:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:36:29:28:96:59:81:75:b4:10:e3:93:e2:92:47:fe:0f:6f:f9:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Apr 17 09:47:22 2026 GMT Not After : Apr 20 20:16:22 2026 GMT Subject: CN=8949BBFE84FC888C62BD43D82B55FB12F3ECE48D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:f5:87:81:c3:92:21:3d:1f:12:18:94:80:fc: 7c:32:b8:b9:d5:65:02:b9:b9:a3:a7:53:76:16:5c: 3a:fd:0e:ce:5f:3c:df:d6:23:f0:70:32:34:d1:e3: c6:01:8c:a4:bf:e8:d0:c3:1b:30:5b:dd:22:0d:a0: 6b:54:ce:4d:17:98:d4:52:87:94:11:73:e2:42:07: 83:e4:84:3b:73:d8:a5:ec:69:44:46:03:fa:0e:a5: c4:8a:cb:e6:5d:54:89:1b:8d:bb:c0:20:02:5b:64: d5:87:33:7e:92:cd:1c:9c:b2:0b:24:d0:7f:1d:84: 97:90:33:1d:4f:b3:d8:fd:4a:7c:d9:92:80:5c:75: 07:3d:b9:57:0a:bf:45:b2:67:b0:b0:74:6a:46:32: 49:fe:59:e3:87:2a:bd:0a:e1:b9:52:5e:c3:03:91: 47:06:3e:12:33:62:e5:39:ff:85:44:9c:41:be:5a: ba:eb:9d:6b:bf:d5:fa:e7:c8:cd:54:8b:b7:f8:47: 0e:7b:8f:39:7c:47:eb:53:9f:36:7e:fa:1a:bf:e7: e2:65:fe:9b:72:e0:04:92:40:a0:70:ba:e8:c4:16: dd:8f:d2:f4:b1:b9:27:55:8f:de:93:b6:42:b3:54: 6e:53:36:ce:d6:d7:c5:1b:ef:25:15:ae:e4:c6:2e: c5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:49:BB:FE:84:FC:88:8C:62:BD:43:D8:2B:55:FB:12:F3:EC:E4:8D X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:e9:c9:f8:c4:25:76:a2:e5:20:50:d4:30:a4:a3:15:9f:d8: 08:05:00:3d:ff:9a:97:cb:9a:6f:d2:9c:4e:17:8a:91:82:c4: 8e:b6:7c:bb:7d:1b:20:50:b3:58:ae:3f:26:57:39:c3:01:fe: 0f:0f:04:bc:ef:2b:28:2b:36:5c:f2:a5:c8:aa:71:3e:e3:55: cb:7e:92:4c:57:dc:3a:62:3e:13:8c:c9:ec:8f:d6:e5:c7:13: 8a:1a:e6:ad:64:fd:7b:1a:3b:20:12:95:b2:28:31:f1:ef:0f: 2b:47:f0:22:a1:55:59:8a:c9:9a:83:64:9c:00:7b:64:52:f6: c6:80:b2:ad:09:b2:6c:67:96:82:6c:aa:22:3b:79:1c:28:54: 72:80:ad:a3:f2:43:e0:9f:46:cc:de:82:1e:fc:fe:fe:e9:a0: b7:3c:32:c5:6a:af:dc:89:fc:d5:48:91:80:0d:7c:8e:a3:95: 05:4f:57:56:9c:a8:82:36:d7:ad:b7:65:51:2b:13:fa:40:18: 78:25:0e:f8:fe:07:2b:5d:75:dc:cb:2c:2f:5c:72:bd:a9:19: 30:ac:b1:ba:f5:1c:e6:05:ba:d8:d9:42:03:29:96:a7:11:92: ee:a6:14:44:bb:92:b3:f1:40:9f:94:4e:83:77:58:3d:0f:2c: 5e:3a:33:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUATYpKJZZgXW0EOOT4pJH/g9v+a0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNjA0MTcwOTQ3MjJaFw0yNjA0MjAyMDE2MjJaMDMxMTAvBgNV BAMTKDg5NDlCQkZFODRGQzg4OEM2MkJENDNEODJCNTVGQjEyRjNFQ0U0OEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCR9YeBw5IhPR8SGJSA/HwyuLnV ZQK5uaOnU3YWXDr9Ds5fPN/WI/BwMjTR48YBjKS/6NDDGzBb3SINoGtUzk0XmNRS h5QRc+JCB4PkhDtz2KXsaURGA/oOpcSKy+ZdVIkbjbvAIAJbZNWHM36SzRycsgsk 0H8dhJeQMx1Ps9j9SnzZkoBcdQc9uVcKv0WyZ7CwdGpGMkn+WeOHKr0K4blSXsMD kUcGPhIzYuU5/4VEnEG+WrrrnWu/1frnyM1Ui7f4Rw57jzl8R+tTnzZ++hq/5+Jl /pty4ASSQKBwuujEFt2P0vSxuSdVj96TtkKzVG5TNs7W18Ub7yUVruTGLsVNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiUm7/oT8iIxivUPYK1X7EvPs5I0wHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMPpyfjEJXai5SBQ1DCkoxWf2AgFAD3/mpfL mm/SnE4XipGCxI62fLt9GyBQs1iuPyZXOcMB/g8PBLzvKygrNlzypciqcT7jVct+ kkxX3DpiPhOMyeyP1uXHE4oa5q1k/XsaOyASlbIoMfHvDytH8CKhVVmKyZqDZJwA e2RS9saAsq0JsmxnloJsqiI7eRwoVHKAraPyQ+CfRszegh78/v7poLc8MsVqr9yJ /NVIkYANfI6jlQVPV1acqII21623ZVErE/pAGHglDvj+BytdddzLLC9ccr2pGTCs sbr1HOYFutjZQgMplqcRku6mFES7krPxQJ+UToN3WD0PLF46M0Q= -----END CERTIFICATE-----Generated at Fri Apr 17 14:41:20 2026 by rpki-client