$ rpki-client -vvf repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft File: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft (raw, json) Hash identifier: s41CN/4WaUcB+dE5Sjmx8kgjGG8Nrdol+M5cHrC9sgA= Subject key identifier: 4D:B3:DD:79:E3:E6:BC:01:26:26:3F:F4:04:54:7A:1C:56:8B:9E:BA Authority key identifier: 3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 Certificate issuer: /CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Certificate serial: 49F70921635CB82DD41D8C5425E4429A0C221094 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft Manifest number: 01C9 Signing time: Fri 17 Apr 2026 04:02:45 +0000 Manifest this update: Fri 17 Apr 2026 03:57:45 +0000 Manifest next update: Mon 20 Apr 2026 05:06:45 +0000 Files and hashes: 1: 3130332e3232372e3138362e302f32332d3233203d3e20313432333730.roa (hash: 3zQk9upVSJWkItBhOHjhF9LmJ3TZRFQ3YyxRO9QMpwQ=) 2: 3130332e3232372e3138362e302f32342d3234203d3e20313432333730.roa (hash: L8aLRD8MqNnwy6amY9WuFOXX9HpXdpUvSsxC7oIswc4=) 3: 3130332e3232372e3138372e302f32342d3234203d3e20313432333730.roa (hash: 9Uf4ulFgzLDelJ37ckoyeTkyvf3uIkPeeowXypaqZ6c=) 4: 3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl (hash: CSXjQJCV29697G796yM/Q3Lh4U9u3k5y8faGm0Klljg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:f7:09:21:63:5c:b8:2d:d4:1d:8c:54:25:e4:42:9a:0c:22:10:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67 Validity Not Before: Apr 17 03:57:45 2026 GMT Not After : Apr 20 05:06:45 2026 GMT Subject: CN=4DB3DD79E3E6BC0126263FF404547A1C568B9EBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ea:6a:f1:82:1e:e9:57:9d:b8:00:f5:df:bf: 6b:0b:be:77:17:20:fc:bc:19:4b:a9:0f:69:04:9e: ec:fd:65:fc:16:41:ee:b4:61:5e:ab:ed:72:6c:e4: c3:43:81:91:34:d3:95:24:dd:30:d8:ba:28:18:84: 31:a9:cb:52:5f:2c:dd:d0:13:e3:df:ca:22:e8:e5: 1c:c9:21:a0:22:b6:77:ed:14:53:89:9a:78:67:01: 5d:0f:f8:6c:36:22:a1:59:0c:06:cf:c8:31:cf:83: 4b:b9:34:e3:3d:b9:76:15:49:70:fb:85:19:a6:fa: 91:a0:2f:d3:22:4f:a9:c1:c2:54:d0:8c:d2:ad:8d: 10:74:61:05:07:8e:17:27:74:c3:02:1f:af:2c:37: 8d:3c:89:56:40:ca:38:ab:a2:15:58:27:ae:24:b8: 1f:ef:40:45:f6:0c:7d:3e:a9:b6:8e:fc:9e:46:c4: 7d:fd:7b:54:db:81:59:a7:ed:4b:60:a7:20:36:72: 4c:60:50:47:fd:e5:52:c1:7a:69:c5:0e:10:0b:1b: 2f:3a:c0:0c:9c:ec:7a:36:c4:0c:0b:0b:4d:e2:c9: 7b:93:e3:dc:5f:68:1f:3f:d6:c9:0f:a4:49:71:84: f1:a0:d1:e3:19:08:2c:f6:f5:53:47:8b:33:3f:6b: 3a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B3:DD:79:E3:E6:BC:01:26:26:3F:F4:04:54:7A:1C:56:8B:9E:BA X509v3 Authority Key Identifier: keyid:3A:5E:DA:CC:61:BD:7D:05:EB:D4:24:BB:DB:F5:1D:4C:50:85:2A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b388f6e-9974-4457-af4b-5c9c82f50e97/0/3A5EDACC61BD7D05EBD424BBDBF51D4C50852A67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e1:a8:46:ff:fe:35:dc:67:b0:1c:14:01:bb:e9:59:c7:25:d3: 34:58:22:73:66:8b:00:35:18:41:f1:af:d6:24:64:ba:5f:03: c2:d0:11:9f:b3:0b:39:4e:6a:22:3d:11:35:bc:10:7e:25:32: f5:b1:e4:fc:71:3f:be:f4:30:bd:35:52:e9:05:1a:6f:2d:38: 2d:c1:18:66:54:e6:e5:0a:c9:0d:61:b7:fc:74:1c:a6:22:63: 00:98:8c:d9:68:fd:9f:56:16:20:64:7a:e9:22:c9:ea:29:4a: 2a:c9:e0:0c:13:f0:3b:df:73:5c:14:ed:4c:09:7f:f3:75:45: a7:b8:51:4b:2e:69:47:dd:a6:e2:9c:80:68:34:5b:1f:4a:2c: 80:15:51:63:2a:f0:f6:d9:28:0e:6a:0a:d7:02:77:ed:47:29: 8d:bb:46:00:18:24:9b:54:8c:b0:ff:3a:65:9e:15:85:46:88: b3:46:89:4e:2e:26:6d:e7:2d:c6:da:1a:4f:03:3c:83:f8:7e: 51:ca:ba:3b:f3:06:84:12:2a:2a:c4:73:c2:95:30:27:b5:a8: 8a:26:ae:4f:4f:96:f4:00:da:42:68:71:20:9d:13:e2:78:e8: 6b:5c:1a:13:b7:e4:72:ac:54:82:ff:54:36:5b:04:79:3d:b7: 21:59:9c:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSfcJIWNcuC3UHYxUJeRCmgwiEJQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1 MDg1MkE2NzAeFw0yNjA0MTcwMzU3NDVaFw0yNjA0MjAwNTA2NDVaMDMxMTAvBgNV BAMTKDREQjNERDc5RTNFNkJDMDEyNjI2M0ZGNDA0NTQ3QTFDNTY4QjlFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp6mrxgh7pV524APXfv2sLvncX IPy8GUupD2kEnuz9ZfwWQe60YV6r7XJs5MNDgZE005Uk3TDYuigYhDGpy1JfLN3Q E+PfyiLo5RzJIaAitnftFFOJmnhnAV0P+Gw2IqFZDAbPyDHPg0u5NOM9uXYVSXD7 hRmm+pGgL9MiT6nBwlTQjNKtjRB0YQUHjhcndMMCH68sN408iVZAyjirohVYJ64k uB/vQEX2DH0+qbaO/J5GxH39e1TbgVmn7UtgpyA2ckxgUEf95VLBemnFDhALGy86 wAyc7Ho2xAwLC03iyXuT49xfaB8/1skPpElxhPGg0eMZCCz29VNHizM/azq5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTbPdeePmvAEmJj/0BFR6HFaLnrowHwYDVR0j BBgwFoAUOl7azGG9fQXr1CS72/UdTFCFKmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjM4OGY2ZS05OTc0LTQ0NTctYWY0Yi01YzljODJmNTBlOTcvMC8zQTVFREFDQzYx QkQ3RDA1RUJENDI0QkJEQkY1MUQ0QzUwODUyQTY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFENEM1MDg1 MkE2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGIzODhmNmUtOTk3NC00NDU3LWFm NGItNWM5YzgyZjUwZTk3LzAvM0E1RURBQ0M2MUJEN0QwNUVCRDQyNEJCREJGNTFE NEM1MDg1MkE2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOGoRv/+NdxnsBwUAbvpWccl0zRYInNmiwA1 GEHxr9YkZLpfA8LQEZ+zCzlOaiI9ETW8EH4lMvWx5PxxP770ML01UukFGm8tOC3B GGZU5uUKyQ1ht/x0HKYiYwCYjNlo/Z9WFiBkeukiyeopSirJ4AwT8Dvfc1wU7UwJ f/N1Rae4UUsuaUfdpuKcgGg0Wx9KLIAVUWMq8PbZKA5qCtcCd+1HKY27RgAYJJtU jLD/OmWeFYVGiLNGiU4uJm3nLcbaGk8DPIP4flHKujvzBoQSKirEc8KVMCe1qIom rk9PlvQA2kJocSCdE+J46GtcGhO35HKsVIL/VDZbBHk9tyFZnFs= -----END CERTIFICATE-----Generated at Fri Apr 17 20:22:21 2026 by rpki-client