$ rpki-client -vvf repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft (raw, json) Hash identifier: rKM19n6udPEcDwpdu/rZQD88/rT8AX2Cuv5gOEAwtTY= Subject key identifier: 38:3F:1E:FC:DC:7E:20:B1:67:EB:21:7C:C0:99:6E:13:01:9B:8E:61 Authority key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Certificate issuer: /CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Certificate serial: 7472DC67FEF71161DB6066605A101EA3B44F06B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft Manifest number: 0564 Signing time: Thu 16 Apr 2026 11:01:09 +0000 Manifest this update: Thu 16 Apr 2026 10:56:09 +0000 Manifest next update: Sun 19 Apr 2026 19:39:09 +0000 Files and hashes: 1: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: wHpTffZ2nuWlAhlZXWgWT5vAarjhnzHKQ1BNdqdBZLA=) 2: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: dHAXVvHNWN3lX3SmokQ/UCj86xJ8/z2lq2nv43vYPc0=) 3: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: i8E531bAACF/do6q7C690HP7ycKInzio0QMeynldjVQ=) 4: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: LSvRzZKZqA3NwdEC9iho4W4LPDyE6x1z3v9TKwhHRg0=) 5: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: YHgchxUowX4afg18dRitbsm1i2Jr1bcDLdOROkNe9ds=) 6: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: tAs35Xh9PvYdZJSIW4FLCQe0rvv+Ua53CMSGfgCNFT4=) 7: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl (hash: BlIyg9jTcFgrit6cZMBRyV91CMLm75RTZZ/TGQ5rH1Q=) 8: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: vyo5RypkFQEnVHU24LrFw7oPwATfGzPKn/kBk5If2Fc=) 9: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: 0DSPPC3eIjICQ1QgbLgmjGB64GhEc/FiJxgxZMMi2rw=) 10: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: jGoXC4NtMGtzcx+R9/Q81p54SI3SY8CoW+n8Kb2SzRU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 19:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:72:dc:67:fe:f7:11:61:db:60:66:60:5a:10:1e:a3:b4:4f:06:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Validity Not Before: Apr 16 10:56:09 2026 GMT Not After : Apr 19 19:39:09 2026 GMT Subject: CN=383F1EFCDC7E20B167EB217CC0996E13019B8E61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a3:aa:ac:8e:ad:4d:af:d3:99:52:6c:73:84: 9d:a1:91:53:22:c7:fa:4a:8f:6b:13:ed:32:63:79: bb:a8:a9:30:30:a6:75:71:31:9e:c9:8a:90:1c:c7: 9f:33:04:65:99:11:5f:12:69:ef:b5:92:24:77:4e: 08:34:cc:6d:e6:67:c9:0e:a0:f6:0d:7a:66:6a:a4: 28:54:05:b0:ba:89:6d:0e:fa:79:0f:cf:4d:76:07: c2:b8:fe:03:14:4d:9a:6e:65:b1:c5:8d:ac:15:f6: 05:60:13:ea:b3:dc:13:d1:92:b8:74:ed:60:de:03: 6f:84:99:44:d0:8a:7b:05:07:d3:76:fd:2d:35:39: a4:dd:bd:9d:74:8d:4b:85:40:49:78:91:26:e4:c8: 2d:14:6a:da:db:d6:e1:b9:af:91:59:1b:1c:7d:d1: 81:53:d1:c9:79:66:df:9f:da:0e:77:b3:08:42:f2: 14:cc:dd:8a:54:b5:4b:59:5e:a9:d3:0c:34:26:d3: c3:6b:92:06:e7:df:6b:d8:0b:eb:28:9c:d1:91:e7: 0f:d4:1b:3a:aa:a6:22:0c:e4:27:be:fc:af:c4:44: 17:09:4f:ef:d1:29:66:e3:ba:db:39:a6:4e:41:41: ee:9e:1d:86:35:41:83:e3:6d:17:49:90:fe:96:6e: b9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3F:1E:FC:DC:7E:20:B1:67:EB:21:7C:C0:99:6E:13:01:9B:8E:61 X509v3 Authority Key Identifier: keyid:10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:44:61:5b:23:db:7e:2d:22:35:d6:21:47:80:d6:1f:13:39: 26:80:87:0a:42:f7:a3:5d:2f:eb:07:46:08:09:13:05:24:26: 41:0b:a2:5f:c4:0f:80:a7:5c:3a:0d:83:d7:dc:e1:3e:16:74: 43:b3:15:3b:88:2b:3c:1e:f6:7e:29:4d:c0:14:bf:8b:d2:96: e6:56:17:44:74:e9:83:fa:68:b9:1e:98:f2:4e:f6:e8:15:35: 12:d2:d0:7e:ef:50:68:db:f3:45:bf:12:25:31:cf:d3:9c:ed: e9:09:0d:e3:e5:bf:64:26:07:4a:c8:91:45:5d:31:e5:7c:d8: c9:a9:ff:d0:aa:7f:8d:81:95:e2:88:a8:16:ca:43:70:87:47: bd:b3:7b:33:0f:ce:62:13:ff:3e:80:39:19:f7:87:ac:a8:df: 26:2b:12:ff:b5:87:f3:db:05:7d:32:b2:fa:73:fb:16:00:67: b8:00:41:99:f7:87:85:1a:9f:0d:aa:51:06:b6:47:1f:ae:e3: bf:cc:04:25:2e:3f:50:d9:f7:c7:37:16:aa:41:7d:2f:1b:8c: 4c:d6:13:51:11:55:c4:92:77:fb:43:76:36:ab:24:b5:68:71: ca:55:44:c3:04:31:a0:2f:3b:df:0a:99:1f:ec:7b:c2:04:5a: 73:9c:0f:49 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdHLcZ/73EWHbYGZgWhAeo7RPBrYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQy N0MxOTFBNjAeFw0yNjA0MTYxMDU2MDlaFw0yNjA0MTkxOTM5MDlaMDMxMTAvBgNV BAMTKDM4M0YxRUZDREM3RTIwQjE2N0VCMjE3Q0MwOTk2RTEzMDE5QjhFNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyo6qsjq1Nr9OZUmxzhJ2hkVMi x/pKj2sT7TJjebuoqTAwpnVxMZ7JipAcx58zBGWZEV8Sae+1kiR3Tgg0zG3mZ8kO oPYNemZqpChUBbC6iW0O+nkPz012B8K4/gMUTZpuZbHFjawV9gVgE+qz3BPRkrh0 7WDeA2+EmUTQinsFB9N2/S01OaTdvZ10jUuFQEl4kSbkyC0Uatrb1uG5r5FZGxx9 0YFT0cl5Zt+f2g53swhC8hTM3YpUtUtZXqnTDDQm08Nrkgbn32vYC+sonNGR5w/U GzqqpiIM5Ce+/K/ERBcJT+/RKWbjuts5pk5BQe6eHYY1QYPjbRdJkP6WbrmNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOD8e/Nx+ILFn6yF8wJluEwGbjmEwHwYDVR0j BBgwFoAUEMoXdu+orzUpLnauKwnCNCfBkaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMC8xMENBMTc3NkVG QThBRjM1MjkyRTc2QUUyQjA5QzIzNDI3QzE5MUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMyMzQyN0Mx OTFBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvMTBDQTE3NzZFRkE4QUYzNTI5MkU3NkFFMkIwOUMy MzQyN0MxOTFBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACpEYVsj234tIjXWIUeA1h8TOSaAhwpC96Nd L+sHRggJEwUkJkELol/ED4CnXDoNg9fc4T4WdEOzFTuIKzwe9n4pTcAUv4vSluZW F0R06YP6aLkemPJO9ugVNRLS0H7vUGjb80W/EiUxz9Oc7ekJDePlv2QmB0rIkUVd MeV82Mmp/9Cqf42BleKIqBbKQ3CHR72zezMPzmIT/z6AORn3h6yo3yYrEv+1h/Pb BX0ysvpz+xYAZ7gAQZn3h4Uanw2qUQa2Rx+u47/MBCUuP1DZ98c3FqpBfS8bjEzW E1ERVcSSd/tDdjarJLVoccpVRMMEMaAvO98KmR/se8IEWnOcD0k= -----END CERTIFICATE-----Generated at Fri Apr 17 11:54:08 2026 by rpki-client