$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: dJYzPUFi3fHxN9SxfGCRpE5hwSDyYy7vk3yL9/Bi+WI= Subject key identifier: 3C:81:BE:27:D7:BE:A9:70:DC:80:67:AF:62:32:8D:4C:5E:7A:D4:92 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 4282B374E28F4E160663B8588BE7D7E27DC06466 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 056A Signing time: Sun 19 Apr 2026 00:50:52 +0000 Manifest this update: Sun 19 Apr 2026 00:45:52 +0000 Manifest next update: Wed 22 Apr 2026 08:48:52 +0000 Files and hashes: 1: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: 4Vccmn94/FFR87c1/mOO1wCMTdjvcsl2icFuCc0WaWE=) 2: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 3: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 4: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 5: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 6: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 7: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 8: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 9: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 10: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 08:48:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:82:b3:74:e2:8f:4e:16:06:63:b8:58:8b:e7:d7:e2:7d:c0:64:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Apr 19 00:45:52 2026 GMT Not After : Apr 22 08:48:52 2026 GMT Subject: CN=3C81BE27D7BEA970DC8067AF62328D4C5E7AD492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f0:66:8f:e7:7c:01:f7:2e:b5:f0:5b:68:17: ae:5a:24:e0:23:c9:b0:7b:1a:6d:2e:b1:30:54:1e: 70:b6:95:f4:38:e0:3f:f2:a2:5b:1e:21:6c:bf:21: 84:b7:98:e7:6a:7d:7e:4a:24:12:69:97:29:2c:51: 08:cd:9c:4b:40:2c:c2:7e:15:fb:d2:88:16:f0:da: 44:c9:c9:b2:ae:b6:44:1b:3c:72:61:6f:dd:4a:93: bb:5c:b0:a2:6b:11:bd:31:99:cb:30:24:37:79:ca: 38:bd:13:03:cf:5b:f0:cc:4a:c3:10:0e:8f:61:c6: c4:bc:eb:fd:74:b5:5c:7e:61:76:a1:dd:7a:83:33: b2:f7:cf:9c:28:ba:4b:c1:09:ab:1c:cc:15:0c:df: 03:f1:2f:b0:57:1c:10:e5:2a:5b:fb:49:08:f0:02: 0f:7c:9d:67:a3:c8:0b:24:fb:97:7a:67:0e:a8:04: 07:63:50:d6:e4:d6:19:b4:ea:43:c1:ce:41:f2:5d: c7:c9:14:39:5f:7d:8a:4e:58:1f:5c:73:fa:00:b8: fa:11:ee:e0:64:80:92:9a:41:75:76:1c:30:b0:c1: ec:64:5c:9a:8d:1d:49:48:b0:21:5c:b1:39:56:3c: 56:f5:13:bc:57:84:1b:86:e9:08:32:cd:0e:4f:c5: 98:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:81:BE:27:D7:BE:A9:70:DC:80:67:AF:62:32:8D:4C:5E:7A:D4:92 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:51:fc:2d:ca:eb:4d:3e:e2:7c:4b:06:4d:8e:d7:0f:1d:41: 30:1a:25:cd:55:db:63:21:67:81:7b:b5:52:f7:01:a3:a8:ea: 88:7b:fc:05:78:e5:02:b2:71:7e:90:33:7c:3e:bd:63:81:fe: 3c:9b:48:e2:3f:4e:8b:76:34:a2:17:6a:97:5f:86:2c:06:cb: a9:c9:41:9d:76:8d:b3:4b:3b:96:e6:21:5b:c5:d5:f5:6b:76: 2b:65:a5:70:aa:4b:fd:6d:14:db:3d:ee:58:e7:00:df:1b:48: ee:e8:04:e6:c4:a8:6b:26:67:21:53:24:a5:93:ab:a6:69:f1: 40:08:80:9a:09:d5:1b:e4:b1:79:db:ea:b4:cb:89:b2:cb:4e: 55:f0:97:f3:85:41:d6:7b:39:d1:3e:c0:7f:2f:88:a6:29:a1: 83:18:75:85:04:a5:98:62:43:e4:16:50:93:08:a7:dd:2c:1e: 99:fb:7e:21:fe:7c:9b:c9:02:c3:d1:bd:97:b7:8b:9c:78:83: 9f:b0:36:aa:f0:e3:eb:26:15:3e:df:bc:b6:32:d5:7e:ff:cf: 44:1d:e7:a6:c2:c9:c3:b5:b9:71:91:07:ac:b3:75:5d:47:80: 9c:2e:52:b1:d5:6a:78:11:85:55:3a:cd:9d:6a:6f:32:52:78: aa:ef:f7:3e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQoKzdOKPThYGY7hYi+fX4n3AZGYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNjA0MTkwMDQ1NTJaFw0yNjA0MjIwODQ4NTJaMDMxMTAvBgNV BAMTKDNDODFCRTI3RDdCRUE5NzBEQzgwNjdBRjYyMzI4RDRDNUU3QUQ0OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCY8GaP53wB9y618FtoF65aJOAj ybB7Gm0usTBUHnC2lfQ44D/yolseIWy/IYS3mOdqfX5KJBJplyksUQjNnEtALMJ+ FfvSiBbw2kTJybKutkQbPHJhb91Kk7tcsKJrEb0xmcswJDd5yji9EwPPW/DMSsMQ Do9hxsS86/10tVx+YXah3XqDM7L3z5woukvBCasczBUM3wPxL7BXHBDlKlv7SQjw Ag98nWejyAsk+5d6Zw6oBAdjUNbk1hm06kPBzkHyXcfJFDlffYpOWB9cc/oAuPoR 7uBkgJKaQXV2HDCwwexkXJqNHUlIsCFcsTlWPFb1E7xXhBuG6QgyzQ5PxZjLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPIG+J9e+qXDcgGevYjKNTF561JIwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADtR/C3K600+4nxLBk2O1w8dQTAaJc1V22Mh Z4F7tVL3AaOo6oh7/AV45QKycX6QM3w+vWOB/jybSOI/Tot2NKIXapdfhiwGy6nJ QZ12jbNLO5bmIVvF1fVrditlpXCqS/1tFNs97ljnAN8bSO7oBObEqGsmZyFTJKWT q6Zp8UAIgJoJ1RvksXnb6rTLibLLTlXwl/OFQdZ7OdE+wH8viKYpoYMYdYUEpZhi Q+QWUJMIp90sHpn7fiH+fJvJAsPRvZe3i5x4g5+wNqrw4+smFT7fvLYy1X7/z0Qd 56bCycO1uXGRB6yzdV1HgJwuUrHVangRhVU6zZ1qbzJSeKrv9z4= -----END CERTIFICATE-----Generated at Sun Apr 19 14:07:20 2026 by rpki-client