$ rpki-client -vvf repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft File: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft (raw, json) Hash identifier: PtgZeOjSHUrM2x/zPwv1LLrKmIqFFdK4Lt7axMOVy7M= Subject key identifier: A1:26:4F:0C:1D:91:D0:6B:88:C0:E8:D9:BA:47:22:FA:55:AE:0B:0B Authority key identifier: AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C Certificate issuer: /CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Certificate serial: 3E01AB798FF513C6CC43C0E37746ADBE49DC705B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft Manifest number: 056B Signing time: Fri 17 Apr 2026 04:51:15 +0000 Manifest this update: Fri 17 Apr 2026 04:46:15 +0000 Manifest next update: Mon 20 Apr 2026 08:24:15 +0000 Files and hashes: 1: 3130332e31352e3232362e302f32342d3234203d3e20313336303532.roa (hash: 92iPAvFoV8ZIni26oBvQBCMwojDuPtSnBMptGXhyF7g=) 2: 323030313a6466373a373430303a3a2f34382d3438203d3e20313336303532.roa (hash: q884sNHCW5gx53DgOjtLJ9QZQAoxktWTxQd/7H0Tgro=) 3: 3130332e32382e35322e302f32332d3234203d3e20313336303532.roa (hash: jH+vIlrKU7PfFq1iZrO7cUj2zjNXd2QDgqmIURJ9hHo=) 4: AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl (hash: wT21UJCCEjCniS52fFSSLYhhv2gf1/G2pAN56ctT25I=) 5: 3130332e35352e33362e302f32322d3234203d3e20313336303532.roa (hash: Co7QnH1utLTo+OaXOBXDzn1d7u1X3FX72sJ2/V1LcRI=) 6: 3130332e3233362e3230312e302f32342d3234203d3e20313336303532.roa (hash: NJ/fZulIyr1e7dyoj8v3tiz901wVBYZYjvKtkVFLK3I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 08:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:01:ab:79:8f:f5:13:c6:cc:43:c0:e3:77:46:ad:be:49:dc:70:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF52E716DE71EEA9353FEA92FBF72DA2106A594C Validity Not Before: Apr 17 04:46:15 2026 GMT Not After : Apr 20 08:24:15 2026 GMT Subject: CN=A1264F0C1D91D06B88C0E8D9BA4722FA55AE0B0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:99:c3:2a:7b:68:43:20:01:40:2f:bd:f7:82: c7:5c:cd:a0:32:8e:d2:1b:e5:c0:83:e4:ed:a3:c6: 94:50:b9:db:4f:a1:48:40:78:6e:17:30:bb:bb:d3: d3:7b:51:f7:1e:24:20:b8:b9:89:30:9f:99:9b:c3: 44:ab:ec:bb:1c:a6:d1:18:6d:25:37:d9:02:a6:72: 95:87:96:38:9f:f3:89:55:74:d7:08:5d:0a:74:c6: 51:98:32:ab:86:78:e4:05:09:0c:a5:20:33:e0:fb: 84:52:53:8d:ec:4f:18:72:c8:ce:c4:3d:3a:47:ed: 1a:4f:ed:33:73:23:a8:bd:cd:e0:b5:6f:fa:06:f4: 76:69:0d:bc:0f:9c:b7:ea:8b:22:a3:ab:37:80:c2: d8:8d:3f:89:6a:24:1c:54:50:80:9e:1c:41:ae:27: 41:16:a6:e9:5e:a2:bd:f9:a7:ff:5a:e2:57:a6:8a: 86:a9:ff:db:fd:e7:b5:e7:9e:fe:a2:6c:85:54:d0: 5e:16:ea:e9:51:ae:51:aa:37:ee:ab:8d:33:b4:03: d2:fd:b6:82:87:93:62:2c:a7:a1:e3:73:af:00:cb: 21:d1:4a:2e:40:50:9a:56:50:86:b2:f8:0c:1f:a1: 7e:a1:49:b0:3f:ed:0e:fd:5c:f5:6b:b4:f4:2f:83: de:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:26:4F:0C:1D:91:D0:6B:88:C0:E8:D9:BA:47:22:FA:55:AE:0B:0B X509v3 Authority Key Identifier: keyid:AF:52:E7:16:DE:71:EE:A9:35:3F:EA:92:FB:F7:2D:A2:10:6A:59:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/52ac0ca5-5ce7-4e6e-9fff-7213ef1ef364/0/AF52E716DE71EEA9353FEA92FBF72DA2106A594C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:5d:46:99:13:cf:86:0d:74:21:43:77:96:00:dd:19:1e:1f: 39:e0:2b:d9:8f:31:1d:a4:88:04:02:7b:f0:53:f3:1b:1f:83: 56:98:e2:e1:f0:a3:75:55:e3:19:e6:36:ac:df:82:7e:0c:30: df:a9:c1:6d:1d:7b:41:51:62:49:de:59:52:94:14:51:c2:c7: 24:42:ca:f6:81:cc:77:cd:8c:5d:9c:e1:3f:9c:c0:ef:c9:49: 77:d5:cd:99:59:7c:8b:8f:b9:0c:19:5c:a6:1a:ba:72:a2:01: 85:6d:77:00:b2:1d:54:e2:fb:40:38:e2:8a:85:0a:56:b9:5b: 4f:d2:49:ee:ba:7d:9c:fd:59:e9:45:51:46:01:39:11:be:85: 55:97:b9:7e:16:16:fa:5b:32:e6:dd:95:fb:b5:e5:af:ab:ba: 1a:be:91:b6:f7:e2:2d:10:ee:eb:dc:71:ec:39:fd:9a:96:3d: 83:e9:03:4e:0a:25:e9:b2:f4:ca:85:e1:32:5d:37:dd:18:c8: d5:3b:35:82:61:5d:41:e5:d5:9b:38:c2:73:df:94:9f:ce:0c: 48:35:e4:d7:41:25:1f:3c:24:e2:48:f8:2a:07:e6:07:9a:fe: 82:04:32:70:81:52:ed:ab:31:38:18:bc:31:82:d0:61:b6:f4: 46:c9:80:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPgGreY/1E8bMQ8Djd0atvknccFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIx MDZBNTk0QzAeFw0yNjA0MTcwNDQ2MTVaFw0yNjA0MjAwODI0MTVaMDMxMTAvBgNV BAMTKEExMjY0RjBDMUQ5MUQwNkI4OEMwRThEOUJBNDcyMkZBNTVBRTBCMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqmcMqe2hDIAFAL733gsdczaAy jtIb5cCD5O2jxpRQudtPoUhAeG4XMLu709N7UfceJCC4uYkwn5mbw0Sr7LscptEY bSU32QKmcpWHljif84lVdNcIXQp0xlGYMquGeOQFCQylIDPg+4RSU43sTxhyyM7E PTpH7RpP7TNzI6i9zeC1b/oG9HZpDbwPnLfqiyKjqzeAwtiNP4lqJBxUUICeHEGu J0EWpuleor35p/9a4lemioap/9v957Xnnv6ibIVU0F4W6ulRrlGqN+6rjTO0A9L9 toKHk2Isp6Hjc68AyyHRSi5AUJpWUIay+AwfoX6hSbA/7Q79XPVrtPQvg96JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoSZPDB2R0GuIwOjZukci+lWuCwswHwYDVR0j BBgwFoAUr1LnFt5x7qk1P+qS+/ctohBqWUwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MmFjMGNhNS01Y2U3LTRlNmUtOWZmZi03MjEzZWYxZWYzNjQvMC9BRjUyRTcxNkRF NzFFRUE5MzUzRkVBOTJGQkY3MkRBMjEwNkE1OTRDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJEQTIxMDZB NTk0Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTJhYzBjYTUtNWNlNy00ZTZlLTlm ZmYtNzIxM2VmMWVmMzY0LzAvQUY1MkU3MTZERTcxRUVBOTM1M0ZFQTkyRkJGNzJE QTIxMDZBNTk0Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE5dRpkTz4YNdCFDd5YA3RkeHzngK9mPMR2k iAQCe/BT8xsfg1aY4uHwo3VV4xnmNqzfgn4MMN+pwW0de0FRYkneWVKUFFHCxyRC yvaBzHfNjF2c4T+cwO/JSXfVzZlZfIuPuQwZXKYaunKiAYVtdwCyHVTi+0A44oqF Cla5W0/SSe66fZz9WelFUUYBORG+hVWXuX4WFvpbMubdlfu15a+ruhq+kbb34i0Q 7uvccew5/ZqWPYPpA04KJemy9MqF4TJdN90YyNU7NYJhXUHl1Zs4wnPflJ/ODEg1 5NdBJR88JOJI+CoH5gea/oIEMnCBUu2rMTgYvDGC0GG29EbJgFE= -----END CERTIFICATE-----Generated at Fri Apr 17 19:31:21 2026 by rpki-client