$ rpki-client -vvf repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft File: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft (raw, json) Hash identifier: f75sEOf/3WD9nq22qJ3XuWd/aoiRzvsM0I6RHsRPhvg= Subject key identifier: 16:33:EA:2C:6C:1C:A9:07:A4:2E:6D:0B:BB:EF:72:47:64:05:89:D2 Authority key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Certificate issuer: /CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Certificate serial: 0B3BB5D38178AF54354407A408384190619E40EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject info access: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft Manifest number: 031F Signing time: Sat 18 Apr 2026 18:11:05 +0000 Manifest this update: Sat 18 Apr 2026 18:06:05 +0000 Manifest next update: Wed 22 Apr 2026 02:01:05 +0000 Files and hashes: 1: 3130332e362e3230342e302f32332d3233203d3e203538353033.roa (hash: jlDnq/pTWKcqQPtJ6VRZIg3zm8PHprvuxU+BKt4Gk08=) 2: 3130332e362e3230342e302f32322d3232203d3e203538353033.roa (hash: eKQ/v97Slfm6pdQvkBAo8Onj1CnRgWhKWbT8e4WqBcc=) 3: 3130332e362e3230342e302f32342d3234203d3e203538353033.roa (hash: r9QPk/LpoJs29sx2oR7f3Ru6EP7Ni5LmyXyyS4T2T/Q=) 4: 3130332e362e3230362e302f32342d3234203d3e203538353033.roa (hash: uAtBSIDdapxegHcixT/adxYVRwIH8zS1jvQsYGI4FKs=) 5: 3130332e362e3230352e302f32342d3234203d3e203538353033.roa (hash: +R3i1yikLZX3N7J8PecP2cVBYYEEV31MZ2NuNFEDBz0=) 6: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl (hash: N7I5siGjHcB+7BzGzHV4Y6684xb3CtVQGz/fwT+1zfc=) 7: 3130332e362e3230362e302f32332d3233203d3e203538353033.roa (hash: T5UFtTORiPkpyQMb1pkITrlGjn812lML7gJ4GIu0cac=) 8: 3130332e362e3230372e302f32342d3234203d3e203538353033.roa (hash: vyhZOBYCU2sLXrzusVlJ/gl2TYFXG6e7dBbtLFYwhDU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 02:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:3b:b5:d3:81:78:af:54:35:44:07:a4:08:38:41:90:61:9e:40:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Validity Not Before: Apr 18 18:06:05 2026 GMT Not After : Apr 22 02:01:05 2026 GMT Subject: CN=1633EA2C6C1CA907A42E6D0BBBEF7247640589D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8c:e6:81:e2:99:35:4c:9e:97:6e:b7:3f:94: 76:89:f4:5d:ed:a7:81:ea:69:a7:9a:91:08:1f:df: 0a:37:db:50:9b:31:12:23:d2:c3:43:cb:a0:15:b6: 8c:bd:18:16:dc:3a:50:49:65:ad:e8:c0:26:7f:d9: 95:c1:2a:64:30:00:6f:b0:e6:e0:2b:68:0a:6c:c2: 13:45:41:21:95:20:f9:33:ca:80:2e:a2:3d:0b:6a: ff:8b:53:59:66:c7:b8:34:bb:73:70:46:e0:ce:e6: 60:b6:d5:69:67:da:24:06:d0:89:7e:ee:2b:17:4d: 06:d9:6e:1e:46:d0:22:da:d5:02:66:72:71:7b:8a: 8d:68:91:67:57:40:b7:f1:45:e3:86:fe:57:96:10: 95:02:68:cf:b6:10:67:e9:1e:65:a4:81:1e:54:55: c3:ef:16:6e:bf:3a:6b:b8:71:03:6b:f5:11:65:e8: c4:e6:9f:7c:33:87:b9:40:05:84:86:3e:fb:57:ce: c4:7f:2c:47:11:90:61:3f:26:89:b4:79:f9:ac:c2: 3a:dd:a5:d9:c7:68:8d:f3:aa:d8:57:4f:6b:71:18: 2c:f2:c2:6b:08:09:75:52:f6:ab:64:b9:a9:3a:a7: 3d:3e:0f:e0:4a:08:d5:78:97:e2:f0:e8:83:e0:f2: 69:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:33:EA:2C:6C:1C:A9:07:A4:2E:6D:0B:BB:EF:72:47:64:05:89:D2 X509v3 Authority Key Identifier: keyid:CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ca:cc:8c:4e:04:cf:f4:17:cf:53:bf:50:15:89:75:6f:a9:cb: 99:5d:56:3f:fd:95:d3:84:13:c2:94:d6:b0:32:ca:d8:01:94: ed:5a:39:49:51:3c:7f:c8:f9:5d:19:80:08:b1:da:87:75:27: 8d:6d:71:bd:3d:54:61:a2:7e:98:20:82:dd:2a:61:e7:d7:ad: 55:29:f2:48:94:41:d5:26:e2:a6:76:4d:03:d3:12:d1:72:f3: 14:90:6a:e6:c6:49:6d:51:01:31:af:1a:1d:23:28:de:22:82: 60:f7:72:42:81:e5:3a:11:31:17:a0:50:83:df:69:34:21:6f: d3:c5:c5:4d:49:44:c6:df:66:3e:3d:80:2a:52:8b:2c:dc:25: dd:71:67:47:fb:d6:c5:37:d6:7a:c5:b1:ab:68:26:9f:fa:e5: e8:08:fb:6a:a4:8e:6c:6b:bf:68:03:11:77:e6:94:ff:6f:91: 37:dd:b2:20:fe:0d:0c:d6:c4:15:68:45:d7:6f:22:7e:b9:76: c2:86:e6:e4:4c:4e:d9:1d:bb:04:de:c5:96:71:30:cf:5b:d9: 2c:70:6b:df:17:9b:11:9d:0c:49:5d:fc:1d:85:7d:a7:a2:cd: a0:e0:fe:c2:83:9b:54:81:1c:9d:42:5e:6b:d9:dc:86:4d:e2: 4f:03:9d:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCzu104F4r1Q1RAekCDhBkGGeQOwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0Iy MzRDQTQ0NjAeFw0yNjA0MTgxODA2MDVaFw0yNjA0MjIwMjAxMDVaMDMxMTAvBgNV BAMTKDE2MzNFQTJDNkMxQ0E5MDdBNDJFNkQwQkJCRUY3MjQ3NjQwNTg5RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpjOaB4pk1TJ6Xbrc/lHaJ9F3t p4HqaaeakQgf3wo321CbMRIj0sNDy6AVtoy9GBbcOlBJZa3owCZ/2ZXBKmQwAG+w 5uAraApswhNFQSGVIPkzyoAuoj0Lav+LU1lmx7g0u3NwRuDO5mC21Wln2iQG0Il+ 7isXTQbZbh5G0CLa1QJmcnF7io1okWdXQLfxReOG/leWEJUCaM+2EGfpHmWkgR5U VcPvFm6/Omu4cQNr9RFl6MTmn3wzh7lABYSGPvtXzsR/LEcRkGE/Jom0efmswjrd pdnHaI3zqthXT2txGCzywmsICXVS9qtkuak6pz0+D+BKCNV4l+Lw6IPg8mlzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFjPqLGwcqQekLm0Lu+9yR2QFidIwHwYDVR0j BBgwFoAUzwz0PylKXIQW4/em/b8HeyNMpEYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMC9DRjBDRjQzRjI5 NEE1Qzg0MTZFM0Y3QTZGREJGMDc3QjIzNENBNDQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3N0IyMzRD QTQ0Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTgyZjJiMzgtYWRkZi00YmQzLTky NDktZTViYTU2Y2QwNTJlLzAvQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNGN0E2RkRCRjA3 N0IyMzRDQTQ0Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMrMjE4Ez/QXz1O/UBWJdW+py5ldVj/9ldOE E8KU1rAyytgBlO1aOUlRPH/I+V0ZgAix2od1J41tcb09VGGifpgggt0qYefXrVUp 8kiUQdUm4qZ2TQPTEtFy8xSQaubGSW1RATGvGh0jKN4igmD3ckKB5ToRMRegUIPf aTQhb9PFxU1JRMbfZj49gCpSiyzcJd1xZ0f71sU31nrFsatoJp/65egI+2qkjmxr v2gDEXfmlP9vkTfdsiD+DQzWxBVoRddvIn65dsKG5uRMTtkduwTexZZxMM9b2Sxw a98XmxGdDEld/B2FfaeizaDg/sKDm1SBHJ1CXmvZ3IZN4k8DnQA= -----END CERTIFICATE-----Generated at Sun Apr 19 12:59:35 2026 by rpki-client