$ rpki-client -vvf repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft File: 2858C74CC23A557C73F59051B7FE8638AA491C94.mft (raw, json) Hash identifier: PnhjrSfAUcY/IWm/BsKyDpYle1PtFtsnP4UZeFmLeh0= Subject key identifier: A2:79:B3:8D:79:4F:30:09:D7:67:E3:61:00:53:6A:18:7D:05:80:80 Authority key identifier: 28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 Certificate issuer: /CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Certificate serial: 6687FF2EB0A19F6C28F309E8185BA693C6734391 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject info access: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft Manifest number: 7A Signing time: Wed 15 Apr 2026 15:51:33 +0000 Manifest this update: Wed 15 Apr 2026 15:46:33 +0000 Manifest next update: Sat 18 Apr 2026 20:08:33 +0000 Files and hashes: 1: 3130332e35302e3132382e302f32322d3234203d3e20313333383039.roa (hash: IB02l7aeS1Ctr7m+n8ymFsmUvTLgjo3obFTTz15X/C8=) 2: 323430303a366632303a353a3a2f34382d3438203d3e20313333383039.roa (hash: KGGUUPJetYRovMai9BvuYsEqHu8TgW6bYg4Sm8JWJcg=) 3: 323430303a366632303a3a2f33322d3438203d3e20313333383039.roa (hash: 8MTe8KcDcB0X2kj+3dmF5RSp4lHPV4hialaox1IdvHk=) 4: 2858C74CC23A557C73F59051B7FE8638AA491C94.crl (hash: LFs1zgJLlUufUbdz1+VM6MDAuY6YVZ8kVLw+BdPrIao=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 20:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:87:ff:2e:b0:a1:9f:6c:28:f3:09:e8:18:5b:a6:93:c6:73:43:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2858C74CC23A557C73F59051B7FE8638AA491C94 Validity Not Before: Apr 15 15:46:33 2026 GMT Not After : Apr 18 20:08:33 2026 GMT Subject: CN=A279B38D794F3009D767E36100536A187D058080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:10:c0:c6:cf:3f:75:e7:f9:16:cf:8b:aa:ca: d3:b8:63:98:e1:6f:8a:72:b3:cd:8a:2a:d0:07:0d: 77:a2:d0:f7:01:df:d5:36:de:3b:d8:29:b7:14:7c: a9:5a:5d:8a:54:04:2a:f9:d9:18:00:b3:ce:6e:b4: 21:0a:f9:f9:a1:72:60:b1:49:a8:0b:a4:cc:fa:f2: f0:5a:dc:9b:cb:86:53:0f:34:4c:71:d3:b2:fe:09: b4:e6:e1:85:8b:c1:49:e5:63:63:6e:37:8f:7b:b7: b1:df:0a:ad:cf:93:b6:b4:3a:c4:25:8f:0f:45:62: 4f:97:ee:33:43:85:b9:62:af:39:ce:fe:ba:5a:98: 17:86:9d:c0:99:0e:68:34:4e:af:85:04:a6:2f:15: 24:f8:5f:31:e4:c5:ae:b1:b8:82:0d:c0:1d:a3:2a: 4e:3c:6d:6d:e7:28:b2:dc:47:3f:50:08:37:1b:87: c6:69:df:4b:91:f9:22:6d:57:bd:04:d0:7d:bd:c5: 0c:75:6d:a5:dc:0f:a7:a4:97:8f:08:3a:06:45:a2: 33:d0:17:73:3e:38:d0:20:c9:ad:15:48:ec:61:04: 25:30:4a:37:79:4b:ae:d6:9c:42:01:25:b0:94:e2: 07:e8:b8:22:d1:a7:3f:be:2c:47:b7:6f:bf:fe:d1: d6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:79:B3:8D:79:4F:30:09:D7:67:E3:61:00:53:6A:18:7D:05:80:80 X509v3 Authority Key Identifier: keyid:28:58:C7:4C:C2:3A:55:7C:73:F5:90:51:B7:FE:86:38:AA:49:1C:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2858C74CC23A557C73F59051B7FE8638AA491C94.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/59cef8b0-ba64-4c0c-8de8-1f50a85d5fde/0/2858C74CC23A557C73F59051B7FE8638AA491C94.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:fb:d1:fb:29:73:14:81:a6:b4:21:eb:0d:3d:bb:1f:19:db: 45:96:f0:8e:0d:44:bc:11:f5:95:09:3a:ad:30:3c:54:6b:e7: f6:a0:d9:8c:7f:63:89:7b:01:e6:91:f8:fe:56:aa:37:a0:0f: 53:d9:72:96:c4:2d:bf:8e:ff:07:ef:52:98:c9:28:d9:ae:b9: 07:db:e2:92:19:4b:fe:a8:45:a4:db:e0:d8:4f:fb:95:02:f7: 2a:89:b1:5e:75:43:64:97:f1:5a:bf:32:21:ba:5a:cb:ce:bf: 0a:74:c5:4f:dd:77:45:ac:d1:d7:42:b6:5b:4a:70:75:3d:5c: fb:1e:07:ed:e9:f3:79:6f:41:1f:e8:56:7a:68:93:7c:ea:93: 56:c9:ad:f8:55:3a:32:83:c5:67:80:44:1b:14:d9:8a:3b:cc: 28:c7:36:2c:26:4a:20:8c:41:3b:62:3b:5a:69:0e:d0:b9:5a: 6a:f6:78:77:fe:fe:ab:1c:65:94:62:61:10:76:c0:7f:9b:bf: fe:87:dc:2e:3a:a0:08:ca:14:2e:78:08:c7:e7:3e:65:82:99: 27:f5:29:65:6f:d5:fe:3b:9b:f7:99:2b:39:50:06:de:e6:cb: 5e:30:5a:12:af:61:e5:01:6a:8f:d1:16:1b:95:0c:2f:f4:ab: d6:fc:8c:58 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZof/LrChn2wo8wnoGFumk8ZzQ5EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhB QTQ5MUM5NDAeFw0yNjA0MTUxNTQ2MzNaFw0yNjA0MTgyMDA4MzNaMDMxMTAvBgNV BAMTKEEyNzlCMzhENzk0RjMwMDlENzY3RTM2MTAwNTM2QTE4N0QwNTgwODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiEMDGzz915/kWz4uqytO4Y5jh b4pys82KKtAHDXei0PcB39U23jvYKbcUfKlaXYpUBCr52RgAs85utCEK+fmhcmCx SagLpMz68vBa3JvLhlMPNExx07L+CbTm4YWLwUnlY2NuN497t7HfCq3Pk7a0OsQl jw9FYk+X7jNDhblirznO/rpamBeGncCZDmg0Tq+FBKYvFST4XzHkxa6xuIINwB2j Kk48bW3nKLLcRz9QCDcbh8Zp30uR+SJtV70E0H29xQx1baXcD6ekl48IOgZFojPQ F3M+ONAgya0VSOxhBCUwSjd5S67WnEIBJbCU4gfouCLRpz++LEe3b7/+0daTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUonmzjXlPMAnXZ+NhAFNqGH0FgIAwHwYDVR0j BBgwFoAUKFjHTMI6VXxz9ZBRt/6GOKpJHJQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 OWNlZjhiMC1iYTY0LTRjMGMtOGRlOC0xZjUwYTg1ZDVmZGUvMC8yODU4Qzc0Q0My M0E1NTdDNzNGNTkwNTFCN0ZFODYzOEFBNDkxQzk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2MzhBQTQ5 MUM5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTljZWY4YjAtYmE2NC00YzBjLThk ZTgtMWY1MGE4NWQ1ZmRlLzAvMjg1OEM3NENDMjNBNTU3QzczRjU5MDUxQjdGRTg2 MzhBQTQ5MUM5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGr70fspcxSBprQh6w09ux8Z20WW8I4NRLwR 9ZUJOq0wPFRr5/ag2Yx/Y4l7AeaR+P5WqjegD1PZcpbELb+O/wfvUpjJKNmuuQfb 4pIZS/6oRaTb4NhP+5UC9yqJsV51Q2SX8Vq/MiG6WsvOvwp0xU/dd0Ws0ddCtltK cHU9XPseB+3p83lvQR/oVnpok3zqk1bJrfhVOjKDxWeARBsU2Yo7zCjHNiwmSiCM QTtiO1ppDtC5Wmr2eHf+/qscZZRiYRB2wH+bv/6H3C46oAjKFC54CMfnPmWCmSf1 KWVv1f47m/eZKzlQBt7my14wWhKvYeUBao/RFhuVDC/0q9b8jFg= -----END CERTIFICATE-----Generated at Fri Apr 17 13:59:59 2026 by rpki-client