$ rpki-client -vvf repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft File: 71054E3C02E22D607A90FACC4DE7369B65367EBD.mft (raw, json) Hash identifier: FARpAhG6D50E7BulbgINOLHL5uOKxTkFKoKI/vap0+A= Subject key identifier: 69:CE:BB:AD:03:24:B6:C1:F6:DF:3C:FB:10:48:CA:38:A0:D2:31:5C Authority key identifier: 71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD Certificate issuer: /CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Certificate serial: 40BA3463D2479991CD158252F891B3EA50A5A488 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft Manifest number: 01C4 Signing time: Thu 16 Apr 2026 03:00:57 +0000 Manifest this update: Thu 16 Apr 2026 02:55:57 +0000 Manifest next update: Sun 19 Apr 2026 14:02:57 +0000 Files and hashes: 1: 3130332e32392e31312e302f32342d3234203d3e20313431303634.roa (hash: 7ZuQrAyTpSXLw2zTTFdrCC17EZNzNmUBwi/56OEgq84=) 2: 3130332e32392e31302e302f32342d3234203d3e20313431303634.roa (hash: g42xSqBdbww2iHC490qUVGv715w1+ed6Uwshy2/cUBk=) 3: 71054E3C02E22D607A90FACC4DE7369B65367EBD.crl (hash: W3UrczPMb4Q72y/Yh09lTZX9XI1f9Nhip3Fujuvl7sY=) 4: 3130332e32392e31302e302f32332d3233203d3e20313431303634.roa (hash: ox/jPDjPCSM2yBDuW5lKFEBzvZUEEtg9kdQcbRM/Nsc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 14:02:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ba:34:63:d2:47:99:91:cd:15:82:52:f8:91:b3:ea:50:a5:a4:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71054E3C02E22D607A90FACC4DE7369B65367EBD Validity Not Before: Apr 16 02:55:57 2026 GMT Not After : Apr 19 14:02:57 2026 GMT Subject: CN=69CEBBAD0324B6C1F6DF3CFB1048CA38A0D2315C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:76:c7:7b:49:b0:69:26:53:38:00:bd:b3:78: da:f3:12:0a:b2:fe:bb:10:ca:51:e6:52:fc:9f:d3: 42:51:d7:18:f0:f7:33:ee:d1:f8:36:ab:10:a7:cd: 93:09:8a:86:d0:52:ae:2b:73:71:c5:d8:27:34:f6: 86:c7:12:c3:56:65:cf:b1:c6:ce:26:eb:2a:56:fc: 76:71:86:c0:79:b2:57:5a:50:c0:bf:34:f1:6b:40: 8e:43:9d:a1:69:c1:2c:12:ee:dd:69:0f:8a:b3:b1: 16:7d:4b:b6:19:fc:81:ea:c1:5d:4b:61:01:59:ad: 9f:34:5f:6e:20:14:02:84:71:66:81:13:bf:dd:66: 58:a0:7b:52:f5:e1:36:c8:f1:ad:ac:6e:29:ec:6d: 61:b9:66:16:1f:cd:5f:7f:14:88:7d:29:1d:44:9a: 79:aa:c8:0d:8a:37:80:48:e8:5c:17:11:b2:9a:81: 71:dd:c2:bf:ad:7a:a8:43:90:85:84:8c:e4:7c:83: 0e:db:a4:37:50:fe:77:95:6d:d8:ac:3f:ef:25:7c: 3b:2f:18:73:4e:e7:e5:7d:81:d7:b4:0b:21:b4:db: bb:f0:7c:81:84:f5:5d:be:57:aa:f6:71:26:fe:38: bc:c6:a8:92:61:8d:3a:c0:c8:70:ce:53:a0:d2:5d: 19:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CE:BB:AD:03:24:B6:C1:F6:DF:3C:FB:10:48:CA:38:A0:D2:31:5C X509v3 Authority Key Identifier: keyid:71:05:4E:3C:02:E2:2D:60:7A:90:FA:CC:4D:E7:36:9B:65:36:7E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/71054E3C02E22D607A90FACC4DE7369B65367EBD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5a532c65-80be-4fde-87d0-36c5bd288cd8/0/71054E3C02E22D607A90FACC4DE7369B65367EBD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:94:d9:37:0b:84:be:f5:15:74:13:6a:b9:6c:b3:7d:6d:10: 68:22:fc:43:2e:5b:ef:3f:b1:ed:2c:69:96:10:ff:f2:58:4f: 2b:80:5d:b1:55:06:2b:98:3d:c5:21:4b:e7:92:51:18:24:cf: 44:dc:b4:54:54:0c:50:9f:dc:df:af:da:ea:28:12:af:3a:b7: 57:4e:44:5f:b4:36:8f:c4:82:90:c2:f1:7c:ee:b0:d1:ef:d4: 10:37:9a:db:2f:44:71:d1:a2:69:8e:26:62:61:29:4e:b1:b8: 22:8a:2f:2c:15:12:92:38:2f:c3:e0:78:85:3a:58:7e:23:6a: 28:69:c9:22:58:7c:49:e8:65:26:13:fd:a1:80:4b:48:a4:a2: f0:c5:87:d1:04:18:9b:0f:be:4d:d2:6e:3f:3c:65:58:c4:dd: 5d:f5:e5:c2:43:50:d8:f9:7b:8c:30:e5:1e:c0:c6:6b:e3:15: 60:08:e8:81:6b:95:c7:50:3b:7a:85:87:8e:43:01:93:f0:7c: 17:29:87:8a:90:4b:1e:88:21:12:2b:bd:91:2d:b0:be:e6:19: 45:fe:eb:fa:1f:0b:67:bc:01:60:38:96:99:fc:15:59:d9:97: 5c:fa:af:46:18:65:8e:ef:90:bd:a3:a4:ba:8a:9d:32:a5:49: d4:83:8d:a1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQLo0Y9JHmZHNFYJS+JGz6lClpIgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2 NTM2N0VCRDAeFw0yNjA0MTYwMjU1NTdaFw0yNjA0MTkxNDAyNTdaMDMxMTAvBgNV BAMTKDY5Q0VCQkFEMDMyNEI2QzFGNkRGM0NGQjEwNDhDQTM4QTBEMjMxNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBdsd7SbBpJlM4AL2zeNrzEgqy /rsQylHmUvyf00JR1xjw9zPu0fg2qxCnzZMJiobQUq4rc3HF2Cc09obHEsNWZc+x xs4m6ypW/HZxhsB5sldaUMC/NPFrQI5DnaFpwSwS7t1pD4qzsRZ9S7YZ/IHqwV1L YQFZrZ80X24gFAKEcWaBE7/dZlige1L14TbI8a2sbinsbWG5ZhYfzV9/FIh9KR1E mnmqyA2KN4BI6FwXEbKagXHdwr+teqhDkIWEjOR8gw7bpDdQ/neVbdisP+8lfDsv GHNO5+V9gde0CyG027vwfIGE9V2+V6r2cSb+OLzGqJJhjTrAyHDOU6DSXRkHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUac67rQMktsH23zz7EEjKOKDSMVwwHwYDVR0j BBgwFoAUcQVOPALiLWB6kPrMTec2m2U2fr0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YTUzMmM2NS04MGJlLTRmZGUtODdkMC0zNmM1YmQyODhjZDgvMC83MTA1NEUzQzAy RTIyRDYwN0E5MEZBQ0M0REU3MzY5QjY1MzY3RUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2OUI2NTM2 N0VCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWE1MzJjNjUtODBiZS00ZmRlLTg3 ZDAtMzZjNWJkMjg4Y2Q4LzAvNzEwNTRFM0MwMkUyMkQ2MDdBOTBGQUNDNERFNzM2 OUI2NTM2N0VCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE6U2TcLhL71FXQTarlss31tEGgi/EMuW+8/ se0saZYQ//JYTyuAXbFVBiuYPcUhS+eSURgkz0TctFRUDFCf3N+v2uooEq86t1dO RF+0No/EgpDC8XzusNHv1BA3mtsvRHHRommOJmJhKU6xuCKKLywVEpI4L8PgeIU6 WH4jaihpySJYfEnoZSYT/aGAS0ikovDFh9EEGJsPvk3Sbj88ZVjE3V315cJDUNj5 e4ww5R7AxmvjFWAI6IFrlcdQO3qFh45DAZPwfBcph4qQSx6IIRIrvZEtsL7mGUX+ 6/ofC2e8AWA4lpn8FVnZl1z6r0YYZY7vkL2jpLqKnTKlSdSDjaE= -----END CERTIFICATE-----Generated at Fri Apr 17 20:01:48 2026 by rpki-client