$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: WFG394rs6/PfMz8W2Igd8BaLiDifPz+4+iw77VVgx48= Subject key identifier: D4:28:20:A1:01:C3:D1:03:8F:3E:BA:85:B6:31:B2:BE:E4:C5:53:37 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 304E13A35D7AF451F4F79B8B661830022565B5F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 01E2 Signing time: Fri 17 Apr 2026 20:11:15 +0000 Manifest this update: Fri 17 Apr 2026 20:06:15 +0000 Manifest next update: Tue 21 Apr 2026 01:24:15 +0000 Files and hashes: 1: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: Nsz7MRq1QLILRZUKMtvOCuj1NqakyHJaELVjRDPBI84=) 2: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: PTzTUTP+tcbec6oQ8XF9BBUTPEmaQDT9+JJ/xv7s79o=) 3: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: J8nc/ZkZUuiaLnI5jAoWLgIJJR1NS9p7mlRSvT0aL/o=) 4: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: WPB0w9n7mCdc21HVfo06mm6RPH3lHaCHs4qLmynGO70=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 01:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:4e:13:a3:5d:7a:f4:51:f4:f7:9b:8b:66:18:30:02:25:65:b5:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Apr 17 20:06:15 2026 GMT Not After : Apr 21 01:24:15 2026 GMT Subject: CN=D42820A101C3D1038F3EBA85B631B2BEE4C55337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7f:f0:b6:d8:b0:e2:0c:44:df:0d:41:98:da: 38:6d:03:e0:b1:ab:62:7a:22:0f:db:cf:2a:0f:e5: b4:b6:60:f2:3f:3f:0e:3e:70:f1:29:f3:aa:66:a3: 36:6e:c2:dd:64:64:bc:98:f1:24:d1:d3:97:39:cf: f3:8a:bb:ea:28:89:cc:10:6b:55:62:ae:82:49:62: 15:ba:fc:60:94:5b:1d:71:36:8b:37:c7:11:bc:28: c1:1d:36:91:33:39:78:f4:ea:d9:96:33:6d:54:e1: 7d:dc:59:3a:c9:c5:3f:60:5e:ca:a9:43:0f:40:97: b2:2f:f4:cc:9e:84:72:f5:41:9f:3b:16:fc:3b:43: bf:2e:ef:72:b4:96:58:3e:71:15:9e:f9:d8:44:b9: ef:b5:dd:4f:8d:3e:47:58:42:5c:89:b1:50:a8:08: fb:75:81:39:e2:66:90:26:ef:8c:82:2e:a7:6d:fa: 5d:61:48:e6:59:06:02:6d:1e:0f:73:e9:64:ce:c8: 3c:0d:d4:fe:99:19:d1:3b:14:df:d0:bc:b7:8e:d4: 30:6e:64:e8:47:33:9a:7e:f8:e0:1e:7c:4b:e0:8a: fe:3c:92:73:18:a7:eb:b1:30:70:21:ff:33:8c:4e: 8b:58:ab:9d:95:bd:25:75:c2:35:80:c0:48:a0:fb: 09:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:28:20:A1:01:C3:D1:03:8F:3E:BA:85:B6:31:B2:BE:E4:C5:53:37 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b0:37:df:91:2a:75:67:a1:db:9b:70:b5:b9:07:09:5b:5c: cb:e2:4d:52:1a:81:98:e6:c8:3c:b6:1e:46:4d:85:13:e8:dc: d8:86:37:bd:2b:70:2a:ce:0b:cd:9d:18:0c:77:20:36:a2:f2: c4:42:47:ce:64:ac:c2:a7:ed:d4:85:90:79:b0:d6:ec:bd:ec: 19:6d:41:72:99:7f:1c:74:e5:16:e1:30:0c:24:99:bb:7c:17: cf:38:dc:c3:9e:ed:db:64:51:f7:5a:2c:ed:4e:ae:de:5e:ef: c4:bd:e1:92:ec:3d:2f:0e:a0:91:06:0e:f4:09:96:39:97:2f: 5d:4a:0f:b9:fa:5a:d3:12:f2:21:02:cc:1f:1f:e7:4e:3e:8a: 39:3b:cf:74:b4:ec:63:64:bf:c4:b5:dc:3a:10:da:64:4a:05: 9f:2c:bc:51:94:6a:72:7b:96:3e:e4:52:b7:41:68:f2:49:1a: c2:aa:2a:e0:6a:d7:60:4e:02:82:ca:39:7f:42:c6:9d:4f:6b: a7:35:05:47:f6:ad:6e:60:ba:c0:cc:31:2d:fa:1f:5e:1b:c8: 65:ee:2e:11:a4:87:9b:6c:79:3b:7b:87:d2:41:d0:cf:41:83: af:91:e8:0b:66:fe:4c:fc:19:e0:ba:d2:1f:da:db:e0:dc:f9: 6d:7e:da:9c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUME4To1169FH095uLZhgwAiVltfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNjA0MTcyMDA2MTVaFw0yNjA0MjEwMTI0MTVaMDMxMTAvBgNV BAMTKEQ0MjgyMEExMDFDM0QxMDM4RjNFQkE4NUI2MzFCMkJFRTRDNTUzMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYf/C22LDiDETfDUGY2jhtA+Cx q2J6Ig/bzyoP5bS2YPI/Pw4+cPEp86pmozZuwt1kZLyY8STR05c5z/OKu+ooicwQ a1ViroJJYhW6/GCUWx1xNos3xxG8KMEdNpEzOXj06tmWM21U4X3cWTrJxT9gXsqp Qw9Al7Iv9MyehHL1QZ87Fvw7Q78u73K0llg+cRWe+dhEue+13U+NPkdYQlyJsVCo CPt1gTniZpAm74yCLqdt+l1hSOZZBgJtHg9z6WTOyDwN1P6ZGdE7FN/QvLeO1DBu ZOhHM5p++OAefEvgiv48knMYp+uxMHAh/zOMTotYq52VvSV1wjWAwEig+wmnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1CggoQHD0QOPPrqFtjGyvuTFUzcwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB2wN9+RKnVnodubcLW5BwlbXMviTVIagZjm yDy2HkZNhRPo3NiGN70rcCrOC82dGAx3IDai8sRCR85krMKn7dSFkHmw1uy97Blt QXKZfxx05RbhMAwkmbt8F8843MOe7dtkUfdaLO1Ort5e78S94ZLsPS8OoJEGDvQJ ljmXL11KD7n6WtMS8iECzB8f504+ijk7z3S07GNkv8S13DoQ2mRKBZ8svFGUanJ7 lj7kUrdBaPJJGsKqKuBq12BOAoLKOX9Cxp1Pa6c1BUf2rW5gusDMMS36H14byGXu LhGkh5tseTt7h9JB0M9Bg6+R6Atm/kz8GeC60h/a2+Dc+W1+2pw= -----END CERTIFICATE-----Generated at Sat Apr 18 01:43:19 2026 by rpki-client