$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: xH0ugvafjCpUS14jtV9tA94edbhUr6j+sFFqDdHxgmo= Subject key identifier: EB:46:BA:46:BA:78:75:D7:FB:BD:89:84:5D:68:19:99:03:80:61:BE Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 22164B63F38058EDFD64435BBC087D865EE02838 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 033B Signing time: Thu 16 Apr 2026 06:51:24 +0000 Manifest this update: Thu 16 Apr 2026 06:46:23 +0000 Manifest next update: Sun 19 Apr 2026 08:23:23 +0000 Files and hashes: 1: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: 0qCM2olgS4oE+YIGItrwN9xQiW2Tx+5S0Vcz+QMGK2k=) 2: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: wEdCO3YyXLUpfkiKLdOWDdPh+9yeo9Z0D5c9ufB6gOc=) 3: 3130332e3137362e39362e302f32332d3233203d3e20313437313331.roa (hash: RvlNgfW0J+bVY7d2yjeoXrc2sRB1/6Dnvn34DHTz4kU=) 4: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: 82Bq9lgYZJPKJjXOs1v+J7ahRyJ6MpQCqudOFREJ++E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 08:23:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:16:4b:63:f3:80:58:ed:fd:64:43:5b:bc:08:7d:86:5e:e0:28:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Apr 16 06:46:23 2026 GMT Not After : Apr 19 08:23:23 2026 GMT Subject: CN=EB46BA46BA7875D7FBBD89845D681999038061BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:24:4d:2d:71:e0:aa:28:9c:91:76:c9:54:b3: 70:73:95:9b:98:9d:15:c8:be:12:5c:b0:ef:93:53: 1f:80:19:c1:48:b0:ec:41:ac:8f:c7:47:31:8f:58: 55:f3:e0:e3:72:b5:17:1e:49:5b:e8:13:d7:6a:1b: 77:b8:cf:58:17:77:9e:06:b9:39:73:88:39:c3:99: 43:eb:7f:4a:0e:3a:97:11:9f:3b:d0:99:d0:71:e5: c9:a1:7e:fe:f7:33:eb:96:24:3e:66:de:d4:86:35: 70:06:1d:90:f4:00:29:fc:e5:d6:77:7d:b3:67:5a: 73:33:8a:01:9b:34:5b:91:64:ba:c5:7a:9c:72:82: 90:c2:85:0f:f3:e4:1c:50:7a:b9:fc:07:72:d3:51: 90:ca:aa:6e:f0:24:20:01:f8:48:20:c5:c7:b8:7a: 72:48:9b:df:a7:ed:84:9b:d1:d2:ef:d4:ba:d4:96: 4e:9f:62:a2:9e:72:0a:40:39:9b:ac:68:6a:89:ce: 89:d5:e8:ed:6a:d2:66:1a:a2:8a:4c:c4:14:d8:71: 64:9e:99:a0:51:59:4b:7b:93:d4:63:6f:1f:c4:c5: 53:0f:56:e1:27:c4:d2:5c:dd:39:f1:6b:66:30:81: ff:1c:4c:90:f8:81:0a:85:d6:40:21:b4:b9:0a:81: 6b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:46:BA:46:BA:78:75:D7:FB:BD:89:84:5D:68:19:99:03:80:61:BE X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:a7:7b:7a:8e:a5:60:0d:ae:cd:43:a1:fd:d1:c9:f1:ca:f6: 05:f2:d3:a8:86:cc:88:f8:e0:16:86:3d:f6:4a:c8:9e:f5:20: c7:65:cc:e0:65:3d:37:8f:cb:29:94:df:7e:05:4d:f0:1f:20: 2f:d5:99:08:20:3c:23:b3:14:9a:23:b5:1a:c3:94:01:c7:8a: 39:79:ec:fd:5f:e5:35:09:c8:ae:fd:33:44:d8:a5:5c:59:37: 1b:65:ff:1d:90:29:ee:5c:dd:8d:6c:4b:35:43:b2:a7:3c:32: 31:eb:f9:b5:37:7d:e5:03:db:b0:51:d5:c8:84:72:0e:88:3b: 3d:c8:3a:1e:cb:f4:5c:50:f6:1a:04:2b:75:ca:05:f4:f8:38: f7:cb:b8:ce:cb:db:b4:6c:bd:77:ff:dc:64:be:b1:7e:55:53: d5:7b:ac:a6:0e:24:9b:98:dc:d4:aa:4a:12:03:b6:00:01:38: 52:6d:6c:9d:40:07:57:9d:0a:fe:f3:6e:cb:5c:7a:a6:8c:0d: 4b:3c:2d:69:49:f6:76:13:1d:ca:f7:65:ba:4b:ff:eb:6d:de: 6d:d3:0a:39:2d:25:60:8a:f3:52:17:85:b5:1b:5e:6d:7d:c9: dc:a2:1b:11:37:fd:e8:8b:fd:e7:77:50:a3:e7:ba:c5:ac:6a: 0e:52:e2:64 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIhZLY/OAWO39ZENbvAh9hl7gKDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNjA0MTYwNjQ2MjNaFw0yNjA0MTkwODIzMjNaMDMxMTAvBgNV BAMTKEVCNDZCQTQ2QkE3ODc1RDdGQkJEODk4NDVENjgxOTk5MDM4MDYxQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfJE0tceCqKJyRdslUs3BzlZuY nRXIvhJcsO+TUx+AGcFIsOxBrI/HRzGPWFXz4ONytRceSVvoE9dqG3e4z1gXd54G uTlziDnDmUPrf0oOOpcRnzvQmdBx5cmhfv73M+uWJD5m3tSGNXAGHZD0ACn85dZ3 fbNnWnMzigGbNFuRZLrFepxygpDChQ/z5BxQern8B3LTUZDKqm7wJCAB+Eggxce4 enJIm9+n7YSb0dLv1LrUlk6fYqKecgpAOZusaGqJzonV6O1q0mYaoopMxBTYcWSe maBRWUt7k9Rjbx/ExVMPVuEnxNJc3Tnxa2Ywgf8cTJD4gQqF1kAhtLkKgWvXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU60a6Rrp4ddf7vYmEXWgZmQOAYb4wHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABine3qOpWANrs1Dof3RyfHK9gXy06iGzIj4 4BaGPfZKyJ71IMdlzOBlPTePyymU334FTfAfIC/VmQggPCOzFJojtRrDlAHHijl5 7P1f5TUJyK79M0TYpVxZNxtl/x2QKe5c3Y1sSzVDsqc8MjHr+bU3feUD27BR1ciE cg6IOz3IOh7L9FxQ9hoEK3XKBfT4OPfLuM7L27RsvXf/3GS+sX5VU9V7rKYOJJuY 3NSqShIDtgABOFJtbJ1AB1edCv7zbstceqaMDUs8LWlJ9nYTHcr3ZbpL/+tt3m3T CjktJWCK81IXhbUbXm19ydyiGxE3/eiL/ed3UKPnusWsag5S4mQ= -----END CERTIFICATE-----Generated at Fri Apr 17 23:38:00 2026 by rpki-client