$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: YzfcHWejmUjVJfNQB8Y2/FjHTiBsUPJaFwIxeiVbt60= Subject key identifier: 5D:B0:F8:24:3C:D4:C3:1F:6F:DA:B6:C1:B5:2B:E2:14:0E:08:5F:59 Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 66CAD2446A42A59FE65E4CE51922F9AAB8B74D5D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 02A0 Signing time: Fri 17 Apr 2026 16:51:19 +0000 Manifest this update: Fri 17 Apr 2026 16:46:19 +0000 Manifest next update: Tue 21 Apr 2026 04:23:19 +0000 Files and hashes: 1: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: LJlBxq8ymyHGerS3R49fpjBElb4mwDz4wakEqWAnKM4=) 2: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: 0gXOJT38WPRdvZH/mvcMIDFy0eFxFO3CspBZZzjXpXE=) 3: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: uo5pF1eomFL17qo0wvVykDTy0THDlkncRv1HyU09apE=) 4: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: etYodgnJYh3trd5HBJwHsn5n2vL2wMwaYJQCzGIxOug=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 04:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ca:d2:44:6a:42:a5:9f:e6:5e:4c:e5:19:22:f9:aa:b8:b7:4d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Apr 17 16:46:19 2026 GMT Not After : Apr 21 04:23:19 2026 GMT Subject: CN=5DB0F8243CD4C31F6FDAB6C1B52BE2140E085F59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b4:37:f0:7e:6e:73:5d:df:e2:a8:33:44:a3: 42:85:c5:f5:5b:f5:f5:32:5c:92:59:1c:40:d4:16: 12:8c:54:6a:df:c9:46:6d:fa:09:14:a2:20:0c:85: e6:2e:3b:5f:52:a2:55:03:66:88:15:bf:6a:61:b0: b1:c1:ad:7c:e5:f3:8b:6f:a6:19:a5:de:05:3f:23: ef:91:31:e8:a2:4c:9c:6a:77:7c:05:e0:3d:80:99: 3d:36:a9:57:33:d0:35:b2:e5:6e:34:a5:38:10:5f: bb:c2:91:96:35:e8:63:31:77:72:7e:56:cc:36:cb: 3e:c6:f2:95:3d:d5:c9:45:69:4c:d1:f7:23:17:92: 3a:64:78:72:89:d0:f0:85:9a:2f:0b:ae:75:84:cb: 52:40:87:80:cd:5b:d6:f9:6e:d4:c9:52:33:44:8b: b7:a1:7f:ab:db:7c:50:d2:a0:41:58:91:d2:cc:6d: 72:83:ed:71:d6:f9:a6:5a:33:54:8c:43:a5:98:69: 6c:be:3f:d6:2c:27:ef:0a:69:05:d7:2a:1d:d7:17: 9e:0c:3e:c6:4e:27:34:c0:fc:5e:94:c5:a1:ac:2d: 93:cd:99:7a:fa:03:fa:de:d7:96:33:e1:1a:79:20: a6:91:80:c1:4d:0a:0a:dc:1f:ec:a8:d9:3c:09:0a: bb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:B0:F8:24:3C:D4:C3:1F:6F:DA:B6:C1:B5:2B:E2:14:0E:08:5F:59 X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e7:0a:67:85:3c:d7:e6:93:af:93:f7:11:04:39:95:8c:f7:d1: f2:f0:55:73:e0:e0:71:dd:e7:6c:0b:e9:3d:38:9c:d6:59:7f: e3:ea:5b:da:36:37:3b:38:9a:82:06:cd:17:df:d8:c9:05:be: 5c:d1:1e:89:2b:8c:1a:d0:48:5c:3d:ae:61:c6:c0:ea:8b:14: a9:84:74:a2:a5:91:c7:20:65:5c:84:0b:33:a5:b0:2a:e9:ee: 64:06:dd:81:51:1e:c2:26:00:63:3c:0d:1c:b4:24:60:b4:34: 8b:f5:2d:6d:e9:f9:48:6c:2d:fd:98:b4:53:55:97:88:69:4f: ec:e1:53:45:89:5f:2b:b4:57:fb:30:0f:f9:8d:8c:7b:77:0d: e7:74:a9:6b:09:49:e0:89:c3:ec:0e:1a:bf:cf:78:4f:33:bb: d6:44:47:06:d9:b3:da:c2:c2:63:53:ea:35:e9:1a:aa:a9:fc: 0d:96:08:cb:b5:6a:49:80:7a:31:a1:b0:d6:6c:0f:95:e5:b3: ea:b3:cd:48:a0:00:0f:82:e8:68:08:59:b8:79:36:6b:ac:4e: 31:5c:69:8a:f2:b1:77:70:18:00:ff:5f:b3:f3:84:93:92:51: 57:e5:a9:af:81:19:66:bd:81:6e:b5:71:d6:37:92:5b:bc:71: 14:d9:96:27 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZsrSRGpCpZ/mXkzlGSL5qri3TV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNjA0MTcxNjQ2MTlaFw0yNjA0MjEwNDIzMTlaMDMxMTAvBgNV BAMTKDVEQjBGODI0M0NENEMzMUY2RkRBQjZDMUI1MkJFMjE0MEUwODVGNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYtDfwfm5zXd/iqDNEo0KFxfVb 9fUyXJJZHEDUFhKMVGrfyUZt+gkUoiAMheYuO19SolUDZogVv2phsLHBrXzl84tv phml3gU/I++RMeiiTJxqd3wF4D2AmT02qVcz0DWy5W40pTgQX7vCkZY16GMxd3J+ Vsw2yz7G8pU91clFaUzR9yMXkjpkeHKJ0PCFmi8LrnWEy1JAh4DNW9b5btTJUjNE i7ehf6vbfFDSoEFYkdLMbXKD7XHW+aZaM1SMQ6WYaWy+P9YsJ+8KaQXXKh3XF54M PsZOJzTA/F6UxaGsLZPNmXr6A/re15Yz4Rp5IKaRgMFNCgrcH+yo2TwJCrudAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXbD4JDzUwx9v2rbBtSviFA4IX1kwHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOcKZ4U81+aTr5P3EQQ5lYz30fLwVXPg4HHd 52wL6T04nNZZf+PqW9o2Nzs4moIGzRff2MkFvlzRHokrjBrQSFw9rmHGwOqLFKmE dKKlkccgZVyECzOlsCrp7mQG3YFRHsImAGM8DRy0JGC0NIv1LW3p+UhsLf2YtFNV l4hpT+zhU0WJXyu0V/swD/mNjHt3Ded0qWsJSeCJw+wOGr/PeE8zu9ZERwbZs9rC wmNT6jXpGqqp/A2WCMu1akmAejGhsNZsD5Xls+qzzUigAA+C6GgIWbh5NmusTjFc aYrysXdwGAD/X7PzhJOSUVflqa+BGWa9gW61cdY3klu8cRTZlic= -----END CERTIFICATE-----Generated at Fri Apr 17 23:17:09 2026 by rpki-client