$ rpki-client -vvf repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft File: 651790FFFC1688AFA384D136FC4792AD18879019.mft (raw, json) Hash identifier: z+yZGwgIsNGwBpKcBiFaNo6QryvGP1U0KlEJTihxZEM= Subject key identifier: 22:54:16:79:AA:42:CC:09:7F:CE:C9:B1:63:3D:3C:80:F8:EB:8E:40 Authority key identifier: 65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 Certificate issuer: /CN=651790FFFC1688AFA384D136FC4792AD18879019 Certificate serial: 59AE9507BE6AE40DC1AE3E73BE6F8D3E1268F361 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft Manifest number: 0567 Signing time: Thu 16 Apr 2026 20:12:32 +0000 Manifest this update: Thu 16 Apr 2026 20:07:32 +0000 Manifest next update: Mon 20 Apr 2026 08:09:32 +0000 Files and hashes: 1: 651790FFFC1688AFA384D136FC4792AD18879019.crl (hash: NqmRH9sitUdJI3qffwgDSWbqm3JehT7nbowO/hejJmY=) 2: 3130332e35332e37362e302f32322d3234203d3e20313333383137.roa (hash: +2/fO8INW6MBjsIr2MpsMr5pDS/07SU3AZAKJ801ins=) 3: 323430323a353538303a3a2f33322d3438203d3e20313333383137.roa (hash: dttoTx4BQRFnMAvnuJnvYcnCQ5YOgtytig0qE7CIy64=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 08:09:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ae:95:07:be:6a:e4:0d:c1:ae:3e:73:be:6f:8d:3e:12:68:f3:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=651790FFFC1688AFA384D136FC4792AD18879019 Validity Not Before: Apr 16 20:07:32 2026 GMT Not After : Apr 20 08:09:32 2026 GMT Subject: CN=22541679AA42CC097FCEC9B1633D3C80F8EB8E40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:07:d9:d2:4f:1d:3a:ce:12:59:33:10:c6:6c: 5e:aa:f2:3f:75:40:cc:f2:89:8a:5b:b6:b8:bb:48: c5:2f:73:70:33:30:a8:33:f7:fe:d0:49:29:bc:cb: 9f:4f:4e:4d:21:1d:2f:46:98:bb:c9:a2:dd:73:9e: 8b:9b:5b:8f:50:64:db:09:f9:b1:09:30:1e:fe:77: 22:d1:fc:09:70:34:b8:88:19:a1:9f:5f:99:32:4f: 99:f0:c6:82:ef:21:95:23:d8:f2:89:ed:fd:3f:e1: 45:4e:e8:70:8f:7f:c8:c3:1f:68:87:b7:a0:47:61: b4:dd:fa:c3:68:b5:a0:aa:e0:33:d6:cc:20:35:bd: f8:e2:98:65:33:79:e7:06:29:99:e1:65:81:de:c7: b3:3a:59:56:e9:6d:a2:6f:bb:18:19:98:a9:06:ba: 29:5a:2d:d7:7a:4d:00:86:78:b7:fa:cf:ae:c5:02: 51:32:e9:34:a5:44:2a:82:11:16:be:66:08:13:5c: b4:99:40:96:12:a0:c4:71:df:34:f9:2a:a3:f5:96: 35:52:1c:05:8b:7d:fe:0a:5c:b8:a6:31:a9:b3:8e: c7:13:e1:35:bf:7d:47:66:b4:ea:b5:9f:96:90:95: cb:16:8d:60:9f:c5:11:19:00:c2:fa:f7:f9:b7:9c: 9f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:54:16:79:AA:42:CC:09:7F:CE:C9:B1:63:3D:3C:80:F8:EB:8E:40 X509v3 Authority Key Identifier: keyid:65:17:90:FF:FC:16:88:AF:A3:84:D1:36:FC:47:92:AD:18:87:90:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/651790FFFC1688AFA384D136FC4792AD18879019.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66f7ef34-4991-4bb1-96b4-be43f1ecabb4/0/651790FFFC1688AFA384D136FC4792AD18879019.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:e4:8a:c5:c3:2e:28:ba:1d:b8:d4:02:c2:25:66:12:bd:7f: cf:20:38:0f:b2:86:99:85:75:bb:ee:40:94:bb:7b:ab:cc:5b: 34:3b:d0:9c:98:0d:19:1e:9d:e4:d4:ce:58:9c:bd:3e:41:01: d0:35:62:70:b9:cb:aa:93:18:c3:8f:98:98:9c:5c:da:ad:13: 2d:07:e6:13:d8:22:ef:9b:e9:1d:dd:49:75:dc:af:54:23:2d: 68:34:9e:72:f7:88:5e:0d:a6:16:ab:c2:45:bd:e7:25:16:b9: f1:a0:68:53:b7:7a:e4:ee:20:1c:16:1d:3d:6c:49:01:73:58: 4c:03:46:0f:ad:54:b8:a8:3f:c0:80:32:96:45:b7:45:c3:93: a5:ed:18:56:6f:59:bd:1a:e2:0c:5e:e0:4f:b4:a3:fe:23:ed: 11:96:ba:81:c8:62:13:26:b2:46:35:1d:61:38:cf:16:83:af: 4e:7f:f4:ce:00:3a:61:14:bd:a7:d0:e8:b1:da:14:33:fb:fb: 8f:7d:70:50:ef:85:03:a5:92:c1:4e:9b:5a:36:d1:59:97:7a: 52:7d:02:8c:7b:74:34:21:94:96:99:5d:9b:a5:51:de:16:94: 38:82:aa:22:29:73:ce:d2:9f:04:42:1f:81:b7:2c:66:44:38: 15:ff:3e:36 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWa6VB75q5A3Brj5zvm+NPhJo82EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQx ODg3OTAxOTAeFw0yNjA0MTYyMDA3MzJaFw0yNjA0MjAwODA5MzJaMDMxMTAvBgNV BAMTKDIyNTQxNjc5QUE0MkNDMDk3RkNFQzlCMTYzM0QzQzgwRjhFQjhFNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1B9nSTx06zhJZMxDGbF6q8j91 QMzyiYpbtri7SMUvc3AzMKgz9/7QSSm8y59PTk0hHS9GmLvJot1znoubW49QZNsJ +bEJMB7+dyLR/AlwNLiIGaGfX5kyT5nwxoLvIZUj2PKJ7f0/4UVO6HCPf8jDH2iH t6BHYbTd+sNotaCq4DPWzCA1vfjimGUzeecGKZnhZYHex7M6WVbpbaJvuxgZmKkG uilaLdd6TQCGeLf6z67FAlEy6TSlRCqCERa+ZggTXLSZQJYSoMRx3zT5KqP1ljVS HAWLff4KXLimMamzjscT4TW/fUdmtOq1n5aQlcsWjWCfxREZAML69/m3nJ9DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIlQWeapCzAl/zsmxYz08gPjrjkAwHwYDVR0j BBgwFoAUZReQ//wWiK+jhNE2/EeSrRiHkBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmY3ZWYzNC00OTkxLTRiYjEtOTZiNC1iZTQzZjFlY2FiYjQvMC82NTE3OTBGRkZD MTY4OEFGQTM4NEQxMzZGQzQ3OTJBRDE4ODc5MDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0NzkyQUQxODg3 OTAxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZmN2VmMzQtNDk5MS00YmIxLTk2 YjQtYmU0M2YxZWNhYmI0LzAvNjUxNzkwRkZGQzE2ODhBRkEzODREMTM2RkM0Nzky QUQxODg3OTAxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHbkisXDLii6HbjUAsIlZhK9f88gOA+yhpmF dbvuQJS7e6vMWzQ70JyYDRkeneTUzlicvT5BAdA1YnC5y6qTGMOPmJicXNqtEy0H 5hPYIu+b6R3dSXXcr1QjLWg0nnL3iF4NpharwkW95yUWufGgaFO3euTuIBwWHT1s SQFzWEwDRg+tVLioP8CAMpZFt0XDk6XtGFZvWb0a4gxe4E+0o/4j7RGWuoHIYhMm skY1HWE4zxaDr05/9M4AOmEUvafQ6LHaFDP7+499cFDvhQOlksFOm1o20VmXelJ9 Aox7dDQhlJaZXZulUd4WlDiCqiIpc87SnwRCH4G3LGZEOBX/PjY= -----END CERTIFICATE-----Generated at Sat Apr 18 00:00:21 2026 by rpki-client