$ rpki-client -vvf repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft File: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft (raw, json) Hash identifier: hZqWCoku/pPscjptsC/0v0AQUYQGYsqL0MsAOD9SB0g= Subject key identifier: DA:F7:79:75:98:FA:ED:5E:02:05:AF:98:DC:91:C8:B8:83:0E:27:EA Authority key identifier: D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 Certificate issuer: /CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Certificate serial: 5D1C24DC42B81BF929F7CC7642B2BB6F76A4A00E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft Manifest number: 0263 Signing time: Fri 17 Apr 2026 15:02:14 +0000 Manifest this update: Fri 17 Apr 2026 14:57:14 +0000 Manifest next update: Mon 20 Apr 2026 19:58:14 +0000 Files and hashes: 1: D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl (hash: 1Kn/mgEUMBoHSyDHRsuuzbcIGgyG2ausrTi1E1hIbHw=) 2: 3130332e3136312e3230322e302f32332d3234203d3e203338333230.roa (hash: KM1ESBIXGbFNSPLyYnNSMBK3OGLkTwlOBU29jEyxfKk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 19:58:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:1c:24:dc:42:b8:1b:f9:29:f7:cc:76:42:b2:bb:6f:76:a4:a0:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0 Validity Not Before: Apr 17 14:57:14 2026 GMT Not After : Apr 20 19:58:14 2026 GMT Subject: CN=DAF7797598FAED5E0205AF98DC91C8B8830E27EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:26:57:2e:ad:48:48:36:37:af:aa:a8:4f:29: 96:aa:47:c8:63:21:ef:3b:a0:76:a0:06:e8:e7:41: 98:6d:34:56:08:3e:03:f7:db:3f:02:fa:46:f3:cd: 97:e3:52:be:04:07:67:eb:72:10:63:58:59:af:e2: 9c:b2:de:e6:06:4b:b6:d8:1c:cd:ed:ee:2e:3b:72: 04:27:c4:5c:58:c9:c1:84:b4:d7:3b:c5:86:0a:56: 26:a9:42:05:32:02:7d:c2:b5:d3:58:c3:34:77:30: 1e:83:4b:88:15:d6:7a:d6:b2:55:3c:74:63:ba:56: 60:73:c7:98:f7:8c:48:99:26:07:ba:be:53:e6:d0: 6c:90:6e:c7:12:b0:c9:96:ba:0c:a8:f3:2e:cc:a2: 7c:86:8b:7a:13:89:fb:cb:42:94:2c:0d:d9:7e:72: 91:b4:1d:fa:a9:18:3a:32:08:51:67:f4:ed:29:7f: 4c:86:6b:26:61:44:69:c1:23:67:23:eb:45:4b:05: 3e:7c:da:c9:6c:39:d9:b4:b5:e7:d2:dc:ed:e7:4c: 92:41:74:34:ce:f5:0c:fb:28:bd:8c:6d:07:c3:13: 94:1f:03:90:0e:bb:ae:42:e9:9d:2b:59:3f:2c:e8: 40:46:07:8a:4d:f0:0d:56:ff:35:6e:3f:cd:08:55: d2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:F7:79:75:98:FA:ED:5E:02:05:AF:98:DC:91:C8:B8:83:0E:27:EA X509v3 Authority Key Identifier: keyid:D0:FF:6F:09:3D:0D:EA:FB:5C:B4:2A:93:43:3F:A2:39:C9:03:EA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67f9f562-7292-44f1-8e2c-440a0531c396/0/D0FF6F093D0DEAFB5CB42A93433FA239C903EAC0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:55:17:78:c0:2d:b3:8f:37:bc:a8:8e:38:44:4f:0c:34:58: a5:a8:04:6f:89:da:0b:78:99:cf:02:fa:a0:63:45:59:7b:04: 48:95:1d:a8:b5:3f:12:f8:3b:be:53:ab:a5:59:61:0a:74:f7: 50:1f:51:4b:bb:96:12:1e:88:59:95:7e:78:2a:0f:3b:f7:fc: 9e:ff:49:42:ac:4a:36:32:8f:65:2c:d2:63:f2:76:fb:18:46: 96:29:6d:b3:67:6b:d9:fb:dd:0a:8d:27:72:e1:60:c0:ea:80: 85:12:2f:23:b6:83:89:c8:48:83:16:21:9f:16:56:c2:98:10: e0:75:02:09:fd:cc:04:ee:8e:55:d8:86:65:b0:7c:fe:60:72: 18:70:08:a6:09:14:18:50:26:b9:0f:f0:8c:1e:5b:b8:8d:0f: cb:4a:30:02:d8:89:4f:91:ce:bf:2f:53:74:ae:53:2f:26:97: 36:09:78:92:11:1d:7a:c1:4c:e4:d0:5e:e9:dc:05:0e:be:79: 53:ca:9b:5c:dc:29:ee:f7:c4:93:dc:25:22:9f:2e:e7:9a:f0: 6e:bd:35:87:0e:91:a1:bd:3e:db:5a:3d:81:64:4d:33:6f:b1: 0e:77:7c:c7:15:e1:56:86:77:ea:ea:87:d2:79:ab:6e:f8:bc: cb:f0:98:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXRwk3EK4G/kp98x2QrK7b3akoA4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlD OTAzRUFDMDAeFw0yNjA0MTcxNDU3MTRaFw0yNjA0MjAxOTU4MTRaMDMxMTAvBgNV BAMTKERBRjc3OTc1OThGQUVENUUwMjA1QUY5OERDOTFDOEI4ODMwRTI3RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPJlcurUhINjevqqhPKZaqR8hj Ie87oHagBujnQZhtNFYIPgP32z8C+kbzzZfjUr4EB2frchBjWFmv4pyy3uYGS7bY HM3t7i47cgQnxFxYycGEtNc7xYYKViapQgUyAn3CtdNYwzR3MB6DS4gV1nrWslU8 dGO6VmBzx5j3jEiZJge6vlPm0GyQbscSsMmWugyo8y7MonyGi3oTifvLQpQsDdl+ cpG0HfqpGDoyCFFn9O0pf0yGayZhRGnBI2cj60VLBT582slsOdm0tefS3O3nTJJB dDTO9Qz7KL2MbQfDE5QfA5AOu65C6Z0rWT8s6EBGB4pN8A1W/zVuP80IVdIjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2vd5dZj67V4CBa+Y3JHIuIMOJ+owHwYDVR0j BBgwFoAU0P9vCT0N6vtctCqTQz+iOckD6sAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2Y5ZjU2Mi03MjkyLTQ0ZjEtOGUyYy00NDBhMDUzMWMzOTYvMC9EMEZGNkYwOTNE MERFQUZCNUNCNDJBOTM0MzNGQTIzOUM5MDNFQUMwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEyMzlDOTAz RUFDMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdmOWY1NjItNzI5Mi00NGYxLThl MmMtNDQwYTA1MzFjMzk2LzAvRDBGRjZGMDkzRDBERUFGQjVDQjQyQTkzNDMzRkEy MzlDOTAzRUFDMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALhVF3jALbOPN7yojjhETww0WKWoBG+J2gt4 mc8C+qBjRVl7BEiVHai1PxL4O75Tq6VZYQp091AfUUu7lhIeiFmVfngqDzv3/J7/ SUKsSjYyj2Us0mPydvsYRpYpbbNna9n73QqNJ3LhYMDqgIUSLyO2g4nISIMWIZ8W VsKYEOB1Agn9zATujlXYhmWwfP5gchhwCKYJFBhQJrkP8IweW7iND8tKMALYiU+R zr8vU3SuUy8mlzYJeJIRHXrBTOTQXuncBQ6+eVPKm1zcKe73xJPcJSKfLuea8G69 NYcOkaG9PttaPYFkTTNvsQ53fMcV4VaGd+rqh9J5q274vMvwmG8= -----END CERTIFICATE-----Generated at Sat Apr 18 01:45:13 2026 by rpki-client