$ rpki-client -vvf repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft File: D2EA420344F486935839E03DF1B3C237F295C2DE.mft (raw, json) Hash identifier: Q2UYTVtesJTTMpMK1ghubn//LouBZVnusp80MWobiIE= Subject key identifier: 8A:A4:14:14:71:1B:1C:5D:9A:C6:A0:B8:DF:D5:E0:C8:27:2F:66:7C Authority key identifier: D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE Certificate issuer: /CN=D2EA420344F486935839E03DF1B3C237F295C2DE Certificate serial: 458EA3F7FF4108D02C0B5239BEDE5309454EFB2E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft Manifest number: 0538 Signing time: Sat 18 Apr 2026 16:02:10 +0000 Manifest this update: Sat 18 Apr 2026 15:57:10 +0000 Manifest next update: Tue 21 Apr 2026 19:38:10 +0000 Files and hashes: 1: D2EA420344F486935839E03DF1B3C237F295C2DE.crl (hash: rfqwPtZK3l0nlUatFbIxdX+HDZ9iPvep+yxqmtrNtkY=) 2: 323430323a386163303a3a2f33322d3438203d3e20313337333230.roa (hash: oHAd0vkxRqWyozAmCufOZ+4unG6aZz/EmEBi8K1zkKg=) 3: 3130332e3131302e3132302e302f32322d3234203d3e20313337333230.roa (hash: Z1/0hxtcuucuwACdWQq+JfghAHLR9fBRu9+nQ76ie1Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 19:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:8e:a3:f7:ff:41:08:d0:2c:0b:52:39:be:de:53:09:45:4e:fb:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EA420344F486935839E03DF1B3C237F295C2DE Validity Not Before: Apr 18 15:57:10 2026 GMT Not After : Apr 21 19:38:10 2026 GMT Subject: CN=8AA41414711B1C5D9AC6A0B8DFD5E0C8272F667C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d9:bb:24:f5:71:e0:98:9e:11:be:65:ac:24: 51:81:31:9e:53:1d:5c:03:4e:9e:ca:fd:ce:ad:06: 96:c9:67:c3:8f:c0:51:9e:ff:18:97:31:16:2d:d8: 7d:7d:40:42:86:f4:07:3f:ac:76:76:2e:f2:25:5a: 7e:1a:a8:5e:d7:55:10:4f:86:4b:50:e3:e2:3b:ee: cd:83:6f:93:2c:03:a1:78:be:f2:62:19:ad:55:88: ec:98:0e:4b:55:c9:df:9e:bf:49:62:ec:54:de:ab: 5c:c9:0f:45:0e:de:e3:33:9d:68:64:8e:5f:01:e2: 5d:99:21:a5:dd:46:57:28:e7:a4:60:4c:a1:8a:71: 3e:da:79:a0:c3:3b:d6:68:69:e2:b0:73:90:2a:0d: d0:2c:2a:56:2d:ab:ab:6d:1f:9c:1b:58:53:e2:f7: 17:6e:7d:53:5f:c3:b8:47:f1:e0:44:fa:08:0f:f4: c3:f9:ae:81:df:2d:0e:18:2f:37:ab:6c:42:c9:21: 5b:c2:56:70:d5:a1:65:9b:6b:5f:4a:ef:a5:7b:6a: ae:8c:c8:f8:42:b0:fe:19:19:67:4b:98:8b:de:86: c1:af:e0:29:b3:ef:4d:01:8a:b7:25:54:7c:06:5b: 80:e7:37:37:10:6b:c5:27:21:87:e8:fe:dc:11:31: 34:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:A4:14:14:71:1B:1C:5D:9A:C6:A0:B8:DF:D5:E0:C8:27:2F:66:7C X509v3 Authority Key Identifier: keyid:D2:EA:42:03:44:F4:86:93:58:39:E0:3D:F1:B3:C2:37:F2:95:C2:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EA420344F486935839E03DF1B3C237F295C2DE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/740883f3-457a-4c14-9577-67e150a2b12a/0/D2EA420344F486935839E03DF1B3C237F295C2DE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:4d:54:fe:2f:d1:46:49:47:e0:d9:9c:37:5c:88:13:98:21: 0b:ee:e2:a7:73:8a:af:52:6f:ae:5a:37:23:09:51:50:72:64: f7:c6:5c:04:be:8d:a2:36:53:14:59:7c:c6:11:a2:1a:fc:39: 8c:40:41:00:35:7a:34:44:bf:1f:a7:46:e1:db:5c:74:a4:40: 91:e8:99:c8:fc:95:a6:64:31:c3:b2:b1:07:11:a4:a1:f9:e8: b0:fc:f7:08:5b:a3:52:d5:6a:b7:89:e9:70:ed:0c:14:ba:b8: 79:45:ab:18:9b:f8:5e:2b:48:81:9f:7c:dc:12:af:d4:82:ea: 87:28:95:81:80:57:11:85:80:3b:8b:6b:2f:0f:33:db:28:19: a0:c4:a8:73:42:b0:ab:81:96:fb:4f:37:db:37:2e:98:8f:6c: 9e:2f:a7:cb:32:46:78:84:6e:4d:69:f2:34:6d:d2:29:b2:25: d9:a5:c3:0a:c1:2f:49:9a:a7:f3:e4:7c:f8:b0:93:59:31:33: d9:bc:84:ab:40:0e:67:f5:a8:dd:e2:aa:9c:02:a1:c2:55:fa: 79:94:4e:8c:98:49:ff:d4:db:18:a3:73:5d:16:ba:3c:fa:e0: 5b:00:de:35:2f:3c:6d:3b:a5:93:7e:7e:b9:5f:d1:f3:38:65: f1:f0:07:9a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURY6j9/9BCNAsC1I5vt5TCUVO+y4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdG Mjk1QzJERTAeFw0yNjA0MTgxNTU3MTBaFw0yNjA0MjExOTM4MTBaMDMxMTAvBgNV BAMTKDhBQTQxNDE0NzExQjFDNUQ5QUM2QTBCOERGRDVFMEM4MjcyRjY2N0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ2bsk9XHgmJ4RvmWsJFGBMZ5T HVwDTp7K/c6tBpbJZ8OPwFGe/xiXMRYt2H19QEKG9Ac/rHZ2LvIlWn4aqF7XVRBP hktQ4+I77s2Db5MsA6F4vvJiGa1ViOyYDktVyd+ev0li7FTeq1zJD0UO3uMznWhk jl8B4l2ZIaXdRlco56RgTKGKcT7aeaDDO9ZoaeKwc5AqDdAsKlYtq6ttH5wbWFPi 9xdufVNfw7hH8eBE+ggP9MP5roHfLQ4YLzerbELJIVvCVnDVoWWba19K76V7aq6M yPhCsP4ZGWdLmIvehsGv4Cmz700BirclVHwGW4DnNzcQa8UnIYfo/twRMTT7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiqQUFHEbHF2axqC439XgyCcvZnwwHwYDVR0j BBgwFoAU0upCA0T0hpNYOeA98bPCN/KVwt4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NDA4ODNmMy00NTdhLTRjMTQtOTU3Ny02N2UxNTBhMmIxMmEvMC9EMkVBNDIwMzQ0 RjQ4NjkzNTgzOUUwM0RGMUIzQzIzN0YyOTVDMkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0MyMzdGMjk1 QzJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzQwODgzZjMtNDU3YS00YzE0LTk1 NzctNjdlMTUwYTJiMTJhLzAvRDJFQTQyMDM0NEY0ODY5MzU4MzlFMDNERjFCM0My MzdGMjk1QzJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIBNVP4v0UZJR+DZnDdciBOYIQvu4qdziq9S b65aNyMJUVByZPfGXAS+jaI2UxRZfMYRohr8OYxAQQA1ejREvx+nRuHbXHSkQJHo mcj8laZkMcOysQcRpKH56LD89whbo1LVareJ6XDtDBS6uHlFqxib+F4rSIGffNwS r9SC6ocolYGAVxGFgDuLay8PM9soGaDEqHNCsKuBlvtPN9s3LpiPbJ4vp8syRniE bk1p8jRt0imyJdmlwwrBL0map/PkfPiwk1kxM9m8hKtADmf1qN3iqpwCocJV+nmU ToyYSf/U2xijc10Wujz64FsA3jUvPG07pZN+frlf0fM4ZfHwB5o= -----END CERTIFICATE-----Generated at Sun Apr 19 10:22:14 2026 by rpki-client