$ rpki-client -vvf repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft File: AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft (raw, json) Hash identifier: hleaWYUSOBwk9KXNdunezMmzSM5SZ1LMQbIwbQqDtyk= Subject key identifier: 7F:5F:6F:E1:55:6B:4E:70:30:3D:A6:4D:14:E5:36:2A:4D:F7:11:8F Authority key identifier: AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 Certificate issuer: /CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Certificate serial: 76C20E913FC65D180890236F8A6D0638DD78F0AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft Manifest number: EF Signing time: Wed 15 Apr 2026 13:20:01 +0000 Manifest this update: Wed 15 Apr 2026 13:15:01 +0000 Manifest next update: Sat 18 Apr 2026 17:29:01 +0000 Files and hashes: 1: 3135372e36362e34312e302f32342d3234203d3e20313532373934.roa (hash: 3Egq3cRo6EJ7UqcOfpeiiHWc5fNhn+xEtBo+/Cw0jbA=) 2: AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl (hash: KB9Y5x2alvIVOTiVaKC7DlqUZCxO1Nprn8R2xyqqhXI=) 3: 3135372e36362e34302e302f32332d3233203d3e20313532373934.roa (hash: 9Rk+bLwCtN8F40lqmzQmjy2Qn3pf5qNIMJVV2njhbNk=) 4: 3135372e36362e34302e302f32342d3234203d3e20313532373934.roa (hash: llbK8JVFmbrLSSzLv9Ovv2C1Mqs66Yxl6xm9VnsVOAw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 17:29:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c2:0e:91:3f:c6:5d:18:08:90:23:6f:8a:6d:06:38:dd:78:f0:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5 Validity Not Before: Apr 15 13:15:01 2026 GMT Not After : Apr 18 17:29:01 2026 GMT Subject: CN=7F5F6FE1556B4E70303DA64D14E5362A4DF7118F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:29:55:3f:c1:65:ea:dc:1f:55:2d:9a:56: 11:e4:92:c7:30:76:41:20:ae:5c:01:81:49:da:09: a0:23:ce:83:51:1a:7e:66:5e:da:fe:a6:0a:50:e9: 77:d3:f5:55:9d:16:40:56:82:62:f8:65:29:7a:56: 25:f5:a7:e4:05:2c:e3:29:e8:97:4b:a5:85:d6:00: 67:ef:0c:d2:7c:fa:90:cc:78:c7:43:92:d3:27:ed: 22:76:de:4f:c0:f9:f0:9c:c9:b5:19:4f:be:95:4e: 97:f7:f3:37:58:07:5f:bc:d9:ad:50:6a:9d:d1:29: 3f:f0:78:04:f4:8b:13:0d:e5:dc:ea:76:98:35:92: 43:a4:41:e0:b3:05:c5:1c:d1:ff:57:b4:bf:49:21: ea:a1:e6:6c:82:c9:18:33:7e:31:e0:30:f0:de:73: 70:8e:35:f9:d5:06:62:f3:e0:4a:ca:5e:aa:bd:f3: fe:71:e4:ac:ef:2b:66:31:87:2e:0a:a5:67:71:b2: 02:d9:e1:9c:e2:3c:c4:54:6a:e8:16:42:d7:ad:86: 61:89:83:a1:8e:22:df:34:4f:f8:08:2f:c4:20:bb: 64:2e:05:7a:f8:8c:56:54:11:06:79:60:13:23:74: 2f:bc:66:58:42:0b:30:ac:03:06:d0:ff:dc:29:2b: ca:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:5F:6F:E1:55:6B:4E:70:30:3D:A6:4D:14:E5:36:2A:4D:F7:11:8F X509v3 Authority Key Identifier: keyid:AF:68:71:CA:FD:05:C6:F6:25:9C:DC:9B:3F:E8:65:6F:CE:DE:C3:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/77f2c190-30f5-4f19-bfca-0b987a52fd55/0/AF6871CAFD05C6F6259CDC9B3FE8656FCEDEC3D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:75:b1:54:cb:54:6d:e2:78:8f:0f:b8:d9:72:74:50:74:86: d0:43:c9:e6:e3:91:8a:f9:37:58:9c:f3:d6:20:2e:0a:ab:e5: 84:c8:52:1d:4b:5c:f9:64:91:79:63:69:a8:29:33:18:81:9c: 3c:cb:ca:b6:d8:fc:0c:54:c9:66:19:c5:4e:73:d1:58:30:98: 93:4e:f4:6a:27:b0:c6:1e:cb:a4:d9:9e:32:dd:8b:ed:89:b6: 3e:2f:4b:29:b9:11:c4:e3:6f:7b:a4:93:6d:6c:9a:39:e2:9c: 04:c5:0d:ff:d6:60:33:3d:51:c3:0d:90:36:d7:eb:39:17:50: b0:4e:0d:df:78:d4:68:8c:8e:35:e7:30:aa:7d:e6:25:f9:87: 56:af:47:f5:b2:0a:31:06:14:70:1c:0a:b1:b1:f4:9d:93:df: ea:b0:47:48:56:6f:bc:2e:51:82:6a:fc:fa:b7:68:41:2a:77: 03:91:5c:fd:d9:2d:6d:c2:de:51:cf:71:5f:ba:37:33:09:25: d6:a2:67:6f:42:c5:83:e8:40:42:df:ea:fc:fd:fe:b0:3b:0a: 2f:d8:3a:25:f0:31:29:86:ef:dd:84:52:6a:dc:b3:24:01:07: ce:62:33:98:06:72:7f:6b:af:17:9b:a7:1f:e8:04:92:ae:25: 76:29:9e:b6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdsIOkT/GXRgIkCNvim0GON148KswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZD RURFQzNENTAeFw0yNjA0MTUxMzE1MDFaFw0yNjA0MTgxNzI5MDFaMDMxMTAvBgNV BAMTKDdGNUY2RkUxNTU2QjRFNzAzMDNEQTY0RDE0RTUzNjJBNERGNzExOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4DilVP8Fl6twfVS2aVhHkkscw dkEgrlwBgUnaCaAjzoNRGn5mXtr+pgpQ6XfT9VWdFkBWgmL4ZSl6ViX1p+QFLOMp 6JdLpYXWAGfvDNJ8+pDMeMdDktMn7SJ23k/A+fCcybUZT76VTpf38zdYB1+82a1Q ap3RKT/weAT0ixMN5dzqdpg1kkOkQeCzBcUc0f9XtL9JIeqh5myCyRgzfjHgMPDe c3CONfnVBmLz4ErKXqq98/5x5KzvK2Yxhy4KpWdxsgLZ4ZziPMRUaugWQtethmGJ g6GOIt80T/gIL8Qgu2QuBXr4jFZUEQZ5YBMjdC+8ZlhCCzCsAwbQ/9wpK8qbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf19v4VVrTnAwPaZNFOU2Kk33EY8wHwYDVR0j BBgwFoAUr2hxyv0FxvYlnNybP+hlb87ew9UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 N2YyYzE5MC0zMGY1LTRmMTktYmZjYS0wYjk4N2E1MmZkNTUvMC9BRjY4NzFDQUZE MDVDNkY2MjU5Q0RDOUIzRkU4NjU2RkNFREVDM0Q1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1NkZDRURF QzNENS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzdmMmMxOTAtMzBmNS00ZjE5LWJm Y2EtMGI5ODdhNTJmZDU1LzAvQUY2ODcxQ0FGRDA1QzZGNjI1OUNEQzlCM0ZFODY1 NkZDRURFQzNENS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFZ1sVTLVG3ieI8PuNlydFB0htBDyebjkYr5 N1ic89YgLgqr5YTIUh1LXPlkkXljaagpMxiBnDzLyrbY/AxUyWYZxU5z0VgwmJNO 9GonsMYey6TZnjLdi+2Jtj4vSym5EcTjb3ukk21smjninATFDf/WYDM9UcMNkDbX 6zkXULBODd941GiMjjXnMKp95iX5h1avR/WyCjEGFHAcCrGx9J2T3+qwR0hWb7wu UYJq/Pq3aEEqdwORXP3ZLW3C3lHPcV+6NzMJJdaiZ29CxYPoQELf6vz9/rA7Ci/Y OiXwMSmG792EUmrcsyQBB85iM5gGcn9rrxebpx/oBJKuJXYpnrY= -----END CERTIFICATE-----Generated at Fri Apr 17 12:19:19 2026 by rpki-client