$ rpki-client -vvf repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft File: 0FA41B65D1881666013C9683E40575E68E5DC0A5.mft (raw, json) Hash identifier: CQeNHLqgmUZMuzMCDj+s6zfmRCM3faKKkOHscLI5Apc= Subject key identifier: 2D:0B:EB:7D:38:7B:D0:29:2B:38:92:70:59:CC:3F:EF:68:E7:A8:9B Authority key identifier: 0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 Certificate issuer: /CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Certificate serial: 7F0A8FEBFFA396296AE813EECA8EA91134400DC9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft Manifest number: 0578 Signing time: Thu 16 Apr 2026 21:41:13 +0000 Manifest this update: Thu 16 Apr 2026 21:36:13 +0000 Manifest next update: Mon 20 Apr 2026 05:54:13 +0000 Files and hashes: 1: 3130332e3231362e3138382e302f32342d3234203d3e20313431313037.roa (hash: 1h7fo52sVm4cJACJ1QTb5QR43dKEDAqoDnfictr7I+U=) 2: 3130332e3232302e34372e302f32342d3234203d3e20313431313037.roa (hash: tHhLDdHHbsCkG+UHT3p88TUY2+W5e4f+3agioxt0A6g=) 3: 323030313a6466313a666530303a3a2f34382d3438203d3e20313431313037.roa (hash: ArGX3GK83LFApxV4uLSs4kfPXNu12xplyTp4FBzO9Nw=) 4: 0FA41B65D1881666013C9683E40575E68E5DC0A5.crl (hash: QG7gIH9TskBruwpCzyRBXn0IRLNGR7I84Zddijewk94=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:0a:8f:eb:ff:a3:96:29:6a:e8:13:ee:ca:8e:a9:11:34:40:0d:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FA41B65D1881666013C9683E40575E68E5DC0A5 Validity Not Before: Apr 16 21:36:13 2026 GMT Not After : Apr 20 05:54:13 2026 GMT Subject: CN=2D0BEB7D387BD0292B38927059CC3FEF68E7A89B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b0:17:92:30:89:53:ae:e2:bf:64:69:0f:c6: c3:30:70:22:17:08:cb:bd:55:b2:ca:37:47:00:59: d5:0d:b6:d6:f2:8c:13:35:6a:83:de:c8:1c:89:09: 4e:30:bc:88:68:20:32:c9:22:cf:2c:a4:0c:b6:3c: 37:16:97:9d:76:9f:ee:1d:f5:1f:73:e7:c5:64:ed: d6:47:46:71:c4:38:0e:41:83:84:38:68:7a:f2:53: 3a:ac:a4:43:23:14:71:ca:fb:e4:af:a9:3b:c7:a9: c2:70:a5:ab:94:c5:02:2b:17:48:f9:06:db:32:fa: 8c:ab:fb:47:2d:88:17:20:77:0a:e0:18:68:d6:71: dd:51:f4:fa:3d:f9:0d:58:ae:91:f3:bd:26:4e:38: 19:ea:e2:42:11:74:32:c5:06:ad:3b:d8:fe:62:00: 58:03:51:63:7e:d4:be:29:80:41:f7:46:a2:a3:db: a2:3b:09:0c:7e:30:58:1d:21:b5:28:62:35:e6:57: 6c:f4:bb:86:ce:88:12:f3:b5:59:c5:40:4e:0d:cb: 99:77:95:f6:bd:8a:3e:da:73:49:c3:71:ef:fe:cd: 29:f4:82:bd:b1:90:20:94:14:5a:3c:f5:2d:42:7c: 60:d2:bf:b8:f7:c6:f4:27:fd:f5:3d:e8:01:fb:4c: f7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0B:EB:7D:38:7B:D0:29:2B:38:92:70:59:CC:3F:EF:68:E7:A8:9B X509v3 Authority Key Identifier: keyid:0F:A4:1B:65:D1:88:16:66:01:3C:96:83:E4:05:75:E6:8E:5D:C0:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0FA41B65D1881666013C9683E40575E68E5DC0A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7994d375-fc7d-4dc7-a1f1-e0b3a59fdf78/0/0FA41B65D1881666013C9683E40575E68E5DC0A5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:66:09:47:eb:e1:37:26:cf:52:87:c0:f8:7e:c7:3a:cb:65: 35:23:a1:f2:69:2a:84:53:40:7c:29:db:0f:02:51:af:a8:3a: b3:d6:04:24:0b:90:e3:6e:2f:3b:24:b2:0b:8c:b9:f0:71:74: ce:e1:eb:4a:c2:b7:61:6b:08:ee:5b:33:86:60:48:36:61:6f: d6:54:a1:06:7f:7a:2a:a7:1f:98:80:b6:fd:d5:05:15:06:da: 12:9a:9b:6d:f9:ce:fd:d8:e5:e0:18:66:4c:24:77:ff:81:21: 22:62:86:10:4b:a4:fb:97:ee:ee:77:a6:36:e7:b9:5b:eb:4e: 8a:3f:5f:3a:9d:d7:7d:57:0b:14:ec:3f:09:b5:f1:7e:c0:d0: ae:f1:59:98:88:ab:11:43:c1:60:52:7c:a7:2f:28:3d:65:ca: fd:82:6c:ad:db:ba:92:af:92:35:3f:6f:52:82:12:4a:04:98: fe:db:34:fd:52:4c:3f:3c:9c:82:e6:59:9f:f0:18:77:ee:48: cc:33:44:fd:13:b9:9b:eb:0c:ef:01:37:1a:89:5e:8b:52:71: 8f:d7:1d:b1:c3:22:40:3e:1b:87:82:69:78:d4:0f:77:03:77: 0c:0f:a4:9a:ee:43:af:0b:35:c4:91:9f:ba:dc:ab:17:37:04: 03:f1:1d:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfwqP6/+jlilq6BPuyo6pETRADckwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4 RTVEQzBBNTAeFw0yNjA0MTYyMTM2MTNaFw0yNjA0MjAwNTU0MTNaMDMxMTAvBgNV BAMTKDJEMEJFQjdEMzg3QkQwMjkyQjM4OTI3MDU5Q0MzRkVGNjhFN0E4OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtsBeSMIlTruK/ZGkPxsMwcCIX CMu9VbLKN0cAWdUNttbyjBM1aoPeyByJCU4wvIhoIDLJIs8spAy2PDcWl512n+4d 9R9z58Vk7dZHRnHEOA5Bg4Q4aHryUzqspEMjFHHK++SvqTvHqcJwpauUxQIrF0j5 Btsy+oyr+0ctiBcgdwrgGGjWcd1R9Po9+Q1YrpHzvSZOOBnq4kIRdDLFBq072P5i AFgDUWN+1L4pgEH3RqKj26I7CQx+MFgdIbUoYjXmV2z0u4bOiBLztVnFQE4Ny5l3 lfa9ij7ac0nDce/+zSn0gr2xkCCUFFo89S1CfGDSv7j3xvQn/fU96AH7TPfFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULQvrfTh70CkrOJJwWcw/72jnqJswHwYDVR0j BBgwFoAUD6QbZdGIFmYBPJaD5AV15o5dwKUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 OTk0ZDM3NS1mYzdkLTRkYzctYTFmMS1lMGIzYTU5ZmRmNzgvMC8wRkE0MUI2NUQx ODgxNjY2MDEzQzk2ODNFNDA1NzVFNjhFNURDMEE1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1RTY4RTVE QzBBNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzk5NGQzNzUtZmM3ZC00ZGM3LWEx ZjEtZTBiM2E1OWZkZjc4LzAvMEZBNDFCNjVEMTg4MTY2NjAxM0M5NjgzRTQwNTc1 RTY4RTVEQzBBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAElmCUfr4Tcmz1KHwPh+xzrLZTUjofJpKoRT QHwp2w8CUa+oOrPWBCQLkONuLzsksguMufBxdM7h60rCt2FrCO5bM4ZgSDZhb9ZU oQZ/eiqnH5iAtv3VBRUG2hKam235zv3Y5eAYZkwkd/+BISJihhBLpPuX7u53pjbn uVvrToo/Xzqd131XCxTsPwm18X7A0K7xWZiIqxFDwWBSfKcvKD1lyv2CbK3bupKv kjU/b1KCEkoEmP7bNP1STD88nILmWZ/wGHfuSMwzRP0TuZvrDO8BNxqJXotScY/X HbHDIkA+G4eCaXjUD3cDdwwPpJruQ68LNcSRn7rcqxc3BAPxHZM= -----END CERTIFICATE-----Generated at Fri Apr 17 17:25:51 2026 by rpki-client