$ rpki-client -vvf repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft File: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft (raw, json) Hash identifier: Y/5zJeJOQJARC/7+AwFH470IF7+AgaTr6KFEb7l6H2A= Subject key identifier: FE:BD:96:6B:FD:80:7C:D8:62:5F:B2:84:49:0F:81:6F:58:63:C6:12 Authority key identifier: 03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 Certificate issuer: /CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Certificate serial: 2ED80AC29F3ACEBF32DAB05CCEA7D2B656137B3E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft Manifest number: 0203 Signing time: Sat 18 Apr 2026 01:21:47 +0000 Manifest this update: Sat 18 Apr 2026 01:16:47 +0000 Manifest next update: Tue 21 Apr 2026 06:33:47 +0000 Files and hashes: 1: 3130332e39362e35322e302f32332d3233203d3e20313534343130.roa (hash: I1xGBGbMoTpFLIbjNVesHP5LRYPwXtpfc+9MFkqpZXg=) 2: 3130332e39362e35322e302f32342d3234203d3e20313534343130.roa (hash: G0ILmU3zG9dk4y3Amsp/ANA86e6j9AhzItyGctPkHC0=) 3: 3130332e39362e35322e302f32332d3233203d3e20323135373237.roa (hash: 1aKuOLZIAFfW1+Cqdr1xm8xWMdWqMvn5lk2N7M8OzCk=) 4: 323030313a6466323a6634303a3a2f34382d3438203d3e20313530393232.roa (hash: C3HGpl1ThenH4EorAZEJtVKi4KUYV7opK2C6bqklYfw=) 5: 3130332e39362e35332e302f32342d3234203d3e20323135373237.roa (hash: I1eMGkofitxFBUkKIJAAEKHOmSas6t5BDo8K12fS+ps=) 6: 3130332e39362e35332e302f32342d3234203d3e20313530393232.roa (hash: gP7psFKFA2RfBnHhdOuG7ZGFzw3Cq/MLVUDPQT38lCM=) 7: 0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl (hash: Pfr+4k5kPLJPMi6Fsh6oJW+zt17vrTd0ZtAzFjRS+3I=) 8: 3130332e39362e35322e302f32342d3234203d3e20323135373237.roa (hash: 0krbsaRXLF7hhh/0+kJdsVsdN97iwgE+irNWTCAqAI8=) 9: 3130332e39362e35332e302f32342d3234203d3e20313534343130.roa (hash: q5hea4w5eW+1JC2efAtWBTto0TQU50ClmJGUcfUe31c=) 10: 3130332e39362e35322e302f32342d3234203d3e20313530393232.roa (hash: 2ugfUbs5cJ20pMlsi1Lpn48hHyXGtkrzKxCtrqkovSE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 06:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:d8:0a:c2:9f:3a:ce:bf:32:da:b0:5c:ce:a7:d2:b6:56:13:7b:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79 Validity Not Before: Apr 18 01:16:47 2026 GMT Not After : Apr 21 06:33:47 2026 GMT Subject: CN=FEBD966BFD807CD8625FB284490F816F5863C612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ce:e5:c2:4f:b6:bf:5a:b7:6f:d0:7a:cc:bb: 3d:d8:06:f4:35:86:d4:83:7f:23:8f:82:f3:dd:b2: 9e:ba:70:62:2d:71:90:7c:1d:2c:ee:26:e1:05:7e: cb:61:4e:a1:2b:90:a3:dc:1a:63:00:19:dd:bb:70: db:61:8d:ae:cc:ec:93:0f:ad:5d:70:8e:0a:b1:87: 5f:52:25:ef:6b:66:fd:e4:3c:c9:d3:0a:2d:0f:a1: c0:94:bb:3b:17:9c:bb:2b:d0:cf:e1:6c:d2:d4:fc: ad:75:85:6b:d4:ce:92:07:e0:a1:c6:cf:22:31:68: b8:86:bd:d6:34:49:7c:66:98:10:8e:35:65:b7:8c: 8d:d4:a0:5b:8c:87:3f:c3:eb:b4:fc:65:1f:67:b3: dd:11:a0:af:23:d4:ad:77:0c:d4:72:e0:d0:c3:62: 10:a8:a3:00:a6:89:35:97:34:e7:3d:71:c6:cc:42: da:b9:73:5f:4c:4b:0e:5e:5d:83:72:ad:97:f1:2d: 42:53:11:44:10:7f:6d:56:91:7d:86:41:4e:8b:ee: 69:d0:cc:43:8b:a2:36:c6:b5:0d:01:6c:7f:13:c0: 81:c8:a4:b4:f1:89:b2:53:e6:07:5b:49:6a:9b:5a: 3a:04:6d:1a:34:ec:a5:a1:7e:e9:18:c5:1c:f8:d4: e3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BD:96:6B:FD:80:7C:D8:62:5F:B2:84:49:0F:81:6F:58:63:C6:12 X509v3 Authority Key Identifier: keyid:03:21:C8:92:A6:AA:C0:A6:EA:4A:30:35:D8:8C:A6:BC:68:67:BF:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7a1c4c1f-7141-47d6-a7f8-e35ffe117404/0/0321C892A6AAC0A6EA4A3035D88CA6BC6867BF79.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:78:05:1c:03:30:34:17:36:dc:c5:43:05:e5:3a:0a:d3:06: 35:fe:e5:e6:79:73:35:16:b2:4c:5d:10:88:cb:48:29:dc:72: 0e:b4:eb:0b:fb:0a:9c:24:8f:d3:31:53:b8:58:5e:5a:3a:84: 0b:0d:2d:7f:ff:12:17:78:83:a0:c4:f3:ea:6d:d1:50:53:fc: 60:ba:2b:1a:c5:84:82:d7:5d:37:a3:60:dc:3a:58:6e:e8:48: c6:76:a7:ac:51:c1:a0:04:3c:ee:5d:ad:1e:96:5f:f1:b4:f3: ba:b5:79:c6:c7:f7:a6:58:8e:b2:6a:36:8e:40:38:f3:71:b8: 62:3c:10:4c:45:ec:b6:79:d2:1c:d0:ea:56:0f:46:79:97:46: 9a:95:fc:ab:cf:e8:20:08:2a:d5:33:df:8b:b4:55:6c:6d:4d: 9a:80:55:2d:28:32:c9:0f:67:8e:93:7d:7f:a3:14:d8:89:0e: 65:b7:2f:4b:0b:6f:63:56:80:6f:0f:f5:dc:3f:fa:e6:39:36: 68:98:c5:ab:c7:f3:c0:5c:52:fe:b1:01:90:c6:6a:00:b7:8a: e5:e0:8a:dc:a5:e2:15:36:36:cb:6b:c2:52:dd:40:76:58:db: fe:f4:fe:b7:b1:04:96:21:9d:6f:d0:08:d2:fa:60:f0:ca:20: 0f:3f:72:32 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULtgKwp86zr8y2rBczqfStlYTez4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2 ODY3QkY3OTAeFw0yNjA0MTgwMTE2NDdaFw0yNjA0MjEwNjMzNDdaMDMxMTAvBgNV BAMTKEZFQkQ5NjZCRkQ4MDdDRDg2MjVGQjI4NDQ5MEY4MTZGNTg2M0M2MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSzuXCT7a/Wrdv0HrMuz3YBvQ1 htSDfyOPgvPdsp66cGItcZB8HSzuJuEFfsthTqErkKPcGmMAGd27cNthja7M7JMP rV1wjgqxh19SJe9rZv3kPMnTCi0PocCUuzsXnLsr0M/hbNLU/K11hWvUzpIH4KHG zyIxaLiGvdY0SXxmmBCONWW3jI3UoFuMhz/D67T8ZR9ns90RoK8j1K13DNRy4NDD YhCoowCmiTWXNOc9ccbMQtq5c19MSw5eXYNyrZfxLUJTEUQQf21WkX2GQU6L7mnQ zEOLojbGtQ0BbH8TwIHIpLTxibJT5gdbSWqbWjoEbRo07KWhfukYxRz41OOLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/r2Wa/2AfNhiX7KESQ+Bb1hjxhIwHwYDVR0j BBgwFoAUAyHIkqaqwKbqSjA12IymvGhnv3kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YTFjNGMxZi03MTQxLTQ3ZDYtYTdmOC1lMzVmZmUxMTc0MDQvMC8wMzIxQzg5MkE2 QUFDMEE2RUE0QTMwMzVEODhDQTZCQzY4NjdCRjc5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2QkM2ODY3 QkY3OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2ExYzRjMWYtNzE0MS00N2Q2LWE3 ZjgtZTM1ZmZlMTE3NDA0LzAvMDMyMUM4OTJBNkFBQzBBNkVBNEEzMDM1RDg4Q0E2 QkM2ODY3QkY3OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACN4BRwDMDQXNtzFQwXlOgrTBjX+5eZ5czUW skxdEIjLSCnccg606wv7Cpwkj9MxU7hYXlo6hAsNLX//Ehd4g6DE8+pt0VBT/GC6 KxrFhILXXTejYNw6WG7oSMZ2p6xRwaAEPO5drR6WX/G087q1ecbH96ZYjrJqNo5A OPNxuGI8EExF7LZ50hzQ6lYPRnmXRpqV/KvP6CAIKtUz34u0VWxtTZqAVS0oMskP Z46TfX+jFNiJDmW3L0sLb2NWgG8P9dw/+uY5NmiYxavH88BcUv6xAZDGagC3iuXg ityl4hU2NstrwlLdQHZY2/70/rexBJYhnW/QCNL6YPDKIA8/cjI= -----END CERTIFICATE-----Generated at Sat Apr 18 08:54:48 2026 by rpki-client