$ rpki-client -vvf repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft File: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft (raw, json) Hash identifier: XK+ibCUSD0j7Gx0zmRdeit4nSRS6ecPmmliYCeqJE78= Subject key identifier: 76:D3:20:2F:A3:CC:5F:D3:B9:13:86:7D:3A:EA:1D:00:7D:C8:DA:E3 Authority key identifier: 53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E Certificate issuer: /CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Certificate serial: 34366FD59A74942EE296D2265A8C201E03607E0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft Manifest number: 022D Signing time: Fri 17 Apr 2026 08:21:25 +0000 Manifest this update: Fri 17 Apr 2026 08:16:25 +0000 Manifest next update: Mon 20 Apr 2026 14:45:25 +0000 Files and hashes: 1: 3130332e3137372e362e302f32332d3234203d3e20313437313430.roa (hash: Xr1e6YuIMSI5rKzC7+hK1bIDu6gOhNq675X/0EmA45E=) 2: 53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl (hash: s+Tdgih1Ej1ZQD0+zpjlDyOlrymX1hcXJ0TbQFDiT5k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 14:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:36:6f:d5:9a:74:94:2e:e2:96:d2:26:5a:8c:20:1e:03:60:7e:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E Validity Not Before: Apr 17 08:16:25 2026 GMT Not After : Apr 20 14:45:25 2026 GMT Subject: CN=76D3202FA3CC5FD3B913867D3AEA1D007DC8DAE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c6:82:53:c5:8f:df:73:6a:c2:50:5b:e3:88: 39:33:d0:e1:3a:06:95:b1:e6:c5:3d:4e:30:d9:3c: 04:fa:b8:62:b9:1d:57:e5:83:7e:dd:e6:47:11:f8: 22:36:47:57:a1:06:3b:e4:71:66:7f:50:f9:b2:dc: 31:40:73:32:2a:05:10:db:21:7b:e8:bf:de:95:36: 69:22:0d:ee:ea:da:20:28:d5:a4:29:21:5b:27:a5: bb:2b:37:17:42:7b:2e:62:cf:1f:68:e0:d3:ba:1b: 10:e8:e7:99:a3:42:c7:4d:a2:d9:75:12:f2:9a:1e: fe:3e:e9:f8:ea:3a:58:55:0b:e4:aa:ec:3f:96:ec: 22:4b:d8:89:2c:c2:84:76:f5:92:50:39:6c:4b:b3: 9a:99:0a:17:53:a9:c1:02:57:85:73:1b:79:fe:8a: da:8e:e4:a4:a5:25:7e:92:89:a0:22:6b:7f:1b:fc: f8:63:ff:4d:e4:38:b2:3a:57:fc:d8:c0:fd:11:2c: 94:9a:a0:b1:55:ea:3c:87:e0:af:8e:cd:fa:4e:b2: ce:8c:ea:cc:82:86:2d:49:cf:b5:d0:4a:62:ea:12: 2f:67:7c:69:77:e6:59:60:f5:0b:2f:3d:95:b3:93: 9f:dc:f4:e7:3c:14:de:69:4b:20:a4:cf:5c:e2:94: 05:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D3:20:2F:A3:CC:5F:D3:B9:13:86:7D:3A:EA:1D:00:7D:C8:DA:E3 X509v3 Authority Key Identifier: keyid:53:B2:CA:30:02:DB:8D:FC:F5:48:2F:8E:09:A9:86:D2:9E:BF:B6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b71fc6d-aa3b-4ed7-8fec-7427aa061f8e/0/53B2CA3002DB8DFCF5482F8E09A986D29EBFB64E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:ec:0d:6d:c3:ed:73:7a:46:9c:2e:94:4d:7d:cd:04:26:ea: 2b:b9:7d:12:bf:03:fc:a4:ca:fc:01:8b:e1:cb:48:bc:3e:13: a0:98:37:0c:19:8e:3e:c5:40:5b:f7:5e:1b:f2:72:94:ec:1c: e2:1a:06:27:dd:63:a7:9e:55:69:3c:8f:9a:09:3d:88:71:92: c6:98:db:60:cf:ee:5c:07:96:49:48:83:26:8e:fe:e6:a5:69: f1:8c:61:05:1e:e4:28:2c:44:da:92:87:01:ee:08:cc:37:e1: 9e:3d:ec:e5:5c:f3:92:29:12:19:59:8a:5b:e8:af:ce:52:81: 16:c4:4c:dc:42:81:b3:59:0d:ee:fa:3a:c3:af:14:55:87:4d: a2:eb:54:09:3d:03:93:14:9e:48:2f:2a:16:fd:a2:d9:1b:1d: 37:0e:25:c4:5d:5d:75:5e:2d:96:ff:0a:aa:92:b8:d7:d6:24: d8:9e:da:c6:67:0e:da:e5:dc:33:b6:98:4a:7d:1f:ae:7b:92: 3d:7f:29:1b:c6:0a:2b:7a:5f:fc:78:45:0f:a4:1b:a8:95:79: ef:33:cf:b3:aa:2a:f3:fd:87:59:e2:55:cd:26:b7:e0:d3:28: b5:6c:53:52:36:45:1d:e9:1d:02:ac:83:a7:97:98:56:96:84: 8d:5c:e8:dc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNDZv1Zp0lC7iltImWowgHgNgfgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5 RUJGQjY0RTAeFw0yNjA0MTcwODE2MjVaFw0yNjA0MjAxNDQ1MjVaMDMxMTAvBgNV BAMTKDc2RDMyMDJGQTNDQzVGRDNCOTEzODY3RDNBRUExRDAwN0RDOERBRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCexoJTxY/fc2rCUFvjiDkz0OE6 BpWx5sU9TjDZPAT6uGK5HVflg37d5kcR+CI2R1ehBjvkcWZ/UPmy3DFAczIqBRDb IXvov96VNmkiDe7q2iAo1aQpIVsnpbsrNxdCey5izx9o4NO6GxDo55mjQsdNotl1 EvKaHv4+6fjqOlhVC+Sq7D+W7CJL2IkswoR29ZJQOWxLs5qZChdTqcECV4VzG3n+ itqO5KSlJX6SiaAia38b/Phj/03kOLI6V/zYwP0RLJSaoLFV6jyH4K+OzfpOss6M 6syChi1Jz7XQSmLqEi9nfGl35llg9QsvPZWzk5/c9Oc8FN5pSyCkz1zilAV3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdtMgL6PMX9O5E4Z9OuodAH3I2uMwHwYDVR0j BBgwFoAUU7LKMALbjfz1SC+OCamG0p6/tk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjcxZmM2ZC1hYTNiLTRlZDctOGZlYy03NDI3YWEwNjFmOGUvMC81M0IyQ0EzMDAy REI4REZDRjU0ODJGOEUwOUE5ODZEMjlFQkZCNjRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2RDI5RUJG QjY0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2I3MWZjNmQtYWEzYi00ZWQ3LThm ZWMtNzQyN2FhMDYxZjhlLzAvNTNCMkNBMzAwMkRCOERGQ0Y1NDgyRjhFMDlBOTg2 RDI5RUJGQjY0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJDsDW3D7XN6RpwulE19zQQm6iu5fRK/A/yk yvwBi+HLSLw+E6CYNwwZjj7FQFv3XhvycpTsHOIaBifdY6eeVWk8j5oJPYhxksaY 22DP7lwHlklIgyaO/ualafGMYQUe5CgsRNqShwHuCMw34Z497OVc85IpEhlZilvo r85SgRbETNxCgbNZDe76OsOvFFWHTaLrVAk9A5MUnkgvKhb9otkbHTcOJcRdXXVe LZb/CqqSuNfWJNie2sZnDtrl3DO2mEp9H657kj1/KRvGCit6X/x4RQ+kG6iVee8z z7OqKvP9h1niVc0mt+DTKLVsU1I2RR3pHQKsg6eXmFaWhI1c6Nw= -----END CERTIFICATE-----Generated at Sun Apr 19 12:16:45 2026 by rpki-client