$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: cHrgPWga9RQdCrhGLa1aCvwK69q77hwWUbz7HCVoXoA= Subject key identifier: 57:CA:84:82:A4:79:82:2E:71:F6:BF:7F:27:BF:E6:80:EE:88:5A:83 Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 2C812DE0F3F6A745A37E31D0E84F4384AE870E80 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 02BA Signing time: Sat 18 Apr 2026 10:21:07 +0000 Manifest this update: Sat 18 Apr 2026 10:16:07 +0000 Manifest next update: Tue 21 Apr 2026 14:43:07 +0000 Files and hashes: 1: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: TW2RLqGqp5GMVEosRG1Cl0owKGLEGJyPDYB2l9dTN4E=) 2: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: LV0F6O0JrtgL58ARC8h1flo+UOdpKwAYXIa3PEvRfFg=) 3: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: VWdyOYYTifudfSUwEVWa9ANGPIHpQabnls++DgVxljE=) 4: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: tZy1Acy+Sjn3tAMBFoL8oNP7CtbQt5VePmaM4zWp1ok=) 5: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: vJ0JThPWN5z9ya3yGVitmhJSsuKICvURyRQCb1oSUaA=) 6: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: BmTBKF81iqbHECVQY3Ck/WKC+nTPpzrh6SVPoZTsvD4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 14:43:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:81:2d:e0:f3:f6:a7:45:a3:7e:31:d0:e8:4f:43:84:ae:87:0e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Apr 18 10:16:07 2026 GMT Not After : Apr 21 14:43:07 2026 GMT Subject: CN=57CA8482A479822E71F6BF7F27BFE680EE885A83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:09:f2:79:bb:35:fe:86:6d:8a:8f:f8:82:5e: 83:01:3d:69:77:af:26:83:9a:01:1e:f8:ea:80:ef: 7d:2a:7f:b1:11:82:5d:8a:aa:36:7c:7b:91:6f:a9: b4:4b:bd:b7:bd:fd:3e:06:b8:b5:af:85:e7:93:b0: 71:ad:d7:c5:4b:0d:7b:81:d6:b8:7d:29:56:a9:3a: f7:5c:46:0d:f6:66:95:45:a3:6a:b5:73:df:07:50: f6:e4:9c:e4:1f:4c:30:8d:6e:b8:33:c4:ff:6c:a1: 7d:91:f9:c8:ee:9e:97:cc:a0:4e:5b:b9:c9:b9:d2: cb:12:4e:e1:9a:41:46:6d:7e:dc:8f:f7:ce:18:32: 01:f2:e4:e6:be:0d:f7:b6:30:14:0f:bb:df:09:4b: b8:a6:41:09:56:55:b5:f2:0c:cb:bd:ea:2b:58:1e: 0f:9a:ac:ab:3e:29:d9:33:cb:66:99:1b:fa:8c:df: 2a:9f:31:68:1c:91:07:b5:9e:71:ea:19:f6:f3:ec: 8a:de:fe:f3:36:de:0f:48:9c:19:06:65:03:d7:47: 88:41:c5:99:93:b9:43:af:c5:d1:bf:cf:b9:2d:f6: fb:40:a2:04:e9:0d:b7:c4:13:79:45:23:64:27:8d: b1:c5:3d:94:55:76:24:32:ca:db:b8:cb:47:d2:6a: 7b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CA:84:82:A4:79:82:2E:71:F6:BF:7F:27:BF:E6:80:EE:88:5A:83 X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:9e:89:31:93:94:92:77:93:cc:8e:4d:08:29:e3:dc:93:f1: 1b:bc:6c:de:ce:88:21:07:25:9d:6c:6c:74:9a:27:32:bd:cf: 99:fe:27:c5:2c:1f:b3:23:21:1d:cf:cc:3b:f2:34:a6:dd:58: da:dd:14:41:f3:53:ed:17:89:da:72:c2:44:27:12:12:cf:47: c4:43:bb:4e:8a:22:e6:97:a0:7e:d0:f3:9f:e6:3c:ef:00:97: 8b:62:fd:f3:3f:88:17:7d:0a:45:d2:9a:2b:c0:4c:c9:b6:5e: 10:83:aa:1c:fa:9b:d4:aa:ce:4b:04:f4:a5:72:03:2e:d3:b3: 56:1c:31:f1:ec:b2:eb:12:0e:f8:8a:fc:92:4e:fb:75:d7:1f: 0f:84:70:07:4d:07:e6:53:0a:44:ea:ea:21:bb:4f:9b:83:fa: d2:6d:ca:38:a7:22:48:28:51:e6:90:f3:db:41:d6:0e:84:7a: ac:9e:05:f7:f7:67:25:83:a7:35:53:b7:1e:3b:64:c8:cc:be: d0:48:01:cf:9a:d7:32:a9:81:df:86:f0:34:5d:1e:e3:64:a5: 6c:bb:2c:fe:30:da:d5:1e:d0:19:f3:a1:9b:1a:7a:08:c7:39: 49:5e:90:c6:8e:b5:65:a4:c6:e7:f6:b6:30:45:1e:09:83:45: 70:7d:34:50 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULIEt4PP2p0WjfjHQ6E9DhK6HDoAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNjA0MTgxMDE2MDdaFw0yNjA0MjExNDQzMDdaMDMxMTAvBgNV BAMTKDU3Q0E4NDgyQTQ3OTgyMkU3MUY2QkY3RjI3QkZFNjgwRUU4ODVBODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFCfJ5uzX+hm2Kj/iCXoMBPWl3 ryaDmgEe+OqA730qf7ERgl2KqjZ8e5FvqbRLvbe9/T4GuLWvheeTsHGt18VLDXuB 1rh9KVapOvdcRg32ZpVFo2q1c98HUPbknOQfTDCNbrgzxP9soX2R+cjunpfMoE5b ucm50ssSTuGaQUZtftyP984YMgHy5Oa+Dfe2MBQPu98JS7imQQlWVbXyDMu96itY Hg+arKs+Kdkzy2aZG/qM3yqfMWgckQe1nnHqGfbz7Ire/vM23g9InBkGZQPXR4hB xZmTuUOvxdG/z7kt9vtAogTpDbfEE3lFI2QnjbHFPZRVdiQyytu4y0fSanuVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUV8qEgqR5gi5x9r9/J7/mgO6IWoMwHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAGeiTGTlJJ3k8yOTQgp49yT8Ru8bN7OiCEH JZ1sbHSaJzK9z5n+J8UsH7MjIR3PzDvyNKbdWNrdFEHzU+0XidpywkQnEhLPR8RD u06KIuaXoH7Q85/mPO8Al4ti/fM/iBd9CkXSmivATMm2XhCDqhz6m9SqzksE9KVy Ay7Ts1YcMfHssusSDviK/JJO+3XXHw+EcAdNB+ZTCkTq6iG7T5uD+tJtyjinIkgo UeaQ89tB1g6EeqyeBff3ZyWDpzVTtx47ZMjMvtBIAc+a1zKpgd+G8DRdHuNkpWy7 LP4w2tUe0BnzoZsaegjHOUlekMaOtWWkxuf2tjBFHgmDRXB9NFA= -----END CERTIFICATE-----Generated at Sun Apr 19 14:23:02 2026 by rpki-client