$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: pnMC1OCPDBLbzqn+SYlFLKsOAniebBYZhytpDBHOmXc= Subject key identifier: 73:07:40:A5:30:3C:7F:7F:9F:04:41:E0:25:68:BD:67:AD:FC:F4:01 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 161032143035B2CD1FFF4C5727EFD0FE9499816F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 03BF Signing time: Sun 19 Apr 2026 02:21:44 +0000 Manifest this update: Sun 19 Apr 2026 02:16:44 +0000 Manifest next update: Wed 22 Apr 2026 07:51:44 +0000 Files and hashes: 1: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) 2: 3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa (hash: OqgAqdXTkd1D2NhPAZ/UZhCfurgUG69NUxmVZKteHcQ=) 3: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: 1cLejB5+0zDdzwe+D+6klg8uKeHs91rAb/tc4ki2uds=) 4: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:10:32:14:30:35:b2:cd:1f:ff:4c:57:27:ef:d0:fe:94:99:81:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Apr 19 02:16:44 2026 GMT Not After : Apr 22 07:51:44 2026 GMT Subject: CN=730740A5303C7F7F9F0441E02568BD67ADFCF401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:51:6e:b2:2e:2e:2a:5f:53:80:35:92:c7: ab:31:f9:95:37:c3:66:04:04:9d:24:d1:97:57:1e: 3f:f5:43:04:67:b0:1c:9c:22:62:96:c5:1b:bb:a5: 8f:36:61:99:e6:11:76:fe:97:25:5e:2c:64:6c:5f: 76:19:72:b0:42:ac:1e:ab:19:ff:fe:ee:86:73:b1: 16:c8:e4:5b:dc:d4:ea:df:d3:0c:a1:e4:9b:62:e7: e0:1e:40:1b:ec:c6:fd:46:4a:44:e6:58:23:61:16: c4:e4:cd:50:b4:c3:d7:77:a0:1b:cc:87:11:83:59: 13:09:e1:1a:f8:14:ec:f8:99:f3:5e:66:97:26:f9: 79:96:5c:72:a2:17:19:49:34:5f:1e:9a:a7:00:c3: 14:ff:d9:e0:c3:49:c5:85:c5:ad:ba:b8:a7:bb:69: 2a:25:9f:e6:3f:54:37:64:d9:e0:08:36:10:dd:17: 4e:04:7f:92:0c:62:d4:a4:bf:39:2a:90:5b:5e:a5: 67:93:23:40:a9:fc:3a:9d:ec:82:d7:c7:59:a5:86: ec:1c:0e:1b:44:ac:16:cb:d5:6a:1f:71:14:59:1c: 64:6e:23:f1:4e:5f:67:32:44:2f:86:c3:16:38:aa: 47:cd:e3:f5:d0:ea:b7:04:d3:91:16:b9:77:d2:87: 9d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:07:40:A5:30:3C:7F:7F:9F:04:41:E0:25:68:BD:67:AD:FC:F4:01 X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:bd:36:71:11:69:a3:d5:7e:26:8d:7d:81:ad:20:2d:d6:91: fa:9f:f4:2c:b7:96:30:15:47:1c:9e:78:27:1a:07:76:eb:61: 9b:6c:1b:cf:3e:b1:08:06:23:5f:30:c6:6d:33:d5:d3:cc:2b: 8a:34:20:d3:ec:f8:16:75:3d:36:3a:09:a0:a2:1c:ab:1c:05: 1a:b1:89:97:40:87:f3:9f:0f:e9:84:6f:45:31:4c:79:15:d2: c2:3d:59:4f:74:38:f9:3e:4e:40:9a:e6:ed:4d:3a:a0:8e:8d: 3e:47:31:8d:3c:c9:83:13:e8:17:c0:c6:72:9f:05:04:09:3f: c7:ac:2f:3f:6f:d9:df:e6:cf:1b:83:62:51:72:d2:50:fe:c5: 7c:49:b9:bf:19:1f:07:27:50:41:7b:2a:b8:8d:8f:ce:14:60: 8c:23:1f:23:67:0f:8b:0d:fb:1b:9e:b0:c8:6d:2a:50:91:44: 76:12:e3:ca:eb:2e:e7:1b:5f:ae:7e:22:bb:55:b4:c1:7a:bd: e2:1f:e3:d4:b9:d9:2b:25:9c:e7:28:6a:9e:f6:55:8a:a0:33: 85:aa:aa:5d:67:f1:06:c5:a0:70:70:1b:9b:e1:45:0a:60:23: ab:e4:78:9e:05:96:27:1a:31:4d:c8:82:67:92:ba:2f:99:b9: 31:d1:9c:ee -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFhAyFDA1ss0f/0xXJ+/Q/pSZgW8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNjA0MTkwMjE2NDRaFw0yNjA0MjIwNzUxNDRaMDMxMTAvBgNV BAMTKDczMDc0MEE1MzAzQzdGN0Y5RjA0NDFFMDI1NjhCRDY3QURGQ0Y0MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+f1Fusi4uKl9TgDWSx6sx+ZU3 w2YEBJ0k0ZdXHj/1QwRnsBycImKWxRu7pY82YZnmEXb+lyVeLGRsX3YZcrBCrB6r Gf/+7oZzsRbI5Fvc1Orf0wyh5Jti5+AeQBvsxv1GSkTmWCNhFsTkzVC0w9d3oBvM hxGDWRMJ4Rr4FOz4mfNeZpcm+XmWXHKiFxlJNF8emqcAwxT/2eDDScWFxa26uKe7 aSoln+Y/VDdk2eAINhDdF04Ef5IMYtSkvzkqkFtepWeTI0Cp/Dqd7ILXx1mlhuwc DhtErBbL1WofcRRZHGRuI/FOX2cyRC+GwxY4qkfN4/XQ6rcE05EWuXfSh539AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcwdApTA8f3+fBEHgJWi9Z6389AEwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIy9NnERaaPVfiaNfYGtIC3Wkfqf9Cy3ljAV RxyeeCcaB3brYZtsG88+sQgGI18wxm0z1dPMK4o0INPs+BZ1PTY6CaCiHKscBRqx iZdAh/OfD+mEb0UxTHkV0sI9WU90OPk+TkCa5u1NOqCOjT5HMY08yYMT6BfAxnKf BQQJP8esLz9v2d/mzxuDYlFy0lD+xXxJub8ZHwcnUEF7KriNj84UYIwjHyNnD4sN +xuesMhtKlCRRHYS48rrLucbX65+IrtVtMF6veIf49S52SslnOcoap72VYqgM4Wq ql1n8QbFoHBwG5vhRQpgI6vkeJ4FlicaMU3IgmeSui+ZuTHRnO4= -----END CERTIFICATE-----Generated at Sun Apr 19 10:23:49 2026 by rpki-client