$ rpki-client -vvf repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft File: 285A5330FE006D3660B306BEE40EC7FEABA96574.mft (raw, json) Hash identifier: BLoWMma2BvFqHuEibQDAzApe3RtERqnCR4/bSsUsz/E= Subject key identifier: DB:32:E8:90:F6:97:44:78:A7:EB:31:36:D1:49:5C:90:65:78:E5:CD Authority key identifier: 28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 Certificate issuer: /CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Certificate serial: 05B54610F864BD699963FDF61B7FEC2591240D94 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft Manifest number: 0262 Signing time: Thu 16 Apr 2026 08:31:00 +0000 Manifest this update: Thu 16 Apr 2026 08:26:00 +0000 Manifest next update: Sun 19 Apr 2026 13:15:00 +0000 Files and hashes: 1: 285A5330FE006D3660B306BEE40EC7FEABA96574.crl (hash: a2mCO8G+CaedpGu/eKODC5+TQrhCMlwKIXVbRVcZt4M=) 2: 3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa (hash: et+NL54ZzRajHMEA/yoBQTdDZVtURbCL40ihhLSTZ9w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 13:15:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:b5:46:10:f8:64:bd:69:99:63:fd:f6:1b:7f:ec:25:91:24:0d:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Validity Not Before: Apr 16 08:26:00 2026 GMT Not After : Apr 19 13:15:00 2026 GMT Subject: CN=DB32E890F6974478A7EB3136D1495C906578E5CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c3:be:3e:76:9e:62:36:6a:b1:cc:69:ec:48: 89:b1:d8:c9:f7:fa:1b:97:2f:5b:e4:27:7a:da:ff: 5c:a3:db:ed:d8:0a:13:ec:69:58:14:e2:f0:30:61: 60:66:1e:e2:46:f3:94:48:5c:3b:da:aa:0b:9d:46: c3:06:f2:ce:a8:bf:7d:06:e9:90:82:d1:0c:d7:23: 95:ee:59:60:71:2e:82:71:f3:ef:58:85:69:1c:4a: 97:29:fe:4c:e1:a0:6e:24:f9:f8:1d:98:0b:36:06: 20:ef:91:0b:6b:70:27:ae:30:24:ca:12:c0:7d:6b: d3:ce:f4:cb:31:50:24:7f:e3:65:03:58:c1:fc:0e: 87:cf:f3:88:14:cf:65:9c:18:fa:cc:e9:68:7a:0f: e6:9e:3d:eb:bc:45:71:8d:e3:d4:83:3c:f6:46:67: 09:bd:d0:16:51:21:1a:53:ab:33:3c:07:1a:49:30: 5f:14:46:fc:96:c8:e3:16:d7:ad:c2:2d:26:53:bb: 28:c9:22:24:5b:46:d5:dc:09:a8:6f:80:27:e0:af: 46:49:f7:a1:ac:58:c3:8f:c5:14:e3:3a:d9:c4:bb: 01:24:17:df:74:bf:15:ee:11:93:21:4b:29:56:74: 9e:04:a9:e2:e6:2b:9e:e5:b4:39:7e:8e:9d:bb:04: 21:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:32:E8:90:F6:97:44:78:A7:EB:31:36:D1:49:5C:90:65:78:E5:CD X509v3 Authority Key Identifier: keyid:28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:12:81:04:d2:74:0e:3c:c6:ec:81:c1:28:c9:2e:d1:fd:99: d3:c4:08:c6:4d:6b:54:64:14:d5:c5:e3:2a:6f:48:cd:63:85: de:47:a7:cc:eb:a6:bc:aa:4f:f8:eb:d6:cc:97:bd:fd:5c:1e: c7:14:37:23:24:54:53:0a:8d:68:12:00:3a:3f:c7:77:7a:29: e5:92:86:3c:dc:5f:62:a5:ce:06:ce:d9:51:15:f5:9c:28:34: e4:b7:a0:89:64:18:e5:c8:18:3e:af:f0:3f:8b:e8:37:dc:11: 9e:d5:01:f8:3d:32:fb:d0:31:51:ef:77:a5:1c:79:d7:74:e0: 3f:66:02:fc:14:e4:69:3e:80:b8:cc:e2:5a:81:c3:20:f3:98: b6:51:a3:bd:e4:ea:62:68:95:29:2c:93:e9:cf:8d:42:98:22: 3f:06:14:e5:04:6b:c4:82:cc:52:e8:e6:77:18:48:c6:2a:be: 85:99:e9:7e:a7:8c:00:d3:76:aa:fe:37:d3:cf:0d:3c:92:52: ba:29:5d:32:bf:f2:6d:3d:e6:11:df:03:0a:58:91:15:6b:da: 10:a1:3f:10:c2:35:52:cb:92:c4:1b:32:4a:f7:f3:6d:77:91: db:6d:e8:ff:08:40:01:90:63:de:da:a0:be:5c:c0:db:d8:76: 2f:f3:da:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBbVGEPhkvWmZY/32G3/sJZEkDZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVB QkE5NjU3NDAeFw0yNjA0MTYwODI2MDBaFw0yNjA0MTkxMzE1MDBaMDMxMTAvBgNV BAMTKERCMzJFODkwRjY5NzQ0NzhBN0VCMzEzNkQxNDk1QzkwNjU3OEU1Q0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnw74+dp5iNmqxzGnsSImx2Mn3 +huXL1vkJ3ra/1yj2+3YChPsaVgU4vAwYWBmHuJG85RIXDvaqgudRsMG8s6ov30G 6ZCC0QzXI5XuWWBxLoJx8+9YhWkcSpcp/kzhoG4k+fgdmAs2BiDvkQtrcCeuMCTK EsB9a9PO9MsxUCR/42UDWMH8DofP84gUz2WcGPrM6Wh6D+aePeu8RXGN49SDPPZG Zwm90BZRIRpTqzM8BxpJMF8URvyWyOMW163CLSZTuyjJIiRbRtXcCahvgCfgr0ZJ 96GsWMOPxRTjOtnEuwEkF990vxXuEZMhSylWdJ4EqeLmK57ltDl+jp27BCEVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2zLokPaXRHin6zE20UlckGV45c0wHwYDVR0j BBgwFoAUKFpTMP4AbTZgswa+5A7H/qupZXQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWQzMzc3MC1mMTUxLTQzZjMtOTU2OS02YTI3ZDc1MDQyNDAvMC8yODVBNTMzMEZF MDA2RDM2NjBCMzA2QkVFNDBFQzdGRUFCQTk2NTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVBQkE5 NjU3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFkMzM3NzAtZjE1MS00M2YzLTk1 NjktNmEyN2Q3NTA0MjQwLzAvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3 RkVBQkE5NjU3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACcSgQTSdA48xuyBwSjJLtH9mdPECMZNa1Rk FNXF4ypvSM1jhd5Hp8zrpryqT/jr1syXvf1cHscUNyMkVFMKjWgSADo/x3d6KeWS hjzcX2KlzgbO2VEV9ZwoNOS3oIlkGOXIGD6v8D+L6DfcEZ7VAfg9MvvQMVHvd6Uc edd04D9mAvwU5Gk+gLjM4lqBwyDzmLZRo73k6mJolSksk+nPjUKYIj8GFOUEa8SC zFLo5ncYSMYqvoWZ6X6njADTdqr+N9PPDTySUropXTK/8m095hHfAwpYkRVr2hCh PxDCNVLLksQbMkr38213kdtt6P8IQAGQY97aoL5cwNvYdi/z2nI= -----END CERTIFICATE-----Generated at Fri Apr 17 23:44:14 2026 by rpki-client