$ rpki-client -vvf repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft File: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft (raw, json) Hash identifier: syyeX28+pPTsfeuYbGXqeMOMjzQMl5lbfvLxXp3PBNE= Subject key identifier: E0:EF:02:C4:18:DB:C8:17:62:7A:03:5E:10:FE:0A:7C:9B:9B:E0:2F Authority key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Certificate issuer: /CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Certificate serial: 417B60D8DDEC6B2DC078E910D441AF5DF11E8C0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft Manifest number: 0269 Signing time: Thu 16 Apr 2026 20:12:14 +0000 Manifest this update: Thu 16 Apr 2026 20:07:14 +0000 Manifest next update: Mon 20 Apr 2026 00:34:14 +0000 Files and hashes: 1: 3130332e3134392e3137362e302f32342d3234203d3e20313430343433.roa (hash: eZYtUZLtuRDuxdsxLnXjmZgx/1qgwLRJLKfiQTo3GQY=) 2: 323030313a6466333a333438303a3a2f34382d3438203d3e20313430343433.roa (hash: 82yOGmzbVqcCrn1bsvHBPAxt3dwBS7UeQFQIwikGg9M=) 3: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl (hash: 2fgBeTKn4oPy1CDI+e5ivTY+5Sfrq1hulrLTHI+E3JU=) 4: 3130332e3134392e3137362e302f32332d3233203d3e20313430343433.roa (hash: aVK08q/Q9AxWffjEF7bmBxP9Ha+sRCVHe7bN4b7LZBc=) 5: 3130332e3134392e3137372e302f32342d3234203d3e20313430343433.roa (hash: S9ss1UFC8ltEsWGGAoKwO6GpiU6tI/d9HG2NbYNNjaw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 00:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:7b:60:d8:dd:ec:6b:2d:c0:78:e9:10:d4:41:af:5d:f1:1e:8c:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Validity Not Before: Apr 16 20:07:14 2026 GMT Not After : Apr 20 00:34:14 2026 GMT Subject: CN=E0EF02C418DBC817627A035E10FE0A7C9B9BE02F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:36:ff:f2:f3:36:b4:2c:5a:8e:f5:98:91:12: c0:f1:7d:cd:45:60:5d:86:0a:40:43:26:9b:61:d6: 4c:1f:3b:4d:4d:31:d7:5d:96:6f:d6:84:ff:51:82: 32:7a:ab:b4:d4:75:6c:29:cc:d3:5c:02:3e:80:17: 53:a8:0a:44:8f:e7:64:5c:07:8c:9a:f6:f2:d9:0d: 0a:9f:30:80:b9:5e:5e:f3:76:8a:51:3b:c2:b9:6d: 6e:e7:a7:ea:22:14:22:c2:cc:33:b8:f4:68:62:e4: 1e:8d:af:f9:d8:10:7a:7e:53:f5:3b:bd:de:9d:3b: 31:74:48:2a:9f:0a:e4:e2:82:15:cb:5e:47:b6:0e: 25:81:01:06:de:cb:8c:8b:b5:e4:18:ca:fe:ee:44: 1e:6b:54:3b:c7:3d:ce:be:51:d7:f7:ae:bd:a2:4e: 78:98:78:d0:05:42:34:d4:14:24:b6:dd:e7:60:e3: e6:96:99:2a:e0:bc:07:04:b5:af:19:86:46:a0:9c: 32:ae:eb:14:f2:ad:95:55:01:ce:49:2a:22:df:3b: ba:b9:05:e3:08:22:7f:36:9f:11:63:e4:a2:08:bc: c1:f1:49:7c:3b:da:b2:9f:a7:6d:0d:64:0e:24:9e: 5e:da:52:9f:5b:ec:69:71:39:d2:1d:2a:e1:b4:4e: 8d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:EF:02:C4:18:DB:C8:17:62:7A:03:5E:10:FE:0A:7C:9B:9B:E0:2F X509v3 Authority Key Identifier: keyid:74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ce:d1:f8:bd:9d:6f:a9:8e:3b:66:88:af:0c:8a:cc:a8:da:8c: 7a:68:32:76:09:23:d2:bc:23:9f:27:48:c3:62:e6:c4:a2:7b: b2:39:b5:3e:0b:10:a4:e3:22:34:c0:fe:18:7d:39:52:54:b6: 19:e6:13:e9:49:5d:b6:01:68:7d:65:92:87:fd:1d:67:97:76: 57:88:df:16:8d:31:99:b7:f4:1a:1f:9f:0d:43:10:a0:f8:e6: 13:72:fe:5b:74:fd:29:67:1c:d6:b4:13:40:c3:5f:0c:b7:bb: 73:47:77:b9:ff:ab:63:8d:9b:1a:ac:d5:f2:4a:78:dd:7a:a4: 47:81:6a:8b:61:82:dd:5b:e6:69:8a:6b:4e:8f:0c:b3:2a:dd: c8:1c:22:43:5f:a8:58:f9:42:21:b7:be:2a:e3:22:e3:02:e3: e6:c9:fd:f4:99:4a:57:e3:85:74:9e:e6:9c:8d:95:f4:76:34: 39:31:65:1c:a2:8b:6d:5a:0d:7a:52:d7:0d:ef:ba:54:2a:10: 19:52:1b:c5:29:a8:94:2c:23:26:a2:9f:5a:a4:35:de:a0:2d: 33:66:9f:80:4a:d1:a3:1a:54:bb:01:b7:7f:5b:2a:0c:18:ca: ef:55:5b:71:a5:b6:8c:51:be:44:bf:08:40:df:7e:4a:d9:ec: ad:6e:0d:f3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQXtg2N3say3AeOkQ1EGvXfEejA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNF QTI3NjM1QzAeFw0yNjA0MTYyMDA3MTRaFw0yNjA0MjAwMDM0MTRaMDMxMTAvBgNV BAMTKEUwRUYwMkM0MThEQkM4MTc2MjdBMDM1RTEwRkUwQTdDOUI5QkUwMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTNv/y8za0LFqO9ZiREsDxfc1F YF2GCkBDJpth1kwfO01NMdddlm/WhP9RgjJ6q7TUdWwpzNNcAj6AF1OoCkSP52Rc B4ya9vLZDQqfMIC5Xl7zdopRO8K5bW7np+oiFCLCzDO49Ghi5B6Nr/nYEHp+U/U7 vd6dOzF0SCqfCuTighXLXke2DiWBAQbey4yLteQYyv7uRB5rVDvHPc6+Udf3rr2i TniYeNAFQjTUFCS23edg4+aWmSrgvAcEta8ZhkagnDKu6xTyrZVVAc5JKiLfO7q5 BeMIIn82nxFj5KIIvMHxSXw72rKfp20NZA4knl7aUp9b7GlxOdIdKuG0To37AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4O8CxBjbyBdiegNeEP4KfJub4C8wHwYDVR0j BBgwFoAUdJ6PbF8i0YpwtoL4bGXs0+onY1wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMC83NDlFOEY2QzVG MjJEMThBNzBCNjgyRjg2QzY1RUNEM0VBMjc2MzVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVDRDNFQTI3 NjM1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFlOGRiMzgtNjNhOC00MTNjLWE5 ZjYtY2MyMjNhZmE0YTc1LzAvNzQ5RThGNkM1RjIyRDE4QTcwQjY4MkY4NkM2NUVD RDNFQTI3NjM1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAM7R+L2db6mOO2aIrwyKzKjajHpoMnYJI9K8 I58nSMNi5sSie7I5tT4LEKTjIjTA/hh9OVJUthnmE+lJXbYBaH1lkof9HWeXdleI 3xaNMZm39Bofnw1DEKD45hNy/lt0/SlnHNa0E0DDXwy3u3NHd7n/q2ONmxqs1fJK eN16pEeBaothgt1b5mmKa06PDLMq3cgcIkNfqFj5QiG3virjIuMC4+bJ/fSZSlfj hXSe5pyNlfR2NDkxZRyii21aDXpS1w3vulQqEBlSG8UpqJQsIyain1qkNd6gLTNm n4BK0aMaVLsBt39bKgwYyu9VW3GltoxRvkS/CEDffkrZ7K1uDfM= -----END CERTIFICATE-----Generated at Fri Apr 17 22:29:26 2026 by rpki-client