$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft File: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json) Hash identifier: VK3uIfbPQdaBnqPYaifATdDsg0FwmvLfMf6U/Ny6dyw= Subject key identifier: F5:28:FB:17:74:6F:50:6B:FD:8A:12:79:60:60:FB:DF:10:2B:22:F4 Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF Certificate issuer: /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Certificate serial: 201B19D48A1737B494052FC4F4D0E11565DA6E14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft Manifest number: 012D Signing time: Sat 18 Apr 2026 19:51:17 +0000 Manifest this update: Sat 18 Apr 2026 19:46:17 +0000 Manifest next update: Wed 22 Apr 2026 00:49:17 +0000 Files and hashes: 1: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: aR62APrh1DccZKre5l7C6SLFps3TBPFdm3R3znGJ1fA=) 2: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: sduOumnzm/o88eVaBoNpGJkr3dLxc2BLUJG+GgbVCeE=) 3: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: nNqPduu/JjsIMhgAQMQxpm1Co5pg16TuoWu2Q/HzWgA=) 4: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: X/C9vXKY/TY9dLHbewA4tddP0TItlp1o/B62rHS1ZLs=) 5: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: AZoy99OzaaD9x6sZSBHTE/6tOjO7s0t/ExrzVTGMWVY=) 6: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: 4N3xCB2x4rBoMiXQaq1TIxjQcspdHHBn4voGBhoXwMQ=) 7: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: A2G6b+fxTo20QvHK7lUw9boisWwmFFcOlzGIN95UCMI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:1b:19:d4:8a:17:37:b4:94:05:2f:c4:f4:d0:e1:15:65:da:6e:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF Validity Not Before: Apr 18 19:46:17 2026 GMT Not After : Apr 22 00:49:17 2026 GMT Subject: CN=F528FB17746F506BFD8A12796060FBDF102B22F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:fc:0c:66:61:33:52:92:d0:2c:84:e8:d7:18: 8c:da:63:07:f9:66:da:88:3e:6e:66:97:7f:be:86: b2:2f:9c:18:2b:1d:73:02:9c:95:a3:c1:ab:d1:72: 1e:53:64:e5:01:0d:00:c9:bd:9c:2a:b7:22:fd:61: 85:c6:29:19:a1:7f:98:eb:e4:62:29:42:5c:be:30: c0:0d:ed:f5:5e:e7:9b:17:00:4b:ea:de:27:56:71: 3a:b7:c2:ec:b4:79:d1:37:ea:2c:d0:6b:f3:00:5a: da:f9:0b:bf:12:55:9b:7c:9f:55:52:c7:bb:eb:d8: f0:5f:ff:2d:69:32:93:9d:3d:43:53:16:86:0e:72: 95:09:45:1b:0f:56:a4:82:a7:d3:de:7a:03:3f:bb: 21:e1:14:93:1e:5c:44:38:61:8c:51:88:ef:ea:49: 78:6c:65:6a:d5:1c:54:48:75:c2:ce:0b:7e:95:92: e1:ea:46:2d:24:d8:09:b3:19:1a:83:6a:b9:ce:3e: cf:f8:cb:7a:b1:42:79:5b:fd:a1:94:98:9f:15:63: cb:31:26:3b:78:60:40:9a:4f:0a:3b:7c:bf:99:7a: ee:2a:6f:7e:9d:cb:19:86:a0:00:18:9d:3a:d5:37: ea:13:73:40:33:01:0e:8b:b5:cb:40:89:06:c6:48: b2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:28:FB:17:74:6F:50:6B:FD:8A:12:79:60:60:FB:DF:10:2B:22:F4 X509v3 Authority Key Identifier: keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:c4:31:ec:eb:23:32:9e:d0:9e:27:ba:28:c9:2e:d9:a0:43: fe:17:6e:fe:31:5f:fd:92:d1:7f:46:84:e6:2b:b3:ca:06:aa: b2:87:d0:00:58:85:26:83:63:15:c9:f9:30:76:f8:96:7e:37: 5d:9f:95:00:99:ea:cb:fa:9a:70:f4:1c:21:ce:22:c2:5b:78: 6e:18:2e:cb:e1:85:ea:34:ae:e4:44:b0:01:97:10:fb:d0:f0: 63:84:1a:cc:59:4e:f9:9e:bd:c9:c5:22:79:39:ca:19:c6:0c: 44:5f:d7:17:50:81:81:fd:b6:6e:c9:d8:54:99:95:40:d9:c3: e8:86:9e:c7:46:6c:91:81:69:a0:5c:11:3f:eb:59:e4:8b:21: cc:34:d5:27:de:b7:e5:26:f9:7c:66:ca:87:71:54:23:dd:bb: b4:1e:3a:32:ef:3d:b2:4a:d5:98:49:54:f3:ef:ab:e6:86:88: 78:71:99:94:5c:a9:b0:7f:20:47:e9:c5:10:fc:1e:2a:c7:be: ee:c5:c3:7e:d6:dc:5f:53:8e:70:59:61:8c:52:b0:43:c1:66: 82:78:52:0e:83:88:37:45:83:f3:75:4f:da:47:72:f8:0f:2c: 01:0c:7c:d9:2c:c9:e3:ab:ea:fb:c0:4d:92:96:cc:44:d2:a1: 97:47:d8:ab -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIBsZ1IoXN7SUBS/E9NDhFWXabhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0 MzUzRjZGRjAeFw0yNjA0MTgxOTQ2MTdaFw0yNjA0MjIwMDQ5MTdaMDMxMTAvBgNV BAMTKEY1MjhGQjE3NzQ2RjUwNkJGRDhBMTI3OTYwNjBGQkRGMTAyQjIyRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj/AxmYTNSktAshOjXGIzaYwf5 ZtqIPm5ml3++hrIvnBgrHXMCnJWjwavRch5TZOUBDQDJvZwqtyL9YYXGKRmhf5jr 5GIpQly+MMAN7fVe55sXAEvq3idWcTq3wuy0edE36izQa/MAWtr5C78SVZt8n1VS x7vr2PBf/y1pMpOdPUNTFoYOcpUJRRsPVqSCp9PeegM/uyHhFJMeXEQ4YYxRiO/q SXhsZWrVHFRIdcLOC36VkuHqRi0k2AmzGRqDarnOPs/4y3qxQnlb/aGUmJ8VY8sx Jjt4YECaTwo7fL+Zeu4qb36dyxmGoAAYnTrVN+oTc0AzAQ6LtctAiQbGSLLnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9Sj7F3RvUGv9ihJ5YGD73xArIvQwHwYDVR0j BBgwFoAUi6K14H+tVyjH3vv0/BC9BENT9v8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Yzc2Yzg1Zi05YTRmLTRhZmMtOTY5Yi04ZGEyNTM2YzVjMjQvMC84QkEyQjVFMDdG QUQ1NzI4QzdERUZCRjRGQzEwQkQwNDQzNTNGNkZGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJEMDQ0MzUz RjZGRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGM3NmM4NWYtOWE0Zi00YWZjLTk2 OWItOGRhMjUzNmM1YzI0LzAvOEJBMkI1RTA3RkFENTcyOEM3REVGQkY0RkMxMEJE MDQ0MzUzRjZGRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMfEMezrIzKe0J4nuijJLtmgQ/4Xbv4xX/2S 0X9GhOYrs8oGqrKH0ABYhSaDYxXJ+TB2+JZ+N12flQCZ6sv6mnD0HCHOIsJbeG4Y Lsvhheo0ruREsAGXEPvQ8GOEGsxZTvmevcnFInk5yhnGDERf1xdQgYH9tm7J2FSZ lUDZw+iGnsdGbJGBaaBcET/rWeSLIcw01Sfet+Um+XxmyodxVCPdu7QeOjLvPbJK 1ZhJVPPvq+aGiHhxmZRcqbB/IEfpxRD8HirHvu7Fw37W3F9TjnBZYYxSsEPBZoJ4 Ug6DiDdFg/N1T9pHcvgPLAEMfNksyeOr6vvATZKWzETSoZdH2Ks= -----END CERTIFICATE-----Generated at Sun Apr 19 10:23:05 2026 by rpki-client