$ rpki-client -vvf repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft File: 4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft (raw, json) Hash identifier: y+6bkeg08T31VoYjkXRvDvyf3qqquSAiS5jfynWormg= Subject key identifier: 32:0E:36:ED:7F:49:D1:6F:16:B9:71:FB:1C:C4:D1:7D:D7:AD:85:D6 Authority key identifier: 4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 Certificate issuer: /CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Certificate serial: 3601FD000E02A27ED14DBDB50D471E994BCA7457 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft Manifest number: 0574 Signing time: Fri 17 Apr 2026 20:30:02 +0000 Manifest this update: Fri 17 Apr 2026 20:25:02 +0000 Manifest next update: Mon 20 Apr 2026 23:50:02 +0000 Files and hashes: 1: 3130332e3132352e3131362e302f32322d3232203d3e20313338313032.roa (hash: ap/TAn2i+zkksu9/CGCNCkYifXPZgmxnJOJkOH4ZWr8=) 2: 3130332e3132352e3131362e302f32342d3234203d3e20313338313032.roa (hash: Rijq6K1g57KijomhL6W8vMskGlfJbmrteuOacH80VQM=) 3: 3130332e3132352e3131392e302f32342d3234203d3e20313338313032.roa (hash: yF5QYDSmZl11Br5OhVCNQy6ELbgnz0I3Y8PMUZejcuI=) 4: 4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl (hash: +s867umfJ8rp0mLqLHEE1balq3vklPbTeSJ5lLSy3qM=) 5: 3130332e3132352e3131382e302f32342d3234203d3e20313338313032.roa (hash: hxX9wVbrBCOouQsOFqq88JkVfKelw0pXrTTftPM/8Pg=) 6: 3130332e3132352e3131372e302f32342d3234203d3e20313338313032.roa (hash: DvXqXB3KDxEUrIvLC7HCxRYW39FKt6kOul7sjWDdzKs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 23:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:01:fd:00:0e:02:a2:7e:d1:4d:bd:b5:0d:47:1e:99:4b:ca:74:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9 Validity Not Before: Apr 17 20:25:02 2026 GMT Not After : Apr 20 23:50:02 2026 GMT Subject: CN=320E36ED7F49D16F16B971FB1CC4D17DD7AD85D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a5:99:e5:79:d9:93:e6:bb:3a:62:e7:9e:2b: 9a:5e:a2:84:bc:2a:7a:1b:41:c9:79:d9:90:c7:86: ed:8d:e6:b1:8b:04:6a:27:e6:5d:a0:87:59:02:0e: eb:d1:28:36:c8:95:15:2b:93:3a:26:88:18:e8:9d: 8d:f7:9d:04:9a:58:ed:af:0b:b5:b8:8a:32:0a:e4: ad:00:fd:bf:1c:ee:cf:f6:76:af:c4:5e:dc:b1:75: 36:8b:61:49:85:21:63:a3:b4:db:cf:0e:e9:a9:17: 1a:69:b8:01:0b:cd:35:13:ad:a4:bb:1a:f8:bf:63: 1c:d5:6e:48:f1:a4:95:b9:2e:45:89:70:67:8e:14: dc:1f:9f:75:bc:f1:b7:61:28:43:24:a1:62:ce:d1: d7:f1:66:85:c3:f8:21:2d:e0:d4:c1:78:91:05:b4: d9:f4:74:65:91:44:5a:db:fa:69:09:b6:bd:81:ee: f3:71:f0:cf:58:05:6e:4e:e4:b6:14:dd:cc:f1:c2: 74:ae:fb:35:1f:78:8b:29:38:ed:89:6f:ac:81:83: 52:93:7c:95:78:6a:a6:18:27:d0:a8:42:5a:cf:5d: 02:5c:a4:1c:b1:70:70:dd:06:9d:2b:61:5e:cc:78: e0:07:5f:98:5a:16:4f:66:fc:30:7b:03:86:b9:1d: d7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:0E:36:ED:7F:49:D1:6F:16:B9:71:FB:1C:C4:D1:7D:D7:AD:85:D6 X509v3 Authority Key Identifier: keyid:4D:EF:BD:D9:85:4B:E8:D1:E2:8F:73:30:A0:B8:02:C3:EE:6A:D1:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/90de231f-fb8a-427a-aa36-0a3fc972328d/0/4DEFBDD9854BE8D1E28F7330A0B802C3EE6AD1F9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:cf:2e:c1:6a:a1:2d:3c:b3:46:6e:2d:64:be:27:29:bc:ec: b6:db:05:46:e4:4e:4e:6a:07:23:84:79:15:fe:62:f3:e6:f7: c5:31:7a:a0:9e:2f:ea:8e:96:f2:ac:13:bc:0a:17:15:9d:5c: 06:1e:e5:e5:6a:92:6a:a0:42:e6:75:97:51:59:ad:2a:74:ad: 96:a2:ca:20:d9:90:8b:82:dc:94:d2:f3:a7:4b:a8:a1:4f:dc: 9a:20:f3:50:d7:31:95:42:64:af:c6:1a:4d:86:2a:82:0c:0f: 3c:bb:c8:77:f7:28:02:aa:6d:e6:e2:f4:f3:78:9a:0d:dc:2d: 79:86:f0:a6:56:eb:54:2b:36:17:4d:d8:e3:42:06:4a:35:48: c4:e6:ba:0d:8b:34:7b:0f:d1:d6:23:5a:16:86:45:5d:66:86: d5:8b:9e:c8:0d:9b:f4:a8:08:f5:27:55:e3:fe:ce:21:a3:07: 28:54:60:16:f8:f6:4f:c4:46:76:a9:1f:03:08:21:5d:51:9f: fb:82:3f:5d:22:93:a3:c0:09:c1:f5:85:22:ef:75:67:3a:73: 00:9e:f3:04:19:80:4c:26:02:9e:5d:c3:45:86:e6:e9:2f:fd: fd:1a:d9:82:d0:4e:8a:07:eb:d2:4b:b4:30:34:ed:33:36:12: 2c:61:57:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNgH9AA4Con7RTb21DUcemUvKdFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNF RTZBRDFGOTAeFw0yNjA0MTcyMDI1MDJaFw0yNjA0MjAyMzUwMDJaMDMxMTAvBgNV BAMTKDMyMEUzNkVEN0Y0OUQxNkYxNkI5NzFGQjFDQzREMTdERDdBRDg1RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIpZnledmT5rs6YueeK5peooS8 KnobQcl52ZDHhu2N5rGLBGon5l2gh1kCDuvRKDbIlRUrkzomiBjonY33nQSaWO2v C7W4ijIK5K0A/b8c7s/2dq/EXtyxdTaLYUmFIWOjtNvPDumpFxppuAELzTUTraS7 Gvi/YxzVbkjxpJW5LkWJcGeOFNwfn3W88bdhKEMkoWLO0dfxZoXD+CEt4NTBeJEF tNn0dGWRRFrb+mkJtr2B7vNx8M9YBW5O5LYU3czxwnSu+zUfeIspOO2Jb6yBg1KT fJV4aqYYJ9CoQlrPXQJcpByxcHDdBp0rYV7MeOAHX5haFk9m/DB7A4a5HdeNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMg427X9J0W8WuXH7HMTRfdethdYwHwYDVR0j BBgwFoAUTe+92YVL6NHij3MwoLgCw+5q0fkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MGRlMjMxZi1mYjhhLTQyN2EtYWEzNi0wYTNmYzk3MjMyOGQvMC80REVGQkREOTg1 NEJFOEQxRTI4RjczMzBBMEI4MDJDM0VFNkFEMUY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAyQzNFRTZB RDFGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTBkZTIzMWYtZmI4YS00MjdhLWFh MzYtMGEzZmM5NzIzMjhkLzAvNERFRkJERDk4NTRCRThEMUUyOEY3MzMwQTBCODAy QzNFRTZBRDFGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADnPLsFqoS08s0ZuLWS+Jym87LbbBUbkTk5q ByOEeRX+YvPm98UxeqCeL+qOlvKsE7wKFxWdXAYe5eVqkmqgQuZ1l1FZrSp0rZai yiDZkIuC3JTS86dLqKFP3Jog81DXMZVCZK/GGk2GKoIMDzy7yHf3KAKqbebi9PN4 mg3cLXmG8KZW61QrNhdN2ONCBko1SMTmug2LNHsP0dYjWhaGRV1mhtWLnsgNm/So CPUnVeP+ziGjByhUYBb49k/ERnapHwMIIV1Rn/uCP10ik6PACcH1hSLvdWc6cwCe 8wQZgEwmAp5dw0WG5ukv/f0a2YLQTooH69JLtDA07TM2EixhV28= -----END CERTIFICATE-----Generated at Sun Apr 19 11:37:12 2026 by rpki-client