$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft File: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft (raw, json) Hash identifier: v9dPGSvAIqOGbTU5GZFL+gYeYvzuo4DoNh5QMv3tdGk= Subject key identifier: 99:A4:F4:D1:AC:42:F5:19:57:A6:CA:8C:2F:51:3A:90:E2:7B:A9:61 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 5E8347919ED034A44018A1AD84405CA6A4EE362E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft Manifest number: 0569 Signing time: Thu 16 Apr 2026 23:12:30 +0000 Manifest this update: Thu 16 Apr 2026 23:07:30 +0000 Manifest next update: Mon 20 Apr 2026 08:57:30 +0000 Files and hashes: 1: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl (hash: ELwXXLAKgvVmOK808RFJXJ8BR/OhyjNCpjkwS22ZutM=) 2: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (hash: JSx+5xTx71eWK8GnVgu4sokLS7+0LsCbDYaq7VNDJRQ=) 3: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (hash: 1GnFCQ0Tavqgsu3zMfhYc58ad3h7NpVZT5asqIEYmDA=) 4: 32372e3131312e33342e302f32342d3234203d3e203538343737.roa (hash: JY5X7Ni0FqjOLHL/IBAcPoDotTFSEzReZjChPfIbLws=) 5: 3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa (hash: olwDZQoWpFkRsK81GVJEPLld+99Dlx/8F9oVv6zB3jQ=) 6: 34332e3232392e3230342e302f32322d3234203d3e203234353332.roa (hash: WF4j8x2tGr44aFsHKkav+2ARzcYAA9lGEfxLV4cOOpQ=) 7: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (hash: CeNMr8Y0wuM60Zt6nplzMluIcrI9La3EhazffayBItA=) 8: 3131392e3233352e31362e302f32302d3234203d3e203234353332.roa (hash: B78QMc7X1AynG/67CvGHE09qoTlYPrnz5pImIeutRLM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 08:57:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:83:47:91:9e:d0:34:a4:40:18:a1:ad:84:40:5c:a6:a4:ee:36:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Apr 16 23:07:30 2026 GMT Not After : Apr 20 08:57:30 2026 GMT Subject: CN=99A4F4D1AC42F51957A6CA8C2F513A90E27BA961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2a:0d:f6:90:59:63:d7:d3:e9:da:97:29:96: 15:be:41:68:eb:68:d1:60:1a:eb:8f:9d:ae:ad:23: 55:cb:6e:c5:0e:5d:4f:ee:81:3f:d0:bc:8a:c8:f5: 47:ba:f5:fa:b8:d8:36:eb:59:2e:98:7f:99:ae:e3: b0:1b:cd:fe:87:5d:fa:97:24:b5:24:de:9b:1e:42: 29:46:35:c4:86:62:94:69:8a:6e:7f:7a:9e:fb:a5: 81:d0:de:a1:08:1d:30:72:82:6f:79:91:0c:f1:f6: 2c:d7:1f:56:c2:df:cf:1c:8e:c1:6b:7a:3c:d9:c8: dc:34:37:ec:f7:71:d6:00:e7:6d:7a:c8:15:57:00: 85:e8:13:eb:77:fb:3b:8b:3e:2d:22:a2:f8:51:9b: 0f:29:57:15:67:1d:10:77:b3:88:47:68:e0:d2:bb: e5:95:91:b4:ee:d1:a0:98:cc:87:b7:9c:87:84:fd: f3:5b:c1:d4:bd:6c:2c:78:f3:72:e7:97:b2:44:3b: c4:6b:00:f9:62:75:19:c6:80:ff:ba:6f:b7:c1:6b: 4d:22:03:12:a4:90:11:a9:3d:ce:c7:d6:47:ff:f8: 37:b0:87:05:e7:4e:f5:ab:41:7f:50:38:32:d3:d6: 1c:c7:ee:d2:ec:a4:12:9f:9c:b9:a1:06:2e:96:1b: 7b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:A4:F4:D1:AC:42:F5:19:57:A6:CA:8C:2F:51:3A:90:E2:7B:A9:61 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:2c:36:7f:1a:da:fa:75:9c:ad:01:dc:41:53:cb:91:24:19: 21:f0:f5:43:e5:40:89:41:22:f7:57:0c:5e:c8:e8:30:0e:43: 32:a2:53:c0:7e:7d:4c:b5:96:0a:4f:4c:71:d6:4d:fe:30:56: c3:af:77:36:a1:67:06:f8:ac:2d:94:5f:f0:ff:d1:20:5c:f7: f7:91:95:fd:06:81:8c:c6:eb:9b:5c:1c:86:2d:85:6c:74:6f: 67:18:d2:fc:e0:8e:c4:8b:5a:c6:e6:81:f2:00:6b:a9:7b:95: 5b:3c:b4:59:7f:47:24:58:bb:26:65:cf:e1:f0:b1:2c:32:ed: ad:ca:77:6c:5b:37:ce:79:fb:8a:ca:33:5b:4f:8b:1f:a3:a9: e9:c8:4c:10:04:5b:fb:c0:09:04:69:61:d3:ad:a2:1d:20:2b: b4:32:be:3f:20:7a:e4:8e:36:35:ea:45:6d:b8:b8:a9:1b:da: cc:d4:70:b1:d1:11:37:22:e1:0c:c8:3e:4a:d0:35:7b:32:f4: 12:ed:61:b7:29:63:48:af:5c:bc:11:b6:f5:9f:84:da:49:31: 92:f8:5e:24:68:b2:6f:0b:fe:18:ce:37:45:2b:e2:3f:1a:d9: dc:09:1d:49:25:44:7a:24:38:60:37:e6:e1:5d:ee:6e:e6:b5: 1a:d8:9f:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXoNHkZ7QNKRAGKGthEBcpqTuNi4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNjA0MTYyMzA3MzBaFw0yNjA0MjAwODU3MzBaMDMxMTAvBgNV BAMTKDk5QTRGNEQxQUM0MkY1MTk1N0E2Q0E4QzJGNTEzQTkwRTI3QkE5NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqKg32kFlj19Pp2pcplhW+QWjr aNFgGuuPna6tI1XLbsUOXU/ugT/QvIrI9Ue69fq42DbrWS6Yf5mu47Abzf6HXfqX JLUk3pseQilGNcSGYpRpim5/ep77pYHQ3qEIHTBygm95kQzx9izXH1bC388cjsFr ejzZyNw0N+z3cdYA5216yBVXAIXoE+t3+zuLPi0iovhRmw8pVxVnHRB3s4hHaODS u+WVkbTu0aCYzIe3nIeE/fNbwdS9bCx483Lnl7JEO8RrAPlidRnGgP+6b7fBa00i AxKkkBGpPc7H1kf/+DewhwXnTvWrQX9QODLT1hzH7tLspBKfnLmhBi6WG3vFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmaT00axC9RlXpsqML1E6kOJ7qWEwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTQzZTJlNjctYTE3MS00ZDllLWE5 MzUtNDA2OTAyYjFlMTNiLzAvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVG MEFFQ0M3RkU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFEsNn8a2vp1nK0B3EFTy5EkGSHw9UPlQIlB IvdXDF7I6DAOQzKiU8B+fUy1lgpPTHHWTf4wVsOvdzahZwb4rC2UX/D/0SBc9/eR lf0GgYzG65tcHIYthWx0b2cY0vzgjsSLWsbmgfIAa6l7lVs8tFl/RyRYuyZlz+Hw sSwy7a3Kd2xbN855+4rKM1tPix+jqenITBAEW/vACQRpYdOtoh0gK7Qyvj8geuSO NjXqRW24uKkb2szUcLHRETci4QzIPkrQNXsy9BLtYbcpY0ivXLwRtvWfhNpJMZL4 XiRosm8L/hjON0Ur4j8a2dwJHUklRHokOGA35uFd7m7mtRrYn/Y= -----END CERTIFICATE-----Generated at Fri Apr 17 18:17:41 2026 by rpki-client