$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json) Hash identifier: ZnZkpDy2ev8NKXs1O1Tz/4BTYVUoTzcppmDEPSPiVK4= Subject key identifier: 7A:59:28:38:E2:D4:93:B8:62:BC:C5:AB:47:0D:01:47:10:AB:E9:9B Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 7E8A414320E18FFDC59300254A4B7F2C4D686D0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft Manifest number: 0112 Signing time: Fri 17 Apr 2026 08:21:55 +0000 Manifest this update: Fri 17 Apr 2026 08:16:55 +0000 Manifest next update: Mon 20 Apr 2026 17:31:55 +0000 Files and hashes: 1: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: okMulqCwmQrHdU+kO0nYzAvF/vvi8wTCEKi+VdDT9lQ=) 2: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: nPNfo8WS6sISKY9R5iy6YU4Ge66192N4S2VvbXjdRyo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 17:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:8a:41:43:20:e1:8f:fd:c5:93:00:25:4a:4b:7f:2c:4d:68:6d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Apr 17 08:16:55 2026 GMT Not After : Apr 20 17:31:55 2026 GMT Subject: CN=7A592838E2D493B862BCC5AB470D014710ABE99B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:46:9d:13:e9:6a:b6:73:40:29:1d:8c:67:95: 4e:18:6f:c5:8f:17:49:0d:30:9f:dd:c2:99:af:32: 86:6a:71:b1:b0:39:c0:aa:08:df:a3:fd:fe:ff:d5: c9:15:e1:6e:4d:84:81:af:b2:91:61:45:56:d6:b6: 78:36:c2:a6:70:91:bc:9d:d1:48:fe:33:39:19:62: c1:3b:6e:97:ac:c4:10:8e:93:9d:f2:49:fc:e3:8f: 86:b3:56:f1:bf:04:c5:39:ec:1a:07:34:df:61:93: 74:da:4d:db:07:d5:a4:07:a7:97:bd:85:2a:cb:d9: fe:d1:16:44:b0:92:11:94:e8:b6:b9:40:5c:e3:bd: 25:8e:4a:38:cc:57:ae:0a:58:2b:5d:8e:0d:95:f1: 54:18:b5:5b:42:05:31:ee:c3:3b:47:17:6e:f7:65: 83:02:58:5e:1e:31:49:fc:1c:d9:72:4a:10:ae:2e: a7:da:5d:56:26:4d:61:25:eb:a5:25:7c:13:a0:40: 3c:f1:b8:62:8c:0f:72:67:12:d2:a0:49:18:a6:45: 60:02:f4:62:50:ee:25:bf:9e:6b:ca:5b:8d:25:7f: 27:8c:72:95:a1:1f:4b:be:14:0c:f6:6d:80:90:5e: 72:b8:bb:7c:7f:71:a8:4f:83:66:4c:2c:d1:fa:cb: 25:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:59:28:38:E2:D4:93:B8:62:BC:C5:AB:47:0D:01:47:10:AB:E9:9B X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:55:1c:fe:3c:a2:3c:4c:25:e1:1c:af:87:1e:36:02:a2:08: ae:f5:77:54:c6:9e:be:75:3f:c1:cc:b4:9d:48:a5:80:65:e2: ea:ab:a4:d0:fa:a3:0d:d0:63:97:99:1a:9d:bf:f9:f8:e3:de: ca:0e:fa:72:a8:42:69:71:6d:62:aa:20:33:7c:ee:bd:c1:1a: 97:2f:b4:9a:74:48:0e:52:73:4e:ce:c1:3d:bc:06:27:64:44: 37:da:d5:e3:cb:88:0b:ad:f0:20:5e:fa:bb:7b:ff:53:ad:7c: a0:33:9c:55:8f:ec:04:1c:c7:b8:19:ba:b6:02:d4:05:37:e1: 6c:4a:7a:22:ed:9b:01:2e:02:a2:14:cb:29:3a:5b:73:47:4c: f6:aa:2e:1c:eb:1d:cc:3c:13:9f:02:00:59:c0:d3:21:65:f0: 8b:2a:a8:4c:b8:58:aa:6d:01:2d:9f:2c:79:9c:5b:a1:de:4d: 34:63:85:28:0b:09:40:d8:c9:68:6a:ac:9a:5f:de:30:20:db: db:ec:31:78:9b:03:7d:d8:dc:28:a7:b3:c9:06:b4:db:80:91: 71:25:60:2b:0f:ad:29:c1:8d:05:e7:f0:1c:82:31:d0:3e:34: 1e:08:01:6d:42:50:9d:d3:90:b1:c0:e0:a8:cc:39:eb:3e:82: 42:af:75:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfopBQyDhj/3FkwAlSkt/LE1obQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNjA0MTcwODE2NTVaFw0yNjA0MjAxNzMxNTVaMDMxMTAvBgNV BAMTKDdBNTkyODM4RTJENDkzQjg2MkJDQzVBQjQ3MEQwMTQ3MTBBQkU5OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZRp0T6Wq2c0ApHYxnlU4Yb8WP F0kNMJ/dwpmvMoZqcbGwOcCqCN+j/f7/1ckV4W5NhIGvspFhRVbWtng2wqZwkbyd 0Uj+MzkZYsE7bpesxBCOk53ySfzjj4azVvG/BMU57BoHNN9hk3TaTdsH1aQHp5e9 hSrL2f7RFkSwkhGU6La5QFzjvSWOSjjMV64KWCtdjg2V8VQYtVtCBTHuwztHF273 ZYMCWF4eMUn8HNlyShCuLqfaXVYmTWEl66UlfBOgQDzxuGKMD3JnEtKgSRimRWAC 9GJQ7iW/nmvKW40lfyeMcpWhH0u+FAz2bYCQXnK4u3x/cahPg2ZMLNH6yyVhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUelkoOOLUk7hivMWrRw0BRxCr6ZswHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTZjZDAzMjUtMzFhZi00ZmZlLThi ZWItZTc3OTk3ZTZjM2UxLzAvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODND MzQwMkQ2QUYyMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGtVHP48ojxMJeEcr4ceNgKiCK71d1TGnr51 P8HMtJ1IpYBl4uqrpND6ow3QY5eZGp2/+fjj3soO+nKoQmlxbWKqIDN87r3BGpcv tJp0SA5Sc07OwT28BidkRDfa1ePLiAut8CBe+rt7/1OtfKAznFWP7AQcx7gZurYC 1AU34WxKeiLtmwEuAqIUyyk6W3NHTPaqLhzrHcw8E58CAFnA0yFl8IsqqEy4WKpt AS2fLHmcW6HeTTRjhSgLCUDYyWhqrJpf3jAg29vsMXibA33Y3Cins8kGtNuAkXEl YCsPrSnBjQXn8ByCMdA+NB4IAW1CUJ3TkLHA4KjMOes+gkKvda0= -----END CERTIFICATE-----Generated at Fri Apr 17 14:56:16 2026 by rpki-client