$ rpki-client -vvf repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft File: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft (raw, json) Hash identifier: Q+OYXu85I62fgLWXvVPhZ/T983nCkcdRA74KS5XCpXw= Subject key identifier: D2:18:42:A5:C6:F8:F7:0C:B0:56:C8:DC:71:55:CC:ED:D7:2C:43:2E Authority key identifier: B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 Certificate issuer: /CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Certificate serial: 77C419A083E86EADA4B79BCC35A8CA461C16BAC2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft Manifest number: 025E Signing time: Sat 18 Apr 2026 12:32:19 +0000 Manifest this update: Sat 18 Apr 2026 12:27:19 +0000 Manifest next update: Wed 22 Apr 2026 00:23:19 +0000 Files and hashes: 1: 3130332e3138382e3235332e302f32342d3234203d3e20313439373337.roa (hash: Sj/j171l33JI7ePr4g2BFw5WUoQjNjQFEAH4ivYj0QM=) 2: 3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa (hash: Ecgrbu6B3OibUjb6EMgW5BudmheK1y9j1Ehe3erMDBM=) 3: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl (hash: 6sg3lNxMflprc4ROZKEFWLt/4FZj9a4XhWLRAaFJvlA=) 4: 3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa (hash: jokIBMvTnzkYHW/XHAeX7hxaG3x1GkvBjnS33CW0bpg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 00:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:c4:19:a0:83:e8:6e:ad:a4:b7:9b:cc:35:a8:ca:46:1c:16:ba:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Validity Not Before: Apr 18 12:27:19 2026 GMT Not After : Apr 22 00:23:19 2026 GMT Subject: CN=D21842A5C6F8F70CB056C8DC7155CCEDD72C432E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:95:96:12:99:94:d5:db:8d:90:8a:ed:05:b8: fb:0f:5b:2e:1e:2d:ea:18:4b:08:12:12:1b:f3:62: 85:02:c5:9d:d5:0a:1b:82:e0:57:9b:40:57:16:7e: 05:2e:69:f7:94:90:71:11:3f:5b:77:d5:2a:03:69: 87:a5:50:28:37:f7:0e:52:75:9e:6c:6b:fb:e2:f1: d5:0b:4d:61:1f:1d:23:5f:52:40:aa:bf:78:fb:b9: 2d:dd:44:1e:c0:04:da:29:9e:6c:d9:c3:50:7d:79: 0b:da:29:09:62:da:fa:16:37:81:98:6c:b6:2c:ea: 2d:c3:6d:ec:42:13:6a:35:f0:86:e3:1a:7e:5d:8d: d3:50:cd:97:1d:b2:6f:be:32:56:65:6e:f0:25:30: 60:3c:7d:8c:42:99:fd:99:88:cb:77:9c:81:2d:bd: 3a:ee:d0:42:30:2d:f1:81:c1:5b:53:9f:1d:4e:d3: 45:b0:bb:08:2c:10:08:a5:c7:1b:e4:03:72:44:7b: 42:d8:e1:d0:87:63:6f:95:c7:e7:20:4f:8e:fd:fd: de:c4:f7:68:07:5f:0f:9c:0b:87:c4:74:61:f3:e6: da:d6:58:f7:7b:5e:49:48:66:85:56:16:8b:c0:77: 18:57:56:c4:d7:bf:2e:25:95:a8:b8:c6:cc:44:5d: 26:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:18:42:A5:C6:F8:F7:0C:B0:56:C8:DC:71:55:CC:ED:D7:2C:43:2E X509v3 Authority Key Identifier: keyid:B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:40:f3:c8:9e:3e:81:72:c6:e2:72:1b:44:77:af:16:13:eb: 78:9b:9d:2c:89:5f:cd:89:db:e6:a1:f1:ca:86:e1:29:5d:4f: 3c:92:d3:85:1c:0b:d9:b7:1a:8e:bb:a8:ea:d5:89:39:3e:46: 8c:7b:02:64:77:ec:8b:e0:7f:92:67:ad:a7:c0:33:0c:d8:11: 3c:f2:86:c7:03:d1:00:96:bb:49:6c:be:84:82:d4:42:07:c4: 9d:2f:e0:5b:05:67:73:53:88:30:45:0c:40:dc:0c:47:ee:e9: 18:36:db:f6:15:14:6b:8a:42:b7:af:2d:37:e9:a8:03:e7:7a: 32:ee:08:10:48:34:5a:3f:ad:de:8f:af:75:f2:a8:d4:b9:23: 5c:41:29:5d:d2:f7:a2:0b:86:4e:82:77:c8:2c:3d:d8:49:f1: fe:41:7a:a9:57:cd:9d:11:c2:cf:9f:33:98:24:ff:16:9a:a9: 6e:f8:20:2f:02:c3:e9:9c:1d:d8:2c:cc:75:06:e2:0f:88:68: 5e:33:be:8c:5b:1f:60:8b:8b:39:1c:b5:e0:4c:e0:9a:be:97: a5:05:a7:82:93:8a:06:30:f7:90:1c:b2:c9:2c:13:06:04:7e: 81:a6:96:64:96:2c:fa:ae:02:2f:aa:ea:30:a3:2b:5a:20:09: aa:c1:af:77 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd8QZoIPobq2kt5vMNajKRhwWusIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5 ODI1NERCMjAeFw0yNjA0MTgxMjI3MTlaFw0yNjA0MjIwMDIzMTlaMDMxMTAvBgNV BAMTKEQyMTg0MkE1QzZGOEY3MENCMDU2QzhEQzcxNTVDQ0VERDcyQzQzMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRlZYSmZTV242Qiu0FuPsPWy4e LeoYSwgSEhvzYoUCxZ3VChuC4FebQFcWfgUuafeUkHERP1t31SoDaYelUCg39w5S dZ5sa/vi8dULTWEfHSNfUkCqv3j7uS3dRB7ABNopnmzZw1B9eQvaKQli2voWN4GY bLYs6i3DbexCE2o18IbjGn5djdNQzZcdsm++MlZlbvAlMGA8fYxCmf2ZiMt3nIEt vTru0EIwLfGBwVtTnx1O00WwuwgsEAilxxvkA3JEe0LY4dCHY2+Vx+cgT479/d7E 92gHXw+cC4fEdGHz5trWWPd7XklIZoVWFovAdxhXVsTXvy4llai4xsxEXSZ3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0hhCpcb49wywVsjccVXM7dcsQy4wHwYDVR0j BBgwFoAUtel7cfr6JP+PorGjNVjYCpglTbIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWVkMDk4Yi00OWIxLTRmNTMtYjc1YS0yNzNlMTFjMjUxNDkvMC9CNUU5N0I3MUZB RkEyNEZGOEZBMkIxQTMzNTU4RDgwQTk4MjU0REIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5ODI1 NERCMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWFlZDA5OGItNDliMS00ZjUzLWI3 NWEtMjczZTExYzI1MTQ5LzAvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4 MEE5ODI1NERCMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF1A88iePoFyxuJyG0R3rxYT63ibnSyJX82J 2+ah8cqG4SldTzyS04UcC9m3Go67qOrViTk+Rox7AmR37Ivgf5JnrafAMwzYETzy hscD0QCWu0lsvoSC1EIHxJ0v4FsFZ3NTiDBFDEDcDEfu6Rg22/YVFGuKQrevLTfp qAPnejLuCBBINFo/rd6Pr3XyqNS5I1xBKV3S96ILhk6Cd8gsPdhJ8f5BeqlXzZ0R ws+fM5gk/xaaqW74IC8Cw+mcHdgszHUG4g+IaF4zvoxbH2CLizkcteBM4Jq+l6UF p4KTigYw95AcssksEwYEfoGmlmSWLPquAi+q6jCjK1ogCarBr3c= -----END CERTIFICATE-----Generated at Sun Apr 19 12:19:47 2026 by rpki-client