$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: UElXwNcWzbltDegKjEl/UWH7Jap3DiRiBB1w3ss6Aqg= Subject key identifier: FD:E7:F7:27:A9:7E:6A:BE:0A:CD:67:1A:D1:98:31:CF:1B:20:F4:F7 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 5ABEC677F1C2BCA33A7A29F5B4D2145693C93E5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 056D Signing time: Sat 18 Apr 2026 02:10:46 +0000 Manifest this update: Sat 18 Apr 2026 02:05:46 +0000 Manifest next update: Tue 21 Apr 2026 09:16:46 +0000 Files and hashes: 1: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 2: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 3: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 4: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 5: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 6: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4=) 7: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 8: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 9: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: bT1AEy/pLX4M3m79cv7oCA2Jl/vElvot2I6J3TIrJRc=) 10: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 09:16:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:be:c6:77:f1:c2:bc:a3:3a:7a:29:f5:b4:d2:14:56:93:c9:3e:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Apr 18 02:05:46 2026 GMT Not After : Apr 21 09:16:46 2026 GMT Subject: CN=FDE7F727A97E6ABE0ACD671AD19831CF1B20F4F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:04:97:fa:31:e0:f9:35:fa:c6:d0:40:ba:72: 34:8d:b4:1a:23:78:ae:51:d7:5d:37:67:52:45:b0: 13:7d:fe:75:e6:31:96:e1:63:d6:30:dc:ab:49:b0: 09:f0:ef:1f:39:e2:09:c1:91:da:2c:a9:76:5f:26: 32:0f:24:43:ea:8e:16:a7:c1:4b:95:dd:62:4a:24: 72:a3:72:76:d4:0e:2a:27:ab:a7:fb:50:4f:b6:87: 34:0d:58:a8:a7:03:a7:16:d8:f2:10:6f:77:69:d4: 94:2c:db:ab:7f:b8:f9:41:d4:90:b0:a9:05:aa:5b: a0:a7:a0:6f:e6:39:11:fc:60:a2:5c:78:6b:59:4c: 9f:e4:83:83:26:42:9d:54:54:73:1f:aa:7e:a6:1d: 70:c9:92:79:4b:e7:74:a6:d3:78:70:03:dc:c0:66: ce:c1:68:f3:e0:f3:2b:f4:fa:29:aa:ed:5b:04:ed: 51:dd:2c:41:e3:8f:09:c6:a8:61:fd:b2:00:a6:84: 8c:3a:db:1b:7e:90:e9:43:13:61:8b:ab:ed:89:d8: 42:cf:2b:1e:26:0a:9a:b6:10:09:da:94:98:a9:d8: 18:f7:dc:ea:49:7e:95:c1:9d:67:3c:f8:db:32:41: 06:f3:92:e5:31:18:fc:09:70:86:1c:5c:29:24:32: 8a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E7:F7:27:A9:7E:6A:BE:0A:CD:67:1A:D1:98:31:CF:1B:20:F4:F7 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:ca:3b:c7:c6:b6:18:8f:cd:d4:0a:9f:51:28:11:d5:a2:6f: 39:91:a9:18:b2:d5:e9:03:9f:98:31:3a:16:cb:1e:0c:85:57: 36:44:1e:fa:47:95:bd:38:31:61:fa:3a:a6:a4:91:56:ac:ff: 05:65:12:50:d9:74:76:e4:8f:f7:59:35:7c:ea:ff:90:42:62: da:91:f9:a7:9f:7b:59:5c:a0:c9:81:0c:7b:2f:42:ae:09:5c: cd:63:eb:24:b2:d7:04:93:e5:78:01:f1:b9:b6:92:04:f5:5f: 4e:f7:a9:9d:3b:67:7f:ac:88:e5:d8:9a:9f:db:10:2b:72:97: 32:86:20:4a:c2:62:89:d8:61:c1:2d:6b:45:ca:ad:e7:fe:df: ce:43:78:f9:94:a5:bd:ec:4c:68:0a:1f:f1:96:1d:56:86:7d: e6:2d:85:82:69:e6:16:bf:c6:8f:a6:da:bc:28:55:ab:3b:14: 6b:92:23:01:c9:2a:62:ac:40:04:8f:9f:a8:6a:47:4d:99:a6: ea:c4:ab:9b:da:2c:f5:05:49:b7:e1:a1:31:65:da:93:02:8e: de:13:28:b4:a2:70:e6:c7:21:bd:95:7a:2f:81:54:2b:b2:ab: aa:ec:63:3d:2d:dd:13:38:05:92:80:68:16:b0:f2:79:c0:23: 55:bf:1a:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWr7Gd/HCvKM6ein1tNIUVpPJPl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNjA0MTgwMjA1NDZaFw0yNjA0MjEwOTE2NDZaMDMxMTAvBgNV BAMTKEZERTdGNzI3QTk3RTZBQkUwQUNENjcxQUQxOTgzMUNGMUIyMEY0RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqBJf6MeD5NfrG0EC6cjSNtBoj eK5R1103Z1JFsBN9/nXmMZbhY9Yw3KtJsAnw7x854gnBkdosqXZfJjIPJEPqjhan wUuV3WJKJHKjcnbUDionq6f7UE+2hzQNWKinA6cW2PIQb3dp1JQs26t/uPlB1JCw qQWqW6CnoG/mORH8YKJceGtZTJ/kg4MmQp1UVHMfqn6mHXDJknlL53Sm03hwA9zA Zs7BaPPg8yv0+imq7VsE7VHdLEHjjwnGqGH9sgCmhIw62xt+kOlDE2GLq+2J2ELP Kx4mCpq2EAnalJip2Bj33OpJfpXBnWc8+NsyQQbzkuUxGPwJcIYcXCkkMooBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/ef3J6l+ar4KzWca0Zgxzxsg9PcwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIjKO8fGthiPzdQKn1EoEdWibzmRqRiy1ekD n5gxOhbLHgyFVzZEHvpHlb04MWH6OqakkVas/wVlElDZdHbkj/dZNXzq/5BCYtqR +aefe1lcoMmBDHsvQq4JXM1j6ySy1wST5XgB8bm2kgT1X073qZ07Z3+siOXYmp/b ECtylzKGIErCYonYYcEta0XKref+385DePmUpb3sTGgKH/GWHVaGfeYthYJp5ha/ xo+m2rwoVas7FGuSIwHJKmKsQASPn6hqR02ZpurEq5vaLPUFSbfhoTFl2pMCjt4T KLSicObHIb2Vei+BVCuyq6rsYz0t3RM4BZKAaBaw8nnAI1W/GhY= -----END CERTIFICATE-----Generated at Sun Apr 19 10:58:43 2026 by rpki-client