$ rpki-client -vvf repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft File: BA3C6E8206951343A970BD80B8DC3351252A9719.mft (raw, json) Hash identifier: iCj7JR5xcqc3BF4f66N3uG+g9kGIqRwhYvk33B3ZuIs= Subject key identifier: 64:1A:8D:2E:89:47:35:20:E0:6D:B5:8E:6F:D3:79:DA:25:78:DB:1F Authority key identifier: BA:3C:6E:82:06:95:13:43:A9:70:BD:80:B8:DC:33:51:25:2A:97:19 Certificate issuer: /CN=BA3C6E8206951343A970BD80B8DC3351252A9719 Certificate serial: 3788C6EAA783618AFB12FB20CAB3C64D2F1584CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft Manifest number: 0103 Signing time: Thu 16 Apr 2026 19:21:31 +0000 Manifest this update: Thu 16 Apr 2026 19:16:31 +0000 Manifest next update: Mon 20 Apr 2026 05:31:31 +0000 Files and hashes: 1: BA3C6E8206951343A970BD80B8DC3351252A9719.crl (hash: ZAUrMk7pI0mXtnkPDr5nHevkuA2gidT5cP0IK2BhY+A=) 2: 3136302e32352e3135362e302f32342d3234203d3e20313533303838.roa (hash: mhfAph5jHpIIQpADW/6z0VmmK6WaOWV9si8/hgfO+jQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.crl rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 05:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:88:c6:ea:a7:83:61:8a:fb:12:fb:20:ca:b3:c6:4d:2f:15:84:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA3C6E8206951343A970BD80B8DC3351252A9719 Validity Not Before: Apr 16 19:16:31 2026 GMT Not After : Apr 20 05:31:31 2026 GMT Subject: CN=641A8D2E89473520E06DB58E6FD379DA2578DB1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c2:6f:6c:8c:81:69:2c:dc:be:29:51:80:fb: 97:c1:98:bc:26:8f:4b:66:00:bc:60:ce:82:0d:e7: ad:ef:e5:b8:ba:0c:81:05:30:19:55:2f:02:75:81: 2e:76:3b:2c:19:e3:4b:8e:13:7a:12:3a:3d:4b:6f: 65:97:0a:f6:1c:cc:be:5b:c6:d4:18:e1:b9:a0:2a: c7:1b:c1:f8:82:fd:b2:c8:7f:e1:c1:33:e6:75:b9: 04:1d:46:5d:62:73:05:0d:30:20:68:e3:7f:6a:74: 74:31:f1:63:1c:cd:38:67:4c:f7:82:b0:0a:db:b4: 59:f8:ab:aa:3f:46:e3:d0:be:f8:cb:f3:2f:f6:93: bf:51:bc:86:34:db:aa:16:7c:6f:48:76:bb:ca:9a: 70:78:55:ae:3d:fe:66:55:2e:f4:7a:2d:ea:04:cd: 5a:dd:ba:e9:b4:a4:70:36:97:01:92:37:a0:9f:a9: 3e:5b:f2:1a:2a:29:b8:ad:a3:f2:f5:b3:dd:43:a4: 72:d5:68:d3:8f:f2:89:9b:54:1f:ce:aa:04:97:29: 5f:23:fd:62:6b:fe:8a:e3:43:af:d4:3f:15:22:5a: ff:2f:fc:22:3c:4c:64:e3:d3:6e:33:7b:54:fb:14: 09:7d:9c:28:e6:3a:89:4c:1e:8c:19:88:07:02:db: 60:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1A:8D:2E:89:47:35:20:E0:6D:B5:8E:6F:D3:79:DA:25:78:DB:1F X509v3 Authority Key Identifier: keyid:BA:3C:6E:82:06:95:13:43:A9:70:BD:80:B8:DC:33:51:25:2A:97:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:cd:1f:e9:2e:01:e7:e5:e2:33:e3:39:13:98:0c:57:ff:f2: d6:8c:a7:12:c2:13:81:84:e3:6a:70:58:ae:db:52:57:89:3e: 5d:40:1d:59:8a:a5:a9:d8:64:49:bf:03:d8:91:a8:6b:90:f6: 83:05:93:7d:fd:03:2a:9d:24:b0:cd:5f:b6:6a:c1:c5:59:cb: 72:67:dd:6d:88:ab:7a:70:59:3b:5e:dd:02:20:d7:e1:5a:ff: ae:88:37:42:2a:1d:59:2c:51:d8:a6:e8:dd:8d:a8:11:f8:71: 3f:ca:95:b6:18:cf:52:7a:e6:b3:df:8c:47:c4:74:9e:50:01: ba:0e:c6:6d:08:94:56:5b:15:56:42:1f:69:33:1a:c4:bc:c5: 63:e2:0a:c4:62:2e:63:6e:4e:3e:e2:f8:cb:d9:b3:2a:68:75: e8:a1:5b:1a:6d:a5:cf:04:38:51:56:f8:dc:0d:38:2c:dd:80: 02:39:46:cb:e5:9a:52:f4:32:0e:dc:7d:9a:29:f1:14:66:ae: 4a:02:6d:3f:94:9e:f7:0f:58:3d:cc:88:3f:c8:75:79:01:73: 51:26:5f:45:eb:85:b3:31:e5:59:49:70:d7:46:e4:25:f4:4b: 79:51:8c:da:17:4e:51:4f:3c:9a:59:b9:0f:e2:9d:06:24:24: 80:9e:46:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN4jG6qeDYYr7EvsgyrPGTS8VhM8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMzNTEy NTJBOTcxOTAeFw0yNjA0MTYxOTE2MzFaFw0yNjA0MjAwNTMxMzFaMDMxMTAvBgNV BAMTKDY0MUE4RDJFODk0NzM1MjBFMDZEQjU4RTZGRDM3OURBMjU3OERCMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPwm9sjIFpLNy+KVGA+5fBmLwm j0tmALxgzoIN563v5bi6DIEFMBlVLwJ1gS52OywZ40uOE3oSOj1Lb2WXCvYczL5b xtQY4bmgKscbwfiC/bLIf+HBM+Z1uQQdRl1icwUNMCBo439qdHQx8WMczThnTPeC sArbtFn4q6o/RuPQvvjL8y/2k79RvIY026oWfG9IdrvKmnB4Va49/mZVLvR6LeoE zVrduum0pHA2lwGSN6CfqT5b8hoqKbito/L1s91DpHLVaNOP8ombVB/OqgSXKV8j /WJr/orjQ6/UPxUiWv8v/CI8TGTj024ze1T7FAl9nCjmOolMHowZiAcC22AJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZBqNLolHNSDgbbWOb9N52iV42x8wHwYDVR0j BBgwFoAUujxuggaVE0OpcL2AuNwzUSUqlxkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWZkZDZmOS1iNzk5LTRhOTYtOWUyYS0xZmVmNjliZmE1OTcvMC9CQTNDNkU4MjA2 OTUxMzQzQTk3MEJEODBCOERDMzM1MTI1MkE5NzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMzNTEyNTJB OTcxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWFmZGQ2ZjktYjc5OS00YTk2LTll MmEtMWZlZjY5YmZhNTk3LzAvQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMz NTEyNTJBOTcxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJnNH+kuAefl4jPjOROYDFf/8taMpxLCE4GE 42pwWK7bUleJPl1AHVmKpanYZEm/A9iRqGuQ9oMFk339AyqdJLDNX7ZqwcVZy3Jn 3W2Iq3pwWTte3QIg1+Fa/66IN0IqHVksUdim6N2NqBH4cT/KlbYYz1J65rPfjEfE dJ5QAboOxm0IlFZbFVZCH2kzGsS8xWPiCsRiLmNuTj7i+MvZsypodeihWxptpc8E OFFW+NwNOCzdgAI5RsvlmlL0Mg7cfZop8RRmrkoCbT+UnvcPWD3MiD/IdXkBc1Em X0XrhbMx5VlJcNdG5CX0S3lRjNoXTlFPPJpZuQ/inQYkJICeRgE= -----END CERTIFICATE-----Generated at Fri Apr 17 18:03:18 2026 by rpki-client