$ rpki-client -vvf repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft File: 2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft (raw, json) Hash identifier: 5W8G9CAUnAPTzg7ZpJdqzwqtcMZs/yQz1UXaBA6PsWA= Subject key identifier: D2:4C:BA:5B:36:39:04:65:89:67:5B:95:E4:A6:D1:52:CF:63:71:3A Authority key identifier: 2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD Certificate issuer: /CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Certificate serial: 4BCAD4859B52018FDA9BF570753BD547BF8EA9E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft Manifest number: 053D Signing time: Sun 19 Apr 2026 07:02:19 +0000 Manifest this update: Sun 19 Apr 2026 06:57:19 +0000 Manifest next update: Wed 22 Apr 2026 13:56:19 +0000 Files and hashes: 1: 323430323a363938303a323030303a3a2f34382d3438203d3e203539323738.roa (hash: D6GCo3ceVvJhAX1b+afxEUHTBD9rmTcpfSp7SCURViA=) 2: 2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl (hash: 46ymusLiKZyy8777OEEkCgCixU2vB7NwYEurjsKTEmc=) 3: 323430323a363938303a333030303a3a2f34382d3438203d3e203539323738.roa (hash: 1MuWl4R2LfAc9czxG6/QjtCE9g5QKK5BETiXC4FMLHs=) 4: 323430323a363938303a3a2f33322d3438203d3e203539323738.roa (hash: KRbdEJvKURW+VgG7P6m8/xbRP6/xVRqHAh+GE/ZxmJg=) 5: 323430323a363938303a313030303a3a2f34382d3438203d3e203539323738.roa (hash: Cf4F1dHsLMAEwRXj/sLvggNAyN9aUktmarNyz8vl8uk=) 6: 3130332e3232372e3234302e302f32322d3234203d3e203539323738.roa (hash: pAsXLpsnvtFY9CiLQfO4MgBTQXdXjfq9fjmjjZL7V7Y=) 7: 323430323a363938303a343030303a3a2f34382d3438203d3e203539323738.roa (hash: LrRa5/YbMQIirnwavEqQmjlSXIv4GPDAL8XSH/RPz2k=) 8: 3130332e35382e3136302e302f32322d3234203d3e203539323738.roa (hash: 3p6KpA6/uKsXu1iiVTHxP1H1aKBvRxURT7LJ3HzRuNw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 13:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ca:d4:85:9b:52:01:8f:da:9b:f5:70:75:3b:d5:47:bf:8e:a9:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD Validity Not Before: Apr 19 06:57:19 2026 GMT Not After : Apr 22 13:56:19 2026 GMT Subject: CN=D24CBA5B3639046589675B95E4A6D152CF63713A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:82:11:c5:94:57:d5:d3:15:ec:c8:c6:8f:f3: 53:13:b2:ed:b6:2f:b3:54:dd:6a:6e:b8:f8:f9:78: 27:0d:23:15:9d:cc:09:28:ed:8e:32:8c:57:90:7c: 04:90:66:4d:15:e9:00:f3:36:51:ec:9d:2c:83:14: db:ea:74:e9:a3:e1:f7:4f:b2:74:9c:14:f7:84:3a: 0c:cd:04:f9:17:22:8f:6a:e6:84:5d:4d:2a:48:97: 70:08:b8:82:eb:a5:67:c9:ce:d2:a5:26:89:1d:30: a3:50:9a:71:81:32:38:b9:f8:33:e9:43:25:76:22: 6c:6e:21:bb:7f:ab:58:72:6a:cc:bc:f2:e8:66:48: a5:8f:c8:8b:dd:0a:a0:55:da:c3:fe:d6:1a:9b:8a: 18:22:32:33:10:e1:b3:32:ec:ac:6d:a9:b6:9a:b4: 28:7a:17:5b:58:02:ff:1e:a3:3a:43:fb:44:b5:18: 10:69:12:d1:25:2b:e7:f2:a5:7a:21:8d:5f:55:95: c1:6c:fa:af:85:ba:14:ce:ac:3c:10:71:fe:e1:1d: c9:52:d8:4a:24:a0:3f:89:4b:a7:24:e6:3a:e1:37: 45:f4:f6:7d:4a:ed:1a:fe:3c:26:53:ab:10:ae:ec: 69:de:30:78:81:fc:02:b5:0b:1e:06:69:e6:99:d6: fc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:4C:BA:5B:36:39:04:65:89:67:5B:95:E4:A6:D1:52:CF:63:71:3A X509v3 Authority Key Identifier: keyid:2D:23:11:F5:63:DF:0A:F8:EB:EF:DA:21:87:16:26:B5:DD:78:C5:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/af1c79f1-264e-423f-9e08-0b2900da6949/0/2D2311F563DF0AF8EBEFDA21871626B5DD78C5BD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:2d:8a:f7:f2:57:f7:d6:9f:23:f0:01:df:59:39:67:7d:42: 89:e9:0f:12:ec:07:2c:7f:e2:8f:00:a4:72:ec:ee:4c:f8:b6: 6c:ed:1c:bf:52:9c:18:01:f3:c9:2c:43:72:c5:f7:00:a6:c9: cf:cc:33:1d:37:80:3d:ea:97:2b:cf:b2:6d:ee:9a:2c:e4:8e: 66:91:65:d3:2a:3f:eb:32:52:50:1d:b0:c2:c2:f8:58:6a:64: 52:a9:23:79:b8:21:c9:34:9e:2d:8e:4a:1d:f3:fe:91:a8:07: 57:37:c6:ef:b6:dd:b6:f5:6b:04:5f:3c:db:f7:0d:dd:92:87: 7d:f4:20:68:48:97:52:f9:ab:7e:d5:f3:77:8c:33:92:ab:0d: 47:be:5f:c6:57:a7:a0:85:39:69:eb:71:5f:8d:e7:61:16:c0: 77:ee:aa:6b:0e:5c:76:e7:3b:2c:69:c5:ba:51:4a:1b:3b:04: b6:01:fd:88:3e:2a:c6:9d:76:a4:7b:ba:ad:5c:83:5c:2e:6f: 18:3d:52:9b:c8:71:0b:15:cb:e5:d3:82:1c:78:a8:67:e5:95: 1d:af:50:3a:42:6f:70:3a:5d:57:c1:24:c4:01:32:f7:17:6d: 56:19:70:34:8c:37:2c:ab:62:a0:c4:05:47:0b:a3:02:bc:25: b8:c1:d4:a8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS8rUhZtSAY/am/VwdTvVR7+OqeAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVE RDc4QzVCRDAeFw0yNjA0MTkwNjU3MTlaFw0yNjA0MjIxMzU2MTlaMDMxMTAvBgNV BAMTKEQyNENCQTVCMzYzOTA0NjU4OTY3NUI5NUU0QTZEMTUyQ0Y2MzcxM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzghHFlFfV0xXsyMaP81MTsu22 L7NU3WpuuPj5eCcNIxWdzAko7Y4yjFeQfASQZk0V6QDzNlHsnSyDFNvqdOmj4fdP snScFPeEOgzNBPkXIo9q5oRdTSpIl3AIuILrpWfJztKlJokdMKNQmnGBMji5+DPp QyV2ImxuIbt/q1hyasy88uhmSKWPyIvdCqBV2sP+1hqbihgiMjMQ4bMy7Kxtqbaa tCh6F1tYAv8eozpD+0S1GBBpEtElK+fypXohjV9VlcFs+q+FuhTOrDwQcf7hHclS 2EokoD+JS6ck5jrhN0X09n1K7Rr+PCZTqxCu7GneMHiB/AK1Cx4GaeaZ1vxVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0ky6WzY5BGWJZ1uV5KbRUs9jcTowHwYDVR0j BBgwFoAULSMR9WPfCvjr79ohhxYmtd14xb0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZjFjNzlmMS0yNjRlLTQyM2YtOWUwOC0wYjI5MDBkYTY5NDkvMC8yRDIzMTFGNTYz REYwQUY4RUJFRkRBMjE4NzE2MjZCNURENzhDNUJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2QjVERDc4 QzVCRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWYxYzc5ZjEtMjY0ZS00MjNmLTll MDgtMGIyOTAwZGE2OTQ5LzAvMkQyMzExRjU2M0RGMEFGOEVCRUZEQTIxODcxNjI2 QjVERDc4QzVCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACUtivfyV/fWnyPwAd9ZOWd9QonpDxLsByx/ 4o8ApHLs7kz4tmztHL9SnBgB88ksQ3LF9wCmyc/MMx03gD3qlyvPsm3umizkjmaR ZdMqP+syUlAdsMLC+FhqZFKpI3m4Ick0ni2OSh3z/pGoB1c3xu+23bb1awRfPNv3 Dd2Sh330IGhIl1L5q37V83eMM5KrDUe+X8ZXp6CFOWnrcV+N52EWwHfuqmsOXHbn OyxpxbpRShs7BLYB/Yg+KsaddqR7uq1cg1wubxg9UpvIcQsVy+XTghx4qGfllR2v UDpCb3A6XVfBJMQBMvcXbVYZcDSMNyyrYqDEBUcLowK8JbjB1Kg= -----END CERTIFICATE-----Generated at Sun Apr 19 13:01:41 2026 by rpki-client