$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: 4h+WcehkjyClMY9P0jSmJ34vpO9dNAa36h45PSzCC/k= Subject key identifier: 25:50:D2:4F:68:CA:40:67:95:0B:6D:DA:97:9F:E3:7B:A1:44:AE:EE Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 193A27E592B62DEA231AA5695F5D9AE50E8DA9D3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 0579 Signing time: Wed 15 Apr 2026 14:41:31 +0000 Manifest this update: Wed 15 Apr 2026 14:36:31 +0000 Manifest next update: Sat 18 Apr 2026 23:41:31 +0000 Files and hashes: 1: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) 2: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: ZZmhtd+kvnB+qiIIirmPZ+PBFZw13KvG2RKerxPSCqA=) 3: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: FAtVlldec4RoFv3q2j7FVnmrtGRtRRfXUz6I4U8sRwI=) 4: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) 5: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: rMaF7Q5MH66fB43sjFU7KFf+jSsxMN2DLHihs4pTcNE=) 6: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: 6I7ol8aW/T2M631YOUn391CT1BeuO0VUyq4rUGwxFdI=) 7: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: TiFQ5+3RDDZw3hEMovau4FHuHmfphOknHBNZEgIPquo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 23:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:3a:27:e5:92:b6:2d:ea:23:1a:a5:69:5f:5d:9a:e5:0e:8d:a9:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Apr 15 14:36:31 2026 GMT Not After : Apr 18 23:41:31 2026 GMT Subject: CN=2550D24F68CA4067950B6DDA979FE37BA144AEEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:e2:9f:3e:dd:f5:5b:85:06:51:06:5c:8b: 89:b2:23:e6:c5:51:f5:1b:17:ab:02:9c:99:81:74: 30:00:ef:2a:7c:b5:53:9f:05:82:44:9c:f9:ca:44: 34:ba:ca:4d:10:96:af:6a:a4:4f:cb:f9:e8:b3:4e: 27:3b:fa:d4:d7:e5:d5:c0:6a:9f:f0:bf:0f:54:f3: db:7d:46:53:34:eb:10:48:3d:56:29:43:45:30:fc: 89:99:7c:52:97:f7:b2:fc:d9:16:98:a0:a7:75:e7: 85:c8:7e:75:ac:56:f3:f1:99:c6:18:0e:9d:a3:1b: 2e:04:b5:6d:c9:49:48:a8:95:aa:08:62:f4:23:f0: 07:e1:fe:ce:75:80:1b:ac:98:20:9a:a1:bc:b5:c6: 02:4d:64:0b:6c:1b:29:2f:61:ed:b2:d5:84:96:7a: 2c:f0:61:79:52:27:54:4b:3d:8d:58:84:b4:d1:5b: 5e:2b:f8:a6:9b:66:81:a7:10:6f:5e:be:31:40:ee: 63:37:4b:13:2b:7f:76:98:e3:40:f0:e7:a3:92:16: 49:1f:89:9c:b8:9e:ed:6b:e9:39:a8:a1:0c:6c:8f: 37:71:25:f2:ed:03:eb:7b:d3:48:ef:f1:d7:c6:c2: 1d:b8:6f:51:83:32:1f:61:8d:36:72:5b:f9:ed:47: 17:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:50:D2:4F:68:CA:40:67:95:0B:6D:DA:97:9F:E3:7B:A1:44:AE:EE X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:01:24:d9:e8:2c:20:58:3c:e5:17:49:a7:89:dc:86:dc:85: 96:0d:3c:09:76:43:ba:9a:39:4d:0e:ee:db:39:be:db:67:85: e9:db:70:33:09:b3:d3:76:78:17:27:eb:1a:68:c0:f8:93:82: 16:d1:db:21:99:2b:7e:eb:90:d0:ea:81:8e:1d:2a:50:a1:74: b6:04:59:ba:cd:e1:20:c1:b7:26:ab:e3:e5:a2:46:50:69:90: f5:c6:3c:3c:6a:67:9d:39:d4:00:81:b3:66:6f:ff:ff:44:35: c2:e7:f7:47:cf:b8:05:9b:bf:3e:0c:5d:fe:82:62:ff:9e:af: 4c:9b:64:77:3e:99:a5:24:3c:17:89:ca:ea:86:21:72:f9:ff: 65:35:10:5e:12:f3:16:79:0f:74:5f:7b:a8:20:bc:52:87:d4: 7a:1c:7b:88:47:b2:52:fa:cd:5d:f9:83:d7:16:7f:38:fa:d6: bc:d9:c9:48:3c:0a:30:b5:a9:37:4f:be:db:4f:2b:28:f0:1e: 2b:a0:77:20:99:c1:08:98:a7:07:08:e0:e3:16:11:f4:10:bf: 59:67:c0:26:f6:53:32:07:77:3f:a3:11:e3:a8:a3:6f:c0:90: 5b:a2:e8:e7:de:62:32:11:2e:a1:93:68:58:0e:26:a6:70:b7: fb:43:fc:9c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGTon5ZK2LeojGqVpX12a5Q6NqdMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNjA0MTUxNDM2MzFaFw0yNjA0MTgyMzQxMzFaMDMxMTAvBgNV BAMTKDI1NTBEMjRGNjhDQTQwNjc5NTBCNkREQTk3OUZFMzdCQTE0NEFFRUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7UuKfPt31W4UGUQZci4myI+bF UfUbF6sCnJmBdDAA7yp8tVOfBYJEnPnKRDS6yk0Qlq9qpE/L+eizTic7+tTX5dXA ap/wvw9U89t9RlM06xBIPVYpQ0Uw/ImZfFKX97L82RaYoKd154XIfnWsVvPxmcYY Dp2jGy4EtW3JSUiolaoIYvQj8Afh/s51gBusmCCaoby1xgJNZAtsGykvYe2y1YSW eizwYXlSJ1RLPY1YhLTRW14r+KabZoGnEG9evjFA7mM3SxMrf3aY40Dw56OSFkkf iZy4nu1r6TmooQxsjzdxJfLtA+t700jv8dfGwh24b1GDMh9hjTZyW/ntRxfpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJVDST2jKQGeVC23al5/je6FEru4wHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABIBJNnoLCBYPOUXSaeJ3IbchZYNPAl2Q7qa OU0O7ts5vttnhenbcDMJs9N2eBcn6xpowPiTghbR2yGZK37rkNDqgY4dKlChdLYE WbrN4SDBtyar4+WiRlBpkPXGPDxqZ5051ACBs2Zv//9ENcLn90fPuAWbvz4MXf6C Yv+er0ybZHc+maUkPBeJyuqGIXL5/2U1EF4S8xZ5D3Rfe6ggvFKH1Hoce4hHslL6 zV35g9cWfzj61rzZyUg8CjC1qTdPvttPKyjwHiugdyCZwQiYpwcI4OMWEfQQv1ln wCb2UzIHdz+jEeOoo2/AkFui6OfeYjIRLqGTaFgOJqZwt/tD/Jw= -----END CERTIFICATE-----Generated at Fri Apr 17 19:34:31 2026 by rpki-client