$ rpki-client -vvf repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft File: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft (raw, json) Hash identifier: UHbqA8qRkF/TY2bcXL4pwU40iNLPDiJKZW27i7E1MGo= Subject key identifier: 7F:D4:D2:22:D8:C6:68:AD:52:33:FD:2C:C9:B3:E8:70:17:B8:78:D2 Authority key identifier: CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 Certificate issuer: /CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Certificate serial: 07D08FC1DB5D7E98CFEC531E67C559E66A687B61 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft Manifest number: 0278 Signing time: Fri 17 Apr 2026 16:51:15 +0000 Manifest this update: Fri 17 Apr 2026 16:46:15 +0000 Manifest next update: Tue 21 Apr 2026 01:46:15 +0000 Files and hashes: 1: CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl (hash: DVZmz1fYkxhsrmXBcxBKMK+DFUCM3dJSZtEAAAx2RyM=) 2: 3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa (hash: /SzWYqZUMsg47vwYbafB1G0qt1wr0vCK02LHAWPClVk=) 3: 3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa (hash: Dn1TWs8KInIikwDEUwL4D4avm/veFQbAcGAcTpLQx70=) 4: 3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa (hash: SXu6y5hAHpLUxTpHQELosLw/ezbeelmjazY+x7480hw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 20:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d0:8f:c1:db:5d:7e:98:cf:ec:53:1e:67:c5:59:e6:6a:68:7b:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1 Validity Not Before: Apr 17 16:46:15 2026 GMT Not After : Apr 21 01:46:15 2026 GMT Subject: CN=7FD4D222D8C668AD5233FD2CC9B3E87017B878D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:07:46:54:41:39:69:b0:c2:a4:5d:fb:40:8b: 53:c6:03:f4:54:e5:70:7f:d9:89:e1:49:c5:1c:8d: 9f:19:0d:5c:f3:10:66:76:59:cc:bd:4d:fb:8b:99: 79:28:5b:2e:04:10:4c:e2:b5:4b:2a:a0:55:51:86: 5e:d3:38:99:a1:22:53:68:f0:e2:f1:5b:9e:f8:36: 95:b3:ce:1f:bc:5c:10:1a:a4:de:a1:f5:9d:5d:6f: ec:85:a0:3b:9e:86:ec:55:27:e2:d0:5c:13:12:f3: d8:17:cf:ce:40:62:97:48:0c:5b:b2:6b:89:aa:40: 9a:c8:50:1d:d4:9c:11:35:26:e1:c5:65:e5:33:11: b1:3e:33:67:1d:e9:e7:ba:f9:b2:61:ff:1a:33:bc: 5a:9f:b3:26:77:04:68:89:97:6b:80:7d:27:bf:92: a5:70:c2:43:2f:89:e3:5e:7c:bd:38:e6:25:9a:dd: d4:0e:57:58:80:cb:8c:97:be:f8:d3:ba:48:80:99: ec:95:b6:94:84:e8:0b:9d:43:5d:e5:5a:9e:ba:8d: 57:54:95:ef:cf:72:13:17:17:31:a9:fa:f1:6d:a1: e8:3c:0b:9b:46:a3:4d:47:f7:a4:b0:c8:05:28:28: 07:89:39:50:21:2c:f7:ac:c6:95:a2:9a:00:b1:1b: ef:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:D4:D2:22:D8:C6:68:AD:52:33:FD:2C:C9:B3:E8:70:17:B8:78:D2 X509v3 Authority Key Identifier: keyid:CF:E5:9D:4C:7A:61:3A:B4:3F:C8:F6:8E:89:74:AB:C8:27:7B:99:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/CFE59D4C7A613AB43FC8F68E8974ABC8277B99D1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:1d:aa:f8:b8:95:3f:49:b6:37:3a:02:3b:95:0b:eb:0e:0e: 58:37:54:93:cc:ca:2a:37:d2:06:44:bc:3c:1b:92:f7:89:39: 40:6b:bf:06:42:b2:0b:a5:68:b8:03:04:c8:ac:fd:6f:06:77: 91:7d:80:cc:c9:a5:88:14:bf:1b:a8:92:03:95:be:de:0c:a8: 57:ac:09:e9:e4:0a:eb:70:a5:55:70:4a:0e:bf:24:59:66:fb: ba:28:94:fc:4a:18:51:aa:bc:01:73:3a:5c:0a:72:c1:61:ac: f7:da:1a:fe:45:83:ee:dd:09:80:ee:b8:51:53:21:8a:35:8b: 1e:4d:0f:66:98:9b:a1:ec:60:fa:dc:c8:8d:5f:ef:fe:70:7d: 93:0d:a2:0f:48:2f:89:d6:ea:ec:23:d5:52:78:e2:78:d2:40: c7:22:2f:a8:5d:99:dc:fd:20:4b:f2:cb:53:6f:a3:5d:f3:38: 52:6d:9d:cb:89:54:6c:58:0e:ea:01:78:9d:2a:6e:27:68:1a: cb:26:c6:b2:e1:82:0a:a8:0e:e3:40:35:41:c9:7a:82:57:14: b2:63:f4:df:9a:ca:22:a1:cf:01:77:2a:24:63:ec:6e:e5:42: b0:89:68:7b:5c:8e:78:ba:50:39:ce:6e:e2:dd:90:d8:94:15: be:1f:b9:ca -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB9CPwdtdfpjP7FMeZ8VZ5mpoe2EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgy NzdCOTlEMTAeFw0yNjA0MTcxNjQ2MTVaFw0yNjA0MjEwMTQ2MTVaMDMxMTAvBgNV BAMTKDdGRDREMjIyRDhDNjY4QUQ1MjMzRkQyQ0M5QjNFODcwMTdCODc4RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbB0ZUQTlpsMKkXftAi1PGA/RU 5XB/2YnhScUcjZ8ZDVzzEGZ2Wcy9TfuLmXkoWy4EEEzitUsqoFVRhl7TOJmhIlNo 8OLxW574NpWzzh+8XBAapN6h9Z1db+yFoDuehuxVJ+LQXBMS89gXz85AYpdIDFuy a4mqQJrIUB3UnBE1JuHFZeUzEbE+M2cd6ee6+bJh/xozvFqfsyZ3BGiJl2uAfSe/ kqVwwkMvieNefL045iWa3dQOV1iAy4yXvvjTukiAmeyVtpSE6AudQ13lWp66jVdU le/PchMXFzGp+vFtoeg8C5tGo01H96SwyAUoKAeJOVAhLPesxpWimgCxG+/hAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf9TSItjGaK1SM/0sybPocBe4eNIwHwYDVR0j BBgwFoAUz+WdTHphOrQ/yPaOiXSryCd7mdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MjVjN2UxZC04MmU4LTQxMDAtYjQzNS05OTU0MjcyZmI3YTgvMC9DRkU1OUQ0QzdB NjEzQUI0M0ZDOEY2OEU4OTc0QUJDODI3N0I5OUQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFCQzgyNzdC OTlEMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjI1YzdlMWQtODJlOC00MTAwLWI0 MzUtOTk1NDI3MmZiN2E4LzAvQ0ZFNTlENEM3QTYxM0FCNDNGQzhGNjhFODk3NEFC QzgyNzdCOTlEMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACMdqvi4lT9Jtjc6AjuVC+sODlg3VJPMyio3 0gZEvDwbkveJOUBrvwZCsgulaLgDBMis/W8Gd5F9gMzJpYgUvxuokgOVvt4MqFes CenkCutwpVVwSg6/JFlm+7oolPxKGFGqvAFzOlwKcsFhrPfaGv5Fg+7dCYDuuFFT IYo1ix5ND2aYm6HsYPrcyI1f7/5wfZMNog9IL4nW6uwj1VJ44njSQMciL6hdmdz9 IEvyy1Nvo13zOFJtncuJVGxYDuoBeJ0qbidoGssmxrLhggqoDuNANUHJeoJXFLJj 9N+ayiKhzwF3KiRj7G7lQrCJaHtcjni6UDnObuLdkNiUFb4fuco= -----END CERTIFICATE-----Generated at Fri Apr 17 19:56:57 2026 by rpki-client