$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: unl4ULz0AH0yHSHhS9OTzKZOUrRIscg1ibhNIxNzsCM= Subject key identifier: 13:CF:5F:E0:10:B5:DA:84:E0:D4:53:C0:8D:82:FD:7E:36:CB:D5:4B Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 6BAE1058B87C78D7E09B7D047609455F17281D8D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 0239 Signing time: Sat 18 Apr 2026 07:11:59 +0000 Manifest this update: Sat 18 Apr 2026 07:06:59 +0000 Manifest next update: Tue 21 Apr 2026 12:46:59 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: CtZyB11EaxeGmwDsT2K2N1VdYbudw0+LmYWt3/wFuws=) 2: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) 3: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 4: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 12:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ae:10:58:b8:7c:78:d7:e0:9b:7d:04:76:09:45:5f:17:28:1d:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Apr 18 07:06:59 2026 GMT Not After : Apr 21 12:46:59 2026 GMT Subject: CN=13CF5FE010B5DA84E0D453C08D82FD7E36CBD54B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:41:b8:46:43:36:58:d5:f4:bb:e7:8b:6b:45: db:27:4b:ab:ad:8b:4f:a2:9b:d0:63:97:27:fa:5d: c7:b3:13:9f:7c:de:34:c5:f4:50:e5:4e:27:67:4a: c6:9c:bc:b7:2a:b6:f6:be:e9:6f:95:a4:e0:5d:58: 79:49:ca:23:40:ba:69:5c:51:7b:82:e9:16:e4:62: 5a:9d:09:9a:75:30:57:02:0b:91:1e:b4:bb:d8:55: c5:1d:77:15:07:13:8f:ad:02:38:b0:27:35:5e:21: ea:df:39:e1:9e:de:99:28:3d:19:e6:e7:db:85:47: 7b:e3:4e:0e:76:b5:60:64:82:b9:4a:27:4e:d8:c9: 61:ea:22:4f:42:de:32:ae:4f:30:fc:c1:9f:f5:44: cf:6a:7d:fe:5d:5e:90:bc:c7:0a:5f:b7:94:ca:d1: 6a:d7:cd:ff:34:34:9c:e2:35:d4:3b:b7:46:08:da: f4:93:47:3c:f0:46:09:6f:c2:be:70:3a:48:1b:3c: 5d:37:8d:1c:a0:b4:d6:ca:f6:ed:55:75:11:71:f7: 00:e2:c6:c7:c7:75:c4:b9:a0:44:9c:16:23:22:c2: e1:94:03:41:7b:f4:55:db:f7:ca:d6:79:5d:39:5d: 42:52:71:c3:30:1a:26:12:a9:e0:91:d8:99:23:22: 4e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:CF:5F:E0:10:B5:DA:84:E0:D4:53:C0:8D:82:FD:7E:36:CB:D5:4B X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ca:bb:b7:6a:fc:d1:09:85:d2:80:ef:1e:59:56:4b:fc:98:7b: 46:38:5a:ce:fc:03:5b:0a:40:3b:3a:a0:79:74:55:13:b6:fd: 98:66:35:cd:c9:85:da:e1:69:97:97:6c:8f:1c:c8:9f:19:61: 88:d7:70:8b:ea:69:78:a0:27:24:25:0f:69:89:33:fd:28:4e: 4f:1b:4a:a6:34:83:d5:80:3a:c5:6b:16:cc:d6:99:fc:c5:f1: 03:ff:5f:3e:d7:f8:7d:27:36:24:03:ab:fd:3d:00:94:95:8a: b5:fe:a1:1f:94:78:eb:bc:92:6d:0e:60:68:5d:c0:87:bf:1b: 22:d9:16:c7:39:a9:82:6c:15:0d:fc:c6:fb:f4:45:47:89:37: 8a:e2:4b:73:1e:28:0f:5a:14:b5:17:77:26:dc:06:ec:af:4a: 0a:33:73:d6:70:a5:d3:c8:79:8e:c7:74:bf:18:02:8a:69:f5: b0:a4:cb:df:7f:ed:ed:7c:cc:69:87:88:93:74:4b:5f:af:22: 99:fe:51:2c:06:2c:3c:89:54:5a:db:8f:78:68:9f:7e:29:8f: b4:68:1a:38:54:eb:36:9e:a8:35:dc:cd:57:e6:e5:ef:6f:e9: 80:62:19:83:13:1e:cb:2c:30:59:79:bf:df:4b:b7:f0:62:67: 3b:be:5a:75 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa64QWLh8eNfgm30EdglFXxcoHY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNjA0MTgwNzA2NTlaFw0yNjA0MjExMjQ2NTlaMDMxMTAvBgNV BAMTKDEzQ0Y1RkUwMTBCNURBODRFMEQ0NTNDMDhEODJGRDdFMzZDQkQ1NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3QbhGQzZY1fS754trRdsnS6ut i0+im9Bjlyf6XcezE5983jTF9FDlTidnSsacvLcqtva+6W+VpOBdWHlJyiNAumlc UXuC6RbkYlqdCZp1MFcCC5EetLvYVcUddxUHE4+tAjiwJzVeIerfOeGe3pkoPRnm 59uFR3vjTg52tWBkgrlKJ07YyWHqIk9C3jKuTzD8wZ/1RM9qff5dXpC8xwpft5TK 0WrXzf80NJziNdQ7t0YI2vSTRzzwRglvwr5wOkgbPF03jRygtNbK9u1VdRFx9wDi xsfHdcS5oEScFiMiwuGUA0F79FXb98rWeV05XUJSccMwGiYSqeCR2JkjIk7lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUE89f4BC12oTg1FPAjYL9fjbL1UswHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMq7t2r80QmF0oDvHllWS/yYe0Y4Ws78A1sK QDs6oHl0VRO2/ZhmNc3JhdrhaZeXbI8cyJ8ZYYjXcIvqaXigJyQlD2mJM/0oTk8b SqY0g9WAOsVrFszWmfzF8QP/Xz7X+H0nNiQDq/09AJSVirX+oR+UeOu8km0OYGhd wIe/GyLZFsc5qYJsFQ38xvv0RUeJN4riS3MeKA9aFLUXdybcBuyvSgozc9ZwpdPI eY7HdL8YAopp9bCky99/7e18zGmHiJN0S1+vIpn+USwGLDyJVFrbj3hon34pj7Ro GjhU6zaeqDXczVfm5e9v6YBiGYMTHsssMFl5v99Lt/BiZzu+WnU= -----END CERTIFICATE-----Generated at Sun Apr 19 11:21:47 2026 by rpki-client