$ rpki-client -vvf repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft (raw, json) Hash identifier: ahwMfluqnjV1KCdeJBUblUyFntsN35pHukya1oxosUw= Subject key identifier: 3E:06:FD:29:DE:86:1B:2C:6B:09:7F:A3:C1:5B:C8:86:28:08:DE:7D Authority key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Certificate issuer: /CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Certificate serial: 41A4956835721FCB733B9724B434A35A7166D90F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft Manifest number: 053A Signing time: Thu 16 Apr 2026 05:32:04 +0000 Manifest this update: Thu 16 Apr 2026 05:27:04 +0000 Manifest next update: Sun 19 Apr 2026 15:25:04 +0000 Files and hashes: 1: 3130332e3135362e31342e302f32332d3234203d3e203538383231.roa (hash: lbqLm4gtIn2PpfyD5NIDm37sX2MwPhaC2Wn66mlRkRA=) 2: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl (hash: 6AkTKAbJwKgxHSRHL52lYsOt+NpKnZc5lsKn9rVAXtk=) 3: 323430363a376234303a3a2f33322d3438203d3e203538383231.roa (hash: 01o8IIdEBMNVP2rARnAtQNMxpIRvEPCoH/cFEbdvFjA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:a4:95:68:35:72:1f:cb:73:3b:97:24:b4:34:a3:5a:71:66:d9:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Validity Not Before: Apr 16 05:27:04 2026 GMT Not After : Apr 19 15:25:04 2026 GMT Subject: CN=3E06FD29DE861B2C6B097FA3C15BC8862808DE7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1c:b6:e3:2f:f3:68:8c:17:46:b3:15:10:26: c4:19:69:be:5c:6a:4f:01:9a:29:f8:25:b4:1d:d6: ad:36:5c:e9:93:30:8e:2b:b0:03:79:d9:6f:66:83: aa:08:e2:e9:e3:2e:1f:d8:35:59:e9:2e:83:63:6b: b7:e4:c9:6f:d2:8a:8d:8f:7f:d2:53:13:7f:34:3e: c3:a5:22:71:79:28:a6:78:fc:7c:3c:3e:be:ac:f2: c0:1f:d0:d0:bd:1b:07:14:eb:26:44:be:3d:58:04: c0:79:07:f1:d5:1e:02:3a:16:c7:5d:cb:5a:12:14: 1c:ff:93:17:94:c2:2c:55:e9:97:7e:13:de:9b:5e: 6a:af:58:71:7d:91:40:37:47:e7:1c:ee:0e:f3:c2: 22:00:5d:35:0d:e4:4d:cc:b2:b6:24:4c:52:e4:dc: f5:c4:fa:be:c6:ec:35:66:03:e6:ad:72:3d:81:c1: c4:17:16:18:f3:b9:03:78:0c:98:94:57:44:40:74: 31:3f:3d:90:8b:0a:6e:02:77:a9:ab:b7:bb:5e:c3: a6:31:f1:f4:41:55:86:1a:7c:bd:8a:eb:01:aa:2b: 4c:4e:4e:29:13:92:3c:11:40:bf:c8:97:dc:07:39: 25:7a:49:08:ec:02:32:53:27:a6:75:dd:5f:fb:06: 55:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:06:FD:29:DE:86:1B:2C:6B:09:7F:A3:C1:5B:C8:86:28:08:DE:7D X509v3 Authority Key Identifier: keyid:1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:57:d9:76:4f:94:c6:08:46:ad:de:9c:bf:45:47:12:f2:54: 50:95:cc:88:16:ba:a2:50:10:26:eb:c6:06:a5:54:4a:44:8f: 7b:43:41:2e:11:8d:37:5c:8c:19:df:02:00:5d:e3:3d:01:a5: 1b:c3:70:8e:cd:05:23:ba:ec:c2:ec:e1:ff:25:f3:52:e5:78: 6d:7a:ae:ba:24:5f:67:dd:14:00:eb:a9:26:17:08:e4:3d:55: df:ab:38:4d:49:04:d3:03:ea:83:19:32:b3:c2:88:c2:18:b4: 91:55:07:7c:d1:56:ea:22:9b:6f:1d:f7:e0:ed:45:2d:26:3d: 97:1b:fa:f2:5a:00:d8:64:f0:01:1f:7f:a3:a2:98:07:d0:fd: 45:84:c5:f5:86:eb:d2:a6:32:56:99:ec:f7:ce:52:25:27:35: 2e:4e:90:12:be:7c:47:73:40:a0:af:ef:a9:2c:de:8c:d1:4d: ee:41:a0:68:b6:2c:8c:97:66:79:98:5d:c0:8e:11:6e:b7:bb: 95:27:26:ad:66:04:2c:1e:6f:80:4e:bf:89:02:e5:38:63:f9: 01:c2:2c:cc:1b:a4:23:5a:4d:15:a1:0a:0a:32:1a:21:5a:5b: 47:94:6d:75:ba:a9:63:e9:fa:d7:08:8b:f6:bd:c8:a4:b4:0b: 06:10:a9:ca -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQaSVaDVyH8tzO5cktDSjWnFm2Q8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2 OEY4MDQxOTAeFw0yNjA0MTYwNTI3MDRaFw0yNjA0MTkxNTI1MDRaMDMxMTAvBgNV BAMTKDNFMDZGRDI5REU4NjFCMkM2QjA5N0ZBM0MxNUJDODg2MjgwOERFN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcHLbjL/NojBdGsxUQJsQZab5c ak8Bmin4JbQd1q02XOmTMI4rsAN52W9mg6oI4unjLh/YNVnpLoNja7fkyW/Sio2P f9JTE380PsOlInF5KKZ4/Hw8Pr6s8sAf0NC9GwcU6yZEvj1YBMB5B/HVHgI6Fsdd y1oSFBz/kxeUwixV6Zd+E96bXmqvWHF9kUA3R+cc7g7zwiIAXTUN5E3MsrYkTFLk 3PXE+r7G7DVmA+atcj2BwcQXFhjzuQN4DJiUV0RAdDE/PZCLCm4Cd6mrt7tew6Yx 8fRBVYYafL2K6wGqK0xOTikTkjwRQL/Il9wHOSV6SQjsAjJTJ6Z13V/7BlV3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPgb9Kd6GGyxrCX+jwVvIhigI3n0wHwYDVR0j BBgwFoAUHY2cvFKTTvArzR1Hiuumo2j4BBkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMC8xRDhEOUNCQzUy OTM0RUYwMkJDRDFENDc4QUVCQTZBMzY4RjgwNDE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2QTM2OEY4 MDQxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2UxZWE1MTMtYWM2ZS00YTVmLWIz ZWItZDUzNTJjYWY0ODZiLzAvMUQ4RDlDQkM1MjkzNEVGMDJCQ0QxRDQ3OEFFQkE2 QTM2OEY4MDQxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGRX2XZPlMYIRq3enL9FRxLyVFCVzIgWuqJQ ECbrxgalVEpEj3tDQS4RjTdcjBnfAgBd4z0BpRvDcI7NBSO67MLs4f8l81LleG16 rrokX2fdFADrqSYXCOQ9Vd+rOE1JBNMD6oMZMrPCiMIYtJFVB3zRVuoim28d9+Dt RS0mPZcb+vJaANhk8AEff6OimAfQ/UWExfWG69KmMlaZ7PfOUiUnNS5OkBK+fEdz QKCv76ks3ozRTe5BoGi2LIyXZnmYXcCOEW63u5UnJq1mBCweb4BOv4kC5Thj+QHC LMwbpCNaTRWhCgoyGiFaW0eUbXW6qWPp+tcIi/a9yKS0CwYQqco= -----END CERTIFICATE-----Generated at Fri Apr 17 22:43:35 2026 by rpki-client