$ rpki-client -vvf repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft File: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft (raw, json) Hash identifier: 1CN8u2YoeJpYm7ZJ/sMVutEbVWGaSj4srdRffMwtJnM= Subject key identifier: DC:3C:11:E3:DE:A2:DB:38:A4:E1:84:1B:FB:A2:A4:9C:BF:4F:C5:EB Authority key identifier: 5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB Certificate issuer: /CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Certificate serial: 789D6D022F04CD8BB70CE8ADAF277D0E39955B1A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft Manifest number: 0137 Signing time: Wed 15 Apr 2026 02:51:10 +0000 Manifest this update: Wed 15 Apr 2026 02:46:10 +0000 Manifest next update: Sat 18 Apr 2026 13:31:10 +0000 Files and hashes: 1: 3135372e36362e3132322e302f32342d3234203d3e203633383538.roa (hash: kg0hS5WVmmpYRWbdfL7SGsHNbdnD8NF+clSnWXU7jw0=) 2: 5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl (hash: 5glRBV8DPHO9BBFVeUwPwKL3jn0RHg5b/y9cGZTQg7o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 13:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:9d:6d:02:2f:04:cd:8b:b7:0c:e8:ad:af:27:7d:0e:39:95:5b:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A8D4DEC5FC29BE6E2490462F580903DD4A984EB Validity Not Before: Apr 15 02:46:10 2026 GMT Not After : Apr 18 13:31:10 2026 GMT Subject: CN=DC3C11E3DEA2DB38A4E1841BFBA2A49CBF4FC5EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a3:36:48:14:6b:fb:a1:24:87:a9:bb:5d:60: d8:eb:19:ab:88:6b:90:eb:9a:3d:3e:01:e7:cb:c6: d7:d0:13:18:fd:90:13:4e:46:99:75:73:32:99:3c: ee:b6:a6:b8:ea:0a:e9:bb:4f:c4:cb:a5:3f:c6:d4: 0c:7d:2e:af:cd:66:f2:13:65:f4:06:90:60:32:07: b2:19:d3:91:1d:81:82:07:be:5a:c7:f4:ba:d9:b4: 2d:eb:46:f0:c2:f8:95:34:dc:6d:3b:e6:d9:5f:e0: 95:2d:2b:cd:af:67:b0:e4:e4:ad:1e:69:1c:bf:0b: c0:02:8c:80:7c:ee:bd:95:5d:5f:c5:51:eb:26:b5: fd:b2:65:bb:bd:54:11:54:6d:0e:47:fc:db:a5:26: 1a:13:93:73:c6:79:4c:97:c2:25:d4:1a:14:f2:9b: b8:71:bc:da:e3:4a:76:1f:8b:10:dc:2a:a0:1f:0e: fb:ef:d9:a9:d3:18:24:12:4c:60:44:5a:d2:4f:59: d1:78:fa:a4:55:88:4f:40:a2:26:1c:ad:ca:b9:9a: de:80:e0:90:93:68:83:e6:b1:d5:60:73:99:4e:3d: 42:0a:be:09:69:9e:c7:26:62:ab:dc:7d:44:ba:58: b8:ba:6f:0f:b1:cd:a2:d9:bf:1f:ad:bf:fa:5f:9c: 3a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3C:11:E3:DE:A2:DB:38:A4:E1:84:1B:FB:A2:A4:9C:BF:4F:C5:EB X509v3 Authority Key Identifier: keyid:5A:8D:4D:EC:5F:C2:9B:E6:E2:49:04:62:F5:80:90:3D:D4:A9:84:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cecf5d94-7f1f-43bf-b7aa-220f0c156ec0/0/5A8D4DEC5FC29BE6E2490462F580903DD4A984EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6f:03:7a:fc:20:10:5b:7b:96:ab:07:81:f7:0d:59:09:69: 17:03:b1:90:26:bf:f5:73:a5:46:e9:5e:fa:11:24:9b:ce:f2: d5:3e:38:d8:47:3d:42:5b:9a:1e:86:f8:6c:00:cb:b3:47:01: 69:70:31:9f:9a:93:50:e8:55:7e:3a:c4:72:69:26:bd:54:ec: d6:98:5a:14:c7:fa:ab:7f:f9:e9:76:5c:be:ad:5a:34:71:43: 5b:9a:07:d6:82:02:f1:e0:33:ea:b4:4f:9b:49:f2:b7:a1:0a: 4f:fa:ed:06:e3:e0:3b:53:c7:20:d1:22:9d:1a:5c:a9:c6:74: 9c:73:14:f5:a1:f8:2e:c6:fe:cb:13:bd:4b:e3:07:6d:74:7c: b1:7b:0f:39:e5:8e:04:94:c4:23:ff:09:07:3f:fe:ab:f4:d6: 49:7c:06:62:1e:d0:37:13:a0:5f:6c:b8:9a:ed:b7:e2:34:1a: 7a:6c:54:e3:70:4f:46:b9:a9:4e:fc:e8:6e:59:5e:63:15:a2: e9:ce:b4:dd:7e:15:74:d1:90:8e:08:73:20:2c:8a:ba:ad:52: a4:87:f8:03:fb:f7:8c:5d:2f:79:64:41:07:a1:5b:59:23:c8: 8a:01:59:73:7d:15:65:1d:4d:e8:3d:41:72:c6:64:a1:1c:6b: b3:5f:33:df -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeJ1tAi8EzYu3DOitryd9DjmVWxowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RE NEE5ODRFQjAeFw0yNjA0MTUwMjQ2MTBaFw0yNjA0MTgxMzMxMTBaMDMxMTAvBgNV BAMTKERDM0MxMUUzREVBMkRCMzhBNEUxODQxQkZCQTJBNDlDQkY0RkM1RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBozZIFGv7oSSHqbtdYNjrGauI a5Drmj0+AefLxtfQExj9kBNORpl1czKZPO62prjqCum7T8TLpT/G1Ax9Lq/NZvIT ZfQGkGAyB7IZ05EdgYIHvlrH9LrZtC3rRvDC+JU03G075tlf4JUtK82vZ7Dk5K0e aRy/C8ACjIB87r2VXV/FUesmtf2yZbu9VBFUbQ5H/NulJhoTk3PGeUyXwiXUGhTy m7hxvNrjSnYfixDcKqAfDvvv2anTGCQSTGBEWtJPWdF4+qRViE9AoiYcrcq5mt6A 4JCTaIPmsdVgc5lOPUIKvglpnscmYqvcfUS6WLi6bw+xzaLZvx+tv/pfnDq1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3DwR496i2zik4YQb+6KknL9PxeswHwYDVR0j BBgwFoAUWo1N7F/Cm+biSQRi9YCQPdSphOswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j ZWNmNWQ5NC03ZjFmLTQzYmYtYjdhYS0yMjBmMGMxNTZlYzAvMC81QThENERFQzVG QzI5QkU2RTI0OTA0NjJGNTgwOTAzREQ0QTk4NEVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkwM0RENEE5 ODRFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2VjZjVkOTQtN2YxZi00M2JmLWI3 YWEtMjIwZjBjMTU2ZWMwLzAvNUE4RDRERUM1RkMyOUJFNkUyNDkwNDYyRjU4MDkw M0RENEE5ODRFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ1vA3r8IBBbe5arB4H3DVkJaRcDsZAmv/Vz pUbpXvoRJJvO8tU+ONhHPUJbmh6G+GwAy7NHAWlwMZ+ak1DoVX46xHJpJr1U7NaY WhTH+qt/+el2XL6tWjRxQ1uaB9aCAvHgM+q0T5tJ8rehCk/67Qbj4DtTxyDRIp0a XKnGdJxzFPWh+C7G/ssTvUvjB210fLF7DznljgSUxCP/CQc//qv01kl8BmIe0DcT oF9suJrtt+I0GnpsVONwT0a5qU786G5ZXmMVounOtN1+FXTRkI4IcyAsirqtUqSH +AP794xdL3lkQQehW1kjyIoBWXN9FWUdTeg9QXLGZKEca7NfM98= -----END CERTIFICATE-----Generated at Fri Apr 17 12:31:02 2026 by rpki-client