$ rpki-client -vvf repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft File: 20EF9BB996F984E995F9FF0658F0B90CB903B897.mft (raw, json) Hash identifier: 6aJktd3H/BSKfyH/F8FJy+fTCE95gEaHzPwzlucBIaU= Subject key identifier: A2:87:03:6E:B3:B4:24:BC:55:6E:80:0A:19:6D:7C:E3:7B:93:3F:5A Authority key identifier: 20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 Certificate issuer: /CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Certificate serial: 48059BA2ABA4A7F92CA7D62C0F530CDEAAD8A36A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft Manifest number: 0273 Signing time: Thu 16 Apr 2026 14:42:10 +0000 Manifest this update: Thu 16 Apr 2026 14:37:10 +0000 Manifest next update: Sun 19 Apr 2026 19:15:10 +0000 Files and hashes: 1: 3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa (hash: vEIWSBdkXeXYMMZ1JkgEqdYq9VUkjPtTYb4B2b9jIwo=) 2: 3130332e3138392e3131302e302f32332d3233203d3e20313439373439.roa (hash: iDioe3jjxT7o8WJUfZMX4dcAtJo9aoi+lZoEhp66IbU=) 3: 20EF9BB996F984E995F9FF0658F0B90CB903B897.crl (hash: S2gyYnfB1Wp2S2m/BuHPYLtJmPTb/Z4ltN7MYWfqIm4=) 4: 3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa (hash: gtfNgouP3xqwRZMc2rLq5YYKkcJUcC8NmXsS5NHSV5Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 19:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:05:9b:a2:ab:a4:a7:f9:2c:a7:d6:2c:0f:53:0c:de:aa:d8:a3:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Validity Not Before: Apr 16 14:37:10 2026 GMT Not After : Apr 19 19:15:10 2026 GMT Subject: CN=A287036EB3B424BC556E800A196D7CE37B933F5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:36:9d:67:31:a1:02:c4:eb:b8:9e:9f:08:83: 52:bf:78:33:f7:b2:a5:5b:18:68:4e:a1:4e:17:0f: 63:37:d6:0f:72:c0:28:ee:4e:45:39:20:cb:9a:3d: cd:e1:65:2b:c4:0e:36:2d:49:42:fe:6e:0c:29:78: 8c:a3:a9:4d:f8:3c:d7:ae:11:3c:61:6a:e5:15:6e: d8:05:7e:30:3f:75:20:41:5e:57:d7:ee:b2:02:a9: 19:26:bc:a4:7e:32:c0:a1:85:47:f3:66:5c:ae:22: 89:ca:70:99:65:ec:d5:47:f8:f5:de:ef:b4:af:60: 07:c2:ee:54:e2:1f:8b:90:50:79:63:b5:25:7a:31: 68:21:1c:8f:7b:0f:2a:40:99:f7:a1:e4:d9:75:8d: e1:7a:6b:a3:da:eb:43:da:9d:b5:4b:cf:b7:c0:84: 01:76:41:75:37:94:8f:68:93:18:2e:ad:d0:d9:b5: 78:94:3b:69:78:95:ac:48:32:05:2a:f7:4f:eb:43: ce:17:25:bb:9a:82:c0:9b:78:24:b4:8e:11:48:d5: 01:d7:a6:27:7a:37:5d:29:e3:10:da:e5:68:91:4f: f6:4a:82:82:44:f8:8e:0d:3c:20:a8:86:19:ac:94: 6f:72:73:92:e7:c9:e9:f4:75:42:fc:b7:8b:ec:9e: 1d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:87:03:6E:B3:B4:24:BC:55:6E:80:0A:19:6D:7C:E3:7B:93:3F:5A X509v3 Authority Key Identifier: keyid:20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:b7:7f:fe:53:2e:89:1a:05:1d:fa:de:0e:da:bb:0f:43:e0: b1:e9:5a:5e:ef:e9:4f:44:4e:56:bf:8f:77:8d:65:d9:ff:ea: 2c:71:ce:05:8a:23:a4:ac:d5:be:00:71:a0:35:d5:15:f9:c9: ec:12:a1:e8:86:8c:bb:3c:78:aa:76:5e:7a:03:7d:a4:71:60: 97:f2:a7:6a:dc:69:00:5d:ab:1b:28:fa:25:cd:fe:d6:21:96: 01:fa:be:01:e6:d4:70:4a:be:24:bf:ef:db:db:9b:c7:3c:19: 11:68:60:e7:af:97:22:df:08:7d:92:4f:ef:e0:ea:38:52:da: a2:30:9d:1e:da:eb:4e:b2:40:a8:81:22:35:b5:ce:67:31:a2: 78:44:0a:35:82:66:1c:02:67:fc:dd:f1:65:72:39:98:a3:8e: d6:a6:3e:b4:3d:f6:54:bd:84:4e:aa:7c:d4:0c:15:2f:ba:1a: 1a:48:97:e2:90:71:4d:5a:08:9c:b7:64:70:ba:da:a3:e4:95: 1d:71:27:7b:18:99:a1:97:2a:e9:c2:b7:a9:09:37:61:96:20: 56:db:61:fd:c9:6f:fa:d8:73:23:46:e0:7d:f7:18:9d:10:92: 61:80:e6:6f:42:bd:2f:93:c8:37:fa:5d:85:c8:b5:58:56:29: 52:d2:5b:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSAWboqukp/ksp9YsD1MM3qrYo2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENC OTAzQjg5NzAeFw0yNjA0MTYxNDM3MTBaFw0yNjA0MTkxOTE1MTBaMDMxMTAvBgNV BAMTKEEyODcwMzZFQjNCNDI0QkM1NTZFODAwQTE5NkQ3Q0UzN0I5MzNGNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqNp1nMaECxOu4np8Ig1K/eDP3 sqVbGGhOoU4XD2M31g9ywCjuTkU5IMuaPc3hZSvEDjYtSUL+bgwpeIyjqU34PNeu ETxhauUVbtgFfjA/dSBBXlfX7rICqRkmvKR+MsChhUfzZlyuIonKcJll7NVH+PXe 77SvYAfC7lTiH4uQUHljtSV6MWghHI97DypAmfeh5Nl1jeF6a6Pa60PanbVLz7fA hAF2QXU3lI9okxgurdDZtXiUO2l4laxIMgUq90/rQ84XJbuagsCbeCS0jhFI1QHX pid6N10p4xDa5WiRT/ZKgoJE+I4NPCCohhmslG9yc5Lnyen0dUL8t4vsnh15AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoocDbrO0JLxVboAKGW1843uTP1owHwYDVR0j BBgwFoAUIO+buZb5hOmV+f8GWPC5DLkDuJcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDVlNWEzMC0wODAyLTRjNWMtOTQ3ZS05OGVmMjg1ZjRmNmIvMC8yMEVGOUJCOTk2 Rjk4NEU5OTVGOUZGMDY1OEYwQjkwQ0I5MDNCODk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENCOTAz Qjg5Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA1ZTVhMzAtMDgwMi00YzVjLTk0 N2UtOThlZjI4NWY0ZjZiLzAvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5 MENCOTAzQjg5Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGu3f/5TLokaBR363g7auw9D4LHpWl7v6U9E Tla/j3eNZdn/6ixxzgWKI6Ss1b4AcaA11RX5yewSoeiGjLs8eKp2XnoDfaRxYJfy p2rcaQBdqxso+iXN/tYhlgH6vgHm1HBKviS/79vbm8c8GRFoYOevlyLfCH2ST+/g 6jhS2qIwnR7a606yQKiBIjW1zmcxonhECjWCZhwCZ/zd8WVyOZijjtamPrQ99lS9 hE6qfNQMFS+6GhpIl+KQcU1aCJy3ZHC62qPklR1xJ3sYmaGXKunCt6kJN2GWIFbb Yf3Jb/rYcyNG4H33GJ0QkmGA5m9CvS+TyDf6XYXItVhWKVLSWyE= -----END CERTIFICATE-----Generated at Fri Apr 17 19:58:20 2026 by rpki-client