$ rpki-client -vvf repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft File: 1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft (raw, json) Hash identifier: JS+CgcYsum/1SvvfZAMU0yV+ZGOHp0F4qayiBqD/5EY= Subject key identifier: 0E:26:54:21:29:97:32:DE:BB:2E:29:B0:7F:5D:01:FE:6E:93:BC:A5 Authority key identifier: 16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 Certificate issuer: /CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Certificate serial: 0F33801B31FFC954B66F194CE354D6A9EEE5931B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft Manifest number: 0537 Signing time: Thu 16 Apr 2026 04:42:35 +0000 Manifest this update: Thu 16 Apr 2026 04:37:35 +0000 Manifest next update: Sun 19 Apr 2026 14:11:35 +0000 Files and hashes: 1: 3230332e3136312e3138342e302f32332d3234203d3e203436303530.roa (hash: QmUK5t+kPBhbRYikNscX9LWrBhBp5pP7CeGdlMn53Do=) 2: 3230322e35322e3134362e302f32332d3234203d3e203435333234.roa (hash: fr5BMGMZ4/JWAtuc82Bwpon8VOaBOapImuPEr/qDXGY=) 3: 3130332e33302e3134372e302f32342d3234203d3e203436303530.roa (hash: sZ7Y9HidNwNbLqaWtw5ljbRqMh/n0NpDyP/tNJF266g=) 4: 323030313a6466353a643230303a3a2f34382d3438203d3e203436303530.roa (hash: rdX2P/62Fs2A7bSHrzzBOblACv/dlOvxDsyqbDOTmes=) 5: 1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl (hash: b+Kspys8kdy2YpmedzKAg6zzUcPSArob8RMDl2dW7kE=) 6: 3130332e33302e3134342e302f32322d3234203d3e203436303530.roa (hash: AqVeGkcCeQqSSxTzFMHfgh7oeb2WJE9ZcEpymir7iqI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 14:11:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:33:80:1b:31:ff:c9:54:b6:6f:19:4c:e3:54:d6:a9:ee:e5:93:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1661A1BC89CCADD4C7BE723052AE5900DE181E06 Validity Not Before: Apr 16 04:37:35 2026 GMT Not After : Apr 19 14:11:35 2026 GMT Subject: CN=0E265421299732DEBB2E29B07F5D01FE6E93BCA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4b:2b:03:e5:a5:8e:94:54:98:32:30:24:b8: 86:dc:ea:ed:e1:84:3e:5b:70:9b:98:1b:b6:a3:96: e1:9a:df:e1:65:08:e4:bb:10:d5:e8:2f:9d:24:ea: 2a:5a:00:c7:d9:ed:a5:17:6d:cc:52:aa:65:c8:df: 11:2e:51:46:40:b6:88:70:09:21:2a:b6:01:84:94: b7:1e:f9:56:7c:e8:23:12:ec:86:44:28:66:1f:74: d4:76:98:63:73:07:93:fc:03:52:ee:30:9f:c9:00: 07:1f:6b:f4:27:28:1c:e2:cb:0c:29:01:63:f7:91: cd:a8:01:2d:6c:eb:a8:44:37:1e:f5:2b:5d:25:7b: 1d:ee:61:a7:49:4b:f5:e5:80:98:8a:ae:dc:1c:11: ea:fd:b7:3a:9e:f7:3b:8e:3b:57:0c:d3:a1:c7:75: c1:6a:3f:31:77:3a:f4:9a:dc:06:42:8c:e8:70:3d: eb:42:b2:63:3c:72:58:6f:9e:b2:b9:16:65:55:05: 0a:df:71:ac:e7:f3:4e:ce:f1:26:8f:18:02:14:3a: 19:8f:18:a2:54:ce:c8:48:1a:90:09:44:b8:ed:00: b9:d1:8d:d2:0f:81:5b:3a:49:27:bf:05:70:cf:0a: 0f:0e:89:a3:94:07:28:60:08:36:25:bb:3d:c1:e9: 17:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:26:54:21:29:97:32:DE:BB:2E:29:B0:7F:5D:01:FE:6E:93:BC:A5 X509v3 Authority Key Identifier: keyid:16:61:A1:BC:89:CC:AD:D4:C7:BE:72:30:52:AE:59:00:DE:18:1E:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1661A1BC89CCADD4C7BE723052AE5900DE181E06.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d0d2d3e3-4c20-4a90-833e-ead43c33991e/0/1661A1BC89CCADD4C7BE723052AE5900DE181E06.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:9d:1d:2b:ba:6d:c8:5a:d6:00:1f:4e:70:11:14:94:aa:71: aa:97:60:4c:88:9a:e9:b8:6f:f3:16:46:15:5b:7a:b4:0a:6c: 03:f5:bc:f2:d5:d3:e3:fe:53:ff:7d:d4:ac:51:39:14:fd:cc: 2d:1f:19:5b:97:36:7f:c3:56:12:5c:73:35:72:a5:20:84:e8: 39:fa:54:f2:e4:ae:d6:4f:d8:43:89:d1:38:65:1e:77:9f:c4: 6f:75:9e:a6:b2:6e:92:11:54:1c:21:6b:96:01:97:c5:0b:dc: cc:f3:16:58:d3:18:a2:b4:a6:81:0a:b7:9d:77:a8:9e:6f:ed: 0d:27:1a:99:e7:93:c8:b2:b7:ef:74:5e:e7:72:94:35:da:38: 3d:6b:2a:7e:ec:5b:12:de:ab:13:dc:bc:64:c9:18:31:f6:e4: ac:f8:6a:f5:56:7e:97:c5:09:9f:a2:ce:96:c4:53:83:a8:5e: d0:4c:55:44:4c:c9:f7:bc:bc:d3:cd:0d:96:2e:b4:02:41:59: 25:30:c2:15:0a:62:99:f2:ea:0a:c2:be:d4:39:12:5c:46:06: f1:b6:3a:39:ad:c0:f5:10:5c:55:11:e3:e3:b0:0c:02:30:c8: 00:f1:cc:01:7a:14:bb:13:98:b7:90:9f:fe:c7:80:fc:6b:e4: 32:07:09:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDzOAGzH/yVS2bxlM41TWqe7lkxswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBE RTE4MUUwNjAeFw0yNjA0MTYwNDM3MzVaFw0yNjA0MTkxNDExMzVaMDMxMTAvBgNV BAMTKDBFMjY1NDIxMjk5NzMyREVCQjJFMjlCMDdGNUQwMUZFNkU5M0JDQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDASysD5aWOlFSYMjAkuIbc6u3h hD5bcJuYG7ajluGa3+FlCOS7ENXoL50k6ipaAMfZ7aUXbcxSqmXI3xEuUUZAtohw CSEqtgGElLce+VZ86CMS7IZEKGYfdNR2mGNzB5P8A1LuMJ/JAAcfa/QnKBziywwp AWP3kc2oAS1s66hENx71K10lex3uYadJS/XlgJiKrtwcEer9tzqe9zuOO1cM06HH dcFqPzF3OvSa3AZCjOhwPetCsmM8clhvnrK5FmVVBQrfcazn807O8SaPGAIUOhmP GKJUzshIGpAJRLjtALnRjdIPgVs6SSe/BXDPCg8OiaOUByhgCDYluz3B6RcZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDiZUISmXMt67Limwf10B/m6TvKUwHwYDVR0j BBgwFoAUFmGhvInMrdTHvnIwUq5ZAN4YHgYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MGQyZDNlMy00YzIwLTRhOTAtODMzZS1lYWQ0M2MzMzk5MWUvMC8xNjYxQTFCQzg5 Q0NBREQ0QzdCRTcyMzA1MkFFNTkwMERFMTgxRTA2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5MDBERTE4 MUUwNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDBkMmQzZTMtNGMyMC00YTkwLTgz M2UtZWFkNDNjMzM5OTFlLzAvMTY2MUExQkM4OUNDQURENEM3QkU3MjMwNTJBRTU5 MDBERTE4MUUwNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI6dHSu6bcha1gAfTnARFJSqcaqXYEyImum4 b/MWRhVberQKbAP1vPLV0+P+U/991KxRORT9zC0fGVuXNn/DVhJcczVypSCE6Dn6 VPLkrtZP2EOJ0ThlHnefxG91nqaybpIRVBwha5YBl8UL3MzzFljTGKK0poEKt513 qJ5v7Q0nGpnnk8iyt+90XudylDXaOD1rKn7sWxLeqxPcvGTJGDH25Kz4avVWfpfF CZ+izpbEU4OoXtBMVURMyfe8vNPNDZYutAJBWSUwwhUKYpny6grCvtQ5ElxGBvG2 OjmtwPUQXFUR4+OwDAIwyADxzAF6FLsTmLeQn/7HgPxr5DIHCfY= -----END CERTIFICATE-----Generated at Fri Apr 17 21:04:43 2026 by rpki-client