$ rpki-client -vvf repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft File: D2EF21DBD545255BED30EEC34623F204A3E12D23.mft (raw, json) Hash identifier: 8V8Mh05w0M45yqTH542SSuXAvqIE6qo5Duafw+zOhc4= Subject key identifier: EC:33:6F:34:E6:9B:51:A1:0D:F1:24:E1:1A:1B:C0:43:F9:C5:3E:86 Authority key identifier: D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 Certificate issuer: /CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Certificate serial: 66411CB7183D99FFBD3C593A6D25B00382B61CE7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft Manifest number: 0565 Signing time: Sat 18 Apr 2026 09:01:33 +0000 Manifest this update: Sat 18 Apr 2026 08:56:33 +0000 Manifest next update: Tue 21 Apr 2026 09:18:33 +0000 Files and hashes: 1: 3130332e3130342e3230372e302f32342d3234203d3e20313336383639.roa (hash: 2COjLCJ4YEuRoqvYvSrj9dQC5huF+G+dAbpMe2HpJLo=) 2: 3130332e3130342e3230342e302f32342d3234203d3e20313336383639.roa (hash: w7Chi4gZxBYt1ZeGb/YO7tH8OTI2H/0aS5PoiZEPc/Y=) 3: D2EF21DBD545255BED30EEC34623F204A3E12D23.crl (hash: DoNn8wOUFAa+3mNQh2KS6X66wVevtd0DLYGn+FFpgGM=) 4: 3130332e3130342e3230352e302f32342d3234203d3e20313336383639.roa (hash: iReeweCReiVdyDxdcHaFTjeSzHc3cSR3SFaF6DPJP8s=) 5: 3130332e3130342e3230362e302f32342d3234203d3e20313336383639.roa (hash: W2IYXy+JkbGpp85/sS2UKLUazxQpNz2N8iZifbHeJpI=) 6: 323430323a316134303a3a2f33322d3332203d3e20313336383639.roa (hash: HI0hJJXTQDhzD7pTczCRmyIdw4yYJFsaIwjzSTbxsrY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 09:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:41:1c:b7:18:3d:99:ff:bd:3c:59:3a:6d:25:b0:03:82:b6:1c:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2EF21DBD545255BED30EEC34623F204A3E12D23 Validity Not Before: Apr 18 08:56:33 2026 GMT Not After : Apr 21 09:18:33 2026 GMT Subject: CN=EC336F34E69B51A10DF124E11A1BC043F9C53E86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:95:45:fe:65:42:17:28:81:80:e6:9b:62:75: e5:03:6f:97:5f:b4:a1:5a:69:12:94:81:26:43:8a: 2e:18:34:78:42:c0:ff:36:c3:fb:a2:29:a5:e0:11: af:39:f8:84:4e:e9:7a:9e:16:24:fe:3e:53:99:1e: d3:ef:6e:91:cc:e9:90:0e:a1:63:c9:dd:73:18:e4: a5:a6:2c:34:f5:8a:16:19:68:ad:81:ef:22:4b:71: 41:84:ff:b5:e4:59:90:fc:6a:e8:72:d4:bf:a6:70: e7:6e:d7:b5:54:a6:2b:c6:b0:78:70:24:cd:29:2e: ce:3d:2b:be:23:55:ec:9d:4a:79:e5:0a:15:a8:14: e0:a3:7c:15:37:1d:ab:60:78:db:11:3c:e1:99:33: 87:6b:bd:57:54:e6:af:3d:72:ca:cd:40:1a:a9:2c: 85:11:b9:c9:43:64:ff:f1:dd:b9:f1:18:75:72:e9: 88:f8:20:ec:69:8a:b7:f1:06:ef:71:24:37:d6:6c: 64:a2:89:7b:65:e4:2a:26:b0:7a:cd:4d:97:04:4a: 79:95:9d:2b:be:23:c7:3e:3d:84:6b:2b:95:ed:d7: 1a:e9:81:73:c0:f5:73:4a:e9:62:78:79:7d:15:c2: 9b:cf:c6:6b:c1:94:a2:9d:f3:1c:29:60:2a:e5:a8: c8:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:33:6F:34:E6:9B:51:A1:0D:F1:24:E1:1A:1B:C0:43:F9:C5:3E:86 X509v3 Authority Key Identifier: keyid:D2:EF:21:DB:D5:45:25:5B:ED:30:EE:C3:46:23:F2:04:A3:E1:2D:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2EF21DBD545255BED30EEC34623F204A3E12D23.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d231e6b1-1841-476d-b46b-b44b9cb968b0/0/D2EF21DBD545255BED30EEC34623F204A3E12D23.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:c5:c9:e3:fd:9a:84:a2:97:c6:25:37:27:71:d1:ef:9c:14: 92:79:64:48:c4:5c:b7:39:49:61:ba:21:4a:00:2f:7d:82:38: 55:7d:a0:ae:3f:6b:ef:d4:e1:4d:c4:db:10:25:33:20:f7:af: bf:24:56:de:e5:e4:72:63:a2:62:a6:7f:13:58:ff:db:ec:fb: 41:5e:75:95:b9:b5:02:c5:f6:6a:dd:02:e0:78:87:e3:e5:28: 3a:a7:0a:de:79:23:ec:f7:81:24:27:cf:90:cb:34:db:d4:f9: d6:fa:93:48:ae:7b:00:de:2e:af:e9:09:b9:1e:e2:be:0e:2d: 9e:ac:58:35:58:b2:4f:c9:a7:f3:a6:5d:7c:eb:30:44:98:55: 85:a6:e5:0b:b0:50:a3:ba:e2:f7:3f:af:57:db:c4:63:e8:61: bb:31:bb:b3:ed:c1:60:65:46:18:75:d5:8e:bb:9a:65:51:68: 84:ef:11:3a:95:99:a4:fd:66:f2:ee:d6:43:db:b2:85:7f:6a: 87:3b:73:a5:46:1a:b7:74:28:cf:90:09:72:42:f9:16:7d:18: cb:c5:32:ff:0f:fa:e9:4a:0d:7f:f5:fd:96:7e:ae:f4:15:b5: 5b:57:66:a2:31:13:e7:9e:8f:04:fe:c8:80:36:94:0e:e8:b5: 42:b9:13:56 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZkEctxg9mf+9PFk6bSWwA4K2HOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRB M0UxMkQyMzAeFw0yNjA0MTgwODU2MzNaFw0yNjA0MjEwOTE4MzNaMDMxMTAvBgNV BAMTKEVDMzM2RjM0RTY5QjUxQTEwREYxMjRFMTFBMUJDMDQzRjlDNTNFODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBlUX+ZUIXKIGA5ptideUDb5df tKFaaRKUgSZDii4YNHhCwP82w/uiKaXgEa85+IRO6XqeFiT+PlOZHtPvbpHM6ZAO oWPJ3XMY5KWmLDT1ihYZaK2B7yJLcUGE/7XkWZD8auhy1L+mcOdu17VUpivGsHhw JM0pLs49K74jVeydSnnlChWoFOCjfBU3HatgeNsRPOGZM4drvVdU5q89csrNQBqp LIURuclDZP/x3bnxGHVy6Yj4IOxpirfxBu9xJDfWbGSiiXtl5ComsHrNTZcESnmV nSu+I8c+PYRrK5Xt1xrpgXPA9XNK6WJ4eX0VwpvPxmvBlKKd8xwpYCrlqMjTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7DNvNOabUaEN8SThGhvAQ/nFPoYwHwYDVR0j BBgwFoAU0u8h29VFJVvtMO7DRiPyBKPhLSMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MjMxZTZiMS0xODQxLTQ3NmQtYjQ2Yi1iNDRiOWNiOTY4YjAvMC9EMkVGMjFEQkQ1 NDUyNTVCRUQzMEVFQzM0NjIzRjIwNEEzRTEyRDIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0YyMDRBM0Ux MkQyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDIzMWU2YjEtMTg0MS00NzZkLWI0 NmItYjQ0YjljYjk2OGIwLzAvRDJFRjIxREJENTQ1MjU1QkVEMzBFRUMzNDYyM0Yy MDRBM0UxMkQyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEfFyeP9moSil8YlNydx0e+cFJJ5ZEjEXLc5 SWG6IUoAL32COFV9oK4/a+/U4U3E2xAlMyD3r78kVt7l5HJjomKmfxNY/9vs+0Fe dZW5tQLF9mrdAuB4h+PlKDqnCt55I+z3gSQnz5DLNNvU+db6k0iuewDeLq/pCbke 4r4OLZ6sWDVYsk/Jp/OmXXzrMESYVYWm5QuwUKO64vc/r1fbxGPoYbsxu7PtwWBl Rhh11Y67mmVRaITvETqVmaT9ZvLu1kPbsoV/aoc7c6VGGrd0KM+QCXJC+RZ9GMvF Mv8P+ulKDX/1/ZZ+rvQVtVtXZqIxE+eejwT+yIA2lA7otUK5E1Y= -----END CERTIFICATE-----Generated at Sun Apr 19 11:38:08 2026 by rpki-client