$ rpki-client -vvf repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft File: 95966A8DB250307CF9852483F96922EE520F6E2A.mft (raw, json) Hash identifier: Bvh/lSEWHLQHxh2ETXw4QTYgfko0P2Ydv41wfx+cSsc= Subject key identifier: 85:EF:AB:09:1E:5B:2A:1E:AD:D7:8C:56:A1:3D:3A:3E:E6:C4:60:57 Authority key identifier: 95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A Certificate issuer: /CN=95966A8DB250307CF9852483F96922EE520F6E2A Certificate serial: 10AA158FCB8CA3D60DD1C80E97BB7EB1F31B733B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft Manifest number: 0356 Signing time: Sun 19 Apr 2026 06:30:00 +0000 Manifest this update: Sun 19 Apr 2026 06:25:00 +0000 Manifest next update: Wed 22 Apr 2026 15:48:00 +0000 Files and hashes: 1: 3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa (hash: lJA11B888lTAIORO0k9rdft4p7t0vrr4FyWBG++arwA=) 2: 3130332e31392e3233302e302f32342d3234203d3e20313332363638.roa (hash: QAndsMLECtqgWCCHyuYe9oOyMMkwnZ8QhtRk2OHf9FQ=) 3: 95966A8DB250307CF9852483F96922EE520F6E2A.crl (hash: um/hRrCLBBkI1o2eEZQ2Q+l7t6MPHZsAlX52GxxVj/I=) 4: 3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa (hash: xt2DiIsS1Hm+P8ldmkaqq+Mf+LiIX+U17UKLw/Y34Uk=) 5: 3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa (hash: MitWmX3yxsYyPd+sKi7YcLOVm2fefPu2Qs/7NDCXxb8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 20:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:aa:15:8f:cb:8c:a3:d6:0d:d1:c8:0e:97:bb:7e:b1:f3:1b:73:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95966A8DB250307CF9852483F96922EE520F6E2A Validity Not Before: Apr 19 06:25:00 2026 GMT Not After : Apr 22 15:48:00 2026 GMT Subject: CN=85EFAB091E5B2A1EADD78C56A13D3A3EE6C46057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:23:17:a2:fc:1e:7e:66:af:47:ff:e0:82:6b: 51:49:c8:32:3c:26:c2:d8:37:ec:af:d9:f2:c8:06: c1:bf:c4:39:7c:45:67:c8:7c:ba:68:f8:cc:0f:73: 46:38:cb:0e:2d:30:d9:d3:68:cb:73:45:51:e4:20: 33:70:67:26:f7:75:06:c5:02:16:3f:85:07:e2:9a: 2f:66:ad:05:8b:12:b6:8e:5a:1f:e3:3f:9c:07:82: e9:f6:94:2f:f1:ac:dd:88:37:b6:d1:c2:7f:ec:30: a8:9d:c3:dd:56:bc:14:7f:8b:9c:c6:03:d3:df:70: 4b:c1:33:49:3a:2f:00:c2:6f:11:f0:f9:cc:c7:75: 8e:61:3c:7f:e7:c8:c7:dd:b2:3d:ea:ed:10:03:2a: 86:6d:91:21:20:a0:5a:2b:41:bd:a5:e9:9c:56:d1: b0:b0:7a:cb:6c:e8:be:b9:3c:89:ef:01:b8:71:3a: c2:58:7c:dd:42:04:a6:4f:c9:2b:97:91:93:0e:44: 82:9b:b0:da:0a:eb:31:3a:7b:7d:fa:5f:eb:f9:e7: 2d:b8:93:29:78:5d:c1:cd:5f:ae:58:ac:54:6f:77: 75:af:bc:6d:9a:7e:75:87:71:c1:e8:a2:c9:1f:89: ec:2d:17:df:93:df:cd:12:4f:d4:bc:cd:14:cb:2a: 57:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:EF:AB:09:1E:5B:2A:1E:AD:D7:8C:56:A1:3D:3A:3E:E6:C4:60:57 X509v3 Authority Key Identifier: keyid:95:96:6A:8D:B2:50:30:7C:F9:85:24:83:F9:69:22:EE:52:0F:6E:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95966A8DB250307CF9852483F96922EE520F6E2A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/95966A8DB250307CF9852483F96922EE520F6E2A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:b3:63:4a:e6:ca:8e:e5:08:42:e6:cf:0d:1b:04:92:d6:38: 61:f5:74:86:a5:9d:1b:c3:9e:82:1b:ed:d6:ba:26:f6:85:de: 82:b3:d1:67:7f:de:2f:b7:6f:a6:e3:36:56:da:f4:12:6c:6c: 89:b4:6b:ec:33:f7:17:9c:bc:7b:14:2d:06:98:60:bb:57:41: fd:9d:2e:5a:50:67:df:47:18:26:3f:e0:0a:78:8d:93:93:ef: cd:68:7a:b5:4a:cf:b6:44:49:2f:8b:d7:35:e9:a3:df:b1:3f: 99:ad:18:9f:d4:a6:70:19:83:d5:0b:80:ad:b1:48:8f:21:6c: 89:75:38:42:59:2e:81:af:81:2e:bc:09:66:a4:01:df:2d:fa: a5:19:af:59:16:61:10:bb:49:da:f9:c5:9a:a3:c3:f6:f1:3d: 82:bb:e7:97:88:72:51:0f:0d:78:c8:1e:75:31:d6:07:35:1d: d6:ea:cd:b6:a7:03:18:9c:1b:a8:19:90:83:8a:f1:4d:f4:d5: 7a:9f:63:70:ab:f3:43:27:52:d5:b7:b8:3d:43:d2:77:5c:aa: 1b:09:4b:99:14:d9:3d:74:4e:ea:0e:50:52:cb:0c:73:11:50: 15:49:ed:d1:32:b7:ee:e5:fa:96:70:85:d1:5c:c8:a7:6f:25: b6:ca:a1:42 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEKoVj8uMo9YN0cgOl7t+sfMbczswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1 MjBGNkUyQTAeFw0yNjA0MTkwNjI1MDBaFw0yNjA0MjIxNTQ4MDBaMDMxMTAvBgNV BAMTKDg1RUZBQjA5MUU1QjJBMUVBREQ3OEM1NkExM0QzQTNFRTZDNDYwNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXIxei/B5+Zq9H/+CCa1FJyDI8 JsLYN+yv2fLIBsG/xDl8RWfIfLpo+MwPc0Y4yw4tMNnTaMtzRVHkIDNwZyb3dQbF AhY/hQfimi9mrQWLEraOWh/jP5wHgun2lC/xrN2IN7bRwn/sMKidw91WvBR/i5zG A9PfcEvBM0k6LwDCbxHw+czHdY5hPH/nyMfdsj3q7RADKoZtkSEgoForQb2l6ZxW 0bCwests6L65PInvAbhxOsJYfN1CBKZPySuXkZMORIKbsNoK6zE6e336X+v55y24 kyl4XcHNX65YrFRvd3WvvG2afnWHccHooskfiewtF9+T380ST9S8zRTLKldRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhe+rCR5bKh6t14xWoT06PubEYFcwHwYDVR0j BBgwFoAUlZZqjbJQMHz5hSSD+Wki7lIPbiowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MmYxNDE3YS01NzE4LTQwNzEtOWYzNS1jMTIyNTU1ZGFjN2EvMC85NTk2NkE4REIy NTAzMDdDRjk4NTI0ODNGOTY5MjJFRTUyMEY2RTJBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIyRUU1MjBG NkUyQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDJmMTQxN2EtNTcxOC00MDcxLTlm MzUtYzEyMjU1NWRhYzdhLzAvOTU5NjZBOERCMjUwMzA3Q0Y5ODUyNDgzRjk2OTIy RUU1MjBGNkUyQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACqzY0rmyo7lCELmzw0bBJLWOGH1dIalnRvD noIb7da6JvaF3oKz0Wd/3i+3b6bjNlba9BJsbIm0a+wz9xecvHsULQaYYLtXQf2d LlpQZ99HGCY/4Ap4jZOT781oerVKz7ZESS+L1zXpo9+xP5mtGJ/UpnAZg9ULgK2x SI8hbIl1OEJZLoGvgS68CWakAd8t+qUZr1kWYRC7Sdr5xZqjw/bxPYK755eIclEP DXjIHnUx1gc1HdbqzbanAxicG6gZkIOK8U301XqfY3Cr80MnUtW3uD1D0ndcqhsJ S5kU2T10TuoOUFLLDHMRUBVJ7dEyt+7l+pZwhdFcyKdvJbbKoUI= -----END CERTIFICATE-----Generated at Sun Apr 19 10:23:49 2026 by rpki-client