$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft (raw, json) Hash identifier: Fkr78CLhpxmzgaFv+L8IoUFh8umTQZEZHmR/c/8P6QM= Subject key identifier: FC:E4:B0:EA:8B:5E:F7:31:46:9E:19:C0:EF:00:D7:AC:EB:DC:7D:B7 Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 58CE9BA51884D9952E451761B9E29C8C71C9A7CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft Manifest number: 0568 Signing time: Thu 16 Apr 2026 21:11:27 +0000 Manifest this update: Thu 16 Apr 2026 21:06:27 +0000 Manifest next update: Mon 20 Apr 2026 02:25:27 +0000 Files and hashes: 1: 3130332e3139352e31392e302f32342d3234203d3e203535363833.roa (hash: NswJoPlTbkW1QbykJdu3UOhV7IqDYlomNhuRwW/poHY=) 2: 3130332e3139352e31382e302f32342d3234203d3e203535363833.roa (hash: GyTvAyiqDcz4HqvEtyjLwFP+vqa6W3Rz6dNaGJkDvBQ=) 3: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (hash: Xkph31LntzUaI1/CJr8Ltj+zXZ7Nq1uWNrqZKmCZlP8=) 4: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl (hash: rA7XpUCJjVqUDSDn5yGFcBSIzVEmwBUI56O2ofodMWg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 02:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:ce:9b:a5:18:84:d9:95:2e:45:17:61:b9:e2:9c:8c:71:c9:a7:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Apr 16 21:06:27 2026 GMT Not After : Apr 20 02:25:27 2026 GMT Subject: CN=FCE4B0EA8B5EF731469E19C0EF00D7ACEBDC7DB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d9:c4:ee:78:6c:76:2d:d3:d3:02:ed:15:d0: 1a:d5:cd:54:6b:51:ea:09:50:40:98:5b:03:cc:74: eb:57:7d:64:11:8a:e4:ec:a4:77:28:1b:ce:34:07: 8c:27:1f:52:68:86:19:94:3a:30:1c:48:7d:0c:ab: 4d:45:4a:f0:19:5f:71:87:95:83:d0:82:f2:93:fb: e2:60:10:31:b7:75:1b:d7:c9:14:84:e6:96:c0:02: 92:bd:f8:76:76:1c:1e:cb:d0:4d:cf:3f:df:a8:ef: 47:86:91:78:f5:d5:f9:fd:35:3d:95:7e:16:76:93: f4:98:1d:82:bc:46:ed:ce:97:1a:b9:9b:4b:09:5e: bd:a2:a1:ac:a7:db:d0:ef:d7:86:3a:80:33:58:d8: 1e:d6:e6:99:4b:37:dc:44:f8:58:f7:cb:c0:68:c0: b5:c9:cc:7a:74:3c:8e:95:01:03:74:a2:19:27:27: fd:8b:51:f5:14:c3:71:40:03:ca:8e:22:82:33:ea: 6d:97:db:9d:02:5f:d5:ea:c2:c2:80:23:1f:a8:16: f1:58:66:35:18:d6:9c:3a:0f:83:e3:9b:a8:bf:fc: c4:c0:ff:aa:06:6d:c9:a7:89:c6:49:e4:c4:96:9a: 28:63:19:97:6c:f2:95:ed:49:32:3b:f7:dc:80:f6: 4d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E4:B0:EA:8B:5E:F7:31:46:9E:19:C0:EF:00:D7:AC:EB:DC:7D:B7 X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:cf:ed:db:f9:6b:31:86:38:e5:47:2e:e0:1d:5c:a9:13:18: aa:2b:b5:96:e9:5a:dd:33:a9:a0:bd:91:68:1c:ab:2f:0d:b1: 6f:c4:02:bb:27:99:21:c9:c0:7d:a9:32:85:a4:62:68:fa:d1: 43:d0:89:51:0f:af:b7:3a:d9:fa:b8:e5:80:9c:03:4a:b5:16: 2a:23:f5:7b:95:dd:97:16:75:82:b6:78:a4:4c:8e:c0:9e:80: 79:d6:ab:ec:98:5e:94:d3:89:24:c5:af:d2:06:f5:b5:ef:53: 1d:d7:fa:e1:52:e7:50:9b:f8:f4:7a:3b:a9:40:05:8a:32:83: ed:bf:80:ae:ac:81:c2:82:11:89:6a:ab:8f:c9:79:15:07:9e: c6:47:84:72:30:fb:60:8c:d3:25:20:67:5f:90:a9:04:42:65: 32:a1:63:19:26:08:e4:fe:cf:5b:01:ef:73:b9:e6:71:99:41: fa:86:72:76:0e:d1:10:27:dc:af:5a:11:c8:dd:c3:bc:0c:b2: 4b:4a:67:de:9c:6c:f4:dc:41:43:de:ea:d1:0c:39:cd:d2:72: d6:ab:f3:52:ed:12:02:75:9d:cd:0c:e0:5e:f6:9b:a9:74:bd: 71:e7:c7:df:a2:27:aa:4e:81:d4:63:60:36:b8:53:b7:98:89: 27:6b:54:f4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWM6bpRiE2ZUuRRdhueKcjHHJp88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yNjA0MTYyMTA2MjdaFw0yNjA0MjAwMjI1MjdaMDMxMTAvBgNV BAMTKEZDRTRCMEVBOEI1RUY3MzE0NjlFMTlDMEVGMDBEN0FDRUJEQzdEQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc2cTueGx2LdPTAu0V0BrVzVRr UeoJUECYWwPMdOtXfWQRiuTspHcoG840B4wnH1JohhmUOjAcSH0Mq01FSvAZX3GH lYPQgvKT++JgEDG3dRvXyRSE5pbAApK9+HZ2HB7L0E3PP9+o70eGkXj11fn9NT2V fhZ2k/SYHYK8Ru3Olxq5m0sJXr2ioayn29Dv14Y6gDNY2B7W5plLN9xE+Fj3y8Bo wLXJzHp0PI6VAQN0ohknJ/2LUfUUw3FAA8qOIoIz6m2X250CX9XqwsKAIx+oFvFY ZjUY1pw6D4Pjm6i//MTA/6oGbcmnicZJ5MSWmihjGZds8pXtSTI799yA9k31AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/OSw6ote9zFGnhnA7wDXrOvcfbcwHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNiOGFlOTctNjgxOC00OGE5LWFi ZTQtZWRiOTYwNDlmM2M4LzAvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVC RENCNUFEQkQyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA/P7dv5azGGOOVHLuAdXKkTGKortZbpWt0z qaC9kWgcqy8NsW/EArsnmSHJwH2pMoWkYmj60UPQiVEPr7c62fq45YCcA0q1Fioj 9XuV3ZcWdYK2eKRMjsCegHnWq+yYXpTTiSTFr9IG9bXvUx3X+uFS51Cb+PR6O6lA BYoyg+2/gK6sgcKCEYlqq4/JeRUHnsZHhHIw+2CM0yUgZ1+QqQRCZTKhYxkmCOT+ z1sB73O55nGZQfqGcnYO0RAn3K9aEcjdw7wMsktKZ96cbPTcQUPe6tEMOc3Sctar 81LtEgJ1nc0M4F72m6l0vXHnx9+iJ6pOgdRjYDa4U7eYiSdrVPQ= -----END CERTIFICATE-----Generated at Fri Apr 17 18:33:48 2026 by rpki-client