$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: C9yLyt3LRbuxL3cJK2CLygwq+P0t3VjYSF1/SeRLCcA= Subject key identifier: 4D:99:98:7F:02:16:2B:44:ED:C2:6E:3A:A5:CA:13:A5:11:D0:14:4E Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 02FEBC14E75DBAF8E01D4246331F9D621427C3C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 056A Signing time: Wed 15 Apr 2026 10:22:55 +0000 Manifest this update: Wed 15 Apr 2026 10:17:55 +0000 Manifest next update: Sat 18 Apr 2026 21:02:55 +0000 Files and hashes: 1: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: E6oSwKyWxejOo/v5HHitngqUwJ84vi0WR9s9o+kQ4qc=) 2: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: mAHS4RhjFlyuuj4wSTCANOzW1BtppaUwbd4+LpgqV3A=) 3: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 6P/MnisWmadZujdf0MdzBBem1MXVl8xw/vKYXqNcxoU=) 4: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: ctlL63La/nA2o80IyG4Gn5yERO9Svxh3VS6Tj8PS2Bk=) 5: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: +FaWxeyMSXTm1A2YbWkKpjjxd9ODF5R6bPfmYjsvC3c=) 6: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: Y6tvd+1XtHiukr4Lnc++EG2e4/MBcfeHFg9Xd0kGFMg=) 7: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: m1RDFs81kJe7cLkzIuvESdF6lsbsj7FMYtNBuW0nGcE=) 8: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: JSmsC+G+YvfoON8p+Cj6fYtaohMXIAM70EFq9GQqwO8=) 9: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: lOPyN4jlxJmDfUm1Z5usitGLtQdiU+flslurwWQqLwM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 21:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fe:bc:14:e7:5d:ba:f8:e0:1d:42:46:33:1f:9d:62:14:27:c3:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Apr 15 10:17:55 2026 GMT Not After : Apr 18 21:02:55 2026 GMT Subject: CN=4D99987F02162B44EDC26E3AA5CA13A511D0144E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e5:c1:c0:91:da:80:df:a0:70:b5:c6:74:c3: 97:13:ac:ec:45:76:4a:1a:ed:6e:b2:f6:01:71:78: 6c:ea:94:b1:aa:ea:17:dd:b9:c1:0d:a1:15:04:bd: 3b:f8:1d:7f:f9:bf:af:e6:f9:56:ef:ac:55:ce:35: b8:e5:eb:92:fc:4a:45:f7:80:ee:c3:9b:bc:5c:cb: e7:5c:d1:2b:dc:f8:36:ee:13:3e:11:62:a8:e1:67: 8b:04:96:b8:0f:7b:4b:90:a5:5e:e4:04:89:7a:c7: 45:e5:75:6d:30:5e:ea:71:b3:f4:d9:8e:b0:79:71: 77:ba:e9:ed:73:89:66:e3:17:94:7c:cf:0d:db:34: 96:a2:a4:0f:0e:34:1d:fa:66:2c:af:37:67:32:f9: fc:49:24:8d:c7:58:26:e3:d2:63:34:82:f6:eb:60: 93:ac:a6:3b:54:e8:f6:31:17:fa:64:4c:e3:cc:85: 7c:bf:c6:f2:93:b2:82:87:18:48:6b:35:f3:07:f0: 7f:ef:5d:44:fd:f9:6e:3c:c3:1a:fc:12:03:89:2a: 9a:c5:33:ef:ea:1e:48:2d:7f:21:b9:85:62:48:11: e7:18:96:47:5a:83:a6:2c:aa:a9:34:4b:55:6b:0f: eb:fb:c9:a9:ab:71:58:f0:1b:42:0b:f2:a5:08:06: 40:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:99:98:7F:02:16:2B:44:ED:C2:6E:3A:A5:CA:13:A5:11:D0:14:4E X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:d1:42:94:ab:8d:37:a3:8e:21:3f:68:93:d0:2d:1e:01:6d: d8:e0:50:c6:98:c4:35:51:25:40:06:69:0c:5e:19:e8:4d:b1: 28:90:3d:3e:d5:68:bd:b1:cb:65:a3:a7:8d:f9:2d:ab:7b:55: f5:e1:40:ef:8c:c1:e7:c1:ec:02:31:7f:31:72:dc:e2:40:c3: b6:8e:4e:c5:b5:77:64:b3:30:92:96:04:43:b5:65:9c:d3:f1: 31:4c:7c:e2:7a:25:15:76:1a:31:8b:e2:91:f7:35:d1:80:d6: c3:d9:b5:7d:9e:b1:2b:0e:94:72:11:ac:00:1b:dc:e2:1c:b5: 41:d2:86:cf:98:6e:ab:79:d0:e9:46:ac:c1:62:41:c5:71:a1: 2a:3f:ff:18:5c:33:48:d5:8f:7c:47:cf:41:aa:fc:5a:ed:01: 87:6e:1d:0e:04:5d:73:eb:8f:ea:99:55:7e:d0:36:36:2c:a2: 52:dd:7a:f4:68:72:54:c2:1f:4b:b3:a2:bc:8b:b2:06:b4:87: 94:4d:d5:2f:cb:f7:dc:bd:04:4e:54:37:78:03:38:56:6d:63: e6:3b:57:62:2c:5f:51:63:fa:bf:b5:f8:40:70:b9:37:df:0e: 9f:ff:51:1b:2b:e5:05:e2:e9:8b:a2:fa:84:f0:1a:82:b8:19: 58:3a:db:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAv68FOdduvjgHUJGMx+dYhQnw8UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNjA0MTUxMDE3NTVaFw0yNjA0MTgyMTAyNTVaMDMxMTAvBgNV BAMTKDREOTk5ODdGMDIxNjJCNDRFREMyNkUzQUE1Q0ExM0E1MTFEMDE0NEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn5cHAkdqA36BwtcZ0w5cTrOxF dkoa7W6y9gFxeGzqlLGq6hfducENoRUEvTv4HX/5v6/m+VbvrFXONbjl65L8SkX3 gO7Dm7xcy+dc0Svc+DbuEz4RYqjhZ4sElrgPe0uQpV7kBIl6x0XldW0wXupxs/TZ jrB5cXe66e1ziWbjF5R8zw3bNJaipA8ONB36ZiyvN2cy+fxJJI3HWCbj0mM0gvbr YJOspjtU6PYxF/pkTOPMhXy/xvKTsoKHGEhrNfMH8H/vXUT9+W48wxr8EgOJKprF M+/qHkgtfyG5hWJIEecYlkdag6Ysqqk0S1VrD+v7yamrcVjwG0IL8qUIBkAXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTZmYfwIWK0Ttwm46pcoTpRHQFE4wHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFvRQpSrjTejjiE/aJPQLR4BbdjgUMaYxDVR JUAGaQxeGehNsSiQPT7VaL2xy2Wjp435Lat7VfXhQO+MwefB7AIxfzFy3OJAw7aO TsW1d2SzMJKWBEO1ZZzT8TFMfOJ6JRV2GjGL4pH3NdGA1sPZtX2esSsOlHIRrAAb 3OIctUHShs+Ybqt50OlGrMFiQcVxoSo//xhcM0jVj3xHz0Gq/FrtAYduHQ4EXXPr j+qZVX7QNjYsolLdevRoclTCH0uzoryLsga0h5RN1S/L99y9BE5UN3gDOFZtY+Y7 V2IsX1Fj+r+1+EBwuTffDp//URsr5QXi6Yui+oTwGoK4GVg62xE= -----END CERTIFICATE-----Generated at Fri Apr 17 18:19:58 2026 by rpki-client