$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: +0vmh8vvHgCFQJiWly4LQED1Go+M/hJjPVV0Od8syyQ= Subject key identifier: 5F:B3:CB:E2:B5:CB:3A:C7:59:9B:1B:41:2F:08:0D:24:51:2A:90:CE Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 4BFBF64B80D5808393E021D6CD055EBBACE9C813 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 0173 Signing time: Thu 16 Apr 2026 00:32:08 +0000 Manifest this update: Thu 16 Apr 2026 00:27:08 +0000 Manifest next update: Sun 19 Apr 2026 06:28:08 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: qh+p2ileR0BLnlY4ORki0+E5lnotmpmZWcBdMVTalu8=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: xTPoIlaNmn7dCA4oz4xbGajx7u9U25QUsQJawDHmNA8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 06:28:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:fb:f6:4b:80:d5:80:83:93:e0:21:d6:cd:05:5e:bb:ac:e9:c8:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Apr 16 00:27:08 2026 GMT Not After : Apr 19 06:28:08 2026 GMT Subject: CN=5FB3CBE2B5CB3AC7599B1B412F080D24512A90CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e0:4b:3c:f2:ed:88:b8:a8:7f:b7:a0:f2:45: 89:f9:11:11:7a:22:53:dc:bc:5d:af:5b:5d:2f:df: 39:06:db:8d:a2:9a:22:00:a7:c5:b4:87:d8:30:b7: ea:7b:a2:6d:7f:e9:26:33:03:ff:2f:7b:82:1c:96: 04:bb:98:ef:09:3c:5f:d4:11:b1:42:02:da:86:f2: 4a:6a:7d:f3:3b:c0:2d:7f:e8:fd:ed:43:29:2c:8a: b4:74:46:9e:99:48:22:ca:0f:46:6f:02:7f:c1:b9: 77:ca:01:10:fb:43:4e:92:02:c7:09:35:82:8a:b3: ce:ae:3a:ff:c8:da:48:5e:cc:2e:f6:6f:5c:24:c6: f1:e3:7d:31:f6:0b:f2:57:b9:e7:84:89:b5:fc:fe: ca:15:d3:5e:4f:1a:9d:92:85:d3:e2:33:8c:0e:90: 7b:b5:ef:b8:be:b5:be:f3:8c:99:45:85:ea:91:76: b7:19:4c:cc:b1:1c:a8:72:26:de:8e:73:38:a0:78: 87:a8:8b:27:50:ef:37:35:d0:b7:da:13:e0:73:00: bd:3f:73:a3:ae:cc:d7:d8:c4:ae:ce:89:dc:f1:b2: 77:52:10:ed:f4:28:3c:54:81:31:08:bf:c5:b9:7a: 3a:ef:e2:75:e8:3e:f2:83:92:70:21:9d:5c:f8:23: 00:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:B3:CB:E2:B5:CB:3A:C7:59:9B:1B:41:2F:08:0D:24:51:2A:90:CE X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:21:ec:ad:08:0b:46:7d:3f:78:a4:4b:a2:35:9e:37:69:ca: 0d:fd:e8:17:f3:78:29:09:a9:da:90:09:44:d8:d0:ae:78:13: c6:1f:f4:46:4a:6a:1c:02:fe:dd:ca:4e:fc:7e:eb:4f:a5:da: 43:00:72:89:fc:36:29:dc:b4:bb:70:0a:8c:dc:53:83:71:b5: bd:6b:ae:96:00:4e:a9:95:13:cc:67:35:9e:33:dd:3c:f7:5d: 49:f0:8d:c9:46:3e:bb:6e:fb:a0:ec:1f:30:8a:17:cf:06:76: 67:8f:0e:f3:7f:27:53:64:cd:ca:78:af:2e:59:4f:43:27:c5: df:c8:98:b4:a2:ff:14:fd:3d:86:4e:2d:f4:b7:35:3a:ca:4f: 42:93:f9:47:91:5d:d9:09:bc:2d:67:09:97:76:da:06:73:96: 2b:e4:75:86:00:f9:33:61:ce:07:01:cd:d4:c1:51:06:d6:92: 21:b8:a8:e9:54:fc:56:6b:49:18:c2:19:84:1f:92:e6:35:32: 26:f7:ed:e1:ba:64:41:52:94:b4:0e:9a:9d:3d:2c:63:71:24: df:af:5b:28:74:2a:f6:ae:18:ff:65:f8:b0:b8:15:5e:88:19: 62:2e:83:34:3c:75:d6:3d:e7:dd:9d:f9:55:63:6a:47:8b:8c: 36:f7:5c:91 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUS/v2S4DVgIOT4CHWzQVeu6zpyBMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNjA0MTYwMDI3MDhaFw0yNjA0MTkwNjI4MDhaMDMxMTAvBgNV BAMTKDVGQjNDQkUyQjVDQjNBQzc1OTlCMUI0MTJGMDgwRDI0NTEyQTkwQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDx4Es88u2IuKh/t6DyRYn5ERF6 IlPcvF2vW10v3zkG242imiIAp8W0h9gwt+p7om1/6SYzA/8ve4IclgS7mO8JPF/U EbFCAtqG8kpqffM7wC1/6P3tQyksirR0Rp6ZSCLKD0ZvAn/BuXfKARD7Q06SAscJ NYKKs86uOv/I2khezC72b1wkxvHjfTH2C/JXueeEibX8/soV015PGp2ShdPiM4wO kHu177i+tb7zjJlFheqRdrcZTMyxHKhyJt6OczigeIeoiydQ7zc10LfaE+BzAL0/ c6OuzNfYxK7OidzxsndSEO30KDxUgTEIv8W5ejrv4nXoPvKDknAhnVz4IwAPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUX7PL4rXLOsdZmxtBLwgNJFEqkM4wHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA0h7K0IC0Z9P3ikS6I1njdpyg396BfzeCkJ qdqQCUTY0K54E8Yf9EZKahwC/t3KTvx+60+l2kMAcon8NinctLtwCozcU4Nxtb1r rpYATqmVE8xnNZ4z3Tz3XUnwjclGPrtu+6DsHzCKF88GdmePDvN/J1Nkzcp4ry5Z T0Mnxd/ImLSi/xT9PYZOLfS3NTrKT0KT+UeRXdkJvC1nCZd22gZzlivkdYYA+TNh zgcBzdTBUQbWkiG4qOlU/FZrSRjCGYQfkuY1Mib37eG6ZEFSlLQOmp09LGNxJN+v Wyh0KvauGP9l+LC4FV6IGWIugzQ8ddY9592d+VVjakeLjDb3XJE= -----END CERTIFICATE-----Generated at Fri Apr 17 16:52:15 2026 by rpki-client