$ rpki-client -vvf repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft File: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft (raw, json) Hash identifier: mp5FOm05+UA0j8+5G55k0nohNgwQzJU/IaROvQRfA8I= Subject key identifier: 58:25:F5:37:E1:CA:A6:2F:87:5E:AE:28:9A:A1:40:F1:B6:98:7F:86 Authority key identifier: D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 Certificate issuer: /CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Certificate serial: 5DB5BB9D7E7FCA7DF12D5D55E3E4F5E5F5788FDE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft Manifest number: 0199 Signing time: Fri 17 Apr 2026 19:31:14 +0000 Manifest this update: Fri 17 Apr 2026 19:26:14 +0000 Manifest next update: Tue 21 Apr 2026 06:51:14 +0000 Files and hashes: 1: 3130332e3138322e37382e302f32332d3234203d3e20313439363635.roa (hash: HfCkgcqYe6YVGCjk05IbdJZUy6qogHTICufKiiFTmEk=) 2: D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl (hash: KnP2ADYrY00Z1VrGtR1UkTtAm/91jukZs4c0pA80/ms=) 3: 3130332e3138322e37392e302f32342d3234203d3e20313439363635.roa (hash: 6QOkAmqGiGRSbivZx0unIqegpMeo8pm4RaGUZUWR5xc=) 4: 3130332e3138322e37382e302f32342d3234203d3e20313439363635.roa (hash: s6lpSYDLHcgmFHxHmbb72jfjvgtX6lm1gyGqU1Y9OXI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 04:23:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:b5:bb:9d:7e:7f:ca:7d:f1:2d:5d:55:e3:e4:f5:e5:f5:78:8f:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1F72E67DA9CCE09044FA4204EA993AE93D196D6 Validity Not Before: Apr 17 19:26:14 2026 GMT Not After : Apr 21 06:51:14 2026 GMT Subject: CN=5825F537E1CAA62F875EAE289AA140F1B6987F86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:40:a7:f6:97:6c:58:a3:c9:50:07:ec:dd:d0: 2f:1f:ae:85:b1:cb:bb:60:a1:0f:f0:6a:a6:b5:9b: 5e:14:45:f1:47:87:76:ca:4d:6f:9c:e3:08:4f:28: b4:57:a8:e6:dc:c3:0e:97:0d:bd:67:2d:e0:3b:94: 48:ab:62:0f:c2:fe:66:6e:2d:98:99:7f:dc:b0:67: 54:bb:5c:f1:a1:fa:1f:f0:1b:4e:b3:b7:6b:09:56: 5f:3c:05:d9:43:ef:03:91:43:31:94:d5:e6:34:81: 0f:26:17:a7:06:87:02:77:9a:38:a8:1d:15:ff:03: 5c:91:4f:2a:ef:3c:4c:bd:04:21:09:46:f0:6c:15: 3d:5e:c9:e5:49:3f:0b:44:2a:0a:b2:b8:62:c8:19: e2:4a:99:a7:20:c1:8a:9c:7d:2a:58:9b:c2:66:af: 4a:1f:d4:3d:02:fe:c9:59:b3:b1:23:23:e0:9d:dd: fa:6d:d0:6b:14:0d:bc:1b:45:a9:2e:55:e1:15:3d: 8a:cb:0b:96:24:72:2b:8a:4d:04:e1:ea:24:39:c0: bd:a1:4c:a4:39:dd:52:86:e5:5b:af:ba:bc:f5:15: d7:a9:47:3c:3b:55:40:9f:46:5f:ca:0f:d8:2c:51: a3:3e:b2:ad:c5:b1:06:a8:5d:06:27:b2:f7:c1:d5: d9:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:25:F5:37:E1:CA:A6:2F:87:5E:AE:28:9A:A1:40:F1:B6:98:7F:86 X509v3 Authority Key Identifier: keyid:D1:F7:2E:67:DA:9C:CE:09:04:4F:A4:20:4E:A9:93:AE:93:D1:96:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f34c33b8-9d42-4208-8ac4-f172a144d868/0/D1F72E67DA9CCE09044FA4204EA993AE93D196D6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:0e:89:e1:6c:3f:c7:5f:d5:da:5f:be:95:df:37:fb:51:64: 40:7b:5a:5e:58:e8:db:78:77:b8:a6:5e:81:fa:cc:19:66:09: 00:05:8e:c4:63:2a:97:3c:05:5c:02:91:3b:85:5c:07:51:d0: 44:39:6f:14:33:59:e4:3b:7d:f7:c0:86:e5:56:04:96:e9:5d: 35:6c:1e:8f:f4:7d:fc:97:f1:3e:91:39:6d:ad:05:78:93:a7: 9c:8c:1d:53:3e:70:43:f2:12:3e:54:63:ae:28:6c:77:65:1a: 4b:43:4c:6d:20:ad:90:c8:92:f8:05:02:51:2d:5f:83:07:cd: ab:57:c2:3b:b8:87:86:d1:24:6f:e6:2e:39:98:dc:bb:88:78: 9b:94:2e:ed:15:31:cc:2d:f4:5b:b9:75:b8:36:d9:f0:33:7d: 4a:7e:ee:19:9b:0b:79:a2:82:59:c2:04:27:57:0e:b4:62:f8: 82:91:19:37:3b:9a:06:bb:f8:74:77:e6:14:e3:57:ff:5d:46: 76:cd:30:fb:16:36:1d:dd:a0:a6:e8:4c:4e:88:8a:d2:3a:88: ef:34:a0:47:ed:75:db:a3:ef:1e:e0:5b:fe:4b:3d:37:12:32: d6:72:5d:90:18:b2:01:98:b1:31:a2:4c:55:9e:54:4f:56:7a: 7a:8f:dd:ef -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXbW7nX5/yn3xLV1V4+T15fV4j94wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5 M0QxOTZENjAeFw0yNjA0MTcxOTI2MTRaFw0yNjA0MjEwNjUxMTRaMDMxMTAvBgNV BAMTKDU4MjVGNTM3RTFDQUE2MkY4NzVFQUUyODlBQTE0MEYxQjY5ODdGODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxQKf2l2xYo8lQB+zd0C8froWx y7tgoQ/waqa1m14URfFHh3bKTW+c4whPKLRXqObcww6XDb1nLeA7lEirYg/C/mZu LZiZf9ywZ1S7XPGh+h/wG06zt2sJVl88BdlD7wORQzGU1eY0gQ8mF6cGhwJ3mjio HRX/A1yRTyrvPEy9BCEJRvBsFT1eyeVJPwtEKgqyuGLIGeJKmacgwYqcfSpYm8Jm r0of1D0C/slZs7EjI+Cd3fpt0GsUDbwbRakuVeEVPYrLC5YkciuKTQTh6iQ5wL2h TKQ53VKG5Vuvurz1FdepRzw7VUCfRl/KD9gsUaM+sq3FsQaoXQYnsvfB1dlRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWCX1N+HKpi+HXq4omqFA8baYf4YwHwYDVR0j BBgwFoAU0fcuZ9qczgkET6QgTqmTrpPRltYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MzRjMzNiOC05ZDQyLTQyMDgtOGFjNC1mMTcyYTE0NGQ4NjgvMC9EMUY3MkU2N0RB OUNDRTA5MDQ0RkE0MjA0RUE5OTNBRTkzRDE5NkQ2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkzQUU5M0Qx OTZENi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjM0YzMzYjgtOWQ0Mi00MjA4LThh YzQtZjE3MmExNDRkODY4LzAvRDFGNzJFNjdEQTlDQ0UwOTA0NEZBNDIwNEVBOTkz QUU5M0QxOTZENi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEgOieFsP8df1dpfvpXfN/tRZEB7Wl5Y6Nt4 d7imXoH6zBlmCQAFjsRjKpc8BVwCkTuFXAdR0EQ5bxQzWeQ7fffAhuVWBJbpXTVs Ho/0ffyX8T6ROW2tBXiTp5yMHVM+cEPyEj5UY64obHdlGktDTG0grZDIkvgFAlEt X4MHzatXwju4h4bRJG/mLjmY3LuIeJuULu0VMcwt9Fu5dbg22fAzfUp+7hmbC3mi glnCBCdXDrRi+IKRGTc7mga7+HR35hTjV/9dRnbNMPsWNh3doKboTE6IitI6iO80 oEftdduj7x7gW/5LPTcSMtZyXZAYsgGYsTGiTFWeVE9WenqP3e8= -----END CERTIFICATE-----Generated at Fri Apr 17 23:05:31 2026 by rpki-client