$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: F40yD9UZ/P7HOqUA8cPy13gEhGXawBi/wIyhms0MnkY= Subject key identifier: E4:59:71:B2:77:82:4C:E6:60:E7:DC:05:CD:82:DE:19:46:7E:9D:C9 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 2ACB7AE16A3C1466C046D7197905468CE08F0CAA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 0530 Signing time: Thu 16 Apr 2026 11:10:58 +0000 Manifest this update: Thu 16 Apr 2026 11:05:58 +0000 Manifest next update: Sun 19 Apr 2026 18:51:58 +0000 Files and hashes: 1: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (hash: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0=) 2: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: c9vDZ7HpS5MMVKx2k2TFYyd0FAPBSDQ06q7Vsid4FZw=) 3: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) 4: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 18:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:cb:7a:e1:6a:3c:14:66:c0:46:d7:19:79:05:46:8c:e0:8f:0c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Apr 16 11:05:58 2026 GMT Not After : Apr 19 18:51:58 2026 GMT Subject: CN=E45971B277824CE660E7DC05CD82DE19467E9DC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:53:a0:1d:bc:5e:74:7c:e9:e6:db:33:7a:c4: 5d:35:0e:63:6e:6c:0e:ff:dc:bd:c1:92:ae:c5:d6: d8:58:ba:ff:7e:13:2d:30:1f:f4:2f:d2:38:94:07: 5d:26:73:d6:0e:05:d8:61:0b:e2:b6:56:c1:66:f8: 97:43:f5:94:6e:90:e9:a0:5f:93:d2:bc:13:e4:2e: e8:fe:fd:21:0c:aa:98:fa:ef:68:43:90:87:a5:7e: ab:60:05:10:19:7d:b3:aa:c3:bd:cf:d0:8c:27:83: 18:ab:da:38:48:09:52:0b:d3:e5:b6:2a:09:ec:09: b5:f1:b4:61:60:71:30:59:0c:1d:7b:3d:ed:db:76: 47:22:e9:80:8d:54:01:03:2f:97:35:14:f5:d1:d3: 60:4a:23:dc:0e:db:ab:c9:45:be:9e:53:ca:5b:57: 0f:96:fa:a5:29:0b:1e:21:f2:f5:40:b3:74:59:fa: 0a:3b:06:33:a1:e9:a7:42:65:0b:b9:b0:75:c4:4f: 72:b9:1c:66:74:f3:90:ff:6c:b2:24:e2:f3:b2:bd: 34:d9:94:62:e7:bf:6f:bc:45:ce:e3:5d:71:6c:04: 4f:67:b6:7e:bc:de:b1:4c:1a:12:cb:fa:c6:f5:24: 7d:f0:75:15:8a:e8:e4:03:d7:5c:18:6e:5e:cc:e9: 49:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:59:71:B2:77:82:4C:E6:60:E7:DC:05:CD:82:DE:19:46:7E:9D:C9 X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:ba:d4:00:6b:4d:fe:b4:83:af:35:19:aa:bb:4d:71:1b:29: 03:65:6a:71:fb:fa:6c:49:b0:e9:6b:fc:8d:f8:29:6c:2a:15: 8e:87:1c:8b:64:fd:8d:ed:e7:54:28:3a:d0:3b:22:95:01:79: b7:d2:04:6e:a1:f2:01:2c:20:7e:7c:0d:20:85:39:5b:02:f3: 9f:89:ba:e9:7b:1f:cc:2c:f4:5f:4b:b2:84:e4:8c:e5:be:c3: 2e:27:ec:f6:32:b4:f0:8d:db:86:65:ab:7a:58:de:22:73:81: d9:6a:93:65:c9:21:88:6c:fe:62:47:66:1a:88:33:bb:b3:04: 86:e5:8c:ca:e8:65:79:2d:47:d0:bb:21:58:4a:5a:34:05:6d: 1b:b9:7f:bc:f1:3a:c6:96:be:7d:4e:3f:93:f2:20:fe:01:b5: 91:76:51:b5:3e:0e:db:28:69:b0:37:92:c4:21:13:a0:2a:48: c5:2e:81:b4:0a:61:bc:af:ce:02:7b:ff:22:c1:76:9c:11:94: dc:ef:eb:eb:0f:12:be:28:38:26:b7:1d:57:6e:c4:c1:0d:b4: e7:c0:d4:36:5b:28:6b:ce:01:2e:44:62:72:d1:bd:08:bc:e7: 9c:d4:79:79:7e:95:44:42:8e:25:af:7d:53:03:3c:cf:ee:ba: d1:b2:31:d4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKst64Wo8FGbARtcZeQVGjOCPDKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNjA0MTYxMTA1NThaFw0yNjA0MTkxODUxNThaMDMxMTAvBgNV BAMTKEU0NTk3MUIyNzc4MjRDRTY2MEU3REMwNUNEODJERTE5NDY3RTlEQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9U6AdvF50fOnm2zN6xF01DmNu bA7/3L3Bkq7F1thYuv9+Ey0wH/Qv0jiUB10mc9YOBdhhC+K2VsFm+JdD9ZRukOmg X5PSvBPkLuj+/SEMqpj672hDkIelfqtgBRAZfbOqw73P0Iwngxir2jhICVIL0+W2 KgnsCbXxtGFgcTBZDB17Pe3bdkci6YCNVAEDL5c1FPXR02BKI9wO26vJRb6eU8pb Vw+W+qUpCx4h8vVAs3RZ+go7BjOh6adCZQu5sHXET3K5HGZ085D/bLIk4vOyvTTZ lGLnv2+8Rc7jXXFsBE9ntn683rFMGhLL+sb1JH3wdRWK6OQD11wYbl7M6UlbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5FlxsneCTOZg59wFzYLeGUZ+nckwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB+61ABrTf60g681Gaq7TXEbKQNlanH7+mxJ sOlr/I34KWwqFY6HHItk/Y3t51QoOtA7IpUBebfSBG6h8gEsIH58DSCFOVsC85+J uul7H8ws9F9LsoTkjOW+wy4n7PYytPCN24Zlq3pY3iJzgdlqk2XJIYhs/mJHZhqI M7uzBIbljMroZXktR9C7IVhKWjQFbRu5f7zxOsaWvn1OP5PyIP4BtZF2UbU+Dtso abA3ksQhE6AqSMUugbQKYbyvzgJ7/yLBdpwRlNzv6+sPEr4oOCa3HVduxMENtOfA 1DZbKGvOAS5EYnLRvQi855zUeXl+lURCjiWvfVMDPM/uutGyMdQ= -----END CERTIFICATE-----Generated at Fri Apr 17 19:55:58 2026 by rpki-client