$ rpki-client -vvf repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft File: 8659BE8500DEBB314448F1412FA1E264025A4148.mft (raw, json) Hash identifier: Fzd7+XdTebPpjxF3Wl0FZWzrzoxBRJzLL2D2LDffqjE= Subject key identifier: 8D:BF:00:F3:76:B8:3C:97:CC:D1:87:DA:0D:28:02:20:8C:15:C2:08 Authority key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Certificate issuer: /CN=8659BE8500DEBB314448F1412FA1E264025A4148 Certificate serial: 60B1A7AC94575C0C97AF1E53515068AE9FA63737 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft Manifest number: 0234 Signing time: Thu 16 Apr 2026 09:51:08 +0000 Manifest this update: Thu 16 Apr 2026 09:46:08 +0000 Manifest next update: Sun 19 Apr 2026 15:54:08 +0000 Files and hashes: 1: 3130332e3136342e3139332e302f32342d3234203d3e20313431393339.roa (hash: o1EC2V3xudD67YQ4ezVJUlO4R22GwhC3UT5xp118BUc=) 2: 3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa (hash: DGmbIbAAoCUymOY6DDh+0S4rcPuhCP+BlaH232+y3TY=) 3: 3130332e3136342e3139322e302f32342d3234203d3e20313431393339.roa (hash: V8FXW6i5FhDhWnneEy9JcwyRx6grWMlQZ/xTqZlJefU=) 4: 323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa (hash: E8NUcaKWe3ABHFVxNWSSIkp1m8C7YtMxKMRA2hg1NmI=) 5: 8659BE8500DEBB314448F1412FA1E264025A4148.crl (hash: wKeHjHfGf6zNiiOCxrzxAvxb/nRFay8wktT14BeJeGk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 15:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:b1:a7:ac:94:57:5c:0c:97:af:1e:53:51:50:68:ae:9f:a6:37:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Validity Not Before: Apr 16 09:46:08 2026 GMT Not After : Apr 19 15:54:08 2026 GMT Subject: CN=8DBF00F376B83C97CCD187DA0D2802208C15C208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:32:18:27:d4:92:d7:3b:7e:aa:2a:07:d5:84: 24:a6:26:73:7e:7d:b5:b5:d7:61:c8:a7:47:92:6a: 2d:2a:d7:35:30:14:18:fb:5c:c2:90:36:4e:55:13: 9b:d2:87:a5:4d:a7:31:b4:01:f5:43:32:bb:2a:fe: 41:f6:1e:72:f4:fe:27:77:8f:01:6d:29:63:d5:ae: b2:4e:3c:8f:fb:da:67:54:62:de:bb:1d:86:a5:de: 35:38:e8:9a:6f:1b:3f:50:97:3b:c3:22:e5:13:23: 28:3e:9f:64:cf:9e:3a:6a:4d:96:69:cb:62:0d:96: 96:87:66:3c:7b:5e:d7:58:48:28:14:c8:60:53:2d: 14:14:9d:be:4d:ef:2a:1b:c8:d0:77:85:34:5b:cd: 14:63:e0:47:6d:76:c0:67:2f:b4:6f:97:66:fb:b6: bb:aa:33:de:12:9a:28:8a:4c:7e:48:39:80:a1:41: ea:44:1f:07:f3:9e:17:f2:0a:d0:26:84:56:a1:df: 1a:99:4c:87:0e:e2:03:49:d2:f2:a9:21:65:ed:94: 99:23:9c:da:31:c0:a4:25:1b:5a:3f:92:fc:c6:cd: 75:ac:5c:d9:8c:0c:c9:27:26:fa:a3:0f:9e:58:eb: 63:28:da:b0:a7:23:0e:36:64:7d:fd:ef:6a:32:45: ba:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:BF:00:F3:76:B8:3C:97:CC:D1:87:DA:0D:28:02:20:8C:15:C2:08 X509v3 Authority Key Identifier: keyid:86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:d7:f0:2f:c0:c0:f5:3c:36:9b:b4:8c:a8:92:82:39:51:7a: c6:13:92:51:c9:52:3a:c1:5c:15:ad:79:d5:e1:d6:ab:ae:e4: 61:d4:87:81:1c:d7:d9:db:5a:2c:d6:bd:28:e2:43:21:87:e9: 38:86:c3:4e:02:be:07:ed:23:f2:bd:7d:75:ef:46:f5:db:24: 9f:1b:20:34:d2:7e:5c:6a:f1:52:98:33:e6:38:89:83:0b:c4: 55:67:33:98:49:24:a2:82:d6:09:9d:1b:e5:bb:b9:50:01:4f: 31:14:d8:9b:74:db:63:16:e9:ba:0f:23:a6:38:2f:81:98:23: dd:d3:15:98:fd:b0:5a:73:d9:3b:75:b5:4c:54:78:c5:4b:be: 43:ab:a5:b9:84:ac:9e:8d:c3:38:3f:e7:ff:ff:a0:2b:02:51: ad:e3:82:7b:6a:a2:d2:5b:df:e0:21:5e:3b:dc:30:75:e3:f0: 57:2f:f1:72:33:62:11:a8:e8:fb:1f:9c:77:1d:88:a6:71:82: 42:34:20:cb:cc:6a:be:27:fd:b7:e3:74:62:d2:2c:9c:ea:05: 1f:4c:7c:74:29:c0:aa:df:b5:df:bc:05:ae:a1:af:74:cc:18: 4b:39:a2:da:f7:a1:63:fd:8d:5c:ae:94:4c:20:76:35:7d:76: 97:66:1a:89 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYLGnrJRXXAyXrx5TUVBorp+mNzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQw MjVBNDE0ODAeFw0yNjA0MTYwOTQ2MDhaFw0yNjA0MTkxNTU0MDhaMDMxMTAvBgNV BAMTKDhEQkYwMEYzNzZCODNDOTdDQ0QxODdEQTBEMjgwMjIwOEMxNUMyMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlMhgn1JLXO36qKgfVhCSmJnN+ fbW112HIp0eSai0q1zUwFBj7XMKQNk5VE5vSh6VNpzG0AfVDMrsq/kH2HnL0/id3 jwFtKWPVrrJOPI/72mdUYt67HYal3jU46JpvGz9QlzvDIuUTIyg+n2TPnjpqTZZp y2INlpaHZjx7XtdYSCgUyGBTLRQUnb5N7yobyNB3hTRbzRRj4EdtdsBnL7Rvl2b7 truqM94SmiiKTH5IOYChQepEHwfznhfyCtAmhFah3xqZTIcO4gNJ0vKpIWXtlJkj nNoxwKQlG1o/kvzGzXWsXNmMDMknJvqjD55Y62Mo2rCnIw42ZH3972oyRborAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjb8A83a4PJfM0YfaDSgCIIwVwggwHwYDVR0j BBgwFoAUhlm+hQDeuzFESPFBL6HiZAJaQUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMC84NjU5QkU4NTAw REVCQjMxNDQ0OEYxNDEyRkExRTI2NDAyNUE0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUyNjQwMjVB NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJhNDhlNGUtZmM5NS00YWNmLWJl YWMtZDkzYTBmNjk0NDIxLzAvODY1OUJFODUwMERFQkIzMTQ0NDhGMTQxMkZBMUUy NjQwMjVBNDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFjX8C/AwPU8Npu0jKiSgjlResYTklHJUjrB XBWtedXh1quu5GHUh4Ec19nbWizWvSjiQyGH6TiGw04CvgftI/K9fXXvRvXbJJ8b IDTSflxq8VKYM+Y4iYMLxFVnM5hJJKKC1gmdG+W7uVABTzEU2Jt022MW6boPI6Y4 L4GYI93TFZj9sFpz2Tt1tUxUeMVLvkOrpbmErJ6Nwzg/5///oCsCUa3jgntqotJb 3+AhXjvcMHXj8Fcv8XIzYhGo6PsfnHcdiKZxgkI0IMvMar4n/bfjdGLSLJzqBR9M fHQpwKrftd+8Ba6hr3TMGEs5otr3oWP9jVyulEwgdjV9dpdmGok= -----END CERTIFICATE-----Generated at Fri Apr 17 23:07:18 2026 by rpki-client