$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: U6deMwJuqTHOM4ySV+dVy4LPoFmKXdeN0v7x7A4PAA0= Subject key identifier: C2:02:32:7D:0B:E4:A0:70:3A:ED:9E:3E:2F:AB:B9:F7:51:B2:76:44 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 6D90B26008A8A0272103D2BCF46127195CDF73CF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 0123 Signing time: Wed 15 Apr 2026 08:41:15 +0000 Manifest this update: Wed 15 Apr 2026 08:36:15 +0000 Manifest next update: Sat 18 Apr 2026 12:23:15 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: /XQcveyg4jv0OLVMXGF7RkM1OgqinZHYHqjopRTiyzg=) 2: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: eyJcLgwqfLDN5yf54+8qcXB3Eo84ClH1ySCmSpCcr34=) 3: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) 4: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: 0GOJFvh2rJlAOcPnlWKFJxiRfYO4SDfzA75xr/CrGB8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Apr 2026 12:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:90:b2:60:08:a8:a0:27:21:03:d2:bc:f4:61:27:19:5c:df:73:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Apr 15 08:36:15 2026 GMT Not After : Apr 18 12:23:15 2026 GMT Subject: CN=C202327D0BE4A0703AED9E3E2FABB9F751B27644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:23:f9:8e:51:45:42:c2:34:e5:78:d9:91:1e: e1:5e:99:bf:56:7c:b9:27:85:6c:ba:d5:a6:da:0d: 17:b6:3d:6d:37:2e:0d:6c:b7:9e:66:03:6e:50:3e: 9b:2b:83:aa:ee:7f:44:b5:61:23:7e:eb:85:7d:f7: 6e:4c:bc:9b:e5:ac:3d:59:64:8a:ec:87:b5:7c:9e: 72:53:fe:7e:47:59:e4:53:b3:ec:35:d4:52:a5:99: d7:24:b2:fb:93:c4:ff:71:aa:36:f2:df:2e:0d:0f: 52:4d:e3:f8:32:6e:27:6e:b3:54:5e:e9:c1:ca:a5: 9f:2c:1b:ee:0a:53:82:71:6d:7e:17:72:75:cf:23: 9c:79:85:7e:98:35:ab:e4:8b:b0:07:c9:e2:22:54: 30:2c:f7:d0:7d:d4:73:d7:6f:68:25:f4:25:f0:49: 1d:23:86:0f:34:b2:e9:22:47:d6:ac:ba:ae:c6:c1: 18:fa:84:81:66:e3:c8:3b:e7:5d:a7:7b:6a:41:1a: 9d:35:60:ff:14:44:90:33:1a:85:55:eb:2e:c6:fe: a3:71:21:1d:a2:a3:b9:20:e2:51:49:30:e9:c9:c1: 67:6d:e3:de:c0:ee:7c:c5:6b:d7:03:ac:c4:2a:cb: 23:91:aa:a3:c4:59:a9:e6:90:9a:29:14:5f:16:9f: 01:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:02:32:7D:0B:E4:A0:70:3A:ED:9E:3E:2F:AB:B9:F7:51:B2:76:44 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:0f:51:9b:6b:1d:ac:9c:63:e8:2f:79:34:f7:b7:30:cd:c0: 91:91:28:b3:1a:e3:01:14:63:94:85:97:c2:79:4e:02:f8:72: ad:ae:e5:7b:9b:94:85:91:c9:c7:e3:87:a7:28:18:96:09:b5: 4e:cd:25:89:6e:6d:b5:8c:b8:4c:70:c4:ef:70:56:ba:a3:7a: f8:f2:04:4a:ab:d8:1d:d8:4b:05:75:0a:57:ac:41:e5:90:fd: 53:de:78:c4:68:f5:89:a7:e5:70:e6:1c:e1:1a:df:8b:f5:05: d4:ce:3b:2d:3e:54:fa:49:93:90:56:3f:91:bb:d3:cd:58:79: 4e:c6:ca:dc:ce:ce:1e:5c:a7:25:75:e4:e2:86:a3:a0:52:7d: 24:3d:c5:80:af:c3:4e:24:35:5d:83:f7:13:0e:e2:41:de:81: e5:49:61:8b:99:df:83:25:db:48:0a:34:34:1f:9d:74:69:e7: 6a:66:de:02:28:c3:04:b5:d6:38:50:b7:c2:3f:12:0a:d7:55: c4:75:5b:f6:c4:9b:1f:76:b0:6c:28:f0:5d:0a:72:39:95:85: 7c:06:22:57:75:46:3e:0e:f4:e3:ba:c3:2b:ac:3f:8a:68:07: b3:25:45:31:82:cd:8f:aa:f0:35:57:67:ed:39:0c:1e:5b:33: f6:b9:52:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbZCyYAiooCchA9K89GEnGVzfc88wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNjA0MTUwODM2MTVaFw0yNjA0MTgxMjIzMTVaMDMxMTAvBgNV BAMTKEMyMDIzMjdEMEJFNEEwNzAzQUVEOUUzRTJGQUJCOUY3NTFCMjc2NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxI/mOUUVCwjTleNmRHuFemb9W fLknhWy61abaDRe2PW03Lg1st55mA25QPpsrg6ruf0S1YSN+64V9925MvJvlrD1Z ZIrsh7V8nnJT/n5HWeRTs+w11FKlmdcksvuTxP9xqjby3y4ND1JN4/gybidus1Re 6cHKpZ8sG+4KU4JxbX4XcnXPI5x5hX6YNavki7AHyeIiVDAs99B91HPXb2gl9CXw SR0jhg80sukiR9asuq7GwRj6hIFm48g7512ne2pBGp01YP8URJAzGoVV6y7G/qNx IR2io7kg4lFJMOnJwWdt497A7nzFa9cDrMQqyyORqqPEWanmkJopFF8WnwGnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwgIyfQvkoHA67Z4+L6u591GydkQwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADYPUZtrHaycY+gveTT3tzDNwJGRKLMa4wEU Y5SFl8J5TgL4cq2u5XublIWRycfjh6coGJYJtU7NJYlubbWMuExwxO9wVrqjevjy BEqr2B3YSwV1ClesQeWQ/VPeeMRo9Ymn5XDmHOEa34v1BdTOOy0+VPpJk5BWP5G7 081YeU7GytzOzh5cpyV15OKGo6BSfSQ9xYCvw04kNV2D9xMO4kHegeVJYYuZ34Ml 20gKNDQfnXRp52pm3gIowwS11jhQt8I/EgrXVcR1W/bEmx92sGwo8F0KcjmVhXwG Ild1Rj4O9OO6wyusP4poB7MlRTGCzY+q8DVXZ+05DB5bM/a5Ul0= -----END CERTIFICATE-----Generated at Fri Apr 17 12:21:29 2026 by rpki-client