$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: 47ZJMl2fZh2ECHTxwl2t/y8i2q6lkt8lWcjPPl0vQNc= Subject key identifier: 0B:38:37:AA:8E:53:77:4E:55:61:7A:DC:AB:D8:00:EA:2E:47:27:CA Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 0A5F74F2A635590CA5B09F0F5C8845C593179956 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 0143 Signing time: Mon 20 Apr 2026 22:51:13 +0000 Manifest this update: Mon 20 Apr 2026 22:46:13 +0000 Manifest next update: Fri 24 Apr 2026 06:02:13 +0000 Files and hashes: 1: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) 2: 3135372e32302e34352e302f32342d3234203d3e20313532333932.roa (hash: O5uJEpO5oilAXqiR31tNYgCroCKbL1/bMOK5Er+Qs0U=) 3: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: CYtfGPT0fR+E8ccH29H2zEBQsTsyfThyYH+a3pZcCCg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 06:02:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:5f:74:f2:a6:35:59:0c:a5:b0:9f:0f:5c:88:45:c5:93:17:99:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Apr 20 22:46:13 2026 GMT Not After : Apr 24 06:02:13 2026 GMT Subject: CN=0B3837AA8E53774E55617ADCABD800EA2E4727CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f6:9e:48:37:92:40:60:fb:14:10:04:ff:48: cd:2f:c2:39:19:00:cd:74:e9:57:f7:36:d9:e3:63: 80:64:c3:f5:48:7c:04:6d:4a:72:62:67:37:72:dc: a0:28:5f:3b:17:a1:e5:68:f3:5e:42:a0:18:85:55: 7f:cf:58:01:7b:25:d5:91:4e:33:6a:4f:35:73:66: 43:98:41:58:b7:cb:54:c7:21:d5:d2:0e:ae:bd:64: 5c:55:70:15:27:67:18:4a:e5:11:0c:46:d8:18:ab: a9:e7:d8:9e:3d:bb:99:9a:ae:94:5f:3f:51:4c:28: 5b:cc:e7:ee:32:b3:ef:a2:a5:da:05:91:1a:f7:a1: fa:cc:a9:78:33:38:6d:eb:58:0c:04:d7:20:a6:00: 6e:b6:ef:83:a6:37:51:04:21:ef:a3:e2:6a:a7:d6: 20:2c:92:c2:57:5a:fb:f6:4e:51:c0:aa:0f:f4:0c: 16:11:87:5b:55:3a:fb:50:83:97:30:e9:5c:e7:98: 1b:10:27:a1:99:26:38:ea:a3:fb:0b:38:ac:7b:d9: 73:38:46:9c:b4:b3:5a:e5:14:a2:fb:c4:85:57:66: ba:44:3e:d8:13:cd:15:32:b3:4c:12:e6:0f:df:0e: db:e3:7a:4a:d8:35:a7:dc:dc:76:bb:80:95:7a:46: 7b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:38:37:AA:8E:53:77:4E:55:61:7A:DC:AB:D8:00:EA:2E:47:27:CA X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ea:4c:be:09:f0:a1:d3:76:93:e1:de:0a:c2:87:33:73:39: 66:ee:be:c6:24:66:79:bb:be:0d:89:95:1d:53:bf:c9:b4:e2: 0b:c8:d8:5e:98:e4:fd:e2:8f:30:41:41:db:41:72:80:a0:b3: a2:74:f7:b6:00:26:19:7b:30:81:b3:67:55:3e:55:16:e5:05: cb:09:82:1b:e8:f1:90:63:f3:66:60:16:6d:ab:b9:2a:71:d8: 43:dd:38:43:ab:d8:50:ee:d1:ad:fb:4d:a4:02:08:13:87:5c: 77:e7:81:d6:f7:29:44:46:48:ff:42:b0:97:6e:e3:a2:6e:1b: 6c:0b:3e:89:8d:f0:56:c4:9a:cc:db:a3:ce:db:88:66:f4:53: 0a:cd:cd:2b:6d:1e:7e:a7:f5:63:58:37:95:3e:93:23:c3:d6: 51:fa:10:66:5c:a3:d3:24:10:7c:a0:d4:23:32:42:3c:bd:9e: e1:a5:46:a2:7a:5e:cb:ed:4d:5d:74:ac:df:a2:5f:b0:73:f4: 95:f9:45:c5:99:b4:c0:31:22:f9:a6:58:56:2b:8b:ad:d6:c1: 5e:e7:a1:a7:3b:02:61:7b:9f:3b:a4:11:4d:ac:ee:35:b8:5f: 41:0f:a3:09:49:51:50:ec:13:aa:23:3e:50:0a:26:ea:2d:ac: 54:34:fe:e4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCl908qY1WQylsJ8PXIhFxZMXmVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNjA0MjAyMjQ2MTNaFw0yNjA0MjQwNjAyMTNaMDMxMTAvBgNV BAMTKDBCMzgzN0FBOEU1Mzc3NEU1NTYxN0FEQ0FCRDgwMEVBMkU0NzI3Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC49p5IN5JAYPsUEAT/SM0vwjkZ AM106Vf3NtnjY4Bkw/VIfARtSnJiZzdy3KAoXzsXoeVo815CoBiFVX/PWAF7JdWR TjNqTzVzZkOYQVi3y1THIdXSDq69ZFxVcBUnZxhK5REMRtgYq6nn2J49u5marpRf P1FMKFvM5+4ys++ipdoFkRr3ofrMqXgzOG3rWAwE1yCmAG6274OmN1EEIe+j4mqn 1iAsksJXWvv2TlHAqg/0DBYRh1tVOvtQg5cw6VznmBsQJ6GZJjjqo/sLOKx72XM4 Rpy0s1rlFKL7xIVXZrpEPtgTzRUys0wS5g/fDtvjekrYNafc3Ha7gJV6RnvNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCzg3qo5Td05VYXrcq9gA6i5HJ8owHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE3qTL4J8KHTdpPh3grChzNzOWbuvsYkZnm7 vg2JlR1Tv8m04gvI2F6Y5P3ijzBBQdtBcoCgs6J097YAJhl7MIGzZ1U+VRblBcsJ ghvo8ZBj82ZgFm2ruSpx2EPdOEOr2FDu0a37TaQCCBOHXHfngdb3KURGSP9CsJdu 46JuG2wLPomN8FbEmszbo87biGb0UwrNzSttHn6n9WNYN5U+kyPD1lH6EGZco9Mk EHyg1CMyQjy9nuGlRqJ6XsvtTV10rN+iX7Bz9JX5RcWZtMAxIvmmWFYri63WwV7n oac7AmF7nzukEU2s7jW4X0EPowlJUVDsE6ojPlAKJuotrFQ0/uQ= -----END CERTIFICATE-----Generated at Wed Apr 22 04:53:54 2026 by rpki-client