$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: itpxZof54YneJUThzBldpfMr3B6v1ywdoPmi6aviE5g= Subject key identifier: 79:C2:67:79:E3:35:09:D8:B3:53:60:2F:45:CB:54:FA:2F:68:6C:EA Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 453BF3100CE1D93B7D60AF37EC3A71A6240BC3A8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: 0166 Signing time: Tue 21 Apr 2026 09:00:00 +0000 Manifest this update: Tue 21 Apr 2026 08:55:00 +0000 Manifest next update: Fri 24 Apr 2026 20:55:00 +0000 Files and hashes: 1: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: WiWW7gv0ImmklDxpL8+u+OiyHYYF7hG10cBPLy5zJ+s=) 2: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: SUamCO6hFRRECd6YOsV3frJr4xTHA6yMIWiVBv2Urhg=) 3: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: aAScp8IjqsY2CuVPSrU8aKaQppxc8AjfgFBueh9FUNg=) 4: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: s2utPuT9/Rrfn+3q49rkE18sSG/2dm9VSsVmVu4LpF4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 13:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:3b:f3:10:0c:e1:d9:3b:7d:60:af:37:ec:3a:71:a6:24:0b:c3:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Apr 21 08:55:00 2026 GMT Not After : Apr 24 20:55:00 2026 GMT Subject: CN=79C26779E33509D8B353602F45CB54FA2F686CEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:42:4c:58:a9:4f:d2:99:c6:fd:1d:07:34:b2: d3:1c:7b:a7:2c:96:32:34:7c:0a:c0:de:99:c6:2e: 1b:b0:1b:df:b8:87:09:06:23:75:98:49:04:9b:b2: 79:88:2c:d1:68:ab:ef:01:e3:3c:f4:82:cf:72:fe: c8:f2:87:a1:9b:ad:f8:db:f0:7a:35:4d:2a:45:1c: ca:ac:70:46:36:9a:27:c9:2c:39:6f:b0:06:26:a9: 1e:80:90:f4:bd:cc:01:7e:d2:54:81:37:4a:a9:87: 4b:e1:50:ae:04:44:eb:1a:57:9f:59:30:81:77:0b: fa:26:28:7a:e9:42:d5:35:6f:70:3e:88:8c:3c:48: e9:c7:cb:40:fd:b3:d3:21:bd:95:69:5c:18:2c:66: dd:aa:33:30:81:9d:59:15:83:bd:c8:24:45:e5:ca: 6f:e5:2b:57:d7:29:4c:14:9a:b0:d7:d5:eb:4e:d9: 18:a7:00:40:ec:35:a4:77:70:ec:2a:96:35:a1:81: 4f:9f:ba:74:94:0a:e8:bb:86:57:05:c8:23:f8:e9: 6c:15:ef:91:04:7a:ab:25:c5:1a:be:ea:6c:5f:62: 06:6b:2b:81:b3:38:47:03:7e:ff:77:0a:0d:d5:10: d8:f5:e3:7c:7d:96:6d:ef:94:47:2f:5a:1f:af:91: 13:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C2:67:79:E3:35:09:D8:B3:53:60:2F:45:CB:54:FA:2F:68:6C:EA X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:03:37:70:0a:0b:ed:8a:03:29:72:12:e0:c9:76:19:69:25: c2:41:c0:ca:c5:4f:b4:c4:a1:47:46:51:05:7b:9b:23:3f:4b: 25:b8:b3:a1:67:f9:09:2c:1f:9f:1a:16:70:f6:de:93:52:1e: e8:51:08:75:a3:3c:ba:25:b9:4f:5f:ef:6e:14:2c:9c:aa:9a: e7:1f:b7:8a:fa:bd:6a:23:d1:08:98:5f:1e:aa:e2:dc:12:6e: 3d:56:37:de:4e:2f:f0:89:62:b0:6f:aa:a1:c7:2a:66:08:63: d4:ec:64:a1:03:78:41:d8:ba:39:a2:eb:fd:51:e2:62:99:1b: 80:f9:32:97:b2:fd:e9:99:ee:fa:4c:5e:f8:32:ee:dc:7f:a3: 61:35:15:ad:1b:2d:2d:cf:94:bc:06:f4:7e:fb:35:f8:f6:02: 43:5d:bb:e3:d2:f4:aa:d3:2b:7e:8d:23:2e:2f:f5:7c:94:f5: 2e:d3:d7:ca:91:58:82:b4:c7:5d:f4:09:1d:38:9c:32:34:30: 21:57:0c:de:84:85:a5:d7:f9:5a:45:23:38:6c:41:ac:28:e4: 7b:12:56:5a:54:a9:a2:0d:9e:4e:2c:77:10:28:d4:58:00:a1: f2:eb:13:25:ed:09:b6:be:97:0c:c0:d5:ed:f4:5e:aa:e7:78: 82:83:a2:e9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURTvzEAzh2Tt9YK837DpxpiQLw6gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNjA0MjEwODU1MDBaFw0yNjA0MjQyMDU1MDBaMDMxMTAvBgNV BAMTKDc5QzI2Nzc5RTMzNTA5RDhCMzUzNjAyRjQ1Q0I1NEZBMkY2ODZDRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCQkxYqU/Smcb9HQc0stMce6cs ljI0fArA3pnGLhuwG9+4hwkGI3WYSQSbsnmILNFoq+8B4zz0gs9y/sjyh6Gbrfjb 8Ho1TSpFHMqscEY2mifJLDlvsAYmqR6AkPS9zAF+0lSBN0qph0vhUK4EROsaV59Z MIF3C/omKHrpQtU1b3A+iIw8SOnHy0D9s9MhvZVpXBgsZt2qMzCBnVkVg73IJEXl ym/lK1fXKUwUmrDX1etO2RinAEDsNaR3cOwqljWhgU+funSUCui7hlcFyCP46WwV 75EEeqslxRq+6mxfYgZrK4GzOEcDfv93Cg3VENj143x9lm3vlEcvWh+vkRM7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUecJneeM1CdizU2AvRctU+i9obOowHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEMDN3AKC+2KAylyEuDJdhlpJcJBwMrFT7TE oUdGUQV7myM/SyW4s6Fn+QksH58aFnD23pNSHuhRCHWjPLoluU9f724ULJyqmucf t4r6vWoj0QiYXx6q4twSbj1WN95OL/CJYrBvqqHHKmYIY9TsZKEDeEHYujmi6/1R 4mKZG4D5Mpey/emZ7vpMXvgy7tx/o2E1Fa0bLS3PlLwG9H77Nfj2AkNdu+PS9KrT K36NIy4v9XyU9S7T18qRWIK0x130CR04nDI0MCFXDN6EhaXX+VpFIzhsQawo5HsS VlpUqaINnk4sdxAo1FgAofLrEyXtCba+lwzA1e30XqrneIKDouk= -----END CERTIFICATE-----Generated at Wed Apr 22 04:53:54 2026 by rpki-client