$ rpki-client -vvf repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft File: 85735A4922D529215199E6F4D6829DF68512E117.mft (raw, json) Hash identifier: UWWMpzeW85LO4eLFj3dEuBtj4QnqBeROjsXZvrfAyuM= Subject key identifier: 42:EA:8E:70:95:E3:0E:92:E5:BB:FA:C8:5A:83:42:26:E6:38:62:D1 Authority key identifier: 85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 Certificate issuer: /CN=85735A4922D529215199E6F4D6829DF68512E117 Certificate serial: 38D58BBFFA2B9CAE36432AA5CF426EACF992FC1E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft Manifest number: 0143 Signing time: Tue 21 Apr 2026 16:52:40 +0000 Manifest this update: Tue 21 Apr 2026 16:47:40 +0000 Manifest next update: Fri 24 Apr 2026 17:41:40 +0000 Files and hashes: 1: 85735A4922D529215199E6F4D6829DF68512E117.crl (hash: 9nOL26SqZi98921tJWAmb0GxtSQJvo1UJDb4PHPr/6I=) 2: 3135372e36362e33342e302f32332d3234203d3e203535363838.roa (hash: XHVllAX/UXDKrZwLLYWAgUneaiPswSM3kgLSE6ruL6s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 13:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:d5:8b:bf:fa:2b:9c:ae:36:43:2a:a5:cf:42:6e:ac:f9:92:fc:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85735A4922D529215199E6F4D6829DF68512E117 Validity Not Before: Apr 21 16:47:40 2026 GMT Not After : Apr 24 17:41:40 2026 GMT Subject: CN=42EA8E7095E30E92E5BBFAC85A834226E63862D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9a:a1:45:09:9c:04:63:d1:47:1a:2d:aa:6a: d6:ce:08:1b:72:bc:c3:31:f3:1f:9e:44:ee:6d:b5: de:32:23:ce:41:6a:ef:c7:eb:40:19:ff:78:44:d2: 8f:c9:f7:10:3b:29:fe:95:20:e3:85:b6:d4:f9:2b: c4:9f:7f:98:15:0d:87:41:e4:8c:33:97:27:31:5f: 71:f2:ae:ce:f3:95:31:1f:b0:ca:a9:88:6e:1b:2a: 29:33:59:49:c1:aa:2c:af:9b:37:26:cf:8e:c8:42: fd:68:5e:15:35:a2:ae:d5:d5:65:6c:cd:e0:34:8c: af:f9:d9:3b:43:79:ce:e6:55:e4:42:a2:27:19:78: 0e:11:eb:bc:74:b7:3e:63:4d:9d:dd:a9:46:fa:b0: 66:b1:68:a7:d1:e6:82:b3:fe:2f:56:2f:d4:d2:b7: 98:bd:d6:47:d6:fd:dd:70:21:b5:1f:97:6c:af:9e: 7e:bc:01:4a:1e:e4:71:b0:be:ac:5c:35:23:c0:b9: c7:f7:1f:d2:6e:a3:e4:19:48:62:f2:84:1d:87:e4: f5:2f:c2:4e:3d:96:cb:b9:c4:57:23:20:90:f1:f6: 38:ce:a2:1f:08:9d:10:d2:a2:85:bf:e1:02:57:80: 53:9c:b5:2e:cc:82:ff:44:7e:c9:0e:1c:7d:0d:b0: 1a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EA:8E:70:95:E3:0E:92:E5:BB:FA:C8:5A:83:42:26:E6:38:62:D1 X509v3 Authority Key Identifier: keyid:85:73:5A:49:22:D5:29:21:51:99:E6:F4:D6:82:9D:F6:85:12:E1:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/85735A4922D529215199E6F4D6829DF68512E117.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c3e68bd-b04c-4d35-8020-02936342fb1d/0/85735A4922D529215199E6F4D6829DF68512E117.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:b6:1f:ed:c9:c2:31:d5:c5:81:1e:6a:ed:f9:83:7b:0e:e8: c1:08:42:ac:73:87:91:8b:39:89:54:33:52:c0:97:cd:da:25: db:eb:ed:ef:17:7f:6f:d0:5e:c2:7e:b8:6e:46:75:73:45:59: 4d:9a:40:5d:a4:7d:56:d4:10:67:6d:92:1a:b3:18:7d:74:3e: ab:ab:79:34:0e:55:66:d9:27:56:6b:ae:40:b3:05:5a:7e:de: 54:82:cb:fc:4d:5a:b7:2c:f7:78:87:d6:5c:72:02:56:c6:c1: e8:77:d3:17:97:b0:06:22:e6:a0:ea:df:f4:a0:34:66:79:3e: a5:0c:f7:3a:d4:b7:56:d3:5a:b2:64:25:8c:da:c8:34:0a:4b: 93:fa:49:3f:92:7f:c7:ea:d5:67:10:d9:5b:a6:b7:af:ee:32: 87:dd:39:6d:74:fe:6c:f8:87:31:45:ae:f0:7c:80:82:1b:9d: 4d:04:e7:ff:9f:2f:c9:1b:3a:62:f8:d8:43:e8:26:7e:72:9e: aa:ef:11:eb:f5:42:ec:05:43:9f:51:4c:42:3a:f6:e2:8a:f4: 2e:bb:58:24:5f:fc:03:21:fa:b4:9a:32:f2:02:6f:32:14:7a: 6f:10:f0:3c:a2:8e:6f:12:35:66:b6:73:97:49:29:2b:f1:58: af:54:74:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUONWLv/ornK42Qyqlz0JurPmS/B4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4 NTEyRTExNzAeFw0yNjA0MjExNjQ3NDBaFw0yNjA0MjQxNzQxNDBaMDMxMTAvBgNV BAMTKDQyRUE4RTcwOTVFMzBFOTJFNUJCRkFDODVBODM0MjI2RTYzODYyRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClmqFFCZwEY9FHGi2qatbOCBty vMMx8x+eRO5ttd4yI85Bau/H60AZ/3hE0o/J9xA7Kf6VIOOFttT5K8Sff5gVDYdB 5IwzlycxX3Hyrs7zlTEfsMqpiG4bKikzWUnBqiyvmzcmz47IQv1oXhU1oq7V1WVs zeA0jK/52TtDec7mVeRCoicZeA4R67x0tz5jTZ3dqUb6sGaxaKfR5oKz/i9WL9TS t5i91kfW/d1wIbUfl2yvnn68AUoe5HGwvqxcNSPAucf3H9Juo+QZSGLyhB2H5PUv wk49lsu5xFcjIJDx9jjOoh8InRDSooW/4QJXgFOctS7Mgv9EfskOHH0NsBoPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQuqOcJXjDpLlu/rIWoNCJuY4YtEwHwYDVR0j BBgwFoAUhXNaSSLVKSFRmeb01oKd9oUS4RcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzNlNjhiZC1iMDRjLTRkMzUtODAyMC0wMjkzNjM0MmZiMWQvMC84NTczNUE0OTIy RDUyOTIxNTE5OUU2RjRENjgyOURGNjg1MTJFMTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlERjY4NTEy RTExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2MzZTY4YmQtYjA0Yy00ZDM1LTgw MjAtMDI5MzYzNDJmYjFkLzAvODU3MzVBNDkyMkQ1MjkyMTUxOTlFNkY0RDY4MjlE RjY4NTEyRTExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE+2H+3JwjHVxYEeau35g3sO6MEIQqxzh5GL OYlUM1LAl83aJdvr7e8Xf2/QXsJ+uG5GdXNFWU2aQF2kfVbUEGdtkhqzGH10Pqur eTQOVWbZJ1ZrrkCzBVp+3lSCy/xNWrcs93iH1lxyAlbGweh30xeXsAYi5qDq3/Sg NGZ5PqUM9zrUt1bTWrJkJYzayDQKS5P6ST+Sf8fq1WcQ2Vumt6/uMofdOW10/mz4 hzFFrvB8gIIbnU0E5/+fL8kbOmL42EPoJn5ynqrvEev1QuwFQ59RTEI69uKK9C67 WCRf/AMh+rSaMvICbzIUem8Q8Dyijm8SNWa2c5dJKSvxWK9UdEM= -----END CERTIFICATE-----Generated at Wed Apr 22 04:53:56 2026 by rpki-client