$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: YKm14svDbxcMmHfZESmjvCCBqlCzGcenb4avJjrGM40= Subject key identifier: E5:E6:80:70:6A:64:B5:8D:A6:73:3B:09:A0:AC:66:B2:81:4E:30:8C Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 085648170BFFAEF14686A820A9E8F0029FDEC96B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 0348 Signing time: Fri 17 Apr 2026 06:41:00 +0000 Manifest this update: Fri 17 Apr 2026 06:36:00 +0000 Manifest next update: Mon 20 Apr 2026 11:42:00 +0000 Files and hashes: 1: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: ta8cyJGAuX8M5px06fD7ixeqP65bXdztJIzRgtjjUTw=) 2: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: uFvJDDnE+LzWscDNPWULjpdUKOX2mvB/YxTyjJbL490=) 3: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: DZhIHh+Q1/lFglHPCtQYtJARiOU+Khz/cuUC8LvdiAk=) 4: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: nmck+hEA5MDXyiBxg0irlq52KIYe4PNcrZN7erIcJHo=) 5: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: SaglbTs2Sm97iqGUTpHLhK4uFUxx2JxCBReDItgEQOA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 11:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:56:48:17:0b:ff:ae:f1:46:86:a8:20:a9:e8:f0:02:9f:de:c9:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Apr 17 06:36:00 2026 GMT Not After : Apr 20 11:42:00 2026 GMT Subject: CN=E5E680706A64B58DA6733B09A0AC66B2814E308C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2e:bf:1b:82:10:1b:e6:9f:c1:69:0e:45:b9: a1:cf:d5:f2:47:16:b2:55:64:17:63:da:cd:37:48: a3:91:71:4a:9d:b8:0b:36:50:28:9d:46:61:f2:79: e3:2f:cb:65:b9:a3:d1:0c:34:80:5d:aa:7f:0b:bb: 52:20:e8:9d:41:b6:c3:14:d2:56:ee:9e:4c:a7:37: e2:e9:09:c1:8a:ac:e2:c8:65:eb:dd:9f:57:a9:8c: ad:35:17:d1:c1:7d:30:b7:60:da:59:e6:92:b5:2e: 8c:cb:6f:73:11:90:f7:fa:b8:ba:74:c4:8e:7f:6d: 09:36:77:37:d4:2b:ab:2d:1a:a0:89:09:d3:16:19: 08:84:17:e1:78:32:ba:6d:10:54:38:28:af:1b:c6: 72:7a:bb:70:e1:79:9e:aa:eb:dd:41:b2:cc:fd:49: 1c:50:c9:e4:09:89:7f:8b:8d:c8:94:e3:35:6e:a7: a3:03:9e:ba:9d:79:42:39:8f:48:12:34:98:12:27: 14:87:71:c0:fe:f1:f7:56:51:de:26:74:14:9a:43: 90:76:07:94:f3:38:af:24:dd:ca:a0:26:5c:71:ab: 8d:7b:07:66:49:fb:ce:73:f0:99:0f:d2:9b:01:8c: be:c6:36:58:93:25:56:6b:9d:bc:16:8b:60:28:7b: 6d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E6:80:70:6A:64:B5:8D:A6:73:3B:09:A0:AC:66:B2:81:4E:30:8C X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:1f:bb:ed:d8:59:50:a4:89:06:31:65:dd:47:d5:da:b7:f4: c2:15:72:56:6e:7b:67:de:15:be:63:ec:7e:58:4d:61:21:9a: 84:27:bf:8b:27:53:d1:34:e5:02:9f:55:48:09:c0:b8:22:15: 2f:f5:9f:7f:a2:dd:37:8c:aa:df:ec:49:ff:9d:5b:be:ad:d1: 46:d2:51:13:41:3f:f9:46:fc:9b:f4:96:23:5e:b6:52:bd:96: 27:fb:f1:a3:74:cd:95:1b:61:fb:26:49:cd:f9:6f:95:a8:89: 17:2a:43:37:5d:4e:ce:27:62:f1:4b:a9:64:1c:d3:f7:c7:b4: 07:24:13:aa:a7:a8:b8:78:ae:5f:05:ca:f1:dd:4c:d4:65:1a: 05:de:45:f8:45:e8:5f:7a:ad:63:f2:29:18:29:6c:54:17:c4: e0:ea:67:a0:a9:6a:12:ce:14:f0:85:69:02:c5:d9:1d:74:ae: c7:1d:f0:56:e1:32:a1:ba:13:36:29:1d:09:84:57:61:bc:8d: 57:15:a0:9d:2e:3b:0c:94:03:9d:4f:dd:54:91:46:f0:5c:07: c6:58:5f:63:69:44:cd:da:49:31:dc:80:e5:64:44:ea:85:68: 1c:31:89:bf:77:87:15:6f:c7:25:8c:e0:34:0b:30:c0:39:55: 8a:e2:bf:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCFZIFwv/rvFGhqggqejwAp/eyWswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNjA0MTcwNjM2MDBaFw0yNjA0MjAxMTQyMDBaMDMxMTAvBgNV BAMTKEU1RTY4MDcwNkE2NEI1OERBNjczM0IwOUEwQUM2NkIyODE0RTMwOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6Lr8bghAb5p/BaQ5FuaHP1fJH FrJVZBdj2s03SKORcUqduAs2UCidRmHyeeMvy2W5o9EMNIBdqn8Lu1Ig6J1BtsMU 0lbunkynN+LpCcGKrOLIZevdn1epjK01F9HBfTC3YNpZ5pK1LozLb3MRkPf6uLp0 xI5/bQk2dzfUK6stGqCJCdMWGQiEF+F4MrptEFQ4KK8bxnJ6u3DheZ6q691Bssz9 SRxQyeQJiX+LjciU4zVup6MDnrqdeUI5j0gSNJgSJxSHccD+8fdWUd4mdBSaQ5B2 B5TzOK8k3cqgJlxxq417B2ZJ+85z8JkP0psBjL7GNliTJVZrnbwWi2Aoe21/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5eaAcGpktY2mczsJoKxmsoFOMIwwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFMfu+3YWVCkiQYxZd1H1dq39MIVclZue2fe Fb5j7H5YTWEhmoQnv4snU9E05QKfVUgJwLgiFS/1n3+i3TeMqt/sSf+dW76t0UbS URNBP/lG/Jv0liNetlK9lif78aN0zZUbYfsmSc35b5WoiRcqQzddTs4nYvFLqWQc 0/fHtAckE6qnqLh4rl8FyvHdTNRlGgXeRfhF6F96rWPyKRgpbFQXxODqZ6CpahLO FPCFaQLF2R10rscd8FbhMqG6EzYpHQmEV2G8jVcVoJ0uOwyUA51P3VSRRvBcB8ZY X2NpRM3aSTHcgOVkROqFaBwxib93hxVvxyWM4DQLMMA5VYriv+0= -----END CERTIFICATE-----Generated at Fri Apr 17 16:17:38 2026 by rpki-client