$ rpki-client -vvf repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft File: 99A17325620A243689E32E6074D5CFCA91D915EB.mft (raw, json) Hash identifier: 2oowR59d433Dk648Qw/e09ECh6hAZE+hp4dD1MFa/mE= Subject key identifier: 6B:35:B2:AF:F8:5D:D7:BE:3D:A3:7D:13:3A:92:7E:3E:61:77:C4:6E Authority key identifier: 99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB Certificate issuer: /CN=99A17325620A243689E32E6074D5CFCA91D915EB Certificate serial: 4F2669B6062258D10B32D3CFBA2E49B7A84ABCD0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft Manifest number: 0152 Signing time: Wed 22 Apr 2026 01:32:01 +0000 Manifest this update: Wed 22 Apr 2026 01:27:01 +0000 Manifest next update: Sat 25 Apr 2026 13:13:01 +0000 Files and hashes: 1: 3135372e32302e3135362e302f32332d3234203d3e20313532343131.roa (hash: 4ExRW8SIxPfkw+kC/9gMRffVKwpQRwRaUKan/meBEX4=) 2: 99A17325620A243689E32E6074D5CFCA91D915EB.crl (hash: tVRY424Zj2FksPCda14CeZzvAEtjEShRocZeVgbhWns=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 13:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:26:69:b6:06:22:58:d1:0b:32:d3:cf:ba:2e:49:b7:a8:4a:bc:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99A17325620A243689E32E6074D5CFCA91D915EB Validity Not Before: Apr 22 01:27:01 2026 GMT Not After : Apr 25 13:13:01 2026 GMT Subject: CN=6B35B2AFF85DD7BE3DA37D133A927E3E6177C46E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f5:a9:1d:e3:d2:8f:ae:7d:bd:8f:b6:61:f9: 7e:20:4a:e3:a9:56:7e:a3:98:98:f0:c1:65:5d:45: f1:ed:51:28:65:c8:98:40:19:f1:86:e2:10:d5:a7: df:6d:8b:b4:32:93:93:f9:30:26:38:80:d2:cc:70: 08:54:d1:07:99:fb:2a:0b:2e:19:49:f3:58:c5:53: e4:62:50:01:6e:3e:ea:07:35:40:a4:41:f9:56:5b: 2a:6f:ff:87:5f:bd:18:6b:40:c4:66:28:90:7f:87: 72:21:7d:38:e5:42:54:71:35:08:dd:6b:72:72:1f: 0a:48:e2:fb:85:de:19:79:0b:34:9e:1e:ee:56:97: 01:44:de:ab:24:d6:95:0a:cc:40:07:31:cf:39:9a: c3:36:8f:0e:15:1c:6a:37:41:c0:4d:e0:15:f9:c2: a5:5e:1b:e8:33:dd:66:f6:04:47:69:76:13:e6:b5: 30:9e:46:85:f9:97:f3:5f:5c:61:f4:b9:63:0a:03: 33:88:81:b6:a4:96:56:d9:46:71:38:73:55:e8:d6: e9:a1:3e:96:5c:cc:fc:9f:88:35:29:63:81:b0:61: 9d:9c:ea:31:af:9f:ef:26:b5:a3:be:0b:b6:60:c6: 5b:1e:f1:54:62:ab:05:5e:6f:41:11:80:df:e2:84: e9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:35:B2:AF:F8:5D:D7:BE:3D:A3:7D:13:3A:92:7E:3E:61:77:C4:6E X509v3 Authority Key Identifier: keyid:99:A1:73:25:62:0A:24:36:89:E3:2E:60:74:D5:CF:CA:91:D9:15:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/99A17325620A243689E32E6074D5CFCA91D915EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d59b822-5c08-46f1-b25e-758dc18e9905/0/99A17325620A243689E32E6074D5CFCA91D915EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:90:15:70:3c:9b:f0:c3:17:c5:f7:c3:0a:6d:89:80:26:8f: 5e:cf:88:59:84:49:8f:11:5c:fb:98:df:5c:74:a1:45:94:7a: 4a:73:b4:72:ee:cb:19:01:8e:e4:7d:97:1e:58:cc:4c:8f:de: 14:24:e9:e4:96:85:91:56:de:55:58:c8:b3:67:e2:fa:f8:b1: ba:6f:89:37:43:f7:c9:5d:3f:7a:dd:11:d0:6f:9c:a5:92:eb: 2b:40:ab:da:7b:e6:53:b3:fd:26:6f:55:30:75:69:2b:d2:11: 9b:5d:58:4c:16:95:70:09:fd:0a:27:f8:9e:7a:14:5a:d3:8a: 54:ac:c7:91:19:15:18:93:fd:03:82:d6:53:34:db:32:a0:d3: 71:d4:49:71:ec:bc:6e:bf:11:08:17:64:e2:2d:3a:8c:94:13: 89:48:33:a7:b7:35:86:b6:12:ba:83:e2:52:00:dd:0d:5d:44: 79:57:01:af:c7:8b:25:b0:83:97:34:90:49:8d:d0:21:48:ec: 50:d1:c2:76:26:e8:d0:cb:49:a2:26:5e:21:09:df:20:70:5e: bc:bf:cd:0e:c8:6b:7a:5b:39:2c:ea:59:4a:56:a9:38:81:9e: 51:e4:45:f5:52:f8:fb:a9:f0:73:f6:3e:6c:f7:fa:48:40:72: bc:d9:25:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTyZptgYiWNELMtPPui5Jt6hKvNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5 MUQ5MTVFQjAeFw0yNjA0MjIwMTI3MDFaFw0yNjA0MjUxMzEzMDFaMDMxMTAvBgNV BAMTKDZCMzVCMkFGRjg1REQ3QkUzREEzN0QxMzNBOTI3RTNFNjE3N0M0NkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv9akd49KPrn29j7Zh+X4gSuOp Vn6jmJjwwWVdRfHtUShlyJhAGfGG4hDVp99ti7Qyk5P5MCY4gNLMcAhU0QeZ+yoL LhlJ81jFU+RiUAFuPuoHNUCkQflWWypv/4dfvRhrQMRmKJB/h3IhfTjlQlRxNQjd a3JyHwpI4vuF3hl5CzSeHu5WlwFE3qsk1pUKzEAHMc85msM2jw4VHGo3QcBN4BX5 wqVeG+gz3Wb2BEdpdhPmtTCeRoX5l/NfXGH0uWMKAzOIgbakllbZRnE4c1Xo1umh PpZczPyfiDUpY4GwYZ2c6jGvn+8mtaO+C7Zgxlse8VRiqwVeb0ERgN/ihOntAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUazWyr/hd1749o30TOpJ+PmF3xG4wHwYDVR0j BBgwFoAUmaFzJWIKJDaJ4y5gdNXPypHZFeswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZDU5YjgyMi01YzA4LTQ2ZjEtYjI1ZS03NThkYzE4ZTk5MDUvMC85OUExNzMyNTYy MEEyNDM2ODlFMzJFNjA3NEQ1Q0ZDQTkxRDkxNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNGQ0E5MUQ5 MTVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWQ1OWI4MjItNWMwOC00NmYxLWIy NWUtNzU4ZGMxOGU5OTA1LzAvOTlBMTczMjU2MjBBMjQzNjg5RTMyRTYwNzRENUNG Q0E5MUQ5MTVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGSQFXA8m/DDF8X3wwptiYAmj17PiFmESY8R XPuY31x0oUWUekpztHLuyxkBjuR9lx5YzEyP3hQk6eSWhZFW3lVYyLNn4vr4sbpv iTdD98ldP3rdEdBvnKWS6ytAq9p75lOz/SZvVTB1aSvSEZtdWEwWlXAJ/Qon+J56 FFrTilSsx5EZFRiT/QOC1lM02zKg03HUSXHsvG6/EQgXZOItOoyUE4lIM6e3NYa2 ErqD4lIA3Q1dRHlXAa/HiyWwg5c0kEmN0CFI7FDRwnYm6NDLSaImXiEJ3yBwXry/ zQ7Ia3pbOSzqWUpWqTiBnlHkRfVS+Pup8HP2Pmz3+khAcrzZJVE= -----END CERTIFICATE-----Generated at Wed Apr 22 04:54:19 2026 by rpki-client