$ rpki-client -vvf repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft File: BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft (raw, json) Hash identifier: 8Ka+JK7aEpoguiaSY/X9g4x3uw8wIYMYoeRuDalAPio= Subject key identifier: C5:D6:27:C0:A7:F0:00:09:DA:4C:26:82:75:62:95:A3:87:8C:9E:A9 Authority key identifier: BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB Certificate issuer: /CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Certificate serial: 56E9BF81DE7DE71ED5E148CD57076B67C1916F8E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft Manifest number: E6 Signing time: Mon 20 Apr 2026 08:01:21 +0000 Manifest this update: Mon 20 Apr 2026 07:56:21 +0000 Manifest next update: Thu 23 Apr 2026 15:40:21 +0000 Files and hashes: 1: 3136302e32322e39322e302f32342d3234203d3e20313532383335.roa (hash: +o6+ngIFA4hU6bMKlAFkTNxS1BaRiBEB0UhCbvig7rE=) 2: 3136302e32322e39332e302f32342d3234203d3e20313532383335.roa (hash: SeJIZiTXDjba/24vDFwUassgzTgVWzwJ94ejAOzdpPE=) 3: BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl (hash: nUkO3fXyZyX04+ushEO8UR+Y26YjZfD1+fwdaiP6VU0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 15:40:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:e9:bf:81:de:7d:e7:1e:d5:e1:48:cd:57:07:6b:67:c1:91:6f:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Validity Not Before: Apr 20 07:56:21 2026 GMT Not After : Apr 23 15:40:21 2026 GMT Subject: CN=C5D627C0A7F00009DA4C2682756295A3878C9EA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:60:79:5f:30:08:26:fc:23:2d:51:1f:f6:24: 05:88:2b:4b:7b:f5:3b:c1:de:ed:bc:03:d8:ca:bb: 98:ec:5e:d0:86:e8:9b:7e:a6:5f:2a:16:0e:c4:3e: 11:b1:8d:99:4a:1a:a2:90:4d:cc:be:ce:f0:60:f4: fb:51:dc:a7:ee:25:60:7f:2e:4b:d5:16:02:35:ec: f3:45:36:ee:c2:af:4d:14:08:6f:00:ef:ee:6a:c8: bb:34:55:6f:ca:b9:05:11:43:84:c4:11:e6:8a:8e: 9b:78:53:c1:17:a7:c6:68:d4:50:a8:9a:50:85:da: 6c:d8:a2:69:28:32:f6:f3:d4:89:bf:62:3c:16:a6: a7:22:63:af:5f:65:da:17:81:f4:26:bc:d7:7a:a8: ab:85:2e:a7:fd:ae:5e:fd:ca:74:70:81:6e:58:97: 40:00:e8:89:14:a8:71:b0:a9:e1:89:0d:79:d6:b4: 9e:ca:07:ff:a0:57:e5:25:fc:ba:64:b9:fa:64:65: 50:d8:db:b8:ee:ff:e1:8b:e1:69:d3:75:98:6b:d7: f6:cf:0a:e9:2a:9c:4a:d0:c9:a4:0e:94:f3:cf:46: 86:61:0a:44:27:78:39:33:96:d4:e8:d5:8c:47:fc: 49:7e:b1:cf:8d:3f:3a:58:27:42:0c:a7:c5:18:e2: 0a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D6:27:C0:A7:F0:00:09:DA:4C:26:82:75:62:95:A3:87:8C:9E:A9 X509v3 Authority Key Identifier: keyid:BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:dd:7c:2c:d3:ca:4e:44:85:74:c5:59:74:94:19:30:e9:2b: 05:dd:71:55:3e:0c:6a:99:c5:af:c7:7e:91:20:3d:55:3b:0a: cb:2d:fd:e3:2a:b0:1b:65:a0:98:d4:e2:5d:cc:75:04:77:15: 94:92:38:b9:94:83:e9:61:6f:95:9e:44:58:4c:30:d0:ac:95: 72:4b:ba:93:b8:1b:d4:4b:18:68:c0:ce:29:24:ee:10:17:b6: 0d:36:9e:61:20:e0:92:62:4e:d5:0b:93:fe:76:94:a5:df:80: bf:21:02:b3:a4:52:3e:94:0b:b7:f7:fe:6a:92:4f:96:c5:67: c0:2e:a4:5b:94:01:3c:24:56:80:2b:9e:16:f8:d9:65:4d:a6: c9:49:5f:bb:e3:0c:fb:67:4b:6a:09:76:5b:99:d1:7d:05:3b: c8:9b:80:9d:d4:f0:f6:46:7d:5a:2b:29:6a:29:0e:48:03:dc: 48:82:4c:e7:77:10:13:de:4b:63:0e:15:de:e5:b4:5c:2c:28: 20:5c:b1:de:9c:78:b9:f3:dc:2a:7d:77:0d:96:47:21:5d:4a: 33:c0:09:b7:0b:68:e7:13:8f:c3:44:fb:1b:85:61:5f:12:d8: b5:b1:23:f5:65:d4:76:1b:ce:b2:9c:a9:19:93:01:83:2c:df: 74:d2:a5:7b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVum/gd595x7V4UjNVwdrZ8GRb44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEz RUYwRjVFQjAeFw0yNjA0MjAwNzU2MjFaFw0yNjA0MjMxNTQwMjFaMDMxMTAvBgNV BAMTKEM1RDYyN0MwQTdGMDAwMDlEQTRDMjY4Mjc1NjI5NUEzODc4QzlFQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEYHlfMAgm/CMtUR/2JAWIK0t7 9TvB3u28A9jKu5jsXtCG6Jt+pl8qFg7EPhGxjZlKGqKQTcy+zvBg9PtR3KfuJWB/ LkvVFgI17PNFNu7Cr00UCG8A7+5qyLs0VW/KuQURQ4TEEeaKjpt4U8EXp8Zo1FCo mlCF2mzYomkoMvbz1Im/YjwWpqciY69fZdoXgfQmvNd6qKuFLqf9rl79ynRwgW5Y l0AA6IkUqHGwqeGJDXnWtJ7KB/+gV+Ul/LpkufpkZVDY27ju/+GL4WnTdZhr1/bP CukqnErQyaQOlPPPRoZhCkQneDkzltTo1YxH/El+sc+NPzpYJ0IMp8UY4gqJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxdYnwKfwAAnaTCaCdWKVo4eMnqkwHwYDVR0j BBgwFoAUvWcx0FzWGBW8CnEcZZ8XMT7w9eswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmQyOWIzMi0zYTI5LTRhMTQtYmM5Yi1jNzZhMDA3Y2EwMzIvMC9CRDY3MzFEMDVD RDYxODE1QkMwQTcxMUM2NTlGMTczMTNFRjBGNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEzRUYw RjVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjJkMjliMzItM2EyOS00YTE0LWJj OWItYzc2YTAwN2NhMDMyLzAvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3 MzEzRUYwRjVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADzdfCzTyk5EhXTFWXSUGTDpKwXdcVU+DGqZ xa/HfpEgPVU7Csst/eMqsBtloJjU4l3MdQR3FZSSOLmUg+lhb5WeRFhMMNCslXJL upO4G9RLGGjAzikk7hAXtg02nmEg4JJiTtULk/52lKXfgL8hArOkUj6UC7f3/mqS T5bFZ8AupFuUATwkVoArnhb42WVNpslJX7vjDPtnS2oJdluZ0X0FO8ibgJ3U8PZG fVorKWopDkgD3EiCTOd3EBPeS2MOFd7ltFwsKCBcsd6ceLnz3Cp9dw2WRyFdSjPA CbcLaOcTj8NE+xuFYV8S2LWxI/Vl1HYbzrKcqRmTAYMs33TSpXs= -----END CERTIFICATE-----Generated at Wed Apr 22 04:53:35 2026 by rpki-client