$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft File: 871B4235DFC56C482416E7BBA192562092FFE055.mft (raw, json) Hash identifier: 2tG/vX6F5xXtiJzTf7WxFT0FZ5849bWw6f2Wx9kzaUU= Subject key identifier: 89:E2:08:43:23:9D:51:C5:7D:7A:F1:1C:70:74:A0:4C:D3:88:18:DF Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 45E9B50C568A81F2160A2355641CB5C7AE9432A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft Manifest number: 0158 Signing time: Sun 19 Apr 2026 23:02:29 +0000 Manifest this update: Sun 19 Apr 2026 22:57:29 +0000 Manifest next update: Thu 23 Apr 2026 09:15:29 +0000 Files and hashes: 1: 3135372e32302e39332e302f32342d3234203d3e20313532343037.roa (hash: 7xhwBLoxBcZfSoTZvdUTvLkraKKygpQjYGPK+6LQ1oA=) 2: 871B4235DFC56C482416E7BBA192562092FFE055.crl (hash: r1aTwe797B+4sl1BFCKY+MgFSv1/hY6ZestV7LuHM8g=) 3: 3135372e32302e39322e302f32332d3233203d3e20313532343037.roa (hash: P7Y8t8QlzVHnPDCRyEAdHrWqFac2Md1CGzVdP33gimk=) 4: 3135372e32302e39322e302f32342d3234203d3e20313532343037.roa (hash: QrSBRaxGaWU8ZoD0zYmeD1ZaWtynoFSmr/bVUUg5r5E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Apr 2026 09:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e9:b5:0c:56:8a:81:f2:16:0a:23:55:64:1c:b5:c7:ae:94:32:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Apr 19 22:57:29 2026 GMT Not After : Apr 23 09:15:29 2026 GMT Subject: CN=89E20843239D51C57D7AF11C7074A04CD38818DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:eb:11:14:49:16:4a:f6:87:bf:a2:32:5a: b4:77:f5:c1:ea:0a:62:aa:7e:a8:0a:79:11:a3:4a: b1:1b:db:55:8b:1f:9d:d4:1d:a6:68:a3:fb:b5:3f: cd:25:fa:3e:0f:40:c6:1a:a4:c1:03:70:37:4a:29: 43:f3:60:87:73:dc:c3:3a:6e:98:60:bf:7e:1a:ee: d7:c7:14:aa:49:e0:b8:af:a1:50:92:a9:92:56:8b: b9:65:ee:c5:89:98:da:96:37:74:cf:f2:6b:4c:99: 3a:15:8a:3a:1d:83:33:a3:78:76:1c:0b:a1:69:d4: 48:db:fd:bf:5f:9b:df:cf:5b:d7:26:aa:c6:57:bf: db:dc:b3:48:4e:79:12:0c:db:40:71:25:74:8a:9c: 72:77:23:22:34:2f:01:32:6b:05:63:9c:0f:5b:2f: 7e:84:56:ea:ec:02:62:f7:ac:8c:f0:77:12:e0:b0: 62:ad:b7:e4:10:00:25:9a:ca:38:45:d4:07:86:8a: 7d:24:89:1f:82:91:dc:6e:56:58:92:88:56:19:74: cb:18:46:3b:5d:4b:0d:12:89:ce:88:6e:34:71:e8: 23:54:a2:bd:b9:71:ec:13:10:b0:c7:fd:1e:aa:54: 5a:1c:a5:0f:a3:82:7f:b5:b5:70:0e:93:fe:95:7a: c4:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:E2:08:43:23:9D:51:C5:7D:7A:F1:1C:70:74:A0:4C:D3:88:18:DF X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:d7:6a:5d:99:eb:72:85:23:4b:fd:32:6c:e3:c6:f6:58:28: a9:0e:29:4b:72:f1:7a:ce:e1:70:8c:89:88:0e:5f:29:19:10: e8:b4:82:64:1f:72:c5:ad:ff:a7:c7:1e:fc:6c:f7:86:3b:9f: bf:8e:27:b3:7c:48:b8:6d:fe:49:d6:96:bd:ca:b4:a7:32:f9: 36:ab:f9:e5:c8:97:49:3f:79:5d:6c:a2:aa:4e:25:7e:ab:95: 81:57:c1:1b:62:a7:76:c9:aa:e4:2e:00:ed:f9:34:c1:c9:d1: 36:2f:d3:de:a8:c7:fe:3b:f7:a0:41:96:9e:6e:b5:9b:58:bd: e9:de:2a:5d:88:4a:9e:2e:80:80:9a:2c:fb:3b:d7:e2:be:b2: 4b:25:56:11:08:96:22:f9:3d:83:51:99:3f:96:f7:58:81:41: 56:4a:56:4b:d6:60:35:19:bf:46:0c:3b:ce:d1:d6:b5:56:06: 2d:ce:c1:ef:b1:49:54:ce:f2:cd:e1:46:db:18:f5:f2:1d:5e: 4f:58:c1:1a:5c:ff:41:69:f9:00:c8:53:64:46:51:e4:2a:a5: 91:8c:90:59:94:29:c3:f2:29:0e:69:71:f6:30:f6:80:15:30: 00:13:05:51:ef:4a:9d:75:e3:94:a5:24:d8:85:9b:51:94:4c: 65:78:3b:be -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURem1DFaKgfIWCiNVZBy1x66UMqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNjA0MTkyMjU3MjlaFw0yNjA0MjMwOTE1MjlaMDMxMTAvBgNV BAMTKDg5RTIwODQzMjM5RDUxQzU3RDdBRjExQzcwNzRBMDRDRDM4ODE4REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA7OsRFEkWSvaHv6IyWrR39cHq CmKqfqgKeRGjSrEb21WLH53UHaZoo/u1P80l+j4PQMYapMEDcDdKKUPzYIdz3MM6 bphgv34a7tfHFKpJ4LivoVCSqZJWi7ll7sWJmNqWN3TP8mtMmToVijodgzOjeHYc C6Fp1Ejb/b9fm9/PW9cmqsZXv9vcs0hOeRIM20BxJXSKnHJ3IyI0LwEyawVjnA9b L36EVursAmL3rIzwdxLgsGKtt+QQACWayjhF1AeGin0kiR+CkdxuVliSiFYZdMsY RjtdSw0Sic6IbjRx6CNUor25cewTELDH/R6qVFocpQ+jgn+1tXAOk/6VesRnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUieIIQyOdUcV9evEccHSgTNOIGN8wHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmE4OTZmZGMtNTYzOC00MWQyLThh OTktNjhjZTgxNmJkM2NmLzAvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2 MjA5MkZGRTA1NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABDXal2Z63KFI0v9MmzjxvZYKKkOKUty8XrO 4XCMiYgOXykZEOi0gmQfcsWt/6fHHvxs94Y7n7+OJ7N8SLht/knWlr3KtKcy+Tar +eXIl0k/eV1soqpOJX6rlYFXwRtip3bJquQuAO35NMHJ0TYv096ox/4796BBlp5u tZtYveneKl2ISp4ugICaLPs71+K+skslVhEIliL5PYNRmT+W91iBQVZKVkvWYDUZ v0YMO87R1rVWBi3Owe+xSVTO8s3hRtsY9fIdXk9YwRpc/0Fp+QDIU2RGUeQqpZGM kFmUKcPyKQ5pcfYw9oAVMAATBVHvSp1145SlJNiFm1GUTGV4O74= -----END CERTIFICATE-----Generated at Wed Apr 22 05:02:29 2026 by rpki-client