$ rpki-client -vvf repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft (raw, json) Hash identifier: jeGeU/oNi6wqVD8xKw2xiRBtP2CalXc1Zq6u1tRTHTo= Subject key identifier: 5A:52:5D:A4:CA:CC:59:24:04:12:B8:AB:F7:C5:8C:26:20:A2:25:23 Authority key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Certificate issuer: /CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Certificate serial: 3E65A557A75686ACCA40843BE2C03C4E34436612 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft Manifest number: 023C Signing time: Sat 25 Apr 2026 05:32:00 +0000 Manifest this update: Sat 25 Apr 2026 05:27:00 +0000 Manifest next update: Tue 28 Apr 2026 17:07:00 +0000 Files and hashes: 1: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl (hash: BLUxAdrfRNJ5bTjDqNeRHYG7y/jds4MErhM+Cysbl6M=) 2: 3130332e3136372e37312e302f32342d3234203d3e20313439313735.roa (hash: ooGoBMcKILEQifzcY+BHkj0PZgD66qyMLLKIw9Iw/Ns=) 3: 3130332e3136372e37302e302f32332d3234203d3e20313431393735.roa (hash: bLVCg/aZos6YT0/beT3day4Lo+nylpWYvUGVuWgwCzI=) 4: 3130332e3136372e37302e302f32342d3234203d3e20313431393735.roa (hash: yr+x0CB3AdUmNqphpkhuDags40KkNjTbZutK0PGt33A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 17:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:65:a5:57:a7:56:86:ac:ca:40:84:3b:e2:c0:3c:4e:34:43:66:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Validity Not Before: Apr 25 05:27:00 2026 GMT Not After : Apr 28 17:07:00 2026 GMT Subject: CN=5A525DA4CACC59240412B8ABF7C58C2620A22523 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c5:0c:3c:0a:a0:77:de:33:76:5c:d5:d3:c7: 04:16:15:c4:cf:4b:ce:72:fd:29:27:cc:71:0a:73: e6:32:9e:05:f4:cf:fa:3b:65:3a:03:1c:34:30:68: a4:35:a3:2e:67:c9:a5:69:38:8d:10:17:d2:d5:c3: e5:c5:5e:a5:23:89:bf:98:f9:ec:c4:38:06:24:62: bf:6e:45:7c:42:e5:c5:9f:33:76:33:3d:11:25:55: f4:90:76:4a:9c:1c:95:ed:c9:92:0d:bd:c4:f7:7f: 09:28:0c:5d:83:27:d6:17:3e:d2:77:74:32:08:02: 53:f2:35:39:f2:aa:4b:ab:34:f4:39:1d:f6:e1:2b: fe:c4:68:7b:a7:78:cc:cc:0a:c8:0f:16:02:c5:54: 08:20:43:1b:97:e0:a1:dc:3c:2a:87:88:6f:ae:26: 91:ef:1d:41:15:e9:c8:25:2e:39:92:72:1b:8d:53: 09:f7:2b:86:2d:96:73:00:3b:a6:a2:af:3d:3c:56: a9:02:4f:58:28:ac:8e:ad:cc:9e:46:84:79:01:f5: 5a:47:8a:be:58:b1:54:64:92:64:97:da:0a:71:74: ec:71:f3:10:d0:da:f1:13:a3:5b:17:f3:1e:e9:83: 35:68:08:0c:50:10:c2:fd:d0:2a:6d:6e:9e:d0:31: 00:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:52:5D:A4:CA:CC:59:24:04:12:B8:AB:F7:C5:8C:26:20:A2:25:23 X509v3 Authority Key Identifier: keyid:8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:5d:4a:4b:2b:be:67:71:f5:b8:5e:5b:69:6a:ec:a0:66:aa: 0f:96:d7:28:1c:81:c3:b5:f0:ff:34:50:3f:8c:18:03:f5:2f: 28:7a:40:e4:d8:2c:e3:b2:6b:94:8d:14:3d:cb:15:fd:19:56: c2:5c:d2:fe:e0:c7:26:cd:f2:15:9a:c1:f3:56:3d:5e:6a:f2: 03:4e:9d:38:21:54:12:c3:37:58:88:1d:86:9c:b8:45:f0:4f: 1c:7a:97:4f:5d:67:93:81:62:b9:9e:fd:79:4d:24:7d:d8:91: db:c6:a9:e7:58:ed:96:19:29:3c:58:3e:0d:a5:65:e5:cd:f9: 06:ae:c0:fe:24:3c:49:a1:81:9b:4a:8b:53:d3:db:27:00:9d: b9:ce:d4:ec:c3:70:15:1e:a1:55:74:99:35:69:16:a6:4c:08: 8a:4d:74:d3:ac:09:cf:29:19:7d:c6:b4:a6:50:d5:04:f3:ab: 21:c4:c6:a6:92:61:23:10:b6:98:fe:44:cc:3e:59:09:c4:d0: ea:d1:c8:2d:a0:85:3c:58:f8:1e:f1:78:11:e1:4c:33:16:93: 53:c1:d2:97:8f:64:76:73:7f:ae:4d:7d:d0:99:cf:d3:ae:3b: d3:97:88:78:9f:67:36:2f:52:db:a7:f5:26:91:88:fa:e3:2e: dd:d0:bb:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPmWlV6dWhqzKQIQ74sA8TjRDZhIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5 OTYxMEU1MDAeFw0yNjA0MjUwNTI3MDBaFw0yNjA0MjgxNzA3MDBaMDMxMTAvBgNV BAMTKDVBNTI1REE0Q0FDQzU5MjQwNDEyQjhBQkY3QzU4QzI2MjBBMjI1MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPxQw8CqB33jN2XNXTxwQWFcTP S85y/SknzHEKc+YyngX0z/o7ZToDHDQwaKQ1oy5nyaVpOI0QF9LVw+XFXqUjib+Y +ezEOAYkYr9uRXxC5cWfM3YzPRElVfSQdkqcHJXtyZINvcT3fwkoDF2DJ9YXPtJ3 dDIIAlPyNTnyqkurNPQ5HfbhK/7EaHuneMzMCsgPFgLFVAggQxuX4KHcPCqHiG+u JpHvHUEV6cglLjmSchuNUwn3K4YtlnMAO6airz08VqkCT1gorI6tzJ5GhHkB9VpH ir5YsVRkkmSX2gpxdOxx8xDQ2vETo1sX8x7pgzVoCAxQEML90Cptbp7QMQB7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWlJdpMrMWSQEErir98WMJiCiJSMwHwYDVR0j BBgwFoAUjae9L7U/JJH7bzyTGe80dJlhDlAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i OGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMC84REE3QkQyRkI1 M0YyNDkxRkI2RjNDOTMxOUVGMzQ3NDk5NjEwRTUwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0NzQ5OTYx MEU1MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjhmOWU4N2QtZTUwOS00N2JhLWJl OWQtODk1NTZmNTMwZWE4LzAvOERBN0JEMkZCNTNGMjQ5MUZCNkYzQzkzMTlFRjM0 NzQ5OTYxMEU1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAANdSksrvmdx9bheW2lq7KBmqg+W1ygcgcO1 8P80UD+MGAP1Lyh6QOTYLOOya5SNFD3LFf0ZVsJc0v7gxybN8hWawfNWPV5q8gNO nTghVBLDN1iIHYacuEXwTxx6l09dZ5OBYrme/XlNJH3YkdvGqedY7ZYZKTxYPg2l ZeXN+QauwP4kPEmhgZtKi1PT2ycAnbnO1OzDcBUeoVV0mTVpFqZMCIpNdNOsCc8p GX3GtKZQ1QTzqyHExqaSYSMQtpj+RMw+WQnE0OrRyC2ghTxY+B7xeBHhTDMWk1PB 0pePZHZzf65NfdCZz9OuO9OXiHifZzYvUtun9SaRiPrjLt3Quw8= -----END CERTIFICATE-----Generated at Mon Apr 27 04:22:25 2026 by rpki-client