$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: HCRKwxqGDKxH3QL6KO4v4n0d6HqKFuiCHpmFqwG/fO8= Subject key identifier: 3F:BB:1E:D8:A3:36:A0:F1:98:90:81:E4:A6:C0:1B:C4:CE:26:74:BE Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 273E064FF84244B50A017017FAE23D40264BEE7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 0126 Signing time: Tue 21 Apr 2026 21:51:14 +0000 Manifest this update: Tue 21 Apr 2026 21:46:14 +0000 Manifest next update: Sat 25 Apr 2026 09:17:14 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) 2: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: /XQcveyg4jv0OLVMXGF7RkM1OgqinZHYHqjopRTiyzg=) 3: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: eyJcLgwqfLDN5yf54+8qcXB3Eo84ClH1ySCmSpCcr34=) 4: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: oFtMQn2obbzMZWlVH9erVPBmTdK8rHAfElOnelh2M4g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Apr 2026 13:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3e:06:4f:f8:42:44:b5:0a:01:70:17:fa:e2:3d:40:26:4b:ee:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Apr 21 21:46:14 2026 GMT Not After : Apr 25 09:17:14 2026 GMT Subject: CN=3FBB1ED8A336A0F1989081E4A6C01BC4CE2674BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3a:96:b1:f2:2b:00:7b:cb:39:7e:ff:3f:cc: ce:f2:3e:d4:55:42:4a:a7:ba:02:5f:4c:5e:10:24: fd:ee:8d:a5:65:20:1d:1e:9d:ff:21:78:dd:dd:11: 1e:45:f4:d2:99:53:1b:1d:51:03:9b:b3:65:37:9e: 93:6b:6f:1e:b1:47:70:8b:f5:11:cb:88:9f:3f:75: 7e:0f:61:f5:ff:0a:70:e1:aa:7e:e8:e2:93:09:c4: 12:6c:4a:17:78:69:f6:94:05:53:56:3a:47:3b:8d: 41:6d:a0:4f:b2:9d:a1:25:1b:40:e8:7e:0d:5a:44: 89:f9:ef:40:12:a6:7d:53:d5:cc:4b:62:75:2c:7b: cd:99:42:cf:2a:29:cd:f3:8c:08:ef:4a:f5:13:c6: 2e:07:bc:6b:04:e8:aa:4a:73:78:41:66:29:7b:41: cc:00:be:70:ce:8c:4c:5d:49:8e:8e:b3:80:02:38: c6:e0:df:ec:8f:c3:cd:03:2d:d7:40:c3:06:72:e6: 06:c2:fc:46:ff:99:94:f2:d8:1a:00:06:22:39:ad: 63:a0:8f:09:25:43:fc:35:cc:0d:be:c4:90:36:b8: 5a:90:65:38:8c:b4:df:69:af:31:81:ba:aa:af:9a: c5:75:ca:83:87:13:6b:f3:dc:1b:4a:4c:b0:aa:b6: 27:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BB:1E:D8:A3:36:A0:F1:98:90:81:E4:A6:C0:1B:C4:CE:26:74:BE X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:c4:1e:b4:dd:3f:c4:36:f5:dd:50:be:ca:04:ca:82:ea:d4: 25:04:11:63:f0:b0:6f:bc:14:a8:30:2a:3c:c5:d3:43:49:5f: 28:22:3d:87:ee:44:00:e0:5e:69:38:34:48:66:be:1e:af:71: b7:97:58:6b:de:dc:6f:18:68:da:62:c2:7b:d2:7e:9d:a4:88: 0f:b5:57:61:27:8f:43:01:ed:d9:e3:25:99:b5:71:97:3c:3a: 0d:a5:2a:4b:72:db:bd:4d:0e:dc:44:f7:91:71:0f:b7:6f:41: 1b:8a:6b:4b:3d:0d:08:99:0e:a8:68:5f:d5:f4:ab:2c:6d:c9: c3:80:77:b5:a6:d9:b3:ea:5b:dc:54:f0:55:ad:a6:cb:63:44: b6:6d:f0:db:df:a1:5e:7b:64:70:2d:c1:78:7e:1e:55:ba:71: 99:7e:07:be:7e:e6:55:af:e9:0e:b3:74:26:e9:ab:fd:f5:57: 08:d2:50:e9:73:85:47:f2:1a:79:49:13:6f:27:2f:90:9d:d7: b4:74:3e:53:9e:1e:8b:f6:ed:97:e8:7d:ce:fa:8b:49:33:0f: 41:13:9f:e6:21:04:22:f4:d8:10:1f:83:d0:73:e7:18:dc:ca: 6e:a1:1b:c9:4c:d5:37:3b:d8:12:92:a8:53:1d:02:6d:98:8f: b3:12:6b:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJz4GT/hCRLUKAXAX+uI9QCZL7nswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNjA0MjEyMTQ2MTRaFw0yNjA0MjUwOTE3MTRaMDMxMTAvBgNV BAMTKDNGQkIxRUQ4QTMzNkEwRjE5ODkwODFFNEE2QzAxQkM0Q0UyNjc0QkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZOpax8isAe8s5fv8/zM7yPtRV QkqnugJfTF4QJP3ujaVlIB0enf8heN3dER5F9NKZUxsdUQObs2U3npNrbx6xR3CL 9RHLiJ8/dX4PYfX/CnDhqn7o4pMJxBJsShd4afaUBVNWOkc7jUFtoE+ynaElG0Do fg1aRIn570ASpn1T1cxLYnUse82ZQs8qKc3zjAjvSvUTxi4HvGsE6KpKc3hBZil7 QcwAvnDOjExdSY6Os4ACOMbg3+yPw80DLddAwwZy5gbC/Eb/mZTy2BoABiI5rWOg jwklQ/w1zA2+xJA2uFqQZTiMtN9przGBuqqvmsV1yoOHE2vz3BtKTLCqtidTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUP7se2KM2oPGYkIHkpsAbxM4mdL4wHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABDEHrTdP8Q29d1QvsoEyoLq1CUEEWPwsG+8 FKgwKjzF00NJXygiPYfuRADgXmk4NEhmvh6vcbeXWGve3G8YaNpiwnvSfp2kiA+1 V2Enj0MB7dnjJZm1cZc8Og2lKkty271NDtxE95FxD7dvQRuKa0s9DQiZDqhoX9X0 qyxtycOAd7Wm2bPqW9xU8FWtpstjRLZt8NvfoV57ZHAtwXh+HlW6cZl+B75+5lWv 6Q6zdCbpq/31VwjSUOlzhUfyGnlJE28nL5Cd17R0PlOeHov27Zfofc76i0kzD0ET n+YhBCL02BAfg9Bz5xjcym6hG8lM1Tc72BKSqFMdAm2Yj7MSayE= -----END CERTIFICATE-----Generated at Wed Apr 22 04:53:35 2026 by rpki-client