$ rpki-client -vvf rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft File: D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft (raw, json) Hash identifier: ttvTPMuDVJid3lcqbZ/+54RwbCk1R7wKbSlKf/jntN0= Subject key identifier: 2F:F9:30:FB:DF:E4:50:08:AC:A2:3D:04:E5:6A:FD:74:FC:00:57:F3 Authority key identifier: D8:5F:97:EC:28:98:23:A0:FE:C5:9A:16:FE:DF:A0:9F:72:EB:C8:35 Certificate issuer: /CN=D85F97EC289823A0FEC59A16FEDFA09F72EBC835 Certificate serial: 7785F23DF1456801A760EF3F1A41A7C03AF16D79 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft Manifest number: 0F Signing time: Tue 12 May 2026 14:19:08 +0000 Manifest this update: Tue 12 May 2026 14:14:08 +0000 Manifest next update: Wed 13 May 2026 17:32:08 +0000 Files and hashes: 1: D85F97EC289823A0FEC59A16FEDFA09F72EBC835.crl (hash: 5dDt9vnSbdomQOZ4QAavQzSykWliWa7ny5t1q134gpo=) 2: 33362e35302e34372e302f32342d3234203d3e20313338383838.roa (hash: i4qKsTrQYXXhXKXalOlOEUcc525wPy7zaNFMk5Bgx/c=) 3: 33362e35302e34362e302f32342d3234203d3e20313338383838.roa (hash: Nvdk0iQE3TVdSwCANLKWH60xsOqyH90GO9904bD5/jk=) 4: 33362e35302e34362e302f32332d3233203d3e20313338383838.roa (hash: /7DADKxkcEneVChkCCyUD/ZC0G20xDnhNSvZJoeZ1RA=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.crl rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:85:f2:3d:f1:45:68:01:a7:60:ef:3f:1a:41:a7:c0:3a:f1:6d:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F97EC289823A0FEC59A16FEDFA09F72EBC835 Validity Not Before: May 12 14:14:08 2026 GMT Not After : May 13 17:32:08 2026 GMT Subject: CN=2FF930FBDFE45008ACA23D04E56AFD74FC0057F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:46:59:e9:90:27:f3:00:a5:a0:76:41:08:37: b2:60:71:37:35:8b:53:b4:51:01:1e:96:9a:04:92: c6:2e:70:5a:44:0b:f7:68:8b:78:1b:97:d7:27:72: 1a:01:69:2d:6b:eb:33:0e:c4:fb:73:12:0f:53:7f: e0:9d:e3:39:6a:3d:c9:09:31:b4:6d:f0:e6:93:a8: 26:01:0e:26:7d:05:df:f1:2e:89:ac:29:00:d9:80: 77:0a:ab:38:3b:69:86:c7:51:b5:64:b4:c6:a1:c0: e9:f9:c3:e5:69:a5:ec:8a:a3:fa:5f:36:9a:ba:c0: 46:b9:6b:84:65:5e:77:53:88:ed:b6:4d:67:96:c9: 69:50:47:46:20:68:31:3e:cb:03:96:b8:ec:de:97: 62:70:61:d9:86:27:f6:73:39:1a:75:ed:c6:e5:f0: 4d:08:a7:9a:fb:aa:bb:18:e2:ef:58:3d:2d:e2:3e: 8f:bf:30:9f:c6:42:22:3a:97:0f:a6:43:d8:95:7e: 99:bf:29:67:8d:ba:b3:b1:4d:6a:b6:e1:b5:bb:cd: 08:e6:88:e6:41:14:a8:af:39:74:56:3f:2c:ca:10: 1f:11:a9:ae:15:be:6e:ad:d9:dd:6a:76:2e:79:93: dc:8b:88:d8:58:84:0d:9f:34:fc:e4:e6:6f:25:f3: de:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F9:30:FB:DF:E4:50:08:AC:A2:3D:04:E5:6A:FD:74:FC:00:57:F3 X509v3 Authority Key Identifier: keyid:D8:5F:97:EC:28:98:23:A0:FE:C5:9A:16:FE:DF:A0:9F:72:EB:C8:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:c4:ca:5d:87:b7:c3:f7:29:6b:84:4e:4b:8e:21:7c:33:96: 8d:1c:6a:70:14:da:aa:b9:eb:37:47:0f:96:b8:5c:04:0d:8e: 3a:2a:68:ac:6f:0e:47:a7:5c:00:4d:34:69:66:1e:d7:db:34: d3:6f:5b:b4:5b:e3:3d:86:3b:d6:ce:d9:cc:7e:85:8b:11:19: 0c:10:3a:af:3a:f2:6a:07:8e:ef:e4:ff:dd:ab:63:68:21:da: ef:9a:af:83:50:27:55:45:92:81:11:ae:ab:09:ee:01:1c:ba: f0:d7:b5:85:a4:26:b7:3b:f3:58:12:eb:cb:ae:a4:c8:32:61: 20:d0:56:04:0e:52:0e:5a:99:d2:3e:bd:38:0b:f2:1f:33:44: 3f:fe:55:e5:34:cb:6d:8c:5b:5a:75:c2:eb:0e:3e:9e:07:4d: 7d:28:e6:70:73:ce:a1:60:7e:e7:7c:cf:ab:ab:8c:ef:48:85: 08:e0:07:e0:75:0f:50:f0:14:98:3e:26:4b:df:97:2f:b9:21: 45:2a:8e:82:42:11:69:a2:34:9d:9b:aa:ea:55:e7:6a:6b:c0: 80:6c:32:b2:49:50:ce:3c:11:08:e4:5e:fc:25:79:8e:c5:83: f2:00:6e:e3:f9:36:48:61:d9:ad:88:dd:d9:13:73:bd:5b:98: 12:01:30:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd4XyPfFFaAGnYO8/GkGnwDrxbXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1Rjk3RUMyODk4MjNBMEZFQzU5QTE2RkVERkEwOUY3 MkVCQzgzNTAeFw0yNjA1MTIxNDE0MDhaFw0yNjA1MTMxNzMyMDhaMDMxMTAvBgNV BAMTKDJGRjkzMEZCREZFNDUwMDhBQ0EyM0QwNEU1NkFGRDc0RkMwMDU3RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDARlnpkCfzAKWgdkEIN7JgcTc1 i1O0UQEelpoEksYucFpEC/doi3gbl9cnchoBaS1r6zMOxPtzEg9Tf+Cd4zlqPckJ MbRt8OaTqCYBDiZ9Bd/xLomsKQDZgHcKqzg7aYbHUbVktMahwOn5w+VppeyKo/pf Npq6wEa5a4RlXndTiO22TWeWyWlQR0YgaDE+ywOWuOzel2JwYdmGJ/ZzORp17cbl 8E0Ip5r7qrsY4u9YPS3iPo+/MJ/GQiI6lw+mQ9iVfpm/KWeNurOxTWq24bW7zQjm iOZBFKivOXRWPyzKEB8Rqa4Vvm6t2d1qdi55k9yLiNhYhA2fNPzk5m8l894LAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUL/kw+9/kUAisoj0E5Wr9dPwAV/MwHwYDVR0j BBgwFoAU2F+X7CiYI6D+xZoW/t+gn3LryDUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDI2ODQ2MmUtYmZhNS00MzM3LTkxNTMtYzU1NmQ5ZDc3MWZhLzAvRDg1Rjk3RUMy ODk4MjNBMEZFQzU5QTE2RkVERkEwOUY3MkVCQzgzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EODVGOTdFQzI4OTgyM0EwRkVDNTlBMTZGRURGQTA5RjcyRUJD ODM1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMDI2ODQ2MmUtYmZhNS00MzM3LTkx NTMtYzU1NmQ5ZDc3MWZhLzAvRDg1Rjk3RUMyODk4MjNBMEZFQzU5QTE2RkVERkEw OUY3MkVCQzgzNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADDEyl2Ht8P3KWuETkuOIXwzlo0canAU2qq5 6zdHD5a4XAQNjjoqaKxvDkenXABNNGlmHtfbNNNvW7Rb4z2GO9bO2cx+hYsRGQwQ Oq868moHju/k/92rY2gh2u+ar4NQJ1VFkoERrqsJ7gEcuvDXtYWkJrc781gS68uu pMgyYSDQVgQOUg5amdI+vTgL8h8zRD/+VeU0y22MW1p1wusOPp4HTX0o5nBzzqFg fud8z6urjO9IhQjgB+B1D1DwFJg+Jkvfly+5IUUqjoJCEWmiNJ2bqupV52prwIBs MrJJUM48EQjkXvwleY7Fg/IAbuP5Nkhh2a2I3dkTc71bmBIBMMg= -----END CERTIFICATE-----Generated at Tue May 12 22:46:34 2026 by rpki-client