$ rpki-client -vvf rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.mft File: 85638E4C723F993851F22E4C79D5E467D64EF6E5.mft (raw, json) Hash identifier: rFKDC+DNHDyhEL14JL7WE4b5vNNCjgH2CD61/edmYRg= Subject key identifier: 4E:A6:B4:AB:E9:30:47:E1:1F:A8:23:68:2C:0B:B0:5B:87:1E:E1:F5 Authority key identifier: 85:63:8E:4C:72:3F:99:38:51:F2:2E:4C:79:D5:E4:67:D6:4E:F6:E5 Certificate issuer: /CN=85638E4C723F993851F22E4C79D5E467D64EF6E5 Certificate serial: 53B7DCD96EA956294F584A3B5AFFFAC72ED4CCC3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85638E4C723F993851F22E4C79D5E467D64EF6E5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.mft Manifest number: 0F Signing time: Tue 12 May 2026 19:56:29 +0000 Manifest this update: Tue 12 May 2026 19:51:29 +0000 Manifest next update: Wed 13 May 2026 22:55:29 +0000 Files and hashes: 1: 85638E4C723F993851F22E4C79D5E467D64EF6E5.crl (hash: +W8zl3VSoZpYZGOEX/YpdwdttN+u7/UMvoTc2Zpkzg4=) 2: 3230332e3131312e3235342e302f32332d3234203d3e20313531393931.roa (hash: otj2sIGnWzWgRnhmdcO20guHoUVJ8w7hWeCj8su+1ls=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.crl rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85638E4C723F993851F22E4C79D5E467D64EF6E5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 22:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:b7:dc:d9:6e:a9:56:29:4f:58:4a:3b:5a:ff:fa:c7:2e:d4:cc:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85638E4C723F993851F22E4C79D5E467D64EF6E5 Validity Not Before: May 12 19:51:29 2026 GMT Not After : May 13 22:55:29 2026 GMT Subject: CN=4EA6B4ABE93047E11FA823682C0BB05B871EE1F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:01:c1:e6:01:98:68:b9:2c:44:e9:67:99:cb: 78:40:b3:7c:f6:7f:80:65:37:23:0b:ae:fb:63:9d: 14:ee:1b:95:87:d0:ff:81:f8:58:97:c8:59:ae:15: 80:f2:6e:7b:50:73:81:3c:e0:a9:3f:71:93:47:e9: 10:b0:81:37:5e:dd:41:69:db:32:25:5e:70:16:d8: 67:41:c7:9a:2c:95:72:7f:07:4d:3d:02:67:ab:4e: 74:bc:72:19:08:0e:94:dd:41:3a:8d:24:aa:3e:13: 10:6c:37:37:2d:a1:2d:33:30:a1:4b:12:ce:61:b9: 4d:cb:97:99:bf:63:54:16:96:27:66:1d:86:1d:4d: 1d:04:e0:80:8e:46:26:70:19:be:98:6d:41:60:2e: a6:dc:4c:f2:6e:06:68:1f:f5:ed:b6:82:6e:2a:95: 7f:f0:ea:b0:41:ee:7c:2d:30:19:a8:bb:b3:55:9c: 93:ae:fe:00:d4:01:a8:ae:2a:6b:22:db:8d:bc:21: 9b:c6:da:71:c1:6f:cf:bf:62:ad:86:26:73:74:50: 79:8f:a8:78:79:32:fc:1f:5e:5b:50:e4:f6:67:86: 6a:86:38:66:9e:cf:a0:15:60:25:c5:53:da:de:d9: 47:d8:08:4a:48:80:c0:59:ef:b1:fe:5b:cd:f3:3a: af:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A6:B4:AB:E9:30:47:E1:1F:A8:23:68:2C:0B:B0:5B:87:1E:E1:F5 X509v3 Authority Key Identifier: keyid:85:63:8E:4C:72:3F:99:38:51:F2:2E:4C:79:D5:E4:67:D6:4E:F6:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85638E4C723F993851F22E4C79D5E467D64EF6E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:80:91:2b:be:c8:4f:fe:5a:a1:7f:7c:b0:a3:29:84:cf:8b: 0d:bc:fa:42:9c:ba:70:f3:06:b9:c1:7d:92:42:6d:68:0c:2c: f7:af:80:56:ec:54:17:60:ec:cc:9a:b9:59:0c:ea:35:9a:2f: 9a:ea:61:cf:b3:e9:6a:7a:c3:e0:29:83:fa:5a:43:9a:c3:56: 06:e0:63:0c:27:d4:6c:00:fa:a2:f0:d4:e3:35:40:51:01:ad: 0f:b2:28:f7:8d:62:2e:37:3c:d0:07:94:3f:b4:8e:6e:60:02: 7b:85:06:cc:f1:73:94:98:f5:78:87:f5:ae:a6:39:0e:be:04: b2:e8:19:14:7c:c5:37:4c:d4:e4:32:8a:b5:07:01:d4:80:1d: 91:36:c6:52:f2:a7:d8:f5:59:80:9a:c7:11:94:0f:28:11:31: 44:f0:c1:72:3c:73:af:43:4d:51:4f:60:13:cb:98:91:52:87: 22:1f:50:19:ac:7f:96:78:b9:2b:62:1b:9f:ff:7e:84:62:9f: e8:22:f6:85:da:6f:a8:36:a1:bb:ca:e0:d8:b1:fe:70:6d:5d: f2:1a:07:74:eb:6a:ca:ba:06:e2:5e:2b:a9:21:fc:3d:fb:c6: 75:f1:bd:eb:b6:2a:e3:dc:d5:86:c7:3c:54:a6:a7:a7:96:d9: 5a:ad:9a:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU7fc2W6pVilPWEo7Wv/6xy7UzMMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU2MzhFNEM3MjNGOTkzODUxRjIyRTRDNzlENUU0NjdE NjRFRjZFNTAeFw0yNjA1MTIxOTUxMjlaFw0yNjA1MTMyMjU1MjlaMDMxMTAvBgNV BAMTKDRFQTZCNEFCRTkzMDQ3RTExRkE4MjM2ODJDMEJCMDVCODcxRUUxRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7AcHmAZhouSxE6WeZy3hAs3z2 f4BlNyMLrvtjnRTuG5WH0P+B+FiXyFmuFYDybntQc4E84Kk/cZNH6RCwgTde3UFp 2zIlXnAW2GdBx5oslXJ/B009AmerTnS8chkIDpTdQTqNJKo+ExBsNzctoS0zMKFL Es5huU3Ll5m/Y1QWlidmHYYdTR0E4ICORiZwGb6YbUFgLqbcTPJuBmgf9e22gm4q lX/w6rBB7nwtMBmou7NVnJOu/gDUAaiuKmsi2428IZvG2nHBb8+/Yq2GJnN0UHmP qHh5MvwfXltQ5PZnhmqGOGaez6AVYCXFU9re2UfYCEpIgMBZ77H+W83zOq+5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTqa0q+kwR+EfqCNoLAuwW4ce4fUwHwYDVR0j BBgwFoAUhWOOTHI/mThR8i5MedXkZ9ZO9uUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDRlMzc3YjktNTg4OS00Y2IzLWE0YzktMDg3MTJiNGY2NmZjLzAvODU2MzhFNEM3 MjNGOTkzODUxRjIyRTRDNzlENUU0NjdENjRFRjZFNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTYzOEU0QzcyM0Y5OTM4NTFGMjJFNEM3OUQ1RTQ2N0Q2NEVG NkU1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMDRlMzc3YjktNTg4OS00Y2IzLWE0 YzktMDg3MTJiNGY2NmZjLzAvODU2MzhFNEM3MjNGOTkzODUxRjIyRTRDNzlENUU0 NjdENjRFRjZFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJWAkSu+yE/+WqF/fLCjKYTPiw28+kKcunDz BrnBfZJCbWgMLPevgFbsVBdg7MyauVkM6jWaL5rqYc+z6Wp6w+Apg/paQ5rDVgbg Ywwn1GwA+qLw1OM1QFEBrQ+yKPeNYi43PNAHlD+0jm5gAnuFBszxc5SY9XiH9a6m OQ6+BLLoGRR8xTdM1OQyirUHAdSAHZE2xlLyp9j1WYCaxxGUDygRMUTwwXI8c69D TVFPYBPLmJFShyIfUBmsf5Z4uStiG5//foRin+gi9oXab6g2obvK4Nix/nBtXfIa B3Trasq6BuJeK6kh/D37xnXxveu2KuPc1YbHPFSmp6eW2Vqtmrg= -----END CERTIFICATE-----Generated at Wed May 13 03:51:54 2026 by rpki-client