$ rpki-client -vvf rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.mft File: 4DA11D5AF5F17AE716519F84A263E1A5E57D5244.mft (raw, json) Hash identifier: i2nlf/bqRjD/ukk7e1cIBvplIsXQdR+rzYOBawt287E= Subject key identifier: 27:71:1D:B5:A3:9D:96:1E:48:6C:18:51:58:59:97:38:68:9D:4B:05 Authority key identifier: 4D:A1:1D:5A:F5:F1:7A:E7:16:51:9F:84:A2:63:E1:A5:E5:7D:52:44 Certificate issuer: /CN=4DA11D5AF5F17AE716519F84A263E1A5E57D5244 Certificate serial: 45D23CE7F66840131358D73DE3206C1F917B499A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.mft Manifest number: 0E Signing time: Tue 12 May 2026 02:20:36 +0000 Manifest this update: Tue 12 May 2026 02:15:36 +0000 Manifest next update: Wed 13 May 2026 05:38:36 +0000 Files and hashes: 1: 323430313a626534303a3a2f33322d3438203d3e20313336383431.roa (hash: pUzTSX764GWtHHO9jcVOxnVCQQd9HOcC1kC/yiGkLr8=) 2: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (hash: 1SNuWHPKyjm9i33KVxLucA1qoW0DruITzpVEbkOYzp4=) 3: 323430313a626534303a3130303a3a2f34382d3438203d3e20313336383431.roa (hash: Q+ngoFu885sNrsbrQRL3AeApBJ1Eb5cBUZ33V1u7hNU=) 4: 3130332e3130302e3137342e302f32342d3234203d3e20313336383431.roa (hash: lcj9Lo8ozccThBUG7wqDK1apaR2k1E0ODhzzBgFVW1M=) 5: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (hash: 2ukK53+fe7S5M2zaDBH1WtDgIsIsj4+Dshs68GBh99o=) 6: 4DA11D5AF5F17AE716519F84A263E1A5E57D5244.crl (hash: dfUjPk06Wo90OVy5iNHhxYzlVXLVWNc8yZo8KI9r9qE=) 7: 3130332e3130302e3137352e302f32342d3234203d3e20313336383431.roa (hash: z5zbKQho3avhtYmaIotiPUiQQJ/mO8YtqexQXDW4gG0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.crl rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 05:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:d2:3c:e7:f6:68:40:13:13:58:d7:3d:e3:20:6c:1f:91:7b:49:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DA11D5AF5F17AE716519F84A263E1A5E57D5244 Validity Not Before: May 12 02:15:36 2026 GMT Not After : May 13 05:38:36 2026 GMT Subject: CN=27711DB5A39D961E486C185158599738689D4B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:36:22:41:e3:2d:f2:a4:ef:51:47:2c:f3:78: 2f:ff:4c:e8:f7:eb:8d:68:eb:66:a4:81:8d:70:bc: 7e:ed:dc:ca:07:32:f4:d5:1c:21:4d:55:51:b7:d3: 23:82:9c:15:0f:73:5d:29:17:f1:3d:67:4e:fc:a3: 35:d1:f1:c9:c5:06:35:fc:f1:4f:08:c9:10:b5:54: 27:e5:dd:9c:32:09:24:b9:5e:92:27:70:eb:18:59: 5c:9c:da:a9:2c:e8:7a:52:c6:a5:a2:7e:d5:b5:31: 57:ca:a8:ce:2e:c0:fb:12:0f:49:54:b3:31:db:08: 96:ef:31:b6:01:35:18:77:1c:df:ec:f3:00:4f:bd: db:44:bc:58:6e:98:0d:41:94:e4:89:88:d4:3d:c7: 73:2a:fa:b4:fa:a8:a8:2d:4b:61:d3:cd:60:52:c5: 67:9b:f0:71:29:64:24:ce:d3:59:1e:8d:f1:38:73: ae:74:7d:c3:45:f3:3a:95:69:d0:e6:a5:92:43:cb: 1e:66:7d:8c:7a:52:1b:29:d6:b8:53:35:48:87:15: 46:d6:47:45:a1:ae:7e:85:0b:82:3e:a1:d3:7b:6e: 56:b6:13:98:7d:30:78:e7:4d:31:7a:e8:98:8c:53: b2:57:b4:7a:ea:f1:c1:16:6f:bf:5e:5e:d8:f6:39: 5e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:71:1D:B5:A3:9D:96:1E:48:6C:18:51:58:59:97:38:68:9D:4B:05 X509v3 Authority Key Identifier: keyid:4D:A1:1D:5A:F5:F1:7A:E7:16:51:9F:84:A2:63:E1:A5:E5:7D:52:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/4DA11D5AF5F17AE716519F84A263E1A5E57D5244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:e8:fd:52:bb:59:20:a8:e3:98:fc:9c:e7:56:5e:4b:17:d4: 54:8c:81:7c:7b:cd:c2:c1:ea:71:59:89:b5:85:b2:de:40:20: 41:a9:32:bd:de:16:da:53:5d:eb:9a:72:cb:4e:79:3a:f1:8e: d7:2e:fb:e3:79:26:48:06:7c:fd:f8:2b:52:6b:71:28:ff:fd: 91:28:9c:7b:2d:03:c8:81:39:23:d1:79:9a:8d:2f:25:63:19: 14:02:fe:ec:62:89:5e:aa:6d:ff:fc:9a:06:55:a9:2b:2f:97: c0:ae:01:5e:bb:3f:83:0f:13:59:5f:38:19:b1:9f:1a:90:10: d0:20:ea:0c:40:69:10:8d:7e:72:68:0c:bb:bc:27:37:64:71: bf:f4:00:d4:ee:77:59:9e:41:2e:69:63:cc:b8:a8:9a:c4:13: e3:76:7a:4f:9d:a7:bf:22:98:87:67:53:bb:b7:ff:a3:fe:8e: ff:e5:8d:5d:a0:df:b6:fb:9a:d3:dc:53:99:a2:dc:30:0f:4f: 93:f4:bf:98:5c:47:fd:dd:7f:1b:43:8c:df:ca:26:ae:b2:af: 16:32:7b:1d:aa:10:bf:7c:a7:9f:63:f2:41:b2:dc:e4:b5:76: 9f:bc:50:55:e3:bd:2f:d9:d2:94:94:b1:f4:d9:76:a8:f8:c8: 5e:de:b4:47 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURdI85/ZoQBMTWNc94yBsH5F7SZowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERBMTFENUFGNUYxN0FFNzE2NTE5Rjg0QTI2M0UxQTVF NTdENTI0NDAeFw0yNjA1MTIwMjE1MzZaFw0yNjA1MTMwNTM4MzZaMDMxMTAvBgNV BAMTKDI3NzExREI1QTM5RDk2MUU0ODZDMTg1MTU4NTk5NzM4Njg5RDRCMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUNiJB4y3ypO9RRyzzeC//TOj3 641o62akgY1wvH7t3MoHMvTVHCFNVVG30yOCnBUPc10pF/E9Z078ozXR8cnFBjX8 8U8IyRC1VCfl3ZwyCSS5XpIncOsYWVyc2qks6HpSxqWiftW1MVfKqM4uwPsSD0lU szHbCJbvMbYBNRh3HN/s8wBPvdtEvFhumA1BlOSJiNQ9x3Mq+rT6qKgtS2HTzWBS xWeb8HEpZCTO01kejfE4c650fcNF8zqVadDmpZJDyx5mfYx6Uhsp1rhTNUiHFUbW R0Whrn6FC4I+odN7bla2E5h9MHjnTTF66JiMU7JXtHrq8cEWb79eXtj2OV53AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJ3EdtaOdlh5IbBhRWFmXOGidSwUwHwYDVR0j BBgwFoAUTaEdWvXxeucWUZ+EomPhpeV9UkQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDczMDRiODMtMzBhYS00YmJmLTlmZDctMmZjZWFkYmYwMDMwLzAvNERBMTFENUFG NUYxN0FFNzE2NTE5Rjg0QTI2M0UxQTVFNTdENTI0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80REExMUQ1QUY1RjE3QUU3MTY1MTlGODRBMjYzRTFBNUU1N0Q1 MjQ0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMDczMDRiODMtMzBhYS00YmJmLTlm ZDctMmZjZWFkYmYwMDMwLzAvNERBMTFENUFGNUYxN0FFNzE2NTE5Rjg0QTI2M0Ux QTVFNTdENTI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGfo/VK7WSCo45j8nOdWXksX1FSMgXx7zcLB 6nFZibWFst5AIEGpMr3eFtpTXeuacstOeTrxjtcu++N5JkgGfP34K1JrcSj//ZEo nHstA8iBOSPReZqNLyVjGRQC/uxiiV6qbf/8mgZVqSsvl8CuAV67P4MPE1lfOBmx nxqQENAg6gxAaRCNfnJoDLu8Jzdkcb/0ANTud1meQS5pY8y4qJrEE+N2ek+dp78i mIdnU7u3/6P+jv/ljV2g37b7mtPcU5mi3DAPT5P0v5hcR/3dfxtDjN/KJq6yrxYy ex2qEL98p59j8kGy3OS1dp+8UFXjvS/Z0pSUsfTZdqj4yF7etEc= -----END CERTIFICATE-----Generated at Tue May 12 22:46:31 2026 by rpki-client