$ rpki-client -vvf rpki-rsync.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.mft File: A5336FEFF111D5B925A8954E53C4C9C5E22AB800.mft (raw, json) Hash identifier: vEShQ/rjTOnKC1Mg5TxLD+KbqmJsYEU7dlnn7UlbkcQ= Subject key identifier: 5A:04:CD:B7:54:59:9D:08:5F:55:81:BF:6B:4F:71:D3:88:9A:B4:3B Authority key identifier: A5:33:6F:EF:F1:11:D5:B9:25:A8:95:4E:53:C4:C9:C5:E2:2A:B8:00 Certificate issuer: /CN=A5336FEFF111D5B925A8954E53C4C9C5E22AB800 Certificate serial: 1D175A9231E4D7BDF92CF9ADB978B12CC77BECC0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.mft Manifest number: 0F Signing time: Tue 12 May 2026 19:30:34 +0000 Manifest this update: Tue 12 May 2026 19:25:34 +0000 Manifest next update: Wed 13 May 2026 22:47:34 +0000 Files and hashes: 1: A5336FEFF111D5B925A8954E53C4C9C5E22AB800.crl (hash: YeNyyTB/dI11RBQMxS3nMIV9GP0orOxUFcKMZlGFrMQ=) 2: 3130332e3132352e31332e302f32342d3234203d3e20313335363336.roa (hash: 8YrdvedqGs1zZAIQAtRZi80VSrXLRsF6zbtnQUstSsA=) 3: 3130332e3132352e31352e302f32342d3234203d3e20313335363336.roa (hash: +IUhzjX4iJxCcMgbcQWdmMHcD7sxtYcY/3hZmSmLykA=) 4: 3130332e3132352e31342e302f32342d3234203d3e20313335363336.roa (hash: m7Frx9lSqsLf1s8zbJ/qpER1sGLgEtc9hyQy6nCFDhY=) 5: 3130332e3132352e31322e302f32342d3234203d3e20313533333137.roa (hash: AZJ4QAHlxTzcVIbJwO/UxabGeC31FjTnD/rHg0D3/ME=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.crl rsync://rpki-rsync.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:17:5a:92:31:e4:d7:bd:f9:2c:f9:ad:b9:78:b1:2c:c7:7b:ec:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5336FEFF111D5B925A8954E53C4C9C5E22AB800 Validity Not Before: May 12 19:25:34 2026 GMT Not After : May 13 22:47:34 2026 GMT Subject: CN=5A04CDB754599D085F5581BF6B4F71D3889AB43B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:17:84:f6:65:83:a7:25:be:29:1d:47:ad:92: f9:ad:0f:84:8a:77:f7:67:90:40:a4:32:07:68:1d: 53:5d:a4:94:23:79:d9:63:19:cb:b2:f5:47:6e:8e: 31:d5:bf:f6:bf:eb:62:21:f3:02:2b:1a:81:d9:bb: b0:12:9d:f3:39:5d:de:9c:43:ea:a8:da:ab:b0:92: 55:e1:09:3b:ff:b6:9f:d5:39:4c:59:56:de:22:d6: 53:62:bc:b2:0d:65:ed:45:f9:94:a3:59:4f:ca:ce: 6d:ce:ac:f9:4a:bf:6d:c9:ca:e4:4f:c2:a4:c3:c2: eb:88:fd:62:85:37:f6:11:af:37:65:4a:74:7a:07: 5b:81:5e:13:30:65:c4:80:6f:9a:7f:bb:0d:b1:a0: 60:b6:fa:a4:fb:c5:b7:d0:d3:42:5d:02:43:6c:a8: 7a:af:e8:67:9d:81:02:eb:1f:99:d0:2c:67:15:40: 31:a7:87:c3:53:b8:03:02:a1:38:46:6b:7e:66:7b: 4b:82:04:46:03:7c:37:36:5a:33:74:da:7f:de:07: 55:c6:b1:7f:81:c5:f1:aa:95:6c:88:4a:7b:9a:94: 15:ec:63:46:53:da:42:ed:d3:83:ef:63:56:2a:20: 70:9f:6f:d5:05:54:cb:57:14:7d:fa:95:3f:d0:f7: 89:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:04:CD:B7:54:59:9D:08:5F:55:81:BF:6B:4F:71:D3:88:9A:B4:3B X509v3 Authority Key Identifier: keyid:A5:33:6F:EF:F1:11:D5:B9:25:A8:95:4E:53:C4:C9:C5:E2:2A:B8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0c54be9a-9b5d-4c64-b4e8-61c74e9ecedc/0/A5336FEFF111D5B925A8954E53C4C9C5E22AB800.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:ba:a0:50:8f:16:78:9c:8d:09:b2:12:b8:a8:5c:17:b5:0f: b9:ad:a6:c8:e6:19:18:8f:31:2e:b3:6e:51:2f:82:2b:47:a7: 4d:2a:8b:f1:dc:3b:0e:bb:23:68:4d:dd:8d:7d:10:dc:fa:ca: 60:d1:55:6e:64:1a:d5:f7:a6:e3:42:00:ce:fe:b8:48:f1:d6: 7c:66:2e:d0:55:ee:5d:ea:71:a8:79:af:c0:92:4b:4f:b9:6e: bc:b7:bb:5e:32:0a:4f:f2:b9:7d:a7:fa:89:b6:45:01:24:6e: e5:16:db:b1:62:dc:2c:25:a2:46:fb:5c:01:6b:79:a4:52:65: 2f:25:2f:db:92:74:9e:2c:7c:bf:7f:7c:ee:46:8f:c1:d1:c7: be:f5:02:90:b0:b1:06:05:85:99:87:b1:e3:47:e0:bf:03:e5: 0d:dc:78:ab:92:46:f1:70:af:d2:a4:bf:dc:cd:26:10:38:0a: f2:46:b5:d1:23:91:bb:57:09:b4:8b:9f:41:29:2f:47:f1:69: 33:77:77:08:c9:2b:42:68:d4:f0:de:7d:f5:41:a2:3c:73:91: 7d:91:be:d6:56:a8:ea:1d:f0:61:08:2b:fb:0b:78:fb:1a:4b: bf:21:7b:db:f2:19:65:06:97:17:49:b2:3f:43:c6:76:fc:a4: 0a:47:02:26 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHRdakjHk1735LPmtuXixLMd77MAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTUzMzZGRUZGMTExRDVCOTI1QTg5NTRFNTNDNEM5QzVF MjJBQjgwMDAeFw0yNjA1MTIxOTI1MzRaFw0yNjA1MTMyMjQ3MzRaMDMxMTAvBgNV BAMTKDVBMDRDREI3NTQ1OTlEMDg1RjU1ODFCRjZCNEY3MUQzODg5QUI0M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQF4T2ZYOnJb4pHUetkvmtD4SK d/dnkECkMgdoHVNdpJQjedljGcuy9UdujjHVv/a/62Ih8wIrGoHZu7ASnfM5Xd6c Q+qo2quwklXhCTv/tp/VOUxZVt4i1lNivLINZe1F+ZSjWU/Kzm3OrPlKv23JyuRP wqTDwuuI/WKFN/YRrzdlSnR6B1uBXhMwZcSAb5p/uw2xoGC2+qT7xbfQ00JdAkNs qHqv6GedgQLrH5nQLGcVQDGnh8NTuAMCoThGa35me0uCBEYDfDc2WjN02n/eB1XG sX+BxfGqlWyISnualBXsY0ZT2kLt04PvY1YqIHCfb9UFVMtXFH36lT/Q94lRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWgTNt1RZnQhfVYG/a09x04iatDswHwYDVR0j BBgwFoAUpTNv7/ER1bklqJVOU8TJxeIquAAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGM1NGJlOWEtOWI1ZC00YzY0LWI0ZTgtNjFjNzRlOWVjZWRjLzAvQTUzMzZGRUZG MTExRDVCOTI1QTg5NTRFNTNDNEM5QzVFMjJBQjgwMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BNTMzNkZFRkYxMTFENUI5MjVBODk1NEU1M0M0QzlDNUUyMkFC ODAwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMGM1NGJlOWEtOWI1ZC00YzY0LWI0 ZTgtNjFjNzRlOWVjZWRjLzAvQTUzMzZGRUZGMTExRDVCOTI1QTg5NTRFNTNDNEM5 QzVFMjJBQjgwMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHe6oFCPFnicjQmyErioXBe1D7mtpsjmGRiP MS6zblEvgitHp00qi/HcOw67I2hN3Y19ENz6ymDRVW5kGtX3puNCAM7+uEjx1nxm LtBV7l3qcah5r8CSS0+5bry3u14yCk/yuX2n+om2RQEkbuUW27Fi3Cwlokb7XAFr eaRSZS8lL9uSdJ4sfL9/fO5Gj8HRx771ApCwsQYFhZmHseNH4L8D5Q3ceKuSRvFw r9Kkv9zNJhA4CvJGtdEjkbtXCbSLn0EpL0fxaTN3dwjJK0Jo1PDeffVBojxzkX2R vtZWqOod8GEIK/sLePsaS78he9vyGWUGlxdJsj9Dxnb8pApHAiY= -----END CERTIFICATE-----Generated at Tue May 12 22:33:15 2026 by rpki-client