$ rpki-client -vvf rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.mft File: D5B392E916885394AA1C2B31FE082DC317BCE686.mft (raw, json) Hash identifier: N1i+hnstKsDSrzSrKH4URvm+u0uwGt3PvNbLuxUoX/g= Subject key identifier: 62:98:1D:EF:D7:BD:0A:A8:C5:44:D1:0D:C8:41:02:6C:B7:27:EA:68 Authority key identifier: D5:B3:92:E9:16:88:53:94:AA:1C:2B:31:FE:08:2D:C3:17:BC:E6:86 Certificate issuer: /CN=D5B392E916885394AA1C2B31FE082DC317BCE686 Certificate serial: 5BD37313838A87F2F499B1D4680788D04BACCCD0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D5B392E916885394AA1C2B31FE082DC317BCE686.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.mft Manifest number: 0F Signing time: Tue 12 May 2026 18:08:16 +0000 Manifest this update: Tue 12 May 2026 18:03:16 +0000 Manifest next update: Wed 13 May 2026 21:36:16 +0000 Files and hashes: 1: 3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa (hash: AcnbfkvX1w/c7v0ssG/zc+baC3z+ryz2Lyxv+skns7o=) 2: 3130332e3134332e32322e302f32342d3234203d3e20313339343331.roa (hash: Mij6gjlboJz168uvi1+veD3ghjYsq0hmKTYOHdpJFfc=) 3: 323430353a343663303a3a2f33322d3332203d3e20313339343331.roa (hash: 72ltkdAz77XwydUIwwc3kpnQIFXbCRX8QiK7JdJ6abI=) 4: D5B392E916885394AA1C2B31FE082DC317BCE686.crl (hash: c64/9ze1Vxtcupr4wV1C2s/RQmr4rAFXRLXqodmkY+8=) 5: 3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa (hash: n/anw1j/p698bFcxqqm49V4G12x2QBboMMl4JYNKkrU=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.crl rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D5B392E916885394AA1C2B31FE082DC317BCE686.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 21:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d3:73:13:83:8a:87:f2:f4:99:b1:d4:68:07:88:d0:4b:ac:cc:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D5B392E916885394AA1C2B31FE082DC317BCE686 Validity Not Before: May 12 18:03:16 2026 GMT Not After : May 13 21:36:16 2026 GMT Subject: CN=62981DEFD7BD0AA8C544D10DC841026CB727EA68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a1:b8:f0:14:62:66:3c:d3:de:05:84:7c:18: 63:e3:3b:a7:f7:1a:15:a7:42:ba:75:31:81:ce:2c: ab:6c:0a:3b:d0:8f:b3:e8:46:40:41:2f:09:28:8e: 79:07:31:09:88:03:c5:b9:49:34:cf:e7:5a:cb:98: a5:09:ed:1b:fc:43:22:95:23:b0:52:e9:74:61:6f: 05:f4:8f:4d:68:e4:36:38:8e:20:26:00:03:b1:10: a5:94:f3:13:ae:d0:f7:e5:f6:06:4a:fb:e4:0b:f0: 4e:7d:ce:c1:f9:32:d8:46:58:af:24:0d:2c:cf:e3: 67:52:15:29:40:a1:df:4d:96:2f:d2:e7:e8:a7:5c: 73:a2:dc:36:74:5d:91:4b:11:01:46:12:1e:91:9e: d5:86:66:df:28:0d:1e:36:f9:58:85:95:4f:24:ec: 11:e1:01:24:12:47:92:58:08:55:f1:b7:5e:e1:d1: f2:51:b2:27:94:b9:b3:17:45:6f:5f:93:f7:f7:5a: 35:88:ac:0e:18:a6:ea:44:25:2a:b2:cf:8e:49:f4: 32:da:f0:1d:a3:84:32:37:85:ca:b2:3b:80:6e:86: 6d:3c:db:7f:45:4c:79:c2:37:4b:f5:45:d9:c7:e8: d5:5a:f6:01:d8:6c:4a:d3:b2:0f:94:07:f2:d7:1d: f7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:98:1D:EF:D7:BD:0A:A8:C5:44:D1:0D:C8:41:02:6C:B7:27:EA:68 X509v3 Authority Key Identifier: keyid:D5:B3:92:E9:16:88:53:94:AA:1C:2B:31:FE:08:2D:C3:17:BC:E6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D5B392E916885394AA1C2B31FE082DC317BCE686.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/D5B392E916885394AA1C2B31FE082DC317BCE686.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:82:1d:5c:e5:bf:7e:9c:31:75:80:5c:f9:ec:71:65:a3:3b: aa:4f:df:d2:22:02:d5:8b:bf:5d:1a:ab:cd:95:0b:c3:bb:ee: 83:1b:f5:ba:c7:25:94:eb:85:d1:75:20:2b:dc:42:30:20:c6: 76:73:68:bc:b5:80:25:13:63:92:90:92:9c:c2:be:9f:a0:82: 2b:fc:10:e5:cc:f3:f1:78:fa:83:4f:0d:5c:21:b4:1a:85:ca: 6a:b9:9c:37:fc:d1:e8:16:3e:e7:1b:44:10:d7:29:27:a4:84: c2:38:55:97:1f:78:b5:23:9b:4a:ed:46:8e:0b:42:e0:cb:1c: 26:ef:ee:3a:f9:c7:ee:68:24:3a:7a:ee:c0:d9:7e:57:88:19: db:4a:73:8d:b5:a1:97:61:5b:f1:08:97:2a:67:1d:93:52:36: ab:f7:10:7c:1b:62:3c:d4:a1:68:f8:67:53:be:62:e6:9e:67: 56:48:57:1c:6d:c2:0e:cf:b3:10:2a:f5:2d:e9:d6:2e:32:54: cc:ce:ee:70:f8:74:a4:49:43:cb:7f:82:93:eb:c5:08:42:44: ca:75:8f:a3:69:a5:e5:6b:ae:2f:ce:c4:9d:05:a2:b9:d0:5d: c8:b7:ca:36:39:71:f8:88:88:c4:d6:e5:c9:85:e5:ec:56:5f: 1d:8c:54:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUW9NzE4OKh/L0mbHUaAeI0EuszNAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDVCMzkyRTkxNjg4NTM5NEFBMUMyQjMxRkUwODJEQzMx N0JDRTY4NjAeFw0yNjA1MTIxODAzMTZaFw0yNjA1MTMyMTM2MTZaMDMxMTAvBgNV BAMTKDYyOTgxREVGRDdCRDBBQThDNTQ0RDEwREM4NDEwMjZDQjcyN0VBNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSobjwFGJmPNPeBYR8GGPjO6f3 GhWnQrp1MYHOLKtsCjvQj7PoRkBBLwkojnkHMQmIA8W5STTP51rLmKUJ7Rv8QyKV I7BS6XRhbwX0j01o5DY4jiAmAAOxEKWU8xOu0Pfl9gZK++QL8E59zsH5MthGWK8k DSzP42dSFSlAod9Nli/S5+inXHOi3DZ0XZFLEQFGEh6RntWGZt8oDR42+ViFlU8k 7BHhASQSR5JYCFXxt17h0fJRsieUubMXRW9fk/f3WjWIrA4YpupEJSqyz45J9DLa 8B2jhDI3hcqyO4Buhm08239FTHnCN0v1RdnH6NVa9gHYbErTsg+UB/LXHfdHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYpgd79e9CqjFRNENyEECbLcn6mgwHwYDVR0j BBgwFoAU1bOS6RaIU5SqHCsx/ggtwxe85oYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTQ2ZjMzZjItZjA2ZS00ZWI2LWFlNjEtNTUyOWJjYTFjZGNkLzAvRDVCMzkyRTkx Njg4NTM5NEFBMUMyQjMxRkUwODJEQzMxN0JDRTY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENUIzOTJFOTE2ODg1Mzk0QUExQzJCMzFGRTA4MkRDMzE3QkNF Njg2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMTQ2ZjMzZjItZjA2ZS00ZWI2LWFl NjEtNTUyOWJjYTFjZGNkLzAvRDVCMzkyRTkxNjg4NTM5NEFBMUMyQjMxRkUwODJE QzMxN0JDRTY4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAISCHVzlv36cMXWAXPnscWWjO6pP39IiAtWL v10aq82VC8O77oMb9brHJZTrhdF1ICvcQjAgxnZzaLy1gCUTY5KQkpzCvp+ggiv8 EOXM8/F4+oNPDVwhtBqFymq5nDf80egWPucbRBDXKSekhMI4VZcfeLUjm0rtRo4L QuDLHCbv7jr5x+5oJDp67sDZfleIGdtKc421oZdhW/EIlypnHZNSNqv3EHwbYjzU oWj4Z1O+YuaeZ1ZIVxxtwg7PsxAq9S3p1i4yVMzO7nD4dKRJQ8t/gpPrxQhCRMp1 j6NppeVrri/OxJ0FornQXci3yjY5cfiIiMTW5cmF5exWXx2MVBc= -----END CERTIFICATE-----Generated at Wed May 13 04:02:55 2026 by rpki-client