$ rpki-client -vvf rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft File: 2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft (raw, json) Hash identifier: CnMkC6Puq3aG7LObUHcqjQe4+qZ48nQFAw2lA40d4XY= Subject key identifier: 35:01:A8:16:48:96:8F:65:84:3C:C5:F3:0B:4A:4B:C9:21:31:DE:E3 Authority key identifier: 2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 Certificate issuer: /CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Certificate serial: 1E91773429AA4896C240CA924366AF36746B6965 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft Manifest number: 0F Signing time: Tue 12 May 2026 21:39:27 +0000 Manifest this update: Tue 12 May 2026 21:34:27 +0000 Manifest next update: Thu 14 May 2026 01:16:27 +0000 Files and hashes: 1: 3131372e3132312e3230342e302f32342d3234203d3e203436303239.roa (hash: 9xyVMpzGgMxzPTr0/YEPxhsOk4K0WU7VoWYP2UAihTY=) 2: 2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl (hash: rh3UZALffCTJBChz/jm++sSAPAhe8dlzFeE+lWe+5dA=) 3: 3131372e3132312e3230312e302f32342d3234203d3e203436303239.roa (hash: Gt77/DpvHcyfECJ/rzUv8b/LftlAsDwob9ro6Az9CBg=) 4: 3131372e3132312e3230332e302f32342d3234203d3e203436303239.roa (hash: khNOf5qfeVAtCDmI+P0qU0wtTsenc+owEXE7IuCFTL4=) 5: 3131372e3132312e3230352e302f32342d3234203d3e203436303239.roa (hash: UH+sfXi3uyUzmqtZ5a3kiK88kT3KnsNHU+6St14pVbU=) 6: 3131372e3132312e3230362e302f32342d3234203d3e203436303239.roa (hash: JklHOE9UnXIvsKlW/PC+ZLgav3mgVpKETno9/XOSONo=) 7: 3131372e3132312e3230322e302f32342d3234203d3e203436303239.roa (hash: G6layxH6VqJ35uHJZhmjgga72kPwjzbEYW/yD2TBIJU=) 8: 3131372e3132312e3230372e302f32342d3234203d3e203436303239.roa (hash: 5qjiHCREo3yTZVwviMFSFaOdgsJ0Wu7pJnWioBrnUw8=) 9: 3131372e3132312e3230302e302f32342d3234203d3e203436303239.roa (hash: jjDQyLwOLFkeP+V5865OD4J5ZSFyfyGf7kRLTYcgAUA=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:91:77:34:29:aa:48:96:c2:40:ca:92:43:66:af:36:74:6b:69:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CF0624C97052A188B12C2D8DFD69256BEAEA0A3 Validity Not Before: May 12 21:34:27 2026 GMT Not After : May 14 01:16:27 2026 GMT Subject: CN=3501A81648968F65843CC5F30B4A4BC92131DEE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e0:38:8a:1e:27:ba:23:02:cd:7d:d2:c8:b2: 8a:bd:77:62:ef:31:79:7f:9a:a0:44:0c:99:e1:f2: ef:7e:c5:eb:24:bf:02:4f:5d:eb:f6:c9:e3:f8:a8: 1e:22:17:22:6b:96:fa:b8:3f:1e:d8:74:1a:47:95: 89:9a:d3:97:44:fc:54:15:f2:98:db:22:0e:88:a0: a0:b9:12:39:35:da:75:46:4f:c3:d9:87:b1:98:58: f8:8c:61:1e:2c:7e:54:31:17:83:bc:54:96:ae:ec: 8a:38:5c:c5:a4:cc:3d:83:bd:74:a2:fe:8f:e9:86: d6:83:05:09:a2:61:f0:fd:2f:55:87:96:d0:13:1a: ce:27:21:1f:42:58:2c:0b:88:a7:a5:f0:de:96:7f: 7d:0c:04:99:6f:f0:08:cf:81:92:d8:29:7c:be:e5: f9:2e:2e:61:5c:a0:6e:4a:4e:cb:e4:54:34:2b:b8: ea:95:88:f5:a4:0e:98:d1:e3:0d:ea:c2:72:87:57: 09:89:40:57:ee:28:e9:43:83:be:02:7c:9f:2f:84: 6c:46:6e:e6:25:6d:00:a3:2c:2e:f2:f8:25:e2:4c: fb:44:af:9d:9f:ed:cd:9a:df:8d:e3:4a:26:3f:5a: 21:61:6e:c1:66:b5:83:6c:4d:b2:15:c6:af:a7:af: a9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:01:A8:16:48:96:8F:65:84:3C:C5:F3:0B:4A:4B:C9:21:31:DE:E3 X509v3 Authority Key Identifier: keyid:2C:F0:62:4C:97:05:2A:18:8B:12:C2:D8:DF:D6:92:56:BE:AE:A0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/2CF0624C97052A188B12C2D8DFD69256BEAEA0A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:42:67:00:a6:e8:66:37:67:61:f6:92:b8:cd:00:25:49:43: 5b:26:b7:aa:7a:cb:a5:a0:eb:92:5b:65:14:ce:bc:e0:db:65: d8:0e:e7:24:c1:2a:7a:fb:4d:59:47:d0:97:55:2b:09:a4:42: fa:2b:c5:33:29:3c:a7:1f:da:7a:9c:c3:a1:19:56:6a:cc:42: da:09:4b:f3:a7:dd:c8:74:f5:27:61:73:73:b9:ad:1d:6b:ef: dd:25:91:50:12:9d:81:84:dd:20:27:39:48:6e:01:3f:a6:39: 5f:61:63:9a:cb:34:12:ad:ee:01:ff:6e:25:4a:08:10:54:d6: 63:4b:05:0a:25:4a:d7:5d:7b:31:0d:e0:b3:2a:d5:20:71:cb: 52:d7:07:f9:6d:98:ee:80:a8:f1:93:f2:30:cf:77:e7:71:a3: 9b:4b:91:0d:75:cd:86:e6:99:a9:8d:2d:bc:29:c5:0e:54:46: a0:81:01:35:79:50:f8:86:aa:74:bb:b0:0a:2c:22:a4:ac:4f: bb:b9:4e:5c:72:84:f4:e7:72:a8:5f:32:b5:9a:75:9c:a7:7d: ca:75:7d:2c:15:54:6e:71:05:8f:72:72:f3:2e:ba:15:99:31: b2:77:3c:a0:20:4f:6c:b9:ac:79:b9:cf:73:08:50:da:a6:62: 62:5d:58:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHpF3NCmqSJbCQMqSQ2avNnRraWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNGMDYyNEM5NzA1MkExODhCMTJDMkQ4REZENjkyNTZC RUFFQTBBMzAeFw0yNjA1MTIyMTM0MjdaFw0yNjA1MTQwMTE2MjdaMDMxMTAvBgNV BAMTKDM1MDFBODE2NDg5NjhGNjU4NDNDQzVGMzBCNEE0QkM5MjEzMURFRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDq4DiKHie6IwLNfdLIsoq9d2Lv MXl/mqBEDJnh8u9+xeskvwJPXev2yeP4qB4iFyJrlvq4Px7YdBpHlYma05dE/FQV 8pjbIg6IoKC5Ejk12nVGT8PZh7GYWPiMYR4sflQxF4O8VJau7Io4XMWkzD2DvXSi /o/phtaDBQmiYfD9L1WHltATGs4nIR9CWCwLiKel8N6Wf30MBJlv8AjPgZLYKXy+ 5fkuLmFcoG5KTsvkVDQruOqViPWkDpjR4w3qwnKHVwmJQFfuKOlDg74CfJ8vhGxG buYlbQCjLC7y+CXiTPtEr52f7c2a343jSiY/WiFhbsFmtYNsTbIVxq+nr6lPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNQGoFkiWj2WEPMXzC0pLySEx3uMwHwYDVR0j BBgwFoAULPBiTJcFKhiLEsLY39aSVr6uoKMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTUzYjA2N2MtZWNjOS00ZGNhLTk4N2QtYjk1NzY4MTVmODU1LzAvMkNGMDYyNEM5 NzA1MkExODhCMTJDMkQ4REZENjkyNTZCRUFFQTBBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0YwNjI0Qzk3MDUyQTE4OEIxMkMyRDhERkQ2OTI1NkJFQUVB MEEzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMTUzYjA2N2MtZWNjOS00ZGNhLTk4 N2QtYjk1NzY4MTVmODU1LzAvMkNGMDYyNEM5NzA1MkExODhCMTJDMkQ4REZENjky NTZCRUFFQTBBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAZCZwCm6GY3Z2H2krjNACVJQ1smt6p6y6Wg 65JbZRTOvODbZdgO5yTBKnr7TVlH0JdVKwmkQvorxTMpPKcf2nqcw6EZVmrMQtoJ S/On3ch09Sdhc3O5rR1r790lkVASnYGE3SAnOUhuAT+mOV9hY5rLNBKt7gH/biVK CBBU1mNLBQolStddezEN4LMq1SBxy1LXB/ltmO6AqPGT8jDPd+dxo5tLkQ11zYbm mamNLbwpxQ5URqCBATV5UPiGqnS7sAosIqSsT7u5TlxyhPTncqhfMrWadZynfcp1 fSwVVG5xBY9ycvMuuhWZMbJ3PKAgT2y5rHm5z3MIUNqmYmJdWKw= -----END CERTIFICATE-----Generated at Wed May 13 01:37:39 2026 by rpki-client