$ rpki-client -vvf rpki-rsync.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.mft File: 1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.mft (raw, json) Hash identifier: jUpKm2ZIKHpiGWNeMSsdovZMX+AyCOflpiTul2eVQgA= Subject key identifier: 3B:02:F2:F7:AC:50:20:98:0A:D5:65:A7:D4:E2:4D:6A:F9:D7:33:37 Authority key identifier: 1D:28:A6:E2:1F:28:12:9D:49:52:A0:08:FF:F8:EE:9F:B3:F7:98:FD Certificate issuer: /CN=1D28A6E21F28129D4952A008FFF8EE9FB3F798FD Certificate serial: 0530396F0CC9DE301D0092BD7B0F536E022B2A6A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.mft Manifest number: 0F Signing time: Tue 12 May 2026 20:11:56 +0000 Manifest this update: Tue 12 May 2026 20:06:56 +0000 Manifest next update: Wed 13 May 2026 22:27:56 +0000 Files and hashes: 1: 3130332e36372e38342e302f32332d3234203d3e20313532303034.roa (hash: Iyu6UGXh6K6YUKWK1Cw0yY2+2dIgfvoG18aCPpAU41Y=) 2: 1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.crl (hash: VQK+fyvY5eFkj4FGvnUl78ToB/lv/r49uK6qeSPIpNc=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.crl rsync://rpki-rsync.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:30:39:6f:0c:c9:de:30:1d:00:92:bd:7b:0f:53:6e:02:2b:2a:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D28A6E21F28129D4952A008FFF8EE9FB3F798FD Validity Not Before: May 12 20:06:56 2026 GMT Not After : May 13 22:27:56 2026 GMT Subject: CN=3B02F2F7AC5020980AD565A7D4E24D6AF9D73337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:52:f3:0d:ba:51:97:58:b4:1f:0b:47:c0:1a: 47:f6:06:e1:bf:e8:0c:63:06:38:39:d8:ac:e3:d6: bf:ee:f8:9a:fc:3c:1d:16:c9:73:b9:89:1d:b0:c6: f6:c6:b2:f3:9b:34:61:fa:84:f2:2d:19:e1:fa:26: e5:bc:19:44:31:21:ec:13:23:9c:b1:b6:66:63:31: 6c:99:0b:a2:77:f3:4d:27:b0:11:e8:f5:0e:f6:7c: 31:93:74:5f:4a:af:fc:ca:2d:7f:b5:4c:1b:44:2e: eb:b6:d7:f4:cc:a8:3f:30:da:0f:0b:40:d0:a5:81: 3f:d1:b3:24:eb:fb:8f:57:32:43:b4:1e:59:c5:13: fb:9d:fb:02:90:80:17:9c:4f:fb:f6:32:8b:7b:48: 27:94:26:ae:f5:74:d9:cc:d1:70:5f:3a:ad:b3:0a: 0a:1c:11:b7:17:f0:48:26:17:67:1f:b3:51:e4:fd: 74:dc:b4:59:55:e1:a9:5f:42:0e:a3:46:f6:c8:a9: 57:66:de:13:d1:4a:62:25:80:53:73:46:db:7f:d7: 4c:0d:48:8b:52:ed:f3:d3:ed:73:fe:3e:5b:29:e6: f5:f8:34:9d:78:25:5c:32:97:2b:06:73:49:06:71: da:df:97:e6:3f:bc:72:3a:3c:4e:6a:b8:f8:f6:43: 1a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:02:F2:F7:AC:50:20:98:0A:D5:65:A7:D4:E2:4D:6A:F9:D7:33:37 X509v3 Authority Key Identifier: keyid:1D:28:A6:E2:1F:28:12:9D:49:52:A0:08:FF:F8:EE:9F:B3:F7:98:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1ad39450-4584-4882-b5a7-2cbc0e577474/0/1D28A6E21F28129D4952A008FFF8EE9FB3F798FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:5d:59:25:69:42:db:bf:49:6e:2c:6f:d9:2d:2d:fb:5b:db: 11:ca:b7:72:59:cd:b5:e6:7e:51:87:b5:7a:80:0e:f6:85:a0: e5:c0:8f:56:0a:f8:87:7d:88:16:31:e7:db:1f:fe:af:67:d2: f3:2d:e4:21:5d:cc:38:a2:a9:60:3a:e2:dc:74:1b:8f:e1:8d: ef:5f:0b:27:f4:3f:3a:39:ba:c2:ca:ae:79:c1:da:1c:e2:66: 1f:77:1d:8f:85:2b:03:c0:c4:5b:29:cc:bd:57:c9:52:c9:ff: f2:5b:08:e1:b6:88:0a:8a:af:b7:a7:43:fa:56:76:fa:9d:b9: c2:f3:87:57:42:9b:01:7c:e7:97:3a:99:61:af:a7:6d:c9:29: 2c:53:cf:47:56:8f:32:cf:a7:6e:f5:27:0f:46:02:14:ab:62: e6:e6:3e:8a:42:99:99:e6:50:d8:56:d2:1c:7c:81:41:d1:77: bb:4a:ea:b6:ee:52:1f:49:40:28:70:91:51:ff:1b:c8:92:4a: 55:3c:41:7d:62:e4:41:3a:49:27:87:1d:cd:7b:bc:e6:23:e2: 2a:02:4a:d6:75:0c:24:9b:03:c0:d5:7e:21:52:fe:0b:4e:38: 5d:e6:6f:02:33:1c:4a:66:6f:cf:0c:30:7e:81:c7:14:eb:e9: 59:6c:96:de -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBTA5bwzJ3jAdAJK9ew9TbgIrKmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUQyOEE2RTIxRjI4MTI5RDQ5NTJBMDA4RkZGOEVFOUZC M0Y3OThGRDAeFw0yNjA1MTIyMDA2NTZaFw0yNjA1MTMyMjI3NTZaMDMxMTAvBgNV BAMTKDNCMDJGMkY3QUM1MDIwOTgwQUQ1NjVBN0Q0RTI0RDZBRjlENzMzMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqUvMNulGXWLQfC0fAGkf2BuG/ 6AxjBjg52Kzj1r/u+Jr8PB0WyXO5iR2wxvbGsvObNGH6hPItGeH6JuW8GUQxIewT I5yxtmZjMWyZC6J3800nsBHo9Q72fDGTdF9Kr/zKLX+1TBtELuu21/TMqD8w2g8L QNClgT/RsyTr+49XMkO0HlnFE/ud+wKQgBecT/v2Mot7SCeUJq71dNnM0XBfOq2z CgocEbcX8EgmF2cfs1Hk/XTctFlV4alfQg6jRvbIqVdm3hPRSmIlgFNzRtt/10wN SItS7fPT7XP+Plsp5vX4NJ14JVwylysGc0kGcdrfl+Y/vHI6PE5quPj2QxohAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOwLy96xQIJgK1WWn1OJNavnXMzcwHwYDVR0j BBgwFoAUHSim4h8oEp1JUqAI//jun7P3mP0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWFkMzk0NTAtNDU4NC00ODgyLWI1YTctMmNiYzBlNTc3NDc0LzAvMUQyOEE2RTIx RjI4MTI5RDQ5NTJBMDA4RkZGOEVFOUZCM0Y3OThGRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xRDI4QTZFMjFGMjgxMjlENDk1MkEwMDhGRkY4RUU5RkIzRjc5 OEZELmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMWFkMzk0NTAtNDU4NC00ODgyLWI1 YTctMmNiYzBlNTc3NDc0LzAvMUQyOEE2RTIxRjI4MTI5RDQ5NTJBMDA4RkZGOEVF OUZCM0Y3OThGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE1dWSVpQtu/SW4sb9ktLftb2xHKt3JZzbXm flGHtXqADvaFoOXAj1YK+Id9iBYx59sf/q9n0vMt5CFdzDiiqWA64tx0G4/hje9f Cyf0Pzo5usLKrnnB2hziZh93HY+FKwPAxFspzL1XyVLJ//JbCOG2iAqKr7enQ/pW dvqducLzh1dCmwF855c6mWGvp23JKSxTz0dWjzLPp271Jw9GAhSrYubmPopCmZnm UNhW0hx8gUHRd7tK6rbuUh9JQChwkVH/G8iSSlU8QX1i5EE6SSeHHc17vOYj4ioC StZ1DCSbA8DVfiFS/gtOOF3mbwIzHEpmb88MMH6BxxTr6Vlslt4= -----END CERTIFICATE-----Generated at Wed May 13 00:13:35 2026 by rpki-client