$ rpki-client -vvf rpki-rsync.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/BF072074B801AFE1292270FB7A3E090A276EB893.mft File: BF072074B801AFE1292270FB7A3E090A276EB893.mft (raw, json) Hash identifier: 8wJwuseoVewKSEfmIx8Oy8HeurvhLKRfcDTSrooq310= Subject key identifier: 4E:65:4E:C6:A0:D0:58:B3:B6:3D:48:22:73:91:A8:DF:47:89:68:A9 Authority key identifier: BF:07:20:74:B8:01:AF:E1:29:22:70:FB:7A:3E:09:0A:27:6E:B8:93 Certificate issuer: /CN=BF072074B801AFE1292270FB7A3E090A276EB893 Certificate serial: 7EBE5F0FEAC26F2ADFBEE19548C2C1E1F9E02F42 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF072074B801AFE1292270FB7A3E090A276EB893.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/BF072074B801AFE1292270FB7A3E090A276EB893.mft Manifest number: 0E Signing time: Tue 12 May 2026 08:50:16 +0000 Manifest this update: Tue 12 May 2026 08:45:16 +0000 Manifest next update: Wed 13 May 2026 09:44:16 +0000 Files and hashes: 1: 3231302e37392e3134312e302f32342d3234203d3e20313532303438.roa (hash: BKt7x+HSwXt0hFZm36Nu9CrkQ0Drly/dgK6bERbk3xk=) 2: BF072074B801AFE1292270FB7A3E090A276EB893.crl (hash: +WlZZm+jOi3r2gpq7whqPs6DFF+jZEe/2HF2ltt87Ms=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/BF072074B801AFE1292270FB7A3E090A276EB893.crl rsync://rpki-rsync.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/BF072074B801AFE1292270FB7A3E090A276EB893.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF072074B801AFE1292270FB7A3E090A276EB893.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:be:5f:0f:ea:c2:6f:2a:df:be:e1:95:48:c2:c1:e1:f9:e0:2f:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF072074B801AFE1292270FB7A3E090A276EB893 Validity Not Before: May 12 08:45:16 2026 GMT Not After : May 13 09:44:16 2026 GMT Subject: CN=4E654EC6A0D058B3B63D48227391A8DF478968A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b5:58:d2:ae:88:6f:74:c9:61:68:89:bd:2b: 8e:6b:ea:17:a7:8a:77:6e:54:e2:dc:ae:64:cb:bb: bc:7c:76:04:4f:7e:de:20:b0:c1:10:6c:84:f6:e9: 38:14:cc:3c:d9:13:40:b3:ba:3c:64:5d:43:ae:e5: ea:2e:e9:2f:79:de:da:02:40:44:99:4e:24:5b:af: f0:89:d7:20:81:f3:28:d3:11:57:5e:b2:c6:36:e7: 01:02:59:de:5a:45:42:38:4d:e9:35:cb:df:ea:b2: 2e:4f:56:5d:70:cb:0c:57:6f:70:0f:f1:cb:30:68: 06:db:c1:e5:7b:4d:93:8b:94:92:5d:5a:60:42:55: da:82:ca:04:a4:84:9b:f8:be:4c:35:1d:de:0c:1a: 57:3f:c3:05:ff:a1:c6:85:33:e9:1e:c8:02:5d:5f: fe:91:bf:de:47:62:c3:1d:f6:af:60:9c:b8:53:52: ed:5d:a3:61:91:94:f6:43:d6:dd:3f:22:9d:89:da: 8f:2b:16:99:87:c7:d6:b9:b6:5c:64:1d:28:30:ee: db:47:a7:ae:9a:cc:27:ba:22:eb:a4:d1:2f:92:e8: ce:08:c8:3f:5c:55:5c:85:3c:40:a8:e4:83:fb:d4: 88:a4:9c:ed:1a:63:97:69:6b:1c:14:40:9f:ec:93: 0b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:65:4E:C6:A0:D0:58:B3:B6:3D:48:22:73:91:A8:DF:47:89:68:A9 X509v3 Authority Key Identifier: keyid:BF:07:20:74:B8:01:AF:E1:29:22:70:FB:7A:3E:09:0A:27:6E:B8:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/BF072074B801AFE1292270FB7A3E090A276EB893.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BF072074B801AFE1292270FB7A3E090A276EB893.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1cd7d29b-dd1c-41dd-beef-5642864e86ae/0/BF072074B801AFE1292270FB7A3E090A276EB893.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:6e:39:77:cd:b8:95:03:05:c1:71:b1:48:d7:e3:69:23:84: 22:f8:1e:46:a3:c3:14:16:f1:96:6f:09:0e:dc:51:be:76:ae: 79:0d:c3:cf:ec:73:9a:9f:18:9f:b2:32:5d:3f:db:43:d2:ee: 3d:d5:02:2c:41:54:30:a2:fa:f0:67:90:64:94:04:64:e9:4a: 1b:d2:3b:27:e0:3f:33:b1:ff:4f:92:1e:43:14:6d:13:88:d5: f4:8e:6e:0f:50:04:de:67:e9:32:3c:f8:7b:91:08:ec:ba:82: 2c:c5:9a:0d:66:27:b0:e6:42:25:09:75:4c:b2:be:23:ec:fc: eb:60:b9:ad:f2:63:42:d3:32:ce:1a:89:37:1f:47:88:79:0f: 5e:69:36:31:5a:6c:ed:69:d1:77:d1:95:19:33:e2:29:d2:df: f4:58:86:59:ae:dc:87:46:a1:0d:c9:69:8d:9d:fc:9b:55:b0: 1b:97:12:5e:3e:fc:50:60:e1:e8:26:3f:54:f1:a0:c5:74:18: 31:7d:c3:69:84:7e:94:25:0a:83:08:4e:7e:d5:57:ff:82:62: 06:e1:bd:fe:dc:42:98:4f:6e:03:37:0e:bb:ff:d0:71:84:98: be:c0:45:72:c5:6f:20:d0:71:d6:d7:c7:7a:76:fe:a8:48:b5: 06:d6:8a:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfr5fD+rCbyrfvuGVSMLB4fngL0IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYwNzIwNzRCODAxQUZFMTI5MjI3MEZCN0EzRTA5MEEy NzZFQjg5MzAeFw0yNjA1MTIwODQ1MTZaFw0yNjA1MTMwOTQ0MTZaMDMxMTAvBgNV BAMTKDRFNjU0RUM2QTBEMDU4QjNCNjNENDgyMjczOTFBOERGNDc4OTY4QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/tVjSrohvdMlhaIm9K45r6hen induVOLcrmTLu7x8dgRPft4gsMEQbIT26TgUzDzZE0CzujxkXUOu5eou6S953toC QESZTiRbr/CJ1yCB8yjTEVdessY25wECWd5aRUI4Tek1y9/qsi5PVl1wywxXb3AP 8cswaAbbweV7TZOLlJJdWmBCVdqCygSkhJv4vkw1Hd4MGlc/wwX/ocaFM+keyAJd X/6Rv95HYsMd9q9gnLhTUu1do2GRlPZD1t0/Ip2J2o8rFpmHx9a5tlxkHSgw7ttH p66azCe6Iuuk0S+S6M4IyD9cVVyFPECo5IP71IiknO0aY5dpaxwUQJ/skwt9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTmVOxqDQWLO2PUgic5Go30eJaKkwHwYDVR0j BBgwFoAUvwcgdLgBr+EpInD7ej4JCiduuJMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWNkN2QyOWItZGQxYy00MWRkLWJlZWYtNTY0Mjg2NGU4NmFlLzAvQkYwNzIwNzRC ODAxQUZFMTI5MjI3MEZCN0EzRTA5MEEyNzZFQjg5My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CRjA3MjA3NEI4MDFBRkUxMjkyMjcwRkI3QTNFMDkwQTI3NkVC ODkzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMWNkN2QyOWItZGQxYy00MWRkLWJl ZWYtNTY0Mjg2NGU4NmFlLzAvQkYwNzIwNzRCODAxQUZFMTI5MjI3MEZCN0EzRTA5 MEEyNzZFQjg5My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGZuOXfNuJUDBcFxsUjX42kjhCL4HkajwxQW 8ZZvCQ7cUb52rnkNw8/sc5qfGJ+yMl0/20PS7j3VAixBVDCi+vBnkGSUBGTpShvS OyfgPzOx/0+SHkMUbROI1fSObg9QBN5n6TI8+HuRCOy6gizFmg1mJ7DmQiUJdUyy viPs/Otgua3yY0LTMs4aiTcfR4h5D15pNjFabO1p0XfRlRkz4inS3/RYhlmu3IdG oQ3JaY2d/JtVsBuXEl4+/FBg4egmP1TxoMV0GDF9w2mEfpQlCoMITn7VV/+CYgbh vf7cQphPbgM3Drv/0HGEmL7ARXLFbyDQcdbXx3p2/qhItQbWis4= -----END CERTIFICATE-----Generated at Tue May 12 22:20:05 2026 by rpki-client