$ rpki-client -vvf rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft File: BFD6A628A7E3273D48388984344C37C51116C61B.mft (raw, json) Hash identifier: uPQwUvwl+txYXoHEoUL1U9dQPez2pvZxcWBPn7BCxe8= Subject key identifier: C9:32:4E:29:E8:E5:AB:0B:70:19:1E:0E:D1:0D:64:4B:CB:56:3B:DA Authority key identifier: BF:D6:A6:28:A7:E3:27:3D:48:38:89:84:34:4C:37:C5:11:16:C6:1B Certificate issuer: /CN=BFD6A628A7E3273D48388984344C37C51116C61B Certificate serial: 3A96291B0C0C663FF83B0E48C444C6FB97EA7FC7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft Manifest number: 0F Signing time: Tue 12 May 2026 11:52:29 +0000 Manifest this update: Tue 12 May 2026 11:47:29 +0000 Manifest next update: Wed 13 May 2026 15:32:29 +0000 Files and hashes: 1: BFD6A628A7E3273D48388984344C37C51116C61B.crl (hash: Rb6BzRtEka5oJWXOBO145iwJBkdu0noWONdEcI7DPdI=) 2: 3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa (hash: MOL2ae8rUjuxcgs3avsNvyuD8S+QfiOggevD7CfKMcE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.crl rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:96:29:1b:0c:0c:66:3f:f8:3b:0e:48:c4:44:c6:fb:97:ea:7f:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFD6A628A7E3273D48388984344C37C51116C61B Validity Not Before: May 12 11:47:29 2026 GMT Not After : May 13 15:32:29 2026 GMT Subject: CN=C9324E29E8E5AB0B70191E0ED10D644BCB563BDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f4:68:28:5f:dd:02:bf:21:e9:cc:0b:9d:49: 4d:b5:b4:f0:68:e1:d3:94:3d:c1:f9:c3:f3:de:ae: a0:09:64:c8:1d:ca:46:cd:35:c6:2a:0e:a2:6b:0c: 50:53:47:b3:bd:43:08:b2:44:93:23:fd:04:cb:07: 48:41:c7:3a:19:72:d2:d4:5f:40:63:ea:c1:e4:71: 92:b1:3b:bb:7c:a9:22:54:2d:17:77:81:17:26:e0: a9:3a:f6:b6:95:d0:a0:c7:90:9e:f5:2f:3f:92:7d: 74:4d:5d:80:c7:93:fa:48:d6:1c:af:a6:76:e3:6e: ff:f5:3e:c0:b6:8b:92:64:32:d6:f6:3d:48:e4:be: 4e:fd:be:c1:31:f2:f4:92:1f:22:69:cf:e6:8d:68: 50:bb:8d:cd:7f:2e:24:1b:52:1c:6c:a9:5f:b3:9d: fd:6d:c2:b4:46:85:dd:8f:d0:17:1e:cb:72:c7:c8: 16:8a:24:4f:e4:09:10:c6:f8:5a:e3:b0:5b:17:97: 3b:16:9c:16:43:bb:70:2a:35:70:ea:9e:77:30:53: bb:83:6f:18:28:19:85:4e:d3:38:38:15:e5:3e:96: 88:e9:0d:e8:9b:3f:7a:89:5f:59:cc:9e:09:fe:98: be:3f:81:f8:04:87:c7:bc:57:7f:98:fb:b5:7a:7c: 62:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:32:4E:29:E8:E5:AB:0B:70:19:1E:0E:D1:0D:64:4B:CB:56:3B:DA X509v3 Authority Key Identifier: keyid:BF:D6:A6:28:A7:E3:27:3D:48:38:89:84:34:4C:37:C5:11:16:C6:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:db:94:da:e9:89:6c:93:1f:23:ca:c3:7c:4d:3a:2f:2a:e8: 03:a1:b0:fa:a7:d5:c4:20:77:ec:d1:17:43:84:e2:fe:20:d8: b7:d6:0e:bc:7b:21:ba:71:33:8f:5e:5e:0f:6e:bf:77:10:fb: 95:4c:3f:7b:e2:45:cf:6e:5c:ce:5c:63:64:15:7c:ba:b9:f6: d5:2b:1f:6f:b0:22:b8:2e:4c:16:ef:8d:e1:1e:b0:df:e1:02: 80:79:be:1b:e3:7d:09:3a:30:1f:c1:12:3f:0d:51:0c:a5:04: 02:92:bb:82:ca:60:30:55:15:d1:10:66:41:ef:27:6e:8e:a1: ed:25:de:ff:df:78:78:1e:db:79:26:8d:8f:fc:e9:3a:47:9a: f2:30:0f:49:fe:a1:20:62:09:04:e8:49:fe:5f:cc:6c:9d:ec: 92:2e:11:16:c1:4c:39:f0:c6:88:da:3e:55:e2:e9:df:b3:3d: 7e:2e:60:c9:ff:77:8c:f6:ab:39:d1:b2:86:86:f7:59:75:1c: fa:c9:ca:16:45:25:0f:d3:5b:76:e0:7f:82:65:37:64:ac:f3: 46:3e:01:21:90:2d:f2:87:8e:e0:4d:de:a3:5b:c0:d5:da:a1: ab:a8:b6:74:37:c0:c9:9b:24:92:46:55:13:e7:de:da:5f:e8: a9:43:9b:c2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOpYpGwwMZj/4Ow5IxETG+5fqf8cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZENkE2MjhBN0UzMjczRDQ4Mzg4OTg0MzQ0QzM3QzUx MTE2QzYxQjAeFw0yNjA1MTIxMTQ3MjlaFw0yNjA1MTMxNTMyMjlaMDMxMTAvBgNV BAMTKEM5MzI0RTI5RThFNUFCMEI3MDE5MUUwRUQxMEQ2NDRCQ0I1NjNCREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDT9GgoX90CvyHpzAudSU21tPBo 4dOUPcH5w/PerqAJZMgdykbNNcYqDqJrDFBTR7O9QwiyRJMj/QTLB0hBxzoZctLU X0Bj6sHkcZKxO7t8qSJULRd3gRcm4Kk69raV0KDHkJ71Lz+SfXRNXYDHk/pI1hyv pnbjbv/1PsC2i5JkMtb2PUjkvk79vsEx8vSSHyJpz+aNaFC7jc1/LiQbUhxsqV+z nf1twrRGhd2P0Bcey3LHyBaKJE/kCRDG+FrjsFsXlzsWnBZDu3AqNXDqnncwU7uD bxgoGYVO0zg4FeU+lojpDeibP3qJX1nMngn+mL4/gfgEh8e8V3+Y+7V6fGIXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyTJOKejlqwtwGR4O0Q1kS8tWO9owHwYDVR0j BBgwFoAUv9amKKfjJz1IOImENEw3xREWxhswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjFkOTdiNDAtYzAzMS00ZTViLTliNDItZDJhZTFjOWNmOTg3LzAvQkZENkE2MjhB N0UzMjczRDQ4Mzg4OTg0MzQ0QzM3QzUxMTE2QzYxQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CRkQ2QTYyOEE3RTMyNzNENDgzODg5ODQzNDRDMzdDNTExMTZD NjFCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjFkOTdiNDAtYzAzMS00ZTViLTli NDItZDJhZTFjOWNmOTg3LzAvQkZENkE2MjhBN0UzMjczRDQ4Mzg4OTg0MzQ0QzM3 QzUxMTE2QzYxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHLblNrpiWyTHyPKw3xNOi8q6AOhsPqn1cQg d+zRF0OE4v4g2LfWDrx7IbpxM49eXg9uv3cQ+5VMP3viRc9uXM5cY2QVfLq59tUr H2+wIrguTBbvjeEesN/hAoB5vhvjfQk6MB/BEj8NUQylBAKSu4LKYDBVFdEQZkHv J26Ooe0l3v/feHge23kmjY/86TpHmvIwD0n+oSBiCQToSf5fzGyd7JIuERbBTDnw xojaPlXi6d+zPX4uYMn/d4z2qznRsoaG91l1HPrJyhZFJQ/TW3bgf4JlN2Ss80Y+ ASGQLfKHjuBN3qNbwNXaoauotnQ3wMmbJJJGVRPn3tpf6KlDm8I= -----END CERTIFICATE-----Generated at Tue May 12 22:13:03 2026 by rpki-client