$ rpki-client -vvf rpki-rsync.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.mft File: 8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.mft (raw, json) Hash identifier: pMTwH/G/jMcdyVPiybuyGEgGzcdGqOaPbJEUrvU0nLE= Subject key identifier: 11:75:A4:E2:B1:1C:84:AE:20:4E:7E:65:2E:E8:9D:08:A7:5B:FE:3D Authority key identifier: 8C:A8:A6:68:A2:40:DF:7B:15:FB:C3:E4:51:6A:84:08:BB:DC:47:E7 Certificate issuer: /CN=8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7 Certificate serial: 667B682BBD813FDFAAA3D536C34E086085436113 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.mft Manifest number: 0F Signing time: Tue 12 May 2026 18:59:40 +0000 Manifest this update: Tue 12 May 2026 18:54:40 +0000 Manifest next update: Wed 13 May 2026 21:00:40 +0000 Files and hashes: 1: 3130332e31362e37392e302f32342d3234203d3e20313331373835.roa (hash: KbKAffsvKxiK1iR4ZLtyFSXqzPv63zoW9cNrraJoQ4s=) 2: 3130332e3232362e35352e302f32342d3234203d3e20313331373835.roa (hash: J67UWBhwkB4SyeMxqFOonlk/hP7ZCxo/ttgUlmNhJvU=) 3: 3130332e3131362e3130382e302f32342d3234203d3e20313331373835.roa (hash: CtGqY694vs+5rhe29OiFriR1fCqTy1GqyZ3iimqLrsk=) 4: 8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.crl (hash: YaKnV53GNddCYWNT0VB3xyZW+ouPZ/Au9PWAloRNoto=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.crl rsync://rpki-rsync.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:7b:68:2b:bd:81:3f:df:aa:a3:d5:36:c3:4e:08:60:85:43:61:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7 Validity Not Before: May 12 18:54:40 2026 GMT Not After : May 13 21:00:40 2026 GMT Subject: CN=1175A4E2B11C84AE204E7E652EE89D08A75BFE3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:15:53:c0:c9:ec:68:b1:49:d8:c0:31:92:b4: b6:6c:09:b1:5f:09:1f:6c:83:70:ae:7b:a4:ab:36: 89:77:e2:fb:0e:f7:39:51:ee:b1:79:15:e3:74:d5: bc:f9:4a:da:b2:0f:27:ff:cb:b1:dc:e0:fe:39:ee: bb:2d:13:1a:2b:77:a8:71:2c:51:f7:d9:ca:e9:84: cc:57:b4:ae:13:b0:52:b5:8b:0d:d7:c8:32:7f:1a: c2:5d:36:b0:96:16:f0:3c:a9:50:5f:98:3a:30:06: 07:29:d3:d1:52:4a:f0:27:70:65:07:b0:11:94:26: 10:be:be:76:cd:db:9c:5a:c5:0e:95:91:6b:71:bd: cc:62:91:22:6d:2b:e3:0f:4b:16:83:13:1e:8b:ad: cc:3e:12:19:1c:76:c6:a4:d2:64:1b:8c:0f:7f:3c: 60:ba:90:1c:14:b4:38:11:eb:e2:76:cc:96:1e:49: fd:3b:be:33:40:31:89:d7:92:7a:52:1f:4f:a6:32: d9:8a:57:30:ad:db:3d:09:37:ee:82:b3:ca:8c:d9: 47:b5:cf:6d:55:0a:2e:8f:5b:c0:81:86:47:52:a8: cb:92:23:6e:3f:2d:1f:96:f9:3b:65:db:c8:02:64: e2:b7:1c:4d:de:30:f9:f6:33:a8:6d:0e:23:95:d4: fa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:75:A4:E2:B1:1C:84:AE:20:4E:7E:65:2E:E8:9D:08:A7:5B:FE:3D X509v3 Authority Key Identifier: keyid:8C:A8:A6:68:A2:40:DF:7B:15:FB:C3:E4:51:6A:84:08:BB:DC:47:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/24207523-d5f5-4acc-b0ac-bfb0954fa4e0/0/8CA8A668A240DF7B15FBC3E4516A8408BBDC47E7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:57:44:d5:09:e0:13:25:c4:b3:b4:ad:78:38:64:30:6f:60: 54:5e:0c:67:0a:c2:56:db:e9:c4:50:e3:7c:48:20:f8:1a:4f: f3:71:d6:08:be:40:cf:06:e8:a2:84:2d:5b:9e:87:c9:ed:05: cd:60:e7:22:26:39:89:9a:0d:b3:d9:15:e2:2c:c2:26:55:23: c2:ed:5e:f4:40:2d:8c:17:8c:f6:e4:e6:5b:f1:09:ba:b4:ae: 1b:ee:1a:47:f4:51:74:bd:ad:56:2a:5a:9f:4a:b9:54:e1:6a: f1:40:d2:5b:13:62:fb:4b:67:3d:24:7d:10:a6:fa:de:d5:b4: a2:8c:c3:22:c8:57:65:b5:9f:da:a1:ef:f5:22:82:dc:5b:b6: 20:60:ee:0c:76:3c:af:41:64:77:1f:04:31:04:38:93:7d:d2: 80:0c:b1:07:94:39:cb:7a:82:ec:0e:c6:c0:01:44:62:f6:68: fa:9b:ad:e0:e1:db:4d:92:11:45:83:11:5c:fa:c4:a9:95:39: a1:a7:34:17:90:10:29:28:71:3e:fe:1c:6f:8f:f8:f2:43:6a: 5b:03:83:d3:38:00:9c:72:66:0f:5e:a0:8b:48:d6:dd:95:39: 5a:27:bb:0f:ff:62:43:a3:6c:76:7c:f5:cb:82:99:ca:04:f7: 38:21:a3:ae -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZntoK72BP9+qo9U2w04IYIVDYRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENBOEE2NjhBMjQwREY3QjE1RkJDM0U0NTE2QTg0MDhC QkRDNDdFNzAeFw0yNjA1MTIxODU0NDBaFw0yNjA1MTMyMTAwNDBaMDMxMTAvBgNV BAMTKDExNzVBNEUyQjExQzg0QUUyMDRFN0U2NTJFRTg5RDA4QTc1QkZFM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0FVPAyexosUnYwDGStLZsCbFf CR9sg3Cue6SrNol34vsO9zlR7rF5FeN01bz5StqyDyf/y7Hc4P457rstExord6hx LFH32crphMxXtK4TsFK1iw3XyDJ/GsJdNrCWFvA8qVBfmDowBgcp09FSSvAncGUH sBGUJhC+vnbN25xaxQ6VkWtxvcxikSJtK+MPSxaDEx6Lrcw+Ehkcdsak0mQbjA9/ PGC6kBwUtDgR6+J2zJYeSf07vjNAMYnXknpSH0+mMtmKVzCt2z0JN+6Cs8qM2Ue1 z21VCi6PW8CBhkdSqMuSI24/LR+W+Ttl28gCZOK3HE3eMPn2M6htDiOV1PqpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEXWk4rEchK4gTn5lLuidCKdb/j0wHwYDVR0j BBgwFoAUjKimaKJA33sV+8PkUWqECLvcR+cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjQyMDc1MjMtZDVmNS00YWNjLWIwYWMtYmZiMDk1NGZhNGUwLzAvOENBOEE2NjhB MjQwREY3QjE1RkJDM0U0NTE2QTg0MDhCQkRDNDdFNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84Q0E4QTY2OEEyNDBERjdCMTVGQkMzRTQ1MTZBODQwOEJCREM0 N0U3LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjQyMDc1MjMtZDVmNS00YWNjLWIw YWMtYmZiMDk1NGZhNGUwLzAvOENBOEE2NjhBMjQwREY3QjE1RkJDM0U0NTE2QTg0 MDhCQkRDNDdFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIJXRNUJ4BMlxLO0rXg4ZDBvYFReDGcKwlbb 6cRQ43xIIPgaT/Nx1gi+QM8G6KKELVueh8ntBc1g5yImOYmaDbPZFeIswiZVI8Lt XvRALYwXjPbk5lvxCbq0rhvuGkf0UXS9rVYqWp9KuVThavFA0lsTYvtLZz0kfRCm +t7VtKKMwyLIV2W1n9qh7/UigtxbtiBg7gx2PK9BZHcfBDEEOJN90oAMsQeUOct6 guwOxsABRGL2aPqbreDh202SEUWDEVz6xKmVOaGnNBeQECkocT7+HG+P+PJDalsD g9M4AJxyZg9eoItI1t2VOVonuw//YkOjbHZ89cuCmcoE9zgho64= -----END CERTIFICATE-----Generated at Wed May 13 01:36:17 2026 by rpki-client