$ rpki-client -vvf rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft File: D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft (raw, json) Hash identifier: Xj6mAz57xDnmddiiYIwW27FvnCmzlJzoeWqzIdW5YXw= Subject key identifier: 3F:25:47:7B:61:95:31:F2:2C:DE:50:2E:FE:E9:94:AB:F9:61:D9:05 Authority key identifier: D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B Certificate issuer: /CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Certificate serial: 06725DEE9947DE885A75ADE19FE063576E808699 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft Manifest number: 0E Signing time: Tue 12 May 2026 06:01:46 +0000 Manifest this update: Tue 12 May 2026 05:56:46 +0000 Manifest next update: Wed 13 May 2026 09:20:46 +0000 Files and hashes: 1: 323430373a373234303a3a2f33322d3438203d3e203538383230.roa (hash: pbfRu1u/17aE+5jbLOXSjK5kSHLY3NJFYSy/GgweGtc=) 2: D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl (hash: sdAHXlW2koLJAt4O/METG/NQCmnqFwWshyRSA5Lv9pM=) 3: 3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa (hash: Q5OWZuOjXammbPGdiQX0OH3xtPw9qN8aeQNvsFX0Ohg=) 4: 323430373a373234303a3a2f33322d3332203d3e203538383230.roa (hash: XbL3x6HL60HenYCDQv+H+1fWOEpLqL6GUYrIDXhN5Ec=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:72:5d:ee:99:47:de:88:5a:75:ad:e1:9f:e0:63:57:6e:80:86:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Validity Not Before: May 12 05:56:46 2026 GMT Not After : May 13 09:20:46 2026 GMT Subject: CN=3F25477B619531F22CDE502EFEE994ABF961D905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:67:82:d8:4d:b7:1a:75:9e:8c:19:3a:eb:fa: 92:dc:72:87:c8:36:cc:d7:2a:e2:60:36:95:c7:84: fb:7e:3b:c4:2d:2c:1d:5c:d7:23:da:53:22:e9:54: f2:53:16:b8:3f:72:06:a9:8b:a8:cc:52:3a:33:7f: 61:5b:7e:d2:4f:06:d7:54:07:c1:96:2a:58:2b:46: 82:20:88:7a:99:8d:90:b5:6c:7e:8b:b2:80:03:54: 08:5d:f0:92:dd:ec:b5:0e:45:74:53:39:69:d8:cc: 5b:ed:65:06:f1:e6:d5:63:e9:96:36:70:02:f5:b4: dd:93:c2:7e:26:81:bd:e9:7e:62:fb:a0:8a:1e:30: 0d:02:7f:19:ec:38:f6:90:26:e7:bf:02:e0:2c:7f: a2:f8:0d:d3:0d:a9:38:5c:94:e4:92:f8:25:db:74: a4:1e:21:fb:07:99:33:ac:b4:00:a8:5f:8d:e1:c1: 23:82:f2:37:4a:12:c0:0e:ae:d0:af:cc:30:75:96: cc:30:ea:b0:ca:71:96:e6:e7:71:df:b3:22:33:27: 40:01:31:e7:d6:21:25:e6:3b:91:dd:af:06:0e:d9: 3a:62:2b:dd:d9:2e:f9:9d:04:4f:25:40:e3:cb:91: 1d:8c:00:fa:89:81:45:63:d4:d2:ad:17:d2:5e:5a: 7f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:25:47:7B:61:95:31:F2:2C:DE:50:2E:FE:E9:94:AB:F9:61:D9:05 X509v3 Authority Key Identifier: keyid:D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:30:0c:b9:c2:16:3e:6f:49:e3:35:62:ea:95:a3:a9:b0:8e: ec:19:c1:f0:67:4b:4c:a4:ec:39:8f:bf:ee:60:a8:fa:a9:3b: e3:7e:18:c4:5b:74:98:b3:26:05:7c:cd:21:31:e9:3c:c8:d6: 2c:bf:db:13:b2:1c:c5:2b:d2:90:6e:a7:9f:ca:28:23:76:ce: 1b:6b:89:cc:63:01:dd:e7:b5:0e:ae:97:17:4b:2b:02:a0:4d: 34:a8:66:e1:ba:93:dd:04:62:ba:af:e2:d0:b3:c1:09:63:b9: c6:4e:4b:62:90:fb:ff:93:c1:2f:f6:54:c9:a8:ad:da:27:27: 4f:c6:b4:a2:a6:36:d8:97:cc:72:82:f9:83:8b:1a:bd:6d:57: 38:ac:c6:8c:1b:91:ed:34:3a:d9:bc:c2:43:45:85:2f:d5:5e: aa:e4:c5:9d:4a:07:42:09:27:06:7c:08:7f:06:bc:ff:1a:0d: 1b:a1:8a:db:51:ab:bc:bf:59:c4:63:db:25:c9:3c:74:d7:ca: 1b:30:82:07:2c:74:a8:43:d9:3e:bb:58:9e:fa:9f:6e:3c:13: 47:75:32:16:18:be:14:48:d8:1f:ce:bc:17:fd:9d:2d:18:dc: e0:f0:fd:cd:aa:ed:d7:0f:f6:19:6a:33:16:42:8e:e2:38:a8: a8:68:fd:1a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBnJd7plH3ohada3hn+BjV26AhpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdCM0QyOUExQzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4 NTIzRTE0QjAeFw0yNjA1MTIwNTU2NDZaFw0yNjA1MTMwOTIwNDZaMDMxMTAvBgNV BAMTKDNGMjU0NzdCNjE5NTMxRjIyQ0RFNTAyRUZFRTk5NEFCRjk2MUQ5MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnZ4LYTbcadZ6MGTrr+pLccofI NszXKuJgNpXHhPt+O8QtLB1c1yPaUyLpVPJTFrg/cgapi6jMUjozf2FbftJPBtdU B8GWKlgrRoIgiHqZjZC1bH6LsoADVAhd8JLd7LUORXRTOWnYzFvtZQbx5tVj6ZY2 cAL1tN2Twn4mgb3pfmL7oIoeMA0CfxnsOPaQJue/AuAsf6L4DdMNqThclOSS+CXb dKQeIfsHmTOstACoX43hwSOC8jdKEsAOrtCvzDB1lsww6rDKcZbm53HfsyIzJ0AB MefWISXmO5HdrwYO2TpiK93ZLvmdBE8lQOPLkR2MAPqJgUVj1NKtF9JeWn8dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPyVHe2GVMfIs3lAu/umUq/lh2QUwHwYDVR0j BBgwFoAU17PSmhxY8qdk73HZDus0oIUj4UswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjRiYTY3NzgtYjE2ZC00YmE4LTk4NGYtMzRlNDE5ZmM5YzQ5LzAvRDdCM0QyOUEx QzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4NTIzRTE0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EN0IzRDI5QTFDNThGMkE3NjRFRjcxRDkwRUVCMzRBMDg1MjNF MTRCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjRiYTY3NzgtYjE2ZC00YmE4LTk4 NGYtMzRlNDE5ZmM5YzQ5LzAvRDdCM0QyOUExQzU4RjJBNzY0RUY3MUQ5MEVFQjM0 QTA4NTIzRTE0Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAQwDLnCFj5vSeM1YuqVo6mwjuwZwfBnS0yk 7DmPv+5gqPqpO+N+GMRbdJizJgV8zSEx6TzI1iy/2xOyHMUr0pBup5/KKCN2zhtr icxjAd3ntQ6ulxdLKwKgTTSoZuG6k90EYrqv4tCzwQljucZOS2KQ+/+TwS/2VMmo rdonJ0/GtKKmNtiXzHKC+YOLGr1tVzisxowbke00Otm8wkNFhS/VXqrkxZ1KB0IJ JwZ8CH8GvP8aDRuhittRq7y/WcRj2yXJPHTXyhswggcsdKhD2T67WJ76n248E0d1 MhYYvhRI2B/OvBf9nS0Y3ODw/c2q7dcP9hlqMxZCjuI4qKho/Ro= -----END CERTIFICATE-----Generated at Tue May 12 22:13:36 2026 by rpki-client