$ rpki-client -vvf rpki-rsync.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/2FF28EC31FA9595D4C9372E0378B127BFC07D543.mft File: 2FF28EC31FA9595D4C9372E0378B127BFC07D543.mft (raw, json) Hash identifier: BNgV8piaJ6L1LQ/n+aVHdfG1GieCLX5LGC4LG+aC1jg= Subject key identifier: 96:73:F5:3E:8E:95:EB:43:33:74:AB:1A:FC:F0:FB:15:38:B7:C0:E6 Authority key identifier: 2F:F2:8E:C3:1F:A9:59:5D:4C:93:72:E0:37:8B:12:7B:FC:07:D5:43 Certificate issuer: /CN=2FF28EC31FA9595D4C9372E0378B127BFC07D543 Certificate serial: 1F447F91A877EBF279774E4B6D7335E51DF98AA0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FF28EC31FA9595D4C9372E0378B127BFC07D543.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/2FF28EC31FA9595D4C9372E0378B127BFC07D543.mft Manifest number: 0F Signing time: Tue 12 May 2026 13:18:24 +0000 Manifest this update: Tue 12 May 2026 13:13:24 +0000 Manifest next update: Wed 13 May 2026 14:33:24 +0000 Files and hashes: 1: 3130332e37382e3135382e302f32342d3234203d3e20313530323438.roa (hash: WBevjDBrr8T3lRgtMCROWKCPpKkw27Bp5qV284oO8bo=) 2: 2FF28EC31FA9595D4C9372E0378B127BFC07D543.crl (hash: qnNdhbK21xplyqm+zQOtd4McVmNhMaCgDPcx+G1VWB4=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/2FF28EC31FA9595D4C9372E0378B127BFC07D543.crl rsync://rpki-rsync.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/2FF28EC31FA9595D4C9372E0378B127BFC07D543.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FF28EC31FA9595D4C9372E0378B127BFC07D543.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:44:7f:91:a8:77:eb:f2:79:77:4e:4b:6d:73:35:e5:1d:f9:8a:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FF28EC31FA9595D4C9372E0378B127BFC07D543 Validity Not Before: May 12 13:13:24 2026 GMT Not After : May 13 14:33:24 2026 GMT Subject: CN=9673F53E8E95EB433374AB1AFCF0FB1538B7C0E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:0b:3e:45:83:19:6f:75:02:5b:9b:29:c0: d0:4e:0b:a0:11:51:2a:2b:03:7f:0a:1f:40:ba:88: 7b:a1:26:22:9d:28:76:f2:8e:b8:24:fe:74:4a:3c: df:4b:65:ca:cb:bd:a7:ff:1c:69:22:fa:04:be:d4: d1:8d:ff:88:b6:c5:2f:3f:2a:92:d1:9b:25:f0:36: 55:3d:ff:60:8f:d6:da:12:9b:4d:da:81:8f:11:e2: 8f:73:6d:43:b2:a2:ef:9f:42:41:c2:9a:61:06:94: 53:2c:1a:76:11:8c:79:f2:b3:c1:90:4e:bf:f1:42: 3e:0c:b4:3c:09:9e:f9:d9:98:12:e4:7d:43:eb:c1: 8f:c0:b8:6e:0a:71:e3:2e:8e:1e:58:91:43:44:69: 4b:b3:04:64:53:21:77:69:39:3d:4d:01:11:7b:c1: ed:6b:24:82:76:4b:ac:5d:90:ca:4f:14:58:e4:59: 13:68:00:c9:c4:37:cb:1e:8e:5c:90:92:bc:66:8c: 22:2d:62:39:2a:d3:6b:b2:1d:e0:ea:f0:86:41:3e: 71:61:0d:5c:6e:5f:39:61:d2:9e:b9:58:84:4c:78: 1b:d4:4e:43:30:22:48:cc:f9:14:df:fd:d7:a5:0b: 58:87:fc:99:64:cc:80:12:1a:39:29:61:e0:9e:90: 0a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:73:F5:3E:8E:95:EB:43:33:74:AB:1A:FC:F0:FB:15:38:B7:C0:E6 X509v3 Authority Key Identifier: keyid:2F:F2:8E:C3:1F:A9:59:5D:4C:93:72:E0:37:8B:12:7B:FC:07:D5:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/2FF28EC31FA9595D4C9372E0378B127BFC07D543.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FF28EC31FA9595D4C9372E0378B127BFC07D543.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/26c060fb-e936-4a23-bbe2-94457bf709bf/0/2FF28EC31FA9595D4C9372E0378B127BFC07D543.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:50:c8:d8:b8:60:f3:41:73:99:f3:3b:9d:c9:bb:ce:8f:7b: 8c:11:3b:03:e3:f6:04:78:f7:ff:1f:f1:19:0d:1a:ee:6d:12: dd:0f:7e:96:d2:0f:e5:53:40:41:ca:19:7e:48:eb:ac:88:be: a0:d0:fd:a9:aa:b8:e7:c6:f7:36:2b:3a:18:82:b5:69:94:c7: 63:99:52:1e:f1:ab:2d:a2:96:32:f2:8f:bb:33:d0:85:0f:3c: 83:31:28:0f:71:c3:d3:87:47:6e:82:e6:6f:18:6d:2b:ec:6b: b3:a2:95:6c:f1:21:f0:89:71:51:2b:01:42:b5:79:e7:3e:b6: 61:26:54:0d:32:3b:44:6a:3b:da:50:15:c8:52:55:8d:22:8a: 1d:4a:d2:d3:c9:ef:00:f4:2e:8e:fa:84:ca:aa:61:ad:e6:96: ee:08:61:a2:16:f2:b8:6b:c8:3f:b1:79:d2:3d:1e:0f:35:0d: 03:91:fc:d1:82:ce:15:ce:0b:6d:9b:66:8b:92:11:17:83:f7: 8a:b7:05:7c:67:d7:c0:20:7c:67:2d:c0:28:82:b7:2d:1f:f5: d3:7c:ab:69:a9:50:e8:f0:5a:85:fc:b9:1a:2d:20:63:e4:e8: 34:26:b9:cc:cd:09:42:be:80:03:92:78:06:48:5d:3a:59:6a: 7e:3e:fd:02 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH0R/kah36/J5d05LbXM15R35iqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZGMjhFQzMxRkE5NTk1RDRDOTM3MkUwMzc4QjEyN0JG QzA3RDU0MzAeFw0yNjA1MTIxMzEzMjRaFw0yNjA1MTMxNDMzMjRaMDMxMTAvBgNV BAMTKDk2NzNGNTNFOEU5NUVCNDMzMzc0QUIxQUZDRjBGQjE1MzhCN0MwRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBsgs+RYMZb3UCW5spwNBOC6AR USorA38KH0C6iHuhJiKdKHbyjrgk/nRKPN9LZcrLvaf/HGki+gS+1NGN/4i2xS8/ KpLRmyXwNlU9/2CP1toSm03agY8R4o9zbUOyou+fQkHCmmEGlFMsGnYRjHnys8GQ Tr/xQj4MtDwJnvnZmBLkfUPrwY/AuG4KceMujh5YkUNEaUuzBGRTIXdpOT1NARF7 we1rJIJ2S6xdkMpPFFjkWRNoAMnEN8sejlyQkrxmjCItYjkq02uyHeDq8IZBPnFh DVxuXzlh0p65WIRMeBvUTkMwIkjM+RTf/delC1iH/JlkzIASGjkpYeCekAoNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlnP1Po6V60MzdKsa/PD7FTi3wOYwHwYDVR0j BBgwFoAUL/KOwx+pWV1Mk3LgN4sSe/wH1UMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjZjMDYwZmItZTkzNi00YTIzLWJiZTItOTQ0NTdiZjcwOWJmLzAvMkZGMjhFQzMx RkE5NTk1RDRDOTM3MkUwMzc4QjEyN0JGQzA3RDU0My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRkYyOEVDMzFGQTk1OTVENEM5MzcyRTAzNzhCMTI3QkZDMDdE NTQzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjZjMDYwZmItZTkzNi00YTIzLWJi ZTItOTQ0NTdiZjcwOWJmLzAvMkZGMjhFQzMxRkE5NTk1RDRDOTM3MkUwMzc4QjEy N0JGQzA3RDU0My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIxQyNi4YPNBc5nzO53Ju86Pe4wROwPj9gR4 9/8f8RkNGu5tEt0PfpbSD+VTQEHKGX5I66yIvqDQ/amquOfG9zYrOhiCtWmUx2OZ Uh7xqy2iljLyj7sz0IUPPIMxKA9xw9OHR26C5m8YbSvsa7OilWzxIfCJcVErAUK1 eec+tmEmVA0yO0RqO9pQFchSVY0iih1K0tPJ7wD0Lo76hMqqYa3mlu4IYaIW8rhr yD+xedI9Hg81DQOR/NGCzhXOC22bZouSEReD94q3BXxn18AgfGctwCiCty0f9dN8 q2mpUOjwWoX8uRotIGPk6DQmuczNCUK+gAOSeAZIXTpZan4+/QI= -----END CERTIFICATE-----Generated at Tue May 12 22:13:00 2026 by rpki-client