$ rpki-client -vvf rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft File: 9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft (raw, json) Hash identifier: upw2xj6HpG6GFAPUqwqjb5fehxd65ce/MU1eW0l5yzg= Subject key identifier: CC:E5:1B:62:64:FC:D7:6E:96:EE:61:08:46:7B:FA:B7:2F:DB:EE:29 Authority key identifier: 9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 Certificate issuer: /CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Certificate serial: 0688E2F741BAD582AE1249290B3255CC3DC2C7F5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft Manifest number: 0F Signing time: Tue 12 May 2026 20:37:44 +0000 Manifest this update: Tue 12 May 2026 20:32:44 +0000 Manifest next update: Wed 13 May 2026 22:33:44 +0000 Files and hashes: 1: 3230322e37332e32372e302f32342d3234203d3e203535373031.roa (hash: BAdz9q0heD7H4d5EINNzizZi9X7k9sip5rKeZrRgrbA=) 2: 34392e302e302e302f32322d3234203d3e203535373031.roa (hash: sLZQYwwJZGFMTL7izEAM/LPP1kYOTnZL+ruwm/tAWUw=) 3: 34332e3235322e3233382e302f32342d3234203d3e203535373031.roa (hash: jervWvS7fVPh370uN91AucyVv2pORH48B5fUUflxIjw=) 4: 9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl (hash: Us2kv7S+/0EtdDGvtjHK9JSfHJeec4cbii34s4x2bDY=) 5: 34332e3235322e3233362e302f32332d3234203d3e203535373031.roa (hash: 9/aJzkpwQD5bM8J0s7lmNbtmibtAmha33amC/3lwiTs=) 6: 3130332e31382e37362e302f32322d3234203d3e203535373031.roa (hash: ZIatr5akU/o2NWBe3N+oXda5TMJkC+DkwhEJDyTCXOU=) 7: 3230322e37332e32352e302f32342d3234203d3e20313431383932.roa (hash: ZdJ+uJ+H3LCclcBMDstVIbOnA5HzlWlzhGq8cMXXKag=) 8: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (hash: 2Omj4R13yIfbTM8O99f4AEQ3eWdecD3Qz56Vk4+EoQE=) 9: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (hash: PInvCtxVVtioPbfgKwU3owF3bAZaDoVKCpPjomKqIrc=) 10: 3130332e33312e3233322e302f32322d3234203d3e203535373031.roa (hash: LXq7hGEpfDwOU/0U2QR8rTojO84R6vUdH42Dh5XJwhA=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:88:e2:f7:41:ba:d5:82:ae:12:49:29:0b:32:55:cc:3d:c2:c7:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Validity Not Before: May 12 20:32:44 2026 GMT Not After : May 13 22:33:44 2026 GMT Subject: CN=CCE51B6264FCD76E96EE6108467BFAB72FDBEE29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4a:be:0b:23:c9:37:49:67:26:3d:9b:e1:51: e6:6f:42:1a:91:34:61:3d:cd:8a:f6:2b:c0:16:04: fd:1b:7e:da:4e:21:65:e3:2a:b6:67:d5:17:61:dc: e8:05:ff:b6:7d:47:9f:59:82:93:65:6d:b4:49:14: d4:75:41:7c:cf:77:32:a4:f1:7e:ec:89:c8:a9:08: 27:58:61:cf:01:e6:74:a3:01:63:73:ad:3e:25:1e: 16:2c:cb:00:ce:90:b0:67:6c:55:6d:a0:e8:12:31: c4:4b:50:3d:87:2f:c6:8e:74:e7:03:5f:0c:23:b8: 9f:74:b8:3b:f3:2d:a0:fd:36:90:f8:9f:db:6e:2d: c4:e8:0a:53:a1:5f:df:40:c8:14:c2:e1:ce:08:ec: d6:ca:72:c1:31:ad:5d:b7:6d:9b:f6:16:f4:20:34: 55:16:6f:ef:ee:15:c1:5c:c9:21:80:21:0a:05:8c: 19:98:ed:c6:c0:96:95:d5:68:22:11:68:d9:f5:b1: f4:74:50:c5:78:d0:9e:23:d3:93:2d:7a:69:c2:3c: a6:b7:7f:5a:19:9a:65:3c:60:a6:19:7f:cf:0e:dc: af:51:54:d4:79:7c:4c:1a:49:78:3d:70:6a:3b:c8: 75:7c:26:95:7e:4f:28:78:6f:62:c9:ec:bf:b1:52: a2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E5:1B:62:64:FC:D7:6E:96:EE:61:08:46:7B:FA:B7:2F:DB:EE:29 X509v3 Authority Key Identifier: keyid:9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:4e:e2:2d:c8:7c:e6:07:c7:bf:16:b7:a5:5d:83:82:62:db: 1c:23:45:05:5c:40:4e:8b:b0:a1:2f:d9:96:44:31:66:fc:f9: bc:6e:c9:8c:12:0b:8a:f0:90:27:5f:54:cb:74:3e:58:ac:d9: 6d:77:bb:9c:6b:21:95:16:af:47:55:3e:6d:ea:1b:2a:fe:9f: 3b:4f:4f:af:ee:8f:69:69:51:4b:ac:b8:e9:4c:57:b6:92:c7: 36:44:3b:16:88:57:35:58:0c:d7:5a:27:96:28:07:5a:f2:cb: 5a:e4:86:ab:3e:dc:16:78:08:37:f8:c5:48:53:94:fa:f9:90: bf:ed:fc:8f:64:b0:ff:ed:49:72:cc:24:9e:c4:33:2e:ff:ba: de:16:05:95:67:99:fa:13:19:15:11:37:0e:0e:4e:bd:b0:c0: f6:bd:24:5c:54:b2:9d:7b:6f:d4:b9:7c:69:6a:e6:f0:ed:b3: 1c:76:b7:cf:b4:20:c8:5f:d0:2b:c9:80:c3:5a:95:97:c9:37: 02:3e:a3:02:ff:87:aa:ad:d2:eb:f1:d7:8a:eb:47:ce:b8:65: fc:3b:1b:c8:9d:1f:d3:6e:cf:05:c3:93:53:f0:a1:0d:8c:f3: 54:d5:a7:b0:60:b9:91:cf:81:dc:73:8a:0d:87:e9:46:b3:10: d9:4a:79:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBoji90G61YKuEkkpCzJVzD3Cx/UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZEN0ZGNEQzRkIzNzM0MEZBQThDN0VFNzFEMUNCOUVB RjA4NTlDMTAeFw0yNjA1MTIyMDMyNDRaFw0yNjA1MTMyMjMzNDRaMDMxMTAvBgNV BAMTKENDRTUxQjYyNjRGQ0Q3NkU5NkVFNjEwODQ2N0JGQUI3MkZEQkVFMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwSr4LI8k3SWcmPZvhUeZvQhqR NGE9zYr2K8AWBP0bftpOIWXjKrZn1Rdh3OgF/7Z9R59ZgpNlbbRJFNR1QXzPdzKk 8X7sicipCCdYYc8B5nSjAWNzrT4lHhYsywDOkLBnbFVtoOgSMcRLUD2HL8aOdOcD XwwjuJ90uDvzLaD9NpD4n9tuLcToClOhX99AyBTC4c4I7NbKcsExrV23bZv2FvQg NFUWb+/uFcFcySGAIQoFjBmY7cbAlpXVaCIRaNn1sfR0UMV40J4j05MtemnCPKa3 f1oZmmU8YKYZf88O3K9RVNR5fEwaSXg9cGo7yHV8JpV+Tyh4b2LJ7L+xUqIXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzOUbYmT8126W7mEIRnv6ty/b7ikwHwYDVR0j BBgwFoAUn9f/TT+zc0D6qMfucdHLnq8IWcEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjdkOWY4NTEtN2U3My00Mzg0LTk1MGUtOGJlOGUxNWZkM2VlLzAvOUZEN0ZGNEQz RkIzNzM0MEZBQThDN0VFNzFEMUNCOUVBRjA4NTlDMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RkQ3RkY0RDNGQjM3MzQwRkFBOEM3RUU3MUQxQ0I5RUFGMDg1 OUMxLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjdkOWY4NTEtN2U3My00Mzg0LTk1 MGUtOGJlOGUxNWZkM2VlLzAvOUZEN0ZGNEQzRkIzNzM0MEZBQThDN0VFNzFEMUNC OUVBRjA4NTlDMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALBO4i3IfOYHx78Wt6Vdg4Ji2xwjRQVcQE6L sKEv2ZZEMWb8+bxuyYwSC4rwkCdfVMt0Plis2W13u5xrIZUWr0dVPm3qGyr+nztP T6/uj2lpUUusuOlMV7aSxzZEOxaIVzVYDNdaJ5YoB1ryy1rkhqs+3BZ4CDf4xUhT lPr5kL/t/I9ksP/tSXLMJJ7EMy7/ut4WBZVnmfoTGRURNw4OTr2wwPa9JFxUsp17 b9S5fGlq5vDtsxx2t8+0IMhf0CvJgMNalZfJNwI+owL/h6qt0uvx14rrR864Zfw7 G8idH9NuzwXDk1PwoQ2M81TVp7BguZHPgdxzig2H6UazENlKeSk= -----END CERTIFICATE-----Generated at Tue May 12 22:46:52 2026 by rpki-client