$ rpki-client -vvf rpki-rsync.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/E23AA0021573342645A2DFB669071A3FC460F128.mft File: E23AA0021573342645A2DFB669071A3FC460F128.mft (raw, json) Hash identifier: yQ353FWvBeyNobNbl0s2SYojMfMEtf2KC3zjCSeG6P0= Subject key identifier: 68:4E:4C:9F:45:14:76:3D:56:41:74:16:BB:E2:47:45:B5:C2:5B:4F Authority key identifier: E2:3A:A0:02:15:73:34:26:45:A2:DF:B6:69:07:1A:3F:C4:60:F1:28 Certificate issuer: /CN=E23AA0021573342645A2DFB669071A3FC460F128 Certificate serial: 79CDC8DBB48CDB463DF5A1407CDBAF3A59B14EF9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E23AA0021573342645A2DFB669071A3FC460F128.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/E23AA0021573342645A2DFB669071A3FC460F128.mft Manifest number: 0F Signing time: Tue 12 May 2026 14:44:25 +0000 Manifest this update: Tue 12 May 2026 14:39:25 +0000 Manifest next update: Wed 13 May 2026 16:20:25 +0000 Files and hashes: 1: E23AA0021573342645A2DFB669071A3FC460F128.crl (hash: Hc+fgDwTdvZ24maIPgAXo/mlZFtjcfFLnijosYxnD3g=) 2: 3130332e3130332e3138302e302f32332d3234203d3e20313336383437.roa (hash: ehJTG/Z8MCWRpYE7Mv6MPXlKzKRx5WpLNTB9Vc1HLns=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/E23AA0021573342645A2DFB669071A3FC460F128.crl rsync://rpki-rsync.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/E23AA0021573342645A2DFB669071A3FC460F128.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E23AA0021573342645A2DFB669071A3FC460F128.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:cd:c8:db:b4:8c:db:46:3d:f5:a1:40:7c:db:af:3a:59:b1:4e:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E23AA0021573342645A2DFB669071A3FC460F128 Validity Not Before: May 12 14:39:25 2026 GMT Not After : May 13 16:20:25 2026 GMT Subject: CN=684E4C9F4514763D56417416BBE24745B5C25B4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:af:f9:52:8e:31:56:23:46:74:72:76:cf:c0: c8:52:f2:64:66:73:7e:59:5c:0d:f5:1b:18:9b:50: dc:f5:d7:fc:f2:d6:68:78:92:80:9f:f8:fa:5f:eb: 9b:43:77:a5:7b:16:50:a7:17:c2:02:d4:f5:0b:57: cb:d4:5b:29:b7:e6:f8:19:2a:b8:63:db:2a:ea:55: 90:da:0b:7b:a1:b2:ed:dd:99:b7:8d:56:23:5d:1f: ef:9e:bb:16:24:21:46:2c:9a:0b:3e:3b:f3:8e:ca: 10:57:9d:d4:c4:8e:56:4b:63:a9:b1:e7:1b:3e:24: ed:fe:c1:44:33:62:ab:bb:43:c7:79:44:e9:df:0a: fe:5a:09:c5:40:92:54:6e:a2:d8:78:ae:5f:7b:4b: 63:c8:7c:f7:dc:e4:0c:f9:e1:41:fa:f8:8e:6d:69: 4f:95:b2:25:f4:6a:34:95:9b:40:8a:ba:b4:8a:90: 5d:10:cd:53:47:3a:1c:15:0d:28:de:c3:fe:56:43: 0d:97:4c:d5:e3:ad:b3:9e:2f:32:c6:cc:26:9b:e2: 9c:ab:c1:16:d8:76:e2:d8:a4:71:71:40:31:8c:3c: 3b:77:ef:c9:58:30:7d:2f:36:7a:2b:a5:da:4f:b5: 76:60:c5:5d:4f:cc:51:9f:49:d1:94:30:64:45:d4: 11:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4E:4C:9F:45:14:76:3D:56:41:74:16:BB:E2:47:45:B5:C2:5B:4F X509v3 Authority Key Identifier: keyid:E2:3A:A0:02:15:73:34:26:45:A2:DF:B6:69:07:1A:3F:C4:60:F1:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/E23AA0021573342645A2DFB669071A3FC460F128.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/E23AA0021573342645A2DFB669071A3FC460F128.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/28d0fca8-5c2d-4e35-bd7d-b448aa75f2be/0/E23AA0021573342645A2DFB669071A3FC460F128.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b0:f1:3d:b2:60:bc:fd:9f:97:00:07:08:00:5b:7d:92:73: 26:cf:57:ed:7d:81:5f:54:5d:f3:20:36:9b:12:3b:64:75:1a: e1:73:07:f9:76:b1:d6:08:91:99:1f:72:b0:1f:e6:1b:ce:98: e2:35:01:98:2b:66:f8:77:a3:77:e4:ab:c4:86:07:87:eb:45: 89:9b:5d:7b:16:f8:6f:60:f3:f3:55:76:f9:72:c3:b0:35:e1: 5f:05:9f:7f:9d:3f:b4:84:6f:31:00:2a:39:03:71:0a:d8:72: f2:3a:5d:05:a5:bd:e6:d8:07:20:aa:cd:e0:f6:1f:28:f9:1f: ae:4c:53:09:bb:01:f7:b7:d8:d6:67:27:70:23:b6:6d:89:b4: 67:ca:39:0b:df:71:ea:9d:43:a7:83:f4:d4:b1:a3:92:14:18: ba:be:e8:cf:f2:18:88:39:80:46:96:47:39:73:f6:6d:56:a9: f2:d4:1d:8a:b4:24:27:2a:84:dc:d4:c0:3c:56:e7:36:54:4a: 14:dc:d8:ae:e0:61:06:dc:8f:0e:ea:36:76:e8:e6:f4:30:f1: c4:1a:8d:35:96:ae:24:99:c0:54:2d:82:a9:18:07:dd:95:25: d5:aa:23:83:74:a2:b4:70:72:87:19:7a:54:63:b6:3d:02:a7: 75:7d:e1:6c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUec3I27SM20Y99aFAfNuvOlmxTvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTIzQUEwMDIxNTczMzQyNjQ1QTJERkI2NjkwNzFBM0ZD NDYwRjEyODAeFw0yNjA1MTIxNDM5MjVaFw0yNjA1MTMxNjIwMjVaMDMxMTAvBgNV BAMTKDY4NEU0QzlGNDUxNDc2M0Q1NjQxNzQxNkJCRTI0NzQ1QjVDMjVCNEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWr/lSjjFWI0Z0cnbPwMhS8mRm c35ZXA31GxibUNz11/zy1mh4koCf+Ppf65tDd6V7FlCnF8IC1PULV8vUWym35vgZ Krhj2yrqVZDaC3uhsu3dmbeNViNdH++euxYkIUYsmgs+O/OOyhBXndTEjlZLY6mx 5xs+JO3+wUQzYqu7Q8d5ROnfCv5aCcVAklRuoth4rl97S2PIfPfc5Az54UH6+I5t aU+VsiX0ajSVm0CKurSKkF0QzVNHOhwVDSjew/5WQw2XTNXjrbOeLzLGzCab4pyr wRbYduLYpHFxQDGMPDt378lYMH0vNnorpdpPtXZgxV1PzFGfSdGUMGRF1BG3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaE5Mn0UUdj1WQXQWu+JHRbXCW08wHwYDVR0j BBgwFoAU4jqgAhVzNCZFot+2aQcaP8Rg8SgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjhkMGZjYTgtNWMyZC00ZTM1LWJkN2QtYjQ0OGFhNzVmMmJlLzAvRTIzQUEwMDIx NTczMzQyNjQ1QTJERkI2NjkwNzFBM0ZDNDYwRjEyOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FMjNBQTAwMjE1NzMzNDI2NDVBMkRGQjY2OTA3MUEzRkM0NjBG MTI4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjhkMGZjYTgtNWMyZC00ZTM1LWJk N2QtYjQ0OGFhNzVmMmJlLzAvRTIzQUEwMDIxNTczMzQyNjQ1QTJERkI2NjkwNzFB M0ZDNDYwRjEyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACyw8T2yYLz9n5cABwgAW32ScybPV+19gV9U XfMgNpsSO2R1GuFzB/l2sdYIkZkfcrAf5hvOmOI1AZgrZvh3o3fkq8SGB4frRYmb XXsW+G9g8/NVdvlyw7A14V8Fn3+dP7SEbzEAKjkDcQrYcvI6XQWlvebYByCqzeD2 Hyj5H65MUwm7Afe32NZnJ3Ajtm2JtGfKOQvfceqdQ6eD9NSxo5IUGLq+6M/yGIg5 gEaWRzlz9m1WqfLUHYq0JCcqhNzUwDxW5zZUShTc2K7gYQbcjw7qNnbo5vQw8cQa jTWWriSZwFQtgqkYB92VJdWqI4N0orRwcocZelRjtj0Cp3V94Ww= -----END CERTIFICATE-----Generated at Tue May 12 22:13:46 2026 by rpki-client