$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft File: 629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft (raw, json) Hash identifier: ZtO7R9oG7TwyQ28/pGywyo5BA1nlcS1il22RCtGepVI= Subject key identifier: 59:39:FF:A0:D6:D4:5A:90:C3:1B:43:11:70:7A:6B:8E:F2:6F:AC:56 Authority key identifier: 62:9E:74:A6:0B:52:AC:9F:C2:F7:A1:11:A6:83:76:BB:57:C1:CA:BD Certificate issuer: /CN=629E74A60B52AC9FC2F7A111A68376BB57C1CABD Certificate serial: 35F3350D636CB2C8033018DC8D8088BE61ACAB8E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft Manifest number: 0E Signing time: Tue 12 May 2026 08:14:42 +0000 Manifest this update: Tue 12 May 2026 08:09:42 +0000 Manifest next update: Wed 13 May 2026 08:45:42 +0000 Files and hashes: 1: 629E74A60B52AC9FC2F7A111A68376BB57C1CABD.crl (hash: 2TRq5T/zA/78fDPxAkARWJi1QnfjbEAmI6ulMIvBNiA=) 2: 323430353a6263303a3a2f33332d3438203d3e20313336383432.roa (hash: CVrUJTlhlyjQcXWYw9mEs6T2cItEcY6BENuMI3nROC0=) 3: 3130332e3130302e3234362e302f32342d3234203d3e20313336383432.roa (hash: nOhj/KbLK8tB+8fzk/fF8cT34h0xCczJl9qDSLUlcwg=) 4: 3130332e3130302e3234372e302f32342d3234203d3e20313336383432.roa (hash: QzM90YWTXns1ydz40IJ13wxTQ2LuYS2Sj6cuHqSNNQs=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.crl rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f3:35:0d:63:6c:b2:c8:03:30:18:dc:8d:80:88:be:61:ac:ab:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=629E74A60B52AC9FC2F7A111A68376BB57C1CABD Validity Not Before: May 12 08:09:42 2026 GMT Not After : May 13 08:45:42 2026 GMT Subject: CN=5939FFA0D6D45A90C31B4311707A6B8EF26FAC56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2f:72:26:17:ba:c8:d0:52:0d:e1:d3:7e:ce: 26:f6:6b:73:b3:22:44:c4:28:7d:84:83:70:60:bf: 43:36:80:67:7e:1f:2d:26:c7:15:6f:05:9e:dd:2b: 31:9d:48:4d:10:d2:3c:4b:4a:12:14:80:bd:99:ea: 76:03:46:51:31:59:0a:73:b3:c4:ee:d6:eb:93:42: 59:c8:d9:e5:8e:35:8f:06:8c:ab:21:5a:a3:d7:7e: 22:79:80:5e:95:71:50:e1:42:4c:20:a0:85:1d:58: f7:e9:e9:82:94:a4:11:d3:08:db:d4:e5:77:c2:3f: cc:d1:68:aa:0f:4d:26:85:de:0b:ad:7d:28:64:78: 7c:0a:71:63:6b:fd:2a:be:64:5e:85:8c:68:42:fc: ce:e2:9b:3d:bd:80:20:aa:99:59:4e:bc:ba:7c:f0: c3:1e:d3:fb:98:e7:6d:47:87:04:9a:28:fb:45:87: 05:94:0b:69:6d:7d:39:56:76:60:6b:8c:88:01:42: ca:18:9b:e2:d7:b7:06:1e:1d:57:5e:f6:20:06:ca: a6:45:c2:b4:13:57:9a:76:6f:87:99:c7:67:e9:9e: 67:3a:bc:f3:d3:3d:fe:42:cd:14:a7:a1:d5:f5:76: 5a:c9:e7:16:d9:ad:37:ce:c6:2b:29:08:d6:2d:ac: ed:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:39:FF:A0:D6:D4:5A:90:C3:1B:43:11:70:7A:6B:8E:F2:6F:AC:56 X509v3 Authority Key Identifier: keyid:62:9E:74:A6:0B:52:AC:9F:C2:F7:A1:11:A6:83:76:BB:57:C1:CA:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:df:1f:7d:42:bb:c4:42:99:ef:e2:13:b3:36:be:0a:41:b4: 9e:fb:6d:4d:46:da:a9:fc:4d:8c:90:06:fd:ad:99:c1:8a:cb: 32:6f:de:f2:f1:b8:9f:c8:1c:0b:a4:61:b4:33:5b:0a:d6:c0: 5c:37:dc:ba:e8:02:5e:12:62:5b:b2:84:71:1d:32:19:33:24: 19:4d:e6:74:ca:00:ff:0f:26:e7:ef:00:26:7c:2c:6c:43:f2: 89:8d:0f:f9:10:3a:06:9d:8a:e9:71:04:80:8e:b8:a1:ac:f9: 32:39:83:f3:14:8d:6a:a5:19:2b:80:dc:ab:2a:53:78:41:b3: 9c:dd:6e:d3:cb:4f:02:0c:f9:91:c5:93:72:de:c1:fe:0a:cc: 2e:96:9f:af:13:a5:f0:04:fa:f5:ae:48:2b:e4:4d:b1:6b:da: 79:74:e4:ec:9e:48:c3:8c:4f:c6:85:20:cf:7d:ce:6d:1d:f0: 29:51:24:0e:5b:cb:c8:db:20:d9:f8:82:6c:f6:cf:43:a0:f6: 1e:46:f1:c2:58:2a:01:d1:41:f0:ab:a7:7e:3e:ca:18:5e:93: 7a:7d:23:a7:16:90:09:f6:ba:30:32:26:41:58:5d:f9:54:44: be:c6:5c:73:db:07:82:b6:47:c0:3e:db:3a:a6:b9:ab:c2:88: 33:bc:19:78 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNfM1DWNsssgDMBjcjYCIvmGsq44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI5RTc0QTYwQjUyQUM5RkMyRjdBMTExQTY4Mzc2QkI1 N0MxQ0FCRDAeFw0yNjA1MTIwODA5NDJaFw0yNjA1MTMwODQ1NDJaMDMxMTAvBgNV BAMTKDU5MzlGRkEwRDZENDVBOTBDMzFCNDMxMTcwN0E2QjhFRjI2RkFDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeL3ImF7rI0FIN4dN+zib2a3Oz IkTEKH2Eg3Bgv0M2gGd+Hy0mxxVvBZ7dKzGdSE0Q0jxLShIUgL2Z6nYDRlExWQpz s8Tu1uuTQlnI2eWONY8GjKshWqPXfiJ5gF6VcVDhQkwgoIUdWPfp6YKUpBHTCNvU 5XfCP8zRaKoPTSaF3gutfShkeHwKcWNr/Sq+ZF6FjGhC/M7imz29gCCqmVlOvLp8 8MMe0/uY521HhwSaKPtFhwWUC2ltfTlWdmBrjIgBQsoYm+LXtwYeHVde9iAGyqZF wrQTV5p2b4eZx2fpnmc6vPPTPf5CzRSnodX1dlrJ5xbZrTfOxispCNYtrO3fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWTn/oNbUWpDDG0MRcHprjvJvrFYwHwYDVR0j BBgwFoAUYp50pgtSrJ/C96ERpoN2u1fByr0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmE5N2JjZjQtZTFhYS00N2Q2LWJkZTYtMmU2NjdiOWQ2MTM0LzAvNjI5RTc0QTYw QjUyQUM5RkMyRjdBMTExQTY4Mzc2QkI1N0MxQ0FCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjlFNzRBNjBCNTJBQzlGQzJGN0ExMTFBNjgzNzZCQjU3QzFD QUJELmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmE5N2JjZjQtZTFhYS00N2Q2LWJk ZTYtMmU2NjdiOWQ2MTM0LzAvNjI5RTc0QTYwQjUyQUM5RkMyRjdBMTExQTY4Mzc2 QkI1N0MxQ0FCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJzfH31Cu8RCme/iE7M2vgpBtJ77bU1G2qn8 TYyQBv2tmcGKyzJv3vLxuJ/IHAukYbQzWwrWwFw33LroAl4SYluyhHEdMhkzJBlN 5nTKAP8PJufvACZ8LGxD8omND/kQOgadiulxBICOuKGs+TI5g/MUjWqlGSuA3Ksq U3hBs5zdbtPLTwIM+ZHFk3Lewf4KzC6Wn68TpfAE+vWuSCvkTbFr2nl05OyeSMOM T8aFIM99zm0d8ClRJA5by8jbINn4gmz2z0Og9h5G8cJYKgHRQfCrp34+yhhek3p9 I6cWkAn2ujAyJkFYXflURL7GXHPbB4K2R8A+2zqmuavCiDO8GXg= -----END CERTIFICATE-----Generated at Tue May 12 22:13:27 2026 by rpki-client