$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.mft File: 297248FCECD7534E50147B8F048420E637A10C3B.mft (raw, json) Hash identifier: 7ayqPTS2+0g501ihq1fAcyg+IleqhUDnoebo1IcdZVQ= Subject key identifier: 23:A4:EE:F6:25:C1:CD:6E:F3:E6:2A:F5:4C:6F:D8:5A:C6:7F:03:9B Authority key identifier: 29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B Certificate issuer: /CN=297248FCECD7534E50147B8F048420E637A10C3B Certificate serial: 15FCA45D45B1AE5826CAFDB3AAC39EC6C17CE910 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.mft Manifest number: 0F Signing time: Tue 12 May 2026 12:32:50 +0000 Manifest this update: Tue 12 May 2026 12:27:50 +0000 Manifest next update: Wed 13 May 2026 13:24:50 +0000 Files and hashes: 1: 3130332e3231302e3132332e302f32342d3234203d3e20313334363538.roa (hash: oo4ZcfhhW+jQdvMEKA+FggmiNv1c+DnGSDh7E0qxnXk=) 2: 3130332e3231302e3132312e302f32342d3234203d3e20313334363538.roa (hash: o2D89SHonpDeTNoYqCdnV9a5Dvq6OVmwktk4FXHsfdM=) 3: 297248FCECD7534E50147B8F048420E637A10C3B.crl (hash: VezrwsJ7rqWDy0zP8ASpR59ESTvzccloLgT+bx31N5w=) 4: 3130332e3231302e3132302e302f32342d3234203d3e20313334363538.roa (hash: 6aYUJ+FNHyAIseZkPJnJdcJkRNhk0jl4taXFBkoPhy4=) 5: 3130332e3231302e3132302e302f32322d3234203d3e20313334363538.roa (hash: 20fCkguAbqvRTSySsq+/45gChYsBUHF6oH8avUHMm98=) 6: 3130332e3231302e3132322e302f32342d3234203d3e20313334363538.roa (hash: WyHWzOQjnsC2hpvAqyEJHrmMYVhTQqPIZfmDPtTVAjE=) 7: 323430343a366338303a3a2f33322d3438203d3e20313334363538.roa (hash: vbWvmbfXyDXP8OYXwRYd8ewAC5pZZAMFd2A+j8XIRO0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:fc:a4:5d:45:b1:ae:58:26:ca:fd:b3:aa:c3:9e:c6:c1:7c:e9:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=297248FCECD7534E50147B8F048420E637A10C3B Validity Not Before: May 12 12:27:50 2026 GMT Not After : May 13 13:24:50 2026 GMT Subject: CN=23A4EEF625C1CD6EF3E62AF54C6FD85AC67F039B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:25:3c:f7:8b:33:09:7d:e7:b9:2d:15:21:8c: 0d:33:b1:37:05:5f:e1:29:cb:77:bb:8c:07:8d:79: bb:05:1c:a0:ac:67:8b:74:13:2f:62:aa:d7:36:7a: 56:43:6b:90:cd:79:5c:25:c9:ed:a4:bb:0b:6a:09: e8:76:c5:5a:ee:21:21:d3:f6:05:61:05:19:1c:4d: d5:32:ce:df:e5:ba:dd:62:e3:f0:bb:e2:85:63:b3: 4b:f4:66:55:33:ee:91:53:d2:95:cb:0a:18:d5:51: 7f:7f:4c:c5:89:eb:6b:ba:bb:b9:71:d5:be:10:c7: 8c:cd:b9:70:3a:c6:8f:e9:7e:03:a4:86:8e:dc:76: 88:c2:d7:fa:6f:96:5e:50:45:d9:52:46:6f:e6:42: fb:c4:22:54:0c:99:d9:3e:18:55:f1:f4:c0:a8:a3: 99:06:2a:4a:15:b2:e1:b6:c2:d1:d9:ca:36:02:bb: 27:26:70:44:4a:0c:9b:c6:23:d8:9a:09:8c:c9:44: c9:1a:14:32:e2:e5:af:eb:2a:89:e6:34:90:08:3d: 52:55:8e:6d:62:11:ad:29:a7:a8:4c:5c:bd:db:9d: 82:76:1c:14:a2:5a:27:cd:b4:0f:d0:e7:35:c4:d1: 8d:00:b6:d8:12:4b:9d:f1:c0:bb:eb:dc:10:2e:bc: b8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:A4:EE:F6:25:C1:CD:6E:F3:E6:2A:F5:4C:6F:D8:5A:C6:7F:03:9B X509v3 Authority Key Identifier: keyid:29:72:48:FC:EC:D7:53:4E:50:14:7B:8F:04:84:20:E6:37:A1:0C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/297248FCECD7534E50147B8F048420E637A10C3B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d487360-8735-41d7-97a8-dbb34d79eff4/0/297248FCECD7534E50147B8F048420E637A10C3B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:4d:ca:9c:93:bc:8e:43:4f:9a:8d:38:16:9b:e9:67:48:7d: 6a:9a:c9:e5:7e:a2:3b:f8:e0:c5:65:12:b7:bd:37:e0:01:a3: b8:57:79:27:7d:ed:2f:7b:7b:89:66:aa:c9:f2:fd:1e:e1:93: 11:bc:e9:8c:6e:84:0b:e6:be:dd:aa:63:7d:6c:f5:19:eb:86: 61:f5:14:d6:0d:38:c3:69:2b:c6:00:a4:b8:c4:5c:f1:1d:36: 88:fe:9e:3b:90:31:36:2d:e7:f9:b8:6c:0f:25:f5:a1:ab:b5: 14:28:99:23:64:33:5a:c4:f6:04:02:df:13:a3:c5:61:9c:c9: 54:e5:81:73:35:6d:3b:f8:5f:22:b8:b2:33:00:ef:74:77:bb: 3b:9b:d4:cc:bf:ac:e5:c2:1a:7a:76:64:75:ac:93:a6:04:ae: 0b:4a:1b:4a:c9:57:58:c7:41:f7:86:a4:eb:c5:a0:39:8c:15: ec:ca:54:e6:13:c0:15:9a:33:71:9c:dd:12:3b:9f:ff:7b:4f: 6a:0a:3d:dd:72:ce:77:3d:35:62:4e:14:75:17:74:8c:a2:89: 6c:9c:88:9a:79:c8:56:ed:45:e2:78:12:d6:e6:65:67:80:a9: 2b:95:2b:1e:0e:ea:ce:61:37:d2:59:d8:8c:36:aa:77:9a:87: 5d:97:f0:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFfykXUWxrlgmyv2zqsOexsF86RAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk3MjQ4RkNFQ0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYz N0ExMEMzQjAeFw0yNjA1MTIxMjI3NTBaFw0yNjA1MTMxMzI0NTBaMDMxMTAvBgNV BAMTKDIzQTRFRUY2MjVDMUNENkVGM0U2MkFGNTRDNkZEODVBQzY3RjAzOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCJTz3izMJfee5LRUhjA0zsTcF X+Epy3e7jAeNebsFHKCsZ4t0Ey9iqtc2elZDa5DNeVwlye2kuwtqCeh2xVruISHT 9gVhBRkcTdUyzt/lut1i4/C74oVjs0v0ZlUz7pFT0pXLChjVUX9/TMWJ62u6u7lx 1b4Qx4zNuXA6xo/pfgOkho7cdojC1/pvll5QRdlSRm/mQvvEIlQMmdk+GFXx9MCo o5kGKkoVsuG2wtHZyjYCuycmcERKDJvGI9iaCYzJRMkaFDLi5a/rKonmNJAIPVJV jm1iEa0pp6hMXL3bnYJ2HBSiWifNtA/Q5zXE0Y0AttgSS53xwLvr3BAuvLghAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUI6Tu9iXBzW7z5ir1TG/YWsZ/A5swHwYDVR0j BBgwFoAUKXJI/OzXU05QFHuPBIQg5jehDDswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQ0ODczNjAtODczNS00MWQ3LTk3YTgtZGJiMzRkNzllZmY0LzAvMjk3MjQ4RkNF Q0Q3NTM0RTUwMTQ3QjhGMDQ4NDIwRTYzN0ExMEMzQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yOTcyNDhGQ0VDRDc1MzRFNTAxNDdCOEYwNDg0MjBFNjM3QTEw QzNCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmQ0ODczNjAtODczNS00MWQ3LTk3 YTgtZGJiMzRkNzllZmY0LzAvMjk3MjQ4RkNFQ0Q3NTM0RTUwMTQ3QjhGMDQ4NDIw RTYzN0ExMEMzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA1NypyTvI5DT5qNOBab6WdIfWqayeV+ojv4 4MVlEre9N+ABo7hXeSd97S97e4lmqsny/R7hkxG86YxuhAvmvt2qY31s9RnrhmH1 FNYNOMNpK8YApLjEXPEdNoj+njuQMTYt5/m4bA8l9aGrtRQomSNkM1rE9gQC3xOj xWGcyVTlgXM1bTv4XyK4sjMA73R3uzub1My/rOXCGnp2ZHWsk6YErgtKG0rJV1jH QfeGpOvFoDmMFezKVOYTwBWaM3Gc3RI7n/97T2oKPd1yznc9NWJOFHUXdIyiiWyc iJp5yFbtReJ4EtbmZWeAqSuVKx4O6s5hN9JZ2Iw2qneah12X8Lc= -----END CERTIFICATE-----Generated at Wed May 13 02:37:55 2026 by rpki-client