$ rpki-client -vvf rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.mft File: B159D33D3522D27CDFCF4C81911382E2AB8C5F60.mft (raw, json) Hash identifier: M2ho4iIIBXUfWWen1Jq8e9bcjdCw1zVLydaf747+b0I= Subject key identifier: DF:E5:8A:78:BC:18:86:64:DD:FE:AF:60:3D:71:01:BD:CC:DD:E3:BC Authority key identifier: B1:59:D3:3D:35:22:D2:7C:DF:CF:4C:81:91:13:82:E2:AB:8C:5F:60 Certificate issuer: /CN=B159D33D3522D27CDFCF4C81911382E2AB8C5F60 Certificate serial: 549D7B9EFC33B852955B74D44ABCE7A4E5AA61A3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.mft Manifest number: 0E Signing time: Tue 12 May 2026 10:26:32 +0000 Manifest this update: Tue 12 May 2026 10:21:32 +0000 Manifest next update: Wed 13 May 2026 12:23:32 +0000 Files and hashes: 1: 3130332e3234352e3137392e302f32342d3234203d3e2039333431.roa (hash: 3oVok3CXFl7cXz9v90zmFcUMxw7NjqzD2OW/U6gUOnc=) 2: 3130332e3234352e3137382e302f32342d3234203d3e2039333431.roa (hash: 7fp5Ub3jhSAS7agpOvlqaj1locBlJuu/plnhXOCrJf0=) 3: 3130332e3234352e3137382e302f32332d3233203d3e2039333431.roa (hash: gCpw2vGjm5jpbPiN9g0VamqWAxByjyrdBgvX9WD/FEw=) 4: B159D33D3522D27CDFCF4C81911382E2AB8C5F60.crl (hash: O2tVVV+f9Aykvvdb/7BjlspYoiZbD7clNaa1zGsX7K4=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.crl rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:9d:7b:9e:fc:33:b8:52:95:5b:74:d4:4a:bc:e7:a4:e5:aa:61:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B159D33D3522D27CDFCF4C81911382E2AB8C5F60 Validity Not Before: May 12 10:21:32 2026 GMT Not After : May 13 12:23:32 2026 GMT Subject: CN=DFE58A78BC188664DDFEAF603D7101BDCCDDE3BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:10:ce:78:68:45:f9:d1:7e:44:05:e0:09:4c: 3c:3a:29:55:c7:ef:e0:58:08:ee:d4:ad:4c:df:66: ca:40:51:41:85:5c:fb:69:cc:ac:63:61:5e:d2:4d: 74:3c:c0:30:05:cf:6c:ca:35:6c:e3:d7:0e:d8:26: 7c:b6:bf:b4:a9:18:ed:a2:e4:63:9a:b1:87:b8:6b: ad:a1:f2:5d:4c:e8:0c:61:ba:06:c5:7f:88:d3:bc: 1f:54:d8:6d:46:06:b5:73:9f:fa:0d:c9:cf:8b:81: 12:81:ad:e1:77:17:35:e8:92:f2:0d:61:49:b3:b8: 7d:13:ed:bf:00:95:8e:1a:bd:34:8e:47:b9:eb:8d: d2:1a:54:71:9f:ee:5b:ef:8e:0d:b0:36:4d:43:23: 67:c1:60:bb:b7:4b:ae:cb:00:be:ec:d9:60:74:2d: 37:42:b0:0d:d0:87:96:87:65:ce:19:5f:54:c9:12: 45:0f:60:f1:f0:9a:f9:a5:b5:8b:64:d2:2a:3a:24: 12:b0:2f:41:87:55:dc:ca:23:16:a1:78:ce:d2:88: 8c:27:2f:12:c9:74:4e:09:51:ed:50:61:f9:f7:99: 5e:c4:67:69:5b:ff:b8:a5:bc:3e:e8:da:b6:6a:76: 37:5a:de:62:90:3c:73:22:be:2e:04:8b:ca:57:8f: 61:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E5:8A:78:BC:18:86:64:DD:FE:AF:60:3D:71:01:BD:CC:DD:E3:BC X509v3 Authority Key Identifier: keyid:B1:59:D3:3D:35:22:D2:7C:DF:CF:4C:81:91:13:82:E2:AB:8C:5F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/370c4759-43b8-4e80-be8c-83cbe9f8231b/0/B159D33D3522D27CDFCF4C81911382E2AB8C5F60.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:9e:02:cf:0d:24:a5:ea:22:e0:09:15:9b:84:b8:4d:e3:1a: b9:4a:33:39:89:08:c9:a9:3f:43:59:ac:ff:fd:90:d4:c3:29: 90:b6:17:0a:57:c1:ac:9e:ce:d3:9d:9a:dd:d3:34:65:8b:27: ed:04:04:d7:17:f0:29:50:71:48:c5:67:9c:49:e8:d5:d5:bd: 7e:50:e9:e9:94:10:6e:f1:05:32:63:95:3b:4f:7f:86:f2:91: ba:f8:d9:87:3c:ed:e4:cc:c1:c4:05:39:cc:27:0f:5c:f6:f9: 3a:57:b8:9a:7f:01:9e:a9:ab:d3:22:8d:ba:0a:96:49:fd:a7: 36:29:a3:27:d7:9b:fd:84:03:74:d2:6e:14:79:07:b1:6a:8d: 4a:d3:77:42:99:d8:b4:b6:55:aa:23:1b:86:be:66:df:0d:16: 0e:f0:3b:de:5c:b0:b1:e1:d0:f6:7a:b1:9a:c0:58:94:63:1d: e4:46:5c:e8:42:af:a5:c8:04:9c:b4:8b:08:d5:22:69:a9:9e: d0:2f:23:e1:37:a5:4f:3d:69:ca:6c:aa:38:bc:67:5b:53:03: a4:f9:de:b4:74:75:cb:03:ac:22:65:dc:17:46:6f:55:0b:af: 2b:7e:14:68:75:cd:25:60:7c:46:f9:4d:87:f5:79:48:55:26: 77:05:c1:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVJ17nvwzuFKVW3TUSrznpOWqYaMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE1OUQzM0QzNTIyRDI3Q0RGQ0Y0QzgxOTExMzgyRTJB QjhDNUY2MDAeFw0yNjA1MTIxMDIxMzJaFw0yNjA1MTMxMjIzMzJaMDMxMTAvBgNV BAMTKERGRTU4QTc4QkMxODg2NjREREZFQUY2MDNENzEwMUJEQ0NEREUzQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOEM54aEX50X5EBeAJTDw6KVXH 7+BYCO7UrUzfZspAUUGFXPtpzKxjYV7STXQ8wDAFz2zKNWzj1w7YJny2v7SpGO2i 5GOasYe4a62h8l1M6AxhugbFf4jTvB9U2G1GBrVzn/oNyc+LgRKBreF3FzXokvIN YUmzuH0T7b8AlY4avTSOR7nrjdIaVHGf7lvvjg2wNk1DI2fBYLu3S67LAL7s2WB0 LTdCsA3Qh5aHZc4ZX1TJEkUPYPHwmvmltYtk0io6JBKwL0GHVdzKIxaheM7SiIwn LxLJdE4JUe1QYfn3mV7EZ2lb/7ilvD7o2rZqdjda3mKQPHMivi4Ei8pXj2FFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3+WKeLwYhmTd/q9gPXEBvczd47wwHwYDVR0j BBgwFoAUsVnTPTUi0nzfz0yBkROC4quMX2AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzcwYzQ3NTktNDNiOC00ZTgwLWJlOGMtODNjYmU5ZjgyMzFiLzAvQjE1OUQzM0Qz NTIyRDI3Q0RGQ0Y0QzgxOTExMzgyRTJBQjhDNUY2MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMTU5RDMzRDM1MjJEMjdDREZDRjRDODE5MTEzODJFMkFCOEM1 RjYwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzcwYzQ3NTktNDNiOC00ZTgwLWJl OGMtODNjYmU5ZjgyMzFiLzAvQjE1OUQzM0QzNTIyRDI3Q0RGQ0Y0QzgxOTExMzgy RTJBQjhDNUY2MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABueAs8NJKXqIuAJFZuEuE3jGrlKMzmJCMmp P0NZrP/9kNTDKZC2FwpXwayeztOdmt3TNGWLJ+0EBNcX8ClQcUjFZ5xJ6NXVvX5Q 6emUEG7xBTJjlTtPf4bykbr42Yc87eTMwcQFOcwnD1z2+TpXuJp/AZ6pq9MijboK lkn9pzYpoyfXm/2EA3TSbhR5B7FqjUrTd0KZ2LS2VaojG4a+Zt8NFg7wO95csLHh 0PZ6sZrAWJRjHeRGXOhCr6XIBJy0iwjVImmpntAvI+E3pU89acpsqji8Z1tTA6T5 3rR0dcsDrCJl3BdGb1ULryt+FGh1zSVgfEb5TYf1eUhVJncFwRc= -----END CERTIFICATE-----Generated at Tue May 12 22:46:52 2026 by rpki-client