$ rpki-client -vvf rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.mft File: 2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.mft (raw, json) Hash identifier: ipbhnmMbojo98PxJp8CRtFaEZ+zZQ40qkE8NVnmoXIk= Subject key identifier: 3F:D9:08:3D:8B:19:C4:48:63:EE:4A:6C:8A:5A:D8:2E:1A:09:40:0F Authority key identifier: 2A:0F:66:41:16:FB:E2:E0:71:7E:83:DF:D4:F2:B6:ED:EB:09:E1:7E Certificate issuer: /CN=2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E Certificate serial: 5450B9F735D1D2A6C48816C5E5602E704EE2B318 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.mft Manifest number: 0F Signing time: Tue 12 May 2026 20:06:49 +0000 Manifest this update: Tue 12 May 2026 20:01:49 +0000 Manifest next update: Wed 13 May 2026 21:45:49 +0000 Files and hashes: 1: 3130332e36372e39302e302f32342d3234203d3e20313532303035.roa (hash: D74+LFtaiM6p1bNo+g/DP+Bfx1wgVTvyGuc6jRnjUKM=) 2: 3130332e36372e39302e302f32332d3233203d3e20313532303035.roa (hash: MDqOFg62hmCAUHW4Muj3krYCTsgPpqhMHNl5EdSS1rQ=) 3: 323030313a6466333a316363303a3a2f34382d3438203d3e20313532303035.roa (hash: 6lgQliV3qWJWSqE96iH08yO2bxxIknhiUKxtAeSrcOo=) 4: 3130332e36372e39312e302f32342d3234203d3e20313532303035.roa (hash: /Da4Pm0aCGjoevGiiRcx0Xt7whtWvoaG8WYvVgD2NtQ=) 5: 2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.crl (hash: yjyZjoBL7jAEdHf0E4W71hPlEinPODGCB3c3spaszNw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.crl rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:50:b9:f7:35:d1:d2:a6:c4:88:16:c5:e5:60:2e:70:4e:e2:b3:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E Validity Not Before: May 12 20:01:49 2026 GMT Not After : May 13 21:45:49 2026 GMT Subject: CN=3FD9083D8B19C44863EE4A6C8A5AD82E1A09400F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:67:73:11:ad:f5:d6:9a:15:86:aa:85:07:45: c7:04:a0:06:35:ee:61:68:82:3a:9d:8c:45:cf:a3: 9a:54:ac:3c:ba:c8:d9:31:cd:d9:25:38:e5:49:10: a9:49:de:5b:bc:0e:56:7b:c9:fe:19:83:e4:20:0b: 0b:f4:da:44:c4:20:7f:fb:26:84:0d:20:b3:ae:94: 9b:e8:4d:b2:03:b3:82:91:a3:90:4a:6a:88:7b:8d: bd:94:a0:5c:7a:12:0d:51:0a:98:c2:2e:83:c0:75: bb:83:23:42:19:68:d5:43:63:ac:6d:12:85:de:b6: b7:95:02:ad:98:20:0e:dd:14:c5:e6:6d:e5:62:fb: 37:ba:6d:68:a6:c0:ff:cb:77:02:75:48:31:5a:22: 80:55:bc:60:2e:33:b4:6d:ac:a6:e0:53:f3:6a:7f: 5c:05:9c:88:53:a8:ef:01:ba:04:66:ce:7e:0c:30: 57:1d:ec:47:5f:43:ca:23:5b:89:0c:66:3d:92:c5: 2f:ae:10:b1:22:14:06:59:76:bd:23:41:87:b5:a6: 2e:1b:0c:ab:ea:9f:6e:e2:7b:b6:80:8d:06:ce:d1: 26:b7:12:b9:6d:e0:1d:39:31:c2:4f:43:e1:da:6d: cf:bf:bb:39:18:98:10:e0:fc:9e:f8:ba:1d:00:a0: 3a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:D9:08:3D:8B:19:C4:48:63:EE:4A:6C:8A:5A:D8:2E:1A:09:40:0F X509v3 Authority Key Identifier: keyid:2A:0F:66:41:16:FB:E2:E0:71:7E:83:DF:D4:F2:B6:ED:EB:09:E1:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/38488519-8f04-44f5-8312-8d9d3616d0d9/0/2A0F664116FBE2E0717E83DFD4F2B6EDEB09E17E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:6f:0d:f3:2d:6c:c9:c3:7a:7a:e7:48:9c:23:28:6b:55:a1: 65:32:6d:a5:86:22:52:37:3e:98:17:fb:07:08:dd:d5:36:b3: c9:bd:3b:99:3b:af:8d:e1:00:04:81:55:6c:4e:1f:77:66:48: 70:55:a4:79:cf:e6:cd:c7:16:65:41:b5:ba:e2:90:cd:dc:fa: e3:74:69:e5:cb:51:7c:37:3c:c2:60:5e:28:9d:4e:1b:b3:4a: 0c:65:bb:d8:4b:b7:46:97:fb:72:1f:23:49:b7:f1:9e:3b:2b: 87:b4:36:ef:e6:10:47:03:04:1e:6f:14:81:05:d2:47:07:50: 1c:1f:ea:19:94:8f:49:97:21:7b:c4:09:c1:ef:2e:1f:96:bb: d2:a5:5a:01:4e:38:70:57:63:a9:97:31:a2:9f:2f:f0:7e:99: 49:ce:e7:3e:12:7b:24:43:35:56:f8:e2:05:9f:8c:e7:88:29: 1a:ce:4d:73:76:09:73:45:db:e2:0e:a3:e2:a8:e3:97:73:9c: 96:16:77:67:21:52:c6:65:3d:82:88:63:27:bc:83:58:cf:17: 54:5f:a2:35:25:da:cf:d8:0c:65:f4:54:93:55:e0:31:79:b3: d1:33:57:db:8f:b4:f7:c1:ba:03:fe:19:3a:6e:9d:c7:54:b8: 3d:30:77:2a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVFC59zXR0qbEiBbF5WAucE7isxgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEwRjY2NDExNkZCRTJFMDcxN0U4M0RGRDRGMkI2RURF QjA5RTE3RTAeFw0yNjA1MTIyMDAxNDlaFw0yNjA1MTMyMTQ1NDlaMDMxMTAvBgNV BAMTKDNGRDkwODNEOEIxOUM0NDg2M0VFNEE2QzhBNUFEODJFMUEwOTQwMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzZ3MRrfXWmhWGqoUHRccEoAY1 7mFogjqdjEXPo5pUrDy6yNkxzdklOOVJEKlJ3lu8DlZ7yf4Zg+QgCwv02kTEIH/7 JoQNILOulJvoTbIDs4KRo5BKaoh7jb2UoFx6Eg1RCpjCLoPAdbuDI0IZaNVDY6xt EoXetreVAq2YIA7dFMXmbeVi+ze6bWimwP/LdwJ1SDFaIoBVvGAuM7RtrKbgU/Nq f1wFnIhTqO8BugRmzn4MMFcd7EdfQ8ojW4kMZj2SxS+uELEiFAZZdr0jQYe1pi4b DKvqn27ie7aAjQbO0Sa3Erlt4B05McJPQ+Habc+/uzkYmBDg/J74uh0AoDqHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUP9kIPYsZxEhj7kpsilrYLhoJQA8wHwYDVR0j BBgwFoAUKg9mQRb74uBxfoPf1PK27esJ4X4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg0ODg1MTktOGYwNC00NGY1LTgzMTItOGQ5ZDM2MTZkMGQ5LzAvMkEwRjY2NDEx NkZCRTJFMDcxN0U4M0RGRDRGMkI2RURFQjA5RTE3RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQTBGNjY0MTE2RkJFMkUwNzE3RTgzREZENEYyQjZFREVCMDlF MTdFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzg0ODg1MTktOGYwNC00NGY1LTgz MTItOGQ5ZDM2MTZkMGQ5LzAvMkEwRjY2NDExNkZCRTJFMDcxN0U4M0RGRDRGMkI2 RURFQjA5RTE3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFVvDfMtbMnDenrnSJwjKGtVoWUybaWGIlI3 PpgX+wcI3dU2s8m9O5k7r43hAASBVWxOH3dmSHBVpHnP5s3HFmVBtbrikM3c+uN0 aeXLUXw3PMJgXiidThuzSgxlu9hLt0aX+3IfI0m38Z47K4e0Nu/mEEcDBB5vFIEF 0kcHUBwf6hmUj0mXIXvECcHvLh+Wu9KlWgFOOHBXY6mXMaKfL/B+mUnO5z4SeyRD NVb44gWfjOeIKRrOTXN2CXNF2+IOo+Ko45dznJYWd2chUsZlPYKIYye8g1jPF1Rf ojUl2s/YDGX0VJNV4DF5s9EzV9uPtPfBugP+GTpuncdUuD0wdyo= -----END CERTIFICATE-----Generated at Wed May 13 00:13:53 2026 by rpki-client