$ rpki-client -vvf rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.mft File: F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.mft (raw, json) Hash identifier: bdLR7SJ73YRor6+LPC00vuNCfGngBJymv/3dksBkWEc= Subject key identifier: EB:F7:4F:01:1D:1D:1C:A1:D5:1A:16:84:43:E1:DF:6B:31:94:D9:08 Authority key identifier: F3:A2:B2:34:76:85:8A:2F:21:FC:91:82:BB:A9:2D:C3:54:DF:D1:E9 Certificate issuer: /CN=F3A2B23476858A2F21FC9182BBA92DC354DFD1E9 Certificate serial: 2A4BBFD7B08BE33C569141E9C6FE27FAF18C7E29 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.mft Manifest number: 0F Signing time: Tue 12 May 2026 15:09:45 +0000 Manifest this update: Tue 12 May 2026 15:04:45 +0000 Manifest next update: Wed 13 May 2026 18:04:45 +0000 Files and hashes: 1: F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.crl (hash: RZuIzzf/5DsGVRwcCOTLhbaL4nDaNfkJlEg7HqVvk1w=) 2: 3136302e3138372e3133362e302f32342d3234203d3e20313533313233.roa (hash: pKqoxMsSkditfNdNVlJUD8CXoWKgYLrnWsbXljXhF2g=) 3: 3136302e3138372e3133372e302f32342d3234203d3e20313533313233.roa (hash: ZARDKeLuUjv0/uwtpRdqxRMtS+4kniX7e0CY2G2q/tM=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.crl rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:4b:bf:d7:b0:8b:e3:3c:56:91:41:e9:c6:fe:27:fa:f1:8c:7e:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3A2B23476858A2F21FC9182BBA92DC354DFD1E9 Validity Not Before: May 12 15:04:45 2026 GMT Not After : May 13 18:04:45 2026 GMT Subject: CN=EBF74F011D1D1CA1D51A168443E1DF6B3194D908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e4:30:9d:35:b7:d5:b2:f7:63:5f:21:b6:31: 93:f4:0d:4e:8a:8a:e4:df:1b:de:9c:56:be:00:c7: 1a:26:82:1c:6b:a1:cc:91:d2:5b:be:0f:83:70:e1: 52:1b:f6:f7:ce:8b:4e:07:03:74:71:6f:07:cb:d7: 21:d9:7c:ef:85:8d:03:fd:8e:39:49:b2:9d:2d:37: 0f:54:b9:c3:a0:a9:e1:e2:8c:10:14:e2:99:ba:a9: d8:e1:0d:c5:c6:28:ed:87:18:ae:29:e3:7c:e4:4c: 72:3f:1b:0f:32:68:2c:eb:de:17:32:4d:c7:37:bf: be:0b:86:1c:f6:11:ca:f0:cf:85:ab:3f:c2:fb:21: ef:1a:58:82:78:18:be:28:77:c3:cf:30:86:2e:0f: bc:ca:e3:c1:6e:af:6c:d8:2a:2d:e7:f7:5a:76:a0: 97:3c:be:cf:36:9c:4f:5c:d9:d6:89:3d:46:83:a4: 88:33:b5:ee:91:c5:7d:6e:ee:6e:9b:0d:fa:b2:37: d7:b3:8a:03:2c:fc:aa:6f:42:da:50:e9:c5:6c:02: 19:42:59:3f:73:f4:fb:07:93:c3:b1:2d:1c:ea:38: 02:2a:c9:fc:2c:a0:34:dd:8b:df:a4:50:57:59:87: 05:9b:ef:6b:98:da:76:07:e5:02:f9:ef:cb:22:53: 13:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:F7:4F:01:1D:1D:1C:A1:D5:1A:16:84:43:E1:DF:6B:31:94:D9:08 X509v3 Authority Key Identifier: keyid:F3:A2:B2:34:76:85:8A:2F:21:FC:91:82:BB:A9:2D:C3:54:DF:D1:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3a923397-8cf8-4cef-8856-0d268d73edb1/0/F3A2B23476858A2F21FC9182BBA92DC354DFD1E9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:bb:bc:1f:c5:df:04:9d:36:67:51:17:18:46:ea:77:f4:4c: 30:3b:14:6a:f8:54:26:8c:6f:7c:81:91:35:19:a1:9c:ff:69: 39:6f:3c:94:23:1d:ac:da:06:7e:b6:ab:0f:bc:ed:05:66:c2: 8c:d2:a1:e7:f7:d1:27:52:79:f8:f5:42:5c:11:40:cb:d1:ab: 20:36:78:83:71:f7:eb:8c:06:89:b7:a1:3a:99:e3:af:97:cd: 4d:77:f3:05:c5:24:60:b1:26:fa:7c:44:84:dc:c6:89:ba:7d: 9a:76:e3:6c:90:72:43:fd:17:9f:d7:e9:6f:30:20:f3:52:2f: 85:b9:56:23:f4:c6:5c:80:14:92:6c:95:a4:2b:82:ab:2c:b7: db:cb:f6:f9:e7:05:2a:f2:f6:b9:e5:0d:9d:8b:78:b6:38:51: 13:8f:67:5b:3a:b5:c6:c4:3b:ac:ee:7d:d7:a2:51:2a:81:f2: 53:1b:af:a4:39:b3:4d:b7:88:91:cc:f9:07:e0:e5:80:e8:6b: f7:60:3e:f2:6a:7b:31:e5:46:94:b6:c7:53:47:44:d5:e2:f9: 38:21:f0:fe:8a:f0:30:92:74:7c:e3:7f:fd:6e:1c:3e:87:83: 44:5f:d5:e2:71:39:7c:de:86:70:5d:a3:95:9c:57:b8:98:18: fc:d8:94:9c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKku/17CL4zxWkUHpxv4n+vGMfikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjNBMkIyMzQ3Njg1OEEyRjIxRkM5MTgyQkJBOTJEQzM1 NERGRDFFOTAeFw0yNjA1MTIxNTA0NDVaFw0yNjA1MTMxODA0NDVaMDMxMTAvBgNV BAMTKEVCRjc0RjAxMUQxRDFDQTFENTFBMTY4NDQzRTFERjZCMzE5NEQ5MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj5DCdNbfVsvdjXyG2MZP0DU6K iuTfG96cVr4AxxomghxrocyR0lu+D4Nw4VIb9vfOi04HA3RxbwfL1yHZfO+FjQP9 jjlJsp0tNw9UucOgqeHijBAU4pm6qdjhDcXGKO2HGK4p43zkTHI/Gw8yaCzr3hcy Tcc3v74Lhhz2Ecrwz4WrP8L7Ie8aWIJ4GL4od8PPMIYuD7zK48Fur2zYKi3n91p2 oJc8vs82nE9c2daJPUaDpIgzte6RxX1u7m6bDfqyN9ezigMs/KpvQtpQ6cVsAhlC WT9z9PsHk8OxLRzqOAIqyfwsoDTdi9+kUFdZhwWb72uY2nYH5QL578siUxObAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6/dPAR0dHKHVGhaEQ+HfazGU2QgwHwYDVR0j BBgwFoAU86KyNHaFii8h/JGCu6ktw1Tf0ekwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2E5MjMzOTctOGNmOC00Y2VmLTg4NTYtMGQyNjhkNzNlZGIxLzAvRjNBMkIyMzQ3 Njg1OEEyRjIxRkM5MTgyQkJBOTJEQzM1NERGRDFFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9GM0EyQjIzNDc2ODU4QTJGMjFGQzkxODJCQkE5MkRDMzU0REZE MUU5LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vM2E5MjMzOTctOGNmOC00Y2VmLTg4 NTYtMGQyNjhkNzNlZGIxLzAvRjNBMkIyMzQ3Njg1OEEyRjIxRkM5MTgyQkJBOTJE QzM1NERGRDFFOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHy7vB/F3wSdNmdRFxhG6nf0TDA7FGr4VCaM b3yBkTUZoZz/aTlvPJQjHazaBn62qw+87QVmwozSoef30SdSefj1QlwRQMvRqyA2 eINx9+uMBom3oTqZ46+XzU138wXFJGCxJvp8RITcxom6fZp242yQckP9F5/X6W8w IPNSL4W5ViP0xlyAFJJslaQrgqsst9vL9vnnBSry9rnlDZ2LeLY4UROPZ1s6tcbE O6zufdeiUSqB8lMbr6Q5s023iJHM+Qfg5YDoa/dgPvJqezHlRpS2x1NHRNXi+Tgh 8P6K8DCSdHzjf/1uHD6Hg0Rf1eJxOXzehnBdo5WcV7iYGPzYlJw= -----END CERTIFICATE-----Generated at Tue May 12 22:50:06 2026 by rpki-client