$ rpki-client -vvf rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft File: 853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft (raw, json) Hash identifier: z3dE4bF+HwnCg39hc15+A8rnHY4mQnsEGeOCr1ORAfs= Subject key identifier: 27:43:B8:9A:B4:05:85:E6:10:CC:45:98:ED:82:3C:D0:5E:16:70:50 Authority key identifier: 85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE Certificate issuer: /CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Certificate serial: 28DAE6DBDF14397487727893F277B08E9AB38514 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft Manifest number: 0E Signing time: Tue 12 May 2026 02:04:59 +0000 Manifest this update: Tue 12 May 2026 01:59:59 +0000 Manifest next update: Wed 13 May 2026 04:37:59 +0000 Files and hashes: 1: 3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa (hash: fxSYsouQPJ65g7CwW1EnalKBkWjJiK50KJBFUAXhZzA=) 2: 853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl (hash: ZOUHkFLhWux05Slphp3BEBDzppbjlsQ4/NAZi1cJ3ZI=) 3: 323430333a653434303a3a2f33322d3332203d3e20313338303936.roa (hash: VwsatNn5AXuJ/LUW+n8JXwWEwiaViEVC741lbFCSMBE=) 4: 3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa (hash: 07pLPD2WlKL+vB7ypQ2CjBacLrYgbCjaYdQZk1Lj438=) 5: 3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa (hash: nJl837iJi/5SwBSDbdYVongO7p9uzBZcmTZb0XAZTJk=) 6: 3130332e3132342e3139362e302f32342d3234203d3e20313338303936.roa (hash: fgQOQ1ZPs6+mRIJ9mhffQJjtFV+ZjnGnsOoWLbAN6Mo=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 04:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:da:e6:db:df:14:39:74:87:72:78:93:f2:77:b0:8e:9a:b3:85:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Validity Not Before: May 12 01:59:59 2026 GMT Not After : May 13 04:37:59 2026 GMT Subject: CN=2743B89AB40585E610CC4598ED823CD05E167050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:82:db:89:98:97:a8:1c:90:45:8b:52:34:37: c5:eb:c5:14:2b:89:ba:eb:a5:9c:c9:ce:91:ba:7e: 67:49:f5:04:a5:13:79:01:bc:47:f7:26:ee:10:9a: 7d:71:f2:50:b4:14:52:0f:28:48:00:27:3a:ad:73: 10:ac:31:1c:4f:e0:36:38:02:41:fb:60:e5:bb:f4: b1:50:1b:12:ed:a8:74:4e:3b:f2:e2:87:f3:59:a2: 83:ed:d4:33:a9:70:c6:f8:17:78:c8:f5:cb:86:bb: b8:df:27:3d:56:1f:be:80:24:3f:8c:fe:3e:13:a9: 76:8d:d4:a2:47:95:b4:4a:d6:57:4f:5d:ed:bb:d5: ec:be:c6:80:56:e7:5b:f3:47:55:25:b0:71:d9:56: 14:f5:e3:5f:79:03:d5:23:ce:6c:10:87:be:6e:c0: 3f:e3:69:d5:2c:66:3e:bf:9f:5b:41:51:71:22:93: 12:50:26:56:80:00:24:52:c6:78:00:61:42:1a:04: 58:64:81:2b:a5:c0:b7:4f:ae:27:2c:20:28:c1:c1: f2:f8:94:93:81:97:3c:64:eb:94:85:ef:68:3d:b1: b2:23:5a:84:bc:18:73:23:e9:9d:14:c1:7e:b9:3a: 10:aa:dc:5e:d5:85:0e:4f:f2:61:08:f9:50:31:f8: 19:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:43:B8:9A:B4:05:85:E6:10:CC:45:98:ED:82:3C:D0:5E:16:70:50 X509v3 Authority Key Identifier: keyid:85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:3f:be:92:d3:5b:e1:b5:85:8b:b6:bc:52:11:f9:b7:b0:d1: b0:ce:12:4d:46:b3:b5:f8:0a:58:27:55:26:aa:2f:c9:fe:4b: a5:54:e8:2b:d1:a8:ea:9b:f8:80:52:82:b1:ea:33:b7:d9:8c: 56:9a:18:8a:ff:7c:34:9b:0a:bc:f3:d0:b8:3d:de:a8:7e:70: e5:fc:29:e0:24:87:62:93:a7:cf:b6:03:f0:41:99:b1:11:71: 11:7f:d9:d3:29:41:2f:44:26:f6:4f:ab:f2:0e:d4:83:69:4d: dc:45:92:97:bb:ea:bf:71:31:21:29:a4:01:a7:22:96:35:24: 02:5e:b6:b9:5f:e6:6a:04:bf:36:78:4d:6f:af:60:4c:b9:d5: 74:5b:95:dc:b1:55:4a:f9:a5:a4:83:1d:1b:08:92:49:2c:3e: d8:19:ce:5f:12:a9:34:b2:08:9c:5a:ae:fc:c9:03:c3:20:2e: e7:e6:47:de:8b:92:54:7b:d8:9e:6f:be:a1:22:d7:a9:7c:4d: 32:ed:11:c1:e0:d7:75:ab:e3:78:5f:b9:78:3c:90:a9:f6:56: 8b:d8:61:a0:b2:e8:23:04:40:24:ca:dd:50:8c:2e:62:08:14: 1a:4d:47:6b:46:d9:ef:80:f3:e1:2a:fe:92:b5:d0:ab:7a:db: 19:20:30:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKNrm298UOXSHcniT8newjpqzhRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZGNkQy RDdDMDhCRTAeFw0yNjA1MTIwMTU5NTlaFw0yNjA1MTMwNDM3NTlaMDMxMTAvBgNV BAMTKDI3NDNCODlBQjQwNTg1RTYxMENDNDU5OEVEODIzQ0QwNUUxNjcwNTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfgtuJmJeoHJBFi1I0N8XrxRQr ibrrpZzJzpG6fmdJ9QSlE3kBvEf3Ju4Qmn1x8lC0FFIPKEgAJzqtcxCsMRxP4DY4 AkH7YOW79LFQGxLtqHROO/Lih/NZooPt1DOpcMb4F3jI9cuGu7jfJz1WH76AJD+M /j4TqXaN1KJHlbRK1ldPXe271ey+xoBW51vzR1UlsHHZVhT14195A9UjzmwQh75u wD/jadUsZj6/n1tBUXEikxJQJlaAACRSxngAYUIaBFhkgSulwLdPricsICjBwfL4 lJOBlzxk65SF72g9sbIjWoS8GHMj6Z0UwX65OhCq3F7VhQ5P8mEI+VAx+BlBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJ0O4mrQFheYQzEWY7YI80F4WcFAwHwYDVR0j BBgwFoAUhT7derPvmhOgd58mEnhvbS18CL4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDVkZmY5YjMtOTA0MS00ZGQ2LWI3YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FC M0VGOUExM0EwNzc5RjI2MTI3ODZGNkQyRDdDMDhCRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTNFREQ3QUIzRUY5QTEzQTA3NzlGMjYxMjc4NkY2RDJEN0Mw OEJFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDVkZmY5YjMtOTA0MS00ZGQ2LWI3 YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZG NkQyRDdDMDhCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIQ/vpLTW+G1hYu2vFIR+bew0bDOEk1Gs7X4 ClgnVSaqL8n+S6VU6CvRqOqb+IBSgrHqM7fZjFaaGIr/fDSbCrzz0Lg93qh+cOX8 KeAkh2KTp8+2A/BBmbERcRF/2dMpQS9EJvZPq/IO1INpTdxFkpe76r9xMSEppAGn IpY1JAJetrlf5moEvzZ4TW+vYEy51XRbldyxVUr5paSDHRsIkkksPtgZzl8SqTSy CJxarvzJA8MgLufmR96LklR72J5vvqEi16l8TTLtEcHg13Wr43hfuXg8kKn2VovY YaCy6CMEQCTK3VCMLmIIFBpNR2tG2e+A8+Eq/pK10Kt62xkgMPI= -----END CERTIFICATE-----Generated at Tue May 12 22:19:32 2026 by rpki-client