$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft File: A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft (raw, json) Hash identifier: GiZHX8iVUh9+oGy7k999yEsTg/JvTu/6+durRtJoitg= Subject key identifier: 9D:38:35:9D:41:84:88:32:29:87:73:7E:12:F1:7B:0F:78:13:A4:E4 Authority key identifier: A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 Certificate issuer: /CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Certificate serial: 06395B125FBC864EE57CC9E0F05606AB18327710 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft Manifest number: 0F Signing time: Tue 12 May 2026 19:51:16 +0000 Manifest this update: Tue 12 May 2026 19:46:16 +0000 Manifest next update: Wed 13 May 2026 22:41:16 +0000 Files and hashes: 1: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: xw+egA02OX5uOYAGnedHg8tG8xIxYeukOfUcUDfNNIQ=) 2: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: /BLy7k3doovw3jQVTXaYTnBas7DL4Zfrgn7U9J4fWVA=) 3: A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl (hash: aqKDa3FcFOQkpZC/viASwZJBrN3dkUz/wSBeTsrsXfc=) 4: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: 5ev3rc/Wu45AIU9QKYFuF4qHEkUSlKkTnsZ3JdywnVM=) 5: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: eVL30F9FmWg9xfcbeGTmvP0LqqOdBiZkfgWJnF3c51k=) 6: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: nNs3zCmZDfGYSq9FVm5Dz3ukk7qRss0F7cyqFrIdiUs=) 7: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: +zXAXB63RMz7uGSWbbDCPnLGVqN8tZG7EPNtc0tQGQw=) 8: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: dyN12mfoRjXFlNHqIFEChK7+mIsDEFYombQgQudcekM=) 9: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: qDJ/c5qWojiJYfc9eIqgLudqj78rlDzX+1L2SPWNYTQ=) 10: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: 2ZuwNGg62iU8raGM9TYM3A0jrh0UG5HDKyy6dwXOLS0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:39:5b:12:5f:bc:86:4e:e5:7c:c9:e0:f0:56:06:ab:18:32:77:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Validity Not Before: May 12 19:46:16 2026 GMT Not After : May 13 22:41:16 2026 GMT Subject: CN=9D38359D418488322987737E12F17B0F7813A4E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:08:93:2d:74:56:86:5d:40:f3:5d:6a:55:7d: 23:25:c7:39:9a:96:c0:9a:c3:58:1e:d7:56:0a:25: 30:ae:61:0a:e7:4c:f8:1c:de:98:d3:1c:39:97:be: 8a:34:46:cb:06:d7:be:33:c2:53:d2:de:2d:61:db: 7c:02:43:a8:5b:75:22:9c:3e:cc:45:97:2a:07:7b: 0d:2c:a8:0a:f0:cd:27:f1:52:2c:a5:01:cb:00:c5: 80:70:15:5f:3a:79:88:46:64:e6:ca:cc:52:b7:76: f5:d9:b4:57:2f:15:e3:c1:26:6c:4c:66:95:ee:87: 8e:b8:33:63:af:0a:5b:48:b6:a1:d5:88:84:3e:15: 3b:ad:8a:d5:c4:46:0c:02:b2:8c:58:ee:e6:c0:a6: 36:b5:cb:de:3c:0e:f7:ff:40:65:cc:d2:90:cf:c5: 7a:ef:b1:a9:34:e2:4b:6e:d5:e7:78:ea:e1:4a:a9: 36:00:2b:93:1f:13:f2:43:67:ed:91:dc:c5:af:f7: ba:63:88:cf:b8:51:ab:ba:7e:27:f0:48:93:b9:83: db:a1:08:a6:ec:53:63:09:37:ae:0c:21:dd:fd:84: 29:7e:92:21:8d:b8:85:39:5e:be:28:3c:5f:66:08: b2:ce:a9:27:85:ba:50:5a:3f:f5:93:23:a2:d8:d0: 6a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:38:35:9D:41:84:88:32:29:87:73:7E:12:F1:7B:0F:78:13:A4:E4 X509v3 Authority Key Identifier: keyid:A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:38:8c:01:bc:b1:94:7b:5c:4d:a9:36:79:2e:55:6f:89:63: d2:0b:31:9c:b5:f1:78:78:92:9a:8a:e6:87:bf:6e:75:95:ba: 59:cc:8e:01:02:99:f8:d6:2a:63:2b:8c:6b:27:27:51:4c:af: f2:00:32:88:1d:65:7d:98:ec:cf:ff:41:6d:2b:d1:15:df:be: 2c:20:49:08:0c:e2:f9:1c:42:fb:11:56:b8:1f:9c:52:33:1e: ae:1d:3a:63:53:1f:8a:d0:eb:d0:71:1e:de:b7:e5:a8:ba:4e: 96:16:63:50:62:5b:61:aa:01:bf:c0:bb:52:cb:29:7d:1c:5d: ab:b9:13:f3:ae:0b:7c:65:fe:f8:8f:9f:2c:77:ff:cf:e3:0e: 70:11:91:c0:32:91:62:bf:6e:2b:c5:f8:f6:23:7e:66:64:61: 45:89:77:53:3b:3f:9d:de:80:2d:6b:97:f4:6e:16:ee:2a:8d: 96:11:ff:0f:d0:e2:c2:d8:ba:63:d4:a7:07:31:67:5d:51:6b: 2c:f2:59:7e:a1:be:6a:58:19:11:af:54:65:14:46:9d:47:2a: 89:59:69:17:24:cc:34:b6:04:88:ac:1b:c9:cc:4c:74:a3:a9: 0e:62:6b:7c:21:2b:69:10:04:ac:c5:fa:b7:35:d5:05:f4:58: b1:78:5d:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBjlbEl+8hk7lfMng8FYGqxgydxAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIx RjMzNDlGMzAeFw0yNjA1MTIxOTQ2MTZaFw0yNjA1MTMyMjQxMTZaMDMxMTAvBgNV BAMTKDlEMzgzNTlENDE4NDg4MzIyOTg3NzM3RTEyRjE3QjBGNzgxM0E0RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkCJMtdFaGXUDzXWpVfSMlxzma lsCaw1ge11YKJTCuYQrnTPgc3pjTHDmXvoo0RssG174zwlPS3i1h23wCQ6hbdSKc PsxFlyoHew0sqArwzSfxUiylAcsAxYBwFV86eYhGZObKzFK3dvXZtFcvFePBJmxM ZpXuh464M2OvCltItqHViIQ+FTutitXERgwCsoxY7ubApja1y948Dvf/QGXM0pDP xXrvsak04ktu1ed46uFKqTYAK5MfE/JDZ+2R3MWv97pjiM+4Uau6fifwSJO5g9uh CKbsU2MJN64MId39hCl+kiGNuIU5Xr4oPF9mCLLOqSeFulBaP/WTI6LY0GorAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnTg1nUGEiDIph3N+EvF7D3gTpOQwHwYDVR0j BBgwFoAUoIuvLYhRTsBBqH8JLmtqUh8zSfMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJjNmFhMDMtMWI0ZC00MzhlLWE5ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4 ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIxRjMzNDlGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDhCQUYyRDg4NTE0RUMwNDFBODdGMDkyRTZCNkE1MjFGMzM0 OUYzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZB NTIxRjMzNDlGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFc4jAG8sZR7XE2pNnkuVW+JY9ILMZy18Xh4 kpqK5oe/bnWVulnMjgECmfjWKmMrjGsnJ1FMr/IAMogdZX2Y7M//QW0r0RXfviwg SQgM4vkcQvsRVrgfnFIzHq4dOmNTH4rQ69BxHt635ai6TpYWY1BiW2GqAb/Au1LL KX0cXau5E/OuC3xl/viPnyx3/8/jDnARkcAykWK/bivF+PYjfmZkYUWJd1M7P53e gC1rl/RuFu4qjZYR/w/Q4sLYumPUpwcxZ11RayzyWX6hvmpYGRGvVGUURp1HKolZ aRckzDS2BIisG8nMTHSjqQ5ia3whK2kQBKzF+rc11QX0WLF4XYc= -----END CERTIFICATE-----Generated at Tue May 12 23:55:40 2026 by rpki-client