$ rpki-client -vvf rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft File: 028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft (raw, json) Hash identifier: Vby5qjWITW29CatTFvdu5DRDG0u/UF2IF6RBKzPU0XA= Subject key identifier: A3:B0:78:C0:BE:CD:35:11:14:E2:56:51:33:5D:3E:D5:5C:38:8F:37 Authority key identifier: 02:8B:3E:A2:51:C3:A5:97:AF:55:D4:DB:3E:F4:3A:07:C2:18:A5:A6 Certificate issuer: /CN=028B3EA251C3A597AF55D4DB3EF43A07C218A5A6 Certificate serial: 0884796FB5E3EF55C7293A0CE3CF15FC55032D99 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft Manifest number: 0F Signing time: Tue 12 May 2026 20:17:05 +0000 Manifest this update: Tue 12 May 2026 20:12:05 +0000 Manifest next update: Wed 13 May 2026 23:28:05 +0000 Files and hashes: 1: 3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa (hash: GtQhQt5lC+popSxKBpEXClSBs/pxIHaZp5GFBcVq7Ds=) 2: 3130332e3135352e3136372e302f32342d3234203d3e20313431303634.roa (hash: OyG3mFe6SrJhcLOwFyBCeuQpeyeUH09cXSgAgqZj+fA=) 3: 323430363a373234303a3a2f33322d3332203d3e20313431303634.roa (hash: OZMHHHmslz7MYh9R9Ib0RjlOxsJyDimPwwAqaL88/ng=) 4: 028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.crl (hash: My1I8CJaLEqBSjngljHaWn3/nYhYISQ7SkSA9Eo4X/U=) 5: 3130332e3135352e3136362e302f32332d3233203d3e20313431303634.roa (hash: N8zhnsK8z7VxJNfcfyiLUZPoMiisc/2RHnWBqlz/4MI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.crl rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:84:79:6f:b5:e3:ef:55:c7:29:3a:0c:e3:cf:15:fc:55:03:2d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028B3EA251C3A597AF55D4DB3EF43A07C218A5A6 Validity Not Before: May 12 20:12:05 2026 GMT Not After : May 13 23:28:05 2026 GMT Subject: CN=A3B078C0BECD351114E25651335D3ED55C388F37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f3:e2:59:7b:ac:f2:fd:96:e9:11:9b:20:62: 23:6f:4d:2a:58:1e:f9:16:1d:80:68:4c:6f:fc:dd: 4a:9e:fb:a3:19:d6:57:e2:6f:8b:9f:f0:29:de:6f: 6a:92:16:35:e6:62:a0:e0:f4:94:f0:51:53:17:cf: c4:4c:71:32:c8:2d:91:f2:6e:81:20:a8:bb:75:42: c9:dd:0b:41:1f:bb:46:12:ae:2d:19:ad:45:a2:de: e9:e9:56:d5:99:84:15:27:0e:d9:18:40:19:35:fd: 9f:55:da:d1:3e:23:5d:c2:9e:f7:21:09:31:96:3e: 49:b7:ea:e3:a5:5d:cb:b0:9f:62:16:6f:2a:ce:de: 7c:01:ae:1b:a4:6e:d9:6f:46:ce:bd:74:5d:4c:64: 4d:4a:19:08:4c:7a:eb:7b:ea:54:3e:9c:45:10:d5: 61:3d:0d:a0:b2:94:d3:83:aa:96:22:59:5d:b6:99: 0b:b8:04:1d:27:f7:6c:5f:42:d0:f5:59:07:40:13: 58:b8:cc:13:a6:5a:2a:ad:42:57:ba:da:7d:23:a4: 96:21:0a:f1:c0:8e:4f:df:fb:25:18:69:f5:91:27: 8a:54:42:ae:69:2a:85:62:88:76:9c:b3:82:4f:6e: f9:a6:a5:a4:df:9d:9f:e4:db:7a:b6:1f:b3:95:b6: fb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B0:78:C0:BE:CD:35:11:14:E2:56:51:33:5D:3E:D5:5C:38:8F:37 X509v3 Authority Key Identifier: keyid:02:8B:3E:A2:51:C3:A5:97:AF:55:D4:DB:3E:F4:3A:07:C2:18:A5:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:68:9c:8e:ec:bf:1a:c3:46:03:81:c7:f1:00:4a:99:7c:5d: 92:c8:84:61:fd:c0:fa:f7:04:00:5e:eb:ae:7f:09:a1:08:a9: 5b:71:71:3b:1c:a7:9d:c5:69:19:66:15:48:3f:87:ca:40:8d: f0:80:f5:74:10:d5:30:f1:14:7f:b6:07:45:84:b4:4b:e9:c2: 31:d7:c6:40:8e:c0:20:61:12:4c:c1:a3:ef:88:54:63:9e:39: 84:ac:ee:93:60:22:65:18:9f:1b:48:31:b5:13:11:94:23:f7: e5:6b:f1:96:f8:74:e1:b8:ab:3c:4f:94:67:42:18:be:f0:ca: e7:c9:f0:61:0f:cd:ca:0a:4f:ae:b2:0b:8d:17:59:63:14:55: b5:ce:62:5a:0d:99:8f:77:56:75:e2:79:1f:5e:fb:5b:e4:37: 2d:00:26:75:5e:a4:34:07:fe:2f:83:a6:80:55:9d:7c:b8:44: b7:05:a8:6b:5c:5b:1a:be:ba:f2:3d:29:cb:8b:96:a4:4e:a3: ae:55:c0:9b:46:86:18:6f:a6:03:1d:5c:49:53:59:0f:f1:59: c5:ee:82:28:b0:c6:11:4d:d4:3b:e8:43:7a:b5:ca:88:f9:8c: 52:7e:07:1f:d9:7c:dd:c7:0c:91:dd:d6:45:a1:f8:c6:0c:a0: ca:50:67:b4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCIR5b7Xj71XHKToM488V/FUDLZkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI4QjNFQTI1MUMzQTU5N0FGNTVENERCM0VGNDNBMDdD MjE4QTVBNjAeFw0yNjA1MTIyMDEyMDVaFw0yNjA1MTMyMzI4MDVaMDMxMTAvBgNV BAMTKEEzQjA3OEMwQkVDRDM1MTExNEUyNTY1MTMzNUQzRUQ1NUMzODhGMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC08+JZe6zy/ZbpEZsgYiNvTSpY HvkWHYBoTG/83Uqe+6MZ1lfib4uf8Cneb2qSFjXmYqDg9JTwUVMXz8RMcTLILZHy boEgqLt1QsndC0Efu0YSri0ZrUWi3unpVtWZhBUnDtkYQBk1/Z9V2tE+I13Cnvch CTGWPkm36uOlXcuwn2IWbyrO3nwBrhukbtlvRs69dF1MZE1KGQhMeut76lQ+nEUQ 1WE9DaCylNODqpYiWV22mQu4BB0n92xfQtD1WQdAE1i4zBOmWiqtQle62n0jpJYh CvHAjk/f+yUYafWRJ4pUQq5pKoViiHacs4JPbvmmpaTfnZ/k23q2H7OVtvvBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo7B4wL7NNREU4lZRM10+1Vw4jzcwHwYDVR0j BBgwFoAUAos+olHDpZevVdTbPvQ6B8IYpaYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGM2YjJiZDctZDdmMS00ODE1LWE2MGEtY2FkNTQwMjljZTg4LzAvMDI4QjNFQTI1 MUMzQTU5N0FGNTVENERCM0VGNDNBMDdDMjE4QTVBNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjhCM0VBMjUxQzNBNTk3QUY1NUQ0REIzRUY0M0EwN0MyMThB NUE2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGM2YjJiZDctZDdmMS00ODE1LWE2 MGEtY2FkNTQwMjljZTg4LzAvMDI4QjNFQTI1MUMzQTU5N0FGNTVENERCM0VGNDNB MDdDMjE4QTVBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABFonI7svxrDRgOBx/EASpl8XZLIhGH9wPr3 BABe665/CaEIqVtxcTscp53FaRlmFUg/h8pAjfCA9XQQ1TDxFH+2B0WEtEvpwjHX xkCOwCBhEkzBo++IVGOeOYSs7pNgImUYnxtIMbUTEZQj9+Vr8Zb4dOG4qzxPlGdC GL7wyufJ8GEPzcoKT66yC40XWWMUVbXOYloNmY93VnXieR9e+1vkNy0AJnVepDQH /i+DpoBVnXy4RLcFqGtcWxq+uvI9KcuLlqROo65VwJtGhhhvpgMdXElTWQ/xWcXu giiwxhFN1DvoQ3q1yoj5jFJ+Bx/ZfN3HDJHd1kWh+MYMoMpQZ7Q= -----END CERTIFICATE-----Generated at Wed May 13 02:16:09 2026 by rpki-client