$ rpki-client -vvf rpki-rsync.idnic.net/repo/4ccc2af4-a62d-4708-b688-1892594ba989/0/2DFA9ABE82F079690092186CFE591462760D0F8A.mft File: 2DFA9ABE82F079690092186CFE591462760D0F8A.mft (raw, json) Hash identifier: 4fJfdNPmBmmcj4y9dtmL2kOiqivxYW60BlhQOKaSamk= Subject key identifier: 51:31:43:48:B1:A6:0A:01:F8:46:E1:86:D8:A8:AF:99:3E:E4:E7:AC Authority key identifier: 2D:FA:9A:BE:82:F0:79:69:00:92:18:6C:FE:59:14:62:76:0D:0F:8A Certificate issuer: /CN=2DFA9ABE82F079690092186CFE591462760D0F8A Certificate serial: 29C2FDB4570CB4CB02D9EC048B3CE961C9EB9514 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2DFA9ABE82F079690092186CFE591462760D0F8A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4ccc2af4-a62d-4708-b688-1892594ba989/0/2DFA9ABE82F079690092186CFE591462760D0F8A.mft Manifest number: 0F Signing time: Tue 12 May 2026 17:06:47 +0000 Manifest this update: Tue 12 May 2026 17:01:47 +0000 Manifest next update: Wed 13 May 2026 19:59:47 +0000 Files and hashes: 1: 2DFA9ABE82F079690092186CFE591462760D0F8A.crl (hash: /oWK7t/+m5yBwTW4xLBp0PaV+UHMoGWCiM4rSFu6mb4=) 2: 3130332e3133352e34382e302f32322d3234203d3e203338333230.roa (hash: W/hw+IjAyZrPFulBFkYLnFPX3SzGksOOsryB2xI+HDo=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4ccc2af4-a62d-4708-b688-1892594ba989/0/2DFA9ABE82F079690092186CFE591462760D0F8A.crl rsync://rpki-rsync.idnic.net/repo/4ccc2af4-a62d-4708-b688-1892594ba989/0/2DFA9ABE82F079690092186CFE591462760D0F8A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2DFA9ABE82F079690092186CFE591462760D0F8A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 19:59:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:c2:fd:b4:57:0c:b4:cb:02:d9:ec:04:8b:3c:e9:61:c9:eb:95:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DFA9ABE82F079690092186CFE591462760D0F8A Validity Not Before: May 12 17:01:47 2026 GMT Not After : May 13 19:59:47 2026 GMT Subject: CN=51314348B1A60A01F846E186D8A8AF993EE4E7AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b2:d7:9c:c2:11:22:4d:9c:96:4b:58:bd:13: 82:74:97:0f:42:b0:87:a2:af:c8:6e:c8:df:4a:ec: 0b:d9:63:15:43:ac:4f:65:ec:e1:df:e6:6e:69:73: 61:f3:71:59:78:52:28:61:a2:b5:a7:b1:de:52:4f: a7:ba:d6:2e:79:6c:77:74:c3:b2:5d:fb:ea:ff:04: 7a:0b:aa:3c:9d:a7:8c:39:40:82:50:92:4f:98:70: 87:34:50:82:36:47:7a:1e:5c:5e:b7:bf:60:13:86: aa:23:cd:9b:76:d7:79:3b:06:c2:b6:70:c7:bb:25: d8:17:e2:69:50:de:3b:35:27:85:96:13:f4:16:67: 5f:54:a4:c0:f5:4c:27:51:be:d3:0a:2f:81:ad:52: 2e:a7:46:27:23:25:39:bb:3e:f1:18:2b:2d:43:16: f9:c9:47:6a:a1:fb:0d:a1:69:c8:f2:2f:c9:ad:df: c8:1b:4d:cf:82:88:c2:e4:71:bc:8f:6e:c3:81:6b: 53:69:28:03:e4:cd:4d:53:df:35:ab:1d:c3:0a:ed: 5a:23:90:8c:86:44:e7:5d:98:30:a6:da:64:c1:5e: d6:b3:fa:6d:d0:0c:46:15:f9:39:ad:0f:5d:1d:ad: 74:bc:51:3e:56:b7:18:b6:90:92:de:29:bf:d5:9d: 73:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:31:43:48:B1:A6:0A:01:F8:46:E1:86:D8:A8:AF:99:3E:E4:E7:AC X509v3 Authority Key Identifier: keyid:2D:FA:9A:BE:82:F0:79:69:00:92:18:6C:FE:59:14:62:76:0D:0F:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4ccc2af4-a62d-4708-b688-1892594ba989/0/2DFA9ABE82F079690092186CFE591462760D0F8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2DFA9ABE82F079690092186CFE591462760D0F8A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4ccc2af4-a62d-4708-b688-1892594ba989/0/2DFA9ABE82F079690092186CFE591462760D0F8A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:72:c5:c2:1d:a7:70:74:4e:46:25:38:26:24:4b:06:fe:4c: 3e:34:45:16:20:63:67:5e:7f:a2:1d:87:72:e3:46:93:db:21: b9:82:be:ab:d4:7c:af:6d:cb:f4:cc:9c:18:25:1a:66:1b:65: 84:6e:ce:bc:2f:ef:a6:38:44:5e:e2:8c:3f:35:8c:03:0b:12: 55:bc:46:fe:f0:3e:92:ff:67:4a:6a:31:47:c3:fd:06:7b:bb: 6d:5e:05:f4:de:82:7e:23:c6:8a:54:ed:85:84:d3:99:f2:2b: 1a:e8:5d:a8:eb:c5:ed:85:9d:44:15:8e:d1:12:87:46:52:46: dd:1a:6a:56:c8:fc:81:ef:28:5d:25:1e:49:a3:d0:c3:2b:aa: c3:fa:e4:76:a5:b9:8c:d5:e4:ea:2f:c4:87:cd:82:13:24:78: 9d:2d:1d:1e:a0:2a:a9:78:de:a8:28:f3:76:75:47:f7:f2:1b: 3c:f3:de:ff:ca:bc:b1:d6:10:80:1e:ac:d2:e5:df:38:19:a9: 23:42:c0:29:ba:91:1f:84:ff:9e:52:46:c6:65:1d:2b:e2:e9: fc:5a:52:25:47:fc:16:e2:3d:6e:76:20:20:29:12:12:95:59: e1:38:c7:76:99:da:09:56:11:ef:66:bf:d7:a8:7d:41:4b:c6: 9f:e7:53:49 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKcL9tFcMtMsC2ewEizzpYcnrlRQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRGQTlBQkU4MkYwNzk2OTAwOTIxODZDRkU1OTE0NjI3 NjBEMEY4QTAeFw0yNjA1MTIxNzAxNDdaFw0yNjA1MTMxOTU5NDdaMDMxMTAvBgNV BAMTKDUxMzE0MzQ4QjFBNjBBMDFGODQ2RTE4NkQ4QThBRjk5M0VFNEU3QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+stecwhEiTZyWS1i9E4J0lw9C sIeir8huyN9K7AvZYxVDrE9l7OHf5m5pc2HzcVl4UihhorWnsd5ST6e61i55bHd0 w7Jd++r/BHoLqjydp4w5QIJQkk+YcIc0UII2R3oeXF63v2AThqojzZt213k7BsK2 cMe7JdgX4mlQ3js1J4WWE/QWZ19UpMD1TCdRvtMKL4GtUi6nRicjJTm7PvEYKy1D FvnJR2qh+w2hacjyL8mt38gbTc+CiMLkcbyPbsOBa1NpKAPkzU1T3zWrHcMK7Voj kIyGROddmDCm2mTBXtaz+m3QDEYV+TmtD10drXS8UT5Wtxi2kJLeKb/VnXPPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUTFDSLGmCgH4RuGG2KivmT7k56wwHwYDVR0j BBgwFoAULfqavoLweWkAkhhs/lkUYnYND4owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGNjYzJhZjQtYTYyZC00NzA4LWI2ODgtMTg5MjU5NGJhOTg5LzAvMkRGQTlBQkU4 MkYwNzk2OTAwOTIxODZDRkU1OTE0NjI3NjBEMEY4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yREZBOUFCRTgyRjA3OTY5MDA5MjE4NkNGRTU5MTQ2Mjc2MEQw RjhBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGNjYzJhZjQtYTYyZC00NzA4LWI2 ODgtMTg5MjU5NGJhOTg5LzAvMkRGQTlBQkU4MkYwNzk2OTAwOTIxODZDRkU1OTE0 NjI3NjBEMEY4QS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHhyxcIdp3B0TkYlOCYkSwb+TD40RRYgY2de f6Idh3LjRpPbIbmCvqvUfK9ty/TMnBglGmYbZYRuzrwv76Y4RF7ijD81jAMLElW8 Rv7wPpL/Z0pqMUfD/QZ7u21eBfTegn4jxopU7YWE05nyKxroXajrxe2FnUQVjtES h0ZSRt0aalbI/IHvKF0lHkmj0MMrqsP65HaluYzV5OovxIfNghMkeJ0tHR6gKql4 3qgo83Z1R/fyGzzz3v/KvLHWEIAerNLl3zgZqSNCwCm6kR+E/55SRsZlHSvi6fxa UiVH/BbiPW52ICApEhKVWeE4x3aZ2glWEe9mv9eofUFLxp/nU0k= -----END CERTIFICATE-----Generated at Wed May 13 09:27:30 2026 by rpki-client