$ rpki-client -vvf rpki-rsync.idnic.net/repo/56e63cd2-fb3c-41b2-b96b-ab234420a211/0/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.mft File: 8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.mft (raw, json) Hash identifier: JYtLpqyKIvDO1MGD5oi/ar5zpwFBXqWfLil4LXMqvOM= Subject key identifier: 59:84:2C:3E:ED:71:80:70:AA:59:E4:28:47:F6:33:F7:33:AF:09:C3 Authority key identifier: 8C:D6:FC:02:55:FD:1E:D1:7F:D8:2C:FA:8B:66:D2:4A:29:BA:1D:8E Certificate issuer: /CN=8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E Certificate serial: 68BB1D2032FC8E3E55E439F095F09D44CE295F24 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/56e63cd2-fb3c-41b2-b96b-ab234420a211/0/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.mft Manifest number: 0F Signing time: Tue 12 May 2026 14:49:30 +0000 Manifest this update: Tue 12 May 2026 14:44:30 +0000 Manifest next update: Wed 13 May 2026 18:30:30 +0000 Files and hashes: 1: 3130332e38372e3139362e302f32342d3234203d3e20313336303837.roa (hash: tUv0W4gMiS1vhejBIsoiDaLo6/xoWf91YpxI7rtj5ao=) 2: 3130332e38372e3139392e302f32342d3234203d3e20313336303837.roa (hash: Y4fdfPd8CGZXfJi8zT1Xs61mqy3uc8h/5nYm+/f9TOQ=) 3: 3130332e38372e3139372e302f32342d3234203d3e20313336303837.roa (hash: VvKS0B4ZLReXOTrvcAhygsCJwutg9GJIYxL7J1Tdiis=) 4: 8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.crl (hash: jVYiM05OhNpwS/XbLwl89MiflbMx6c4Jmd3bZpFi50Q=) 5: 3130332e38372e3139382e302f32342d3234203d3e20313336303837.roa (hash: j+lgNwhd7sTPpzvBZDbz7MtwJzwdtzVrzUiO5CTg4C0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/56e63cd2-fb3c-41b2-b96b-ab234420a211/0/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.crl rsync://rpki-rsync.idnic.net/repo/56e63cd2-fb3c-41b2-b96b-ab234420a211/0/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:bb:1d:20:32:fc:8e:3e:55:e4:39:f0:95:f0:9d:44:ce:29:5f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E Validity Not Before: May 12 14:44:30 2026 GMT Not After : May 13 18:30:30 2026 GMT Subject: CN=59842C3EED718070AA59E42847F633F733AF09C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c2:61:f4:6d:77:60:b5:fd:c9:0b:a5:83:3e: ee:39:aa:86:d6:70:00:b6:7f:33:4f:34:d0:e9:b8: d8:b6:a5:c7:3f:03:b7:ef:26:9a:21:dd:e6:04:81: 9f:69:b5:7c:d1:00:ba:52:a3:d4:12:2a:7d:43:6c: d7:6a:95:f9:c4:6c:48:99:f7:c2:3f:dc:a5:db:d4: 0e:c9:7d:6c:49:d4:4c:ae:a7:42:1e:2c:3d:be:ad: f5:32:c9:83:08:29:8f:57:57:2d:56:96:1f:5d:45: 6f:d3:90:5a:b5:24:0c:71:e3:90:d9:b9:d5:88:85: 43:b9:d7:2a:f5:3f:7a:04:ab:52:23:ce:60:f9:21: 69:e6:4f:8a:19:fc:b4:5f:a0:9f:6f:b9:f1:b0:64: 43:45:37:73:d3:e7:2f:c4:b4:f5:13:45:19:a3:bc: e4:e9:51:b6:77:c9:90:d5:02:43:e8:f0:28:c4:e4: 52:12:da:17:f7:d5:7f:33:c7:34:62:33:c7:d8:ea: 9f:3d:f6:73:1d:62:92:ff:49:e1:a9:69:a3:d0:83: a7:b3:db:da:7d:a6:d2:10:85:4e:b8:0d:f5:8c:21: 84:b8:55:81:26:ea:69:3a:6e:df:ee:1e:28:6e:b6: 6f:12:e2:fd:7b:95:bd:e5:16:b5:2b:0d:0b:28:2a: e6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:84:2C:3E:ED:71:80:70:AA:59:E4:28:47:F6:33:F7:33:AF:09:C3 X509v3 Authority Key Identifier: keyid:8C:D6:FC:02:55:FD:1E:D1:7F:D8:2C:FA:8B:66:D2:4A:29:BA:1D:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/56e63cd2-fb3c-41b2-b96b-ab234420a211/0/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/56e63cd2-fb3c-41b2-b96b-ab234420a211/0/8CD6FC0255FD1ED17FD82CFA8B66D24A29BA1D8E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:04:b4:22:44:54:d7:6f:c1:f7:cc:44:1f:7a:d2:ce:b4:f0: ee:15:ba:fd:83:70:06:ae:1b:a3:16:18:a5:84:46:68:c4:a8: be:c2:98:5d:76:67:02:17:ea:36:c1:f7:27:01:b2:c8:fa:fb: 90:6a:9b:96:ae:60:0a:bb:dd:2d:a9:9f:1f:4f:f3:f1:03:4f: 47:45:5e:85:60:63:c8:68:a8:81:a7:96:0f:79:6e:54:6a:be: e6:78:c8:71:b6:1a:83:5e:92:73:84:1d:d2:94:2c:a6:65:33: be:03:39:af:c5:41:9c:fd:31:33:99:ac:c4:86:63:5b:df:1d: e1:11:c2:66:55:08:66:cc:72:4e:6e:46:b6:2e:d4:33:be:7e: f0:15:6d:f2:00:4b:17:7e:87:ce:bf:53:38:5a:b7:3c:28:a1: da:88:d6:c8:f5:57:58:58:48:e7:dc:43:fb:46:00:60:60:80: a5:84:53:6f:17:65:0f:61:34:0e:59:a0:5a:d1:a1:f7:d8:e9: e5:5e:4a:65:44:d4:61:e9:7a:0a:70:4a:f3:57:f6:b2:3a:77: 8f:39:3a:7c:db:05:1c:24:61:2a:b3:0a:8d:07:83:ef:27:27: ee:43:40:82:4b:d1:29:a1:fa:34:15:17:6f:e9:b8:1c:08:70: ea:e6:0a:4c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaLsdIDL8jj5V5DnwlfCdRM4pXyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENENkZDMDI1NUZEMUVEMTdGRDgyQ0ZBOEI2NkQyNEEy OUJBMUQ4RTAeFw0yNjA1MTIxNDQ0MzBaFw0yNjA1MTMxODMwMzBaMDMxMTAvBgNV BAMTKDU5ODQyQzNFRUQ3MTgwNzBBQTU5RTQyODQ3RjYzM0Y3MzNBRjA5QzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAwmH0bXdgtf3JC6WDPu45qobW cAC2fzNPNNDpuNi2pcc/A7fvJpoh3eYEgZ9ptXzRALpSo9QSKn1DbNdqlfnEbEiZ 98I/3KXb1A7JfWxJ1Eyup0IeLD2+rfUyyYMIKY9XVy1Wlh9dRW/TkFq1JAxx45DZ udWIhUO51yr1P3oEq1IjzmD5IWnmT4oZ/LRfoJ9vufGwZENFN3PT5y/EtPUTRRmj vOTpUbZ3yZDVAkPo8CjE5FIS2hf31X8zxzRiM8fY6p899nMdYpL/SeGpaaPQg6ez 29p9ptIQhU64DfWMIYS4VYEm6mk6bt/uHihutm8S4v17lb3lFrUrDQsoKuYfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWYQsPu1xgHCqWeQoR/Yz9zOvCcMwHwYDVR0j BBgwFoAUjNb8AlX9HtF/2Cz6i2bSSim6HY4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTZlNjNjZDItZmIzYy00MWIyLWI5NmItYWIyMzQ0MjBhMjExLzAvOENENkZDMDI1 NUZEMUVEMTdGRDgyQ0ZBOEI2NkQyNEEyOUJBMUQ4RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84Q0Q2RkMwMjU1RkQxRUQxN0ZEODJDRkE4QjY2RDI0QTI5QkEx RDhFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNTZlNjNjZDItZmIzYy00MWIyLWI5 NmItYWIyMzQ0MjBhMjExLzAvOENENkZDMDI1NUZEMUVEMTdGRDgyQ0ZBOEI2NkQy NEEyOUJBMUQ4RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAAEtCJEVNdvwffMRB960s608O4Vuv2DcAau G6MWGKWERmjEqL7CmF12ZwIX6jbB9ycBssj6+5Bqm5auYAq73S2pnx9P8/EDT0dF XoVgY8hoqIGnlg95blRqvuZ4yHG2GoNeknOEHdKULKZlM74DOa/FQZz9MTOZrMSG Y1vfHeERwmZVCGbMck5uRrYu1DO+fvAVbfIASxd+h86/UzhatzwoodqI1sj1V1hY SOfcQ/tGAGBggKWEU28XZQ9hNA5ZoFrRoffY6eVeSmVE1GHpegpwSvNX9rI6d485 OnzbBRwkYSqzCo0Hg+8nJ+5DQIJL0Smh+jQVF2/puBwIcOrmCkw= -----END CERTIFICATE-----Generated at Tue May 12 22:45:54 2026 by rpki-client