$ rpki-client -vvf rpki-rsync.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/2DFC13D85715AA04782C2A3D86F83844385F896D.mft File: 2DFC13D85715AA04782C2A3D86F83844385F896D.mft (raw, json) Hash identifier: T+5f6K0y8RVI0wcDEXMGI43P8IGI+mXyhiBAFuNHiwg= Subject key identifier: 62:ED:A3:AC:BE:29:D9:C8:83:79:9E:B0:8C:D5:CD:43:2A:52:7E:73 Authority key identifier: 2D:FC:13:D8:57:15:AA:04:78:2C:2A:3D:86:F8:38:44:38:5F:89:6D Certificate issuer: /CN=2DFC13D85715AA04782C2A3D86F83844385F896D Certificate serial: 23FBF1599A6D2B4B447A6B5D2C549F42032F11B8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2DFC13D85715AA04782C2A3D86F83844385F896D.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/2DFC13D85715AA04782C2A3D86F83844385F896D.mft Manifest number: 0F Signing time: Tue 12 May 2026 12:07:37 +0000 Manifest this update: Tue 12 May 2026 12:02:37 +0000 Manifest next update: Wed 13 May 2026 14:44:37 +0000 Files and hashes: 1: 3136302e3138372e35352e302f32342d3234203d3e20313533313137.roa (hash: 2yToa31P3viNdlJSz6LX8aSdNJBJoeEJaRZoiY3wK8c=) 2: 2DFC13D85715AA04782C2A3D86F83844385F896D.crl (hash: /bHbRQLsS6OJspbSaUVOZ2D+zsT4WLW3nL/C7q7T2ps=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/2DFC13D85715AA04782C2A3D86F83844385F896D.crl rsync://rpki-rsync.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/2DFC13D85715AA04782C2A3D86F83844385F896D.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2DFC13D85715AA04782C2A3D86F83844385F896D.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:fb:f1:59:9a:6d:2b:4b:44:7a:6b:5d:2c:54:9f:42:03:2f:11:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DFC13D85715AA04782C2A3D86F83844385F896D Validity Not Before: May 12 12:02:37 2026 GMT Not After : May 13 14:44:37 2026 GMT Subject: CN=62EDA3ACBE29D9C883799EB08CD5CD432A527E73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:61:d2:4f:1f:6b:cf:1b:82:a2:9c:bc:a4: c9:f0:ad:37:9b:7b:69:71:14:fa:17:e7:b2:e1:58: 24:86:10:25:7c:42:d2:8f:dd:62:ff:fd:d1:95:fb: ac:1c:e0:08:2c:ba:78:e4:71:c0:74:af:34:d1:a3: 69:a0:4f:48:5d:7d:99:17:fc:7c:ff:ae:97:49:d4: 11:7e:2b:bf:a2:00:ad:44:49:31:b0:21:13:ba:53: fa:63:4f:88:4d:da:c8:56:76:71:c9:e4:6d:05:62: fd:aa:36:5d:ad:58:35:62:62:44:53:cf:c6:c1:af: 60:1f:61:73:98:99:6c:b4:7b:de:d4:64:f3:b9:ed: 08:0f:0d:de:94:77:4c:b6:66:c9:61:d7:8e:de:9b: 2b:d1:db:77:04:b2:95:3a:67:16:5e:01:ce:6c:c3: ca:8c:7f:4c:ba:4d:01:90:b7:ef:e1:c9:cc:0e:eb: c2:95:be:b4:56:14:39:dd:02:e6:9d:61:85:f4:de: fc:25:1a:a9:db:11:10:51:c9:d3:a0:0c:7c:a5:a4: 77:38:70:78:53:74:e7:4f:c4:fa:e5:05:85:a5:22: 73:b7:4c:d0:c8:39:9e:39:da:85:89:eb:05:4f:20: e6:67:53:7a:c9:22:15:dd:a6:00:cd:23:6b:2b:87: 61:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:ED:A3:AC:BE:29:D9:C8:83:79:9E:B0:8C:D5:CD:43:2A:52:7E:73 X509v3 Authority Key Identifier: keyid:2D:FC:13:D8:57:15:AA:04:78:2C:2A:3D:86:F8:38:44:38:5F:89:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/2DFC13D85715AA04782C2A3D86F83844385F896D.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2DFC13D85715AA04782C2A3D86F83844385F896D.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59b07a9e-62df-4808-9d2a-a6e6884bcbbb/0/2DFC13D85715AA04782C2A3D86F83844385F896D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:db:02:d0:1c:c5:17:d4:bf:8e:4a:be:2d:1e:53:86:d2:4a: 99:01:05:5f:19:48:ca:6c:ac:05:10:e4:71:33:21:5c:36:46: db:f6:bd:b0:db:48:a4:8f:85:89:07:59:27:9c:81:b6:ec:37: e2:67:21:9a:1c:78:45:d6:da:ca:42:de:24:8a:04:c1:75:0d: 45:51:de:17:40:b4:f8:1e:52:0c:e9:e2:0f:1b:a7:75:33:b4: 81:ac:1d:ee:8b:89:97:6d:70:0b:5b:1f:c0:fd:ba:0a:18:33: 12:29:41:87:34:d8:ab:65:f1:7e:4a:32:d2:52:20:fe:56:f3: 4f:e3:5c:05:da:3b:32:da:5c:b6:29:61:5e:7a:88:b2:2b:53: a5:63:1a:a0:09:92:37:53:27:46:87:21:d6:2d:58:08:1a:4f: 1d:63:95:c6:09:47:9b:00:90:5c:f9:38:f4:8a:3c:0e:45:a0: 94:e4:0d:f2:33:df:53:61:f7:d6:69:3c:ed:80:96:53:0a:85: a8:2a:c9:a9:01:fc:a7:7c:62:72:c4:6e:46:ea:01:75:56:b3: 90:de:95:4a:71:e6:ae:5d:f3:d5:ae:cd:da:42:cd:19:55:fb: 0d:5c:09:17:e9:dc:ae:45:42:f9:d7:2b:93:28:f4:08:c8:03: 8a:8e:7c:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI/vxWZptK0tEemtdLFSfQgMvEbgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRGQzEzRDg1NzE1QUEwNDc4MkMyQTNEODZGODM4NDQz ODVGODk2RDAeFw0yNjA1MTIxMjAyMzdaFw0yNjA1MTMxNDQ0MzdaMDMxMTAvBgNV BAMTKDYyRURBM0FDQkUyOUQ5Qzg4Mzc5OUVCMDhDRDVDRDQzMkE1MjdFNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxRWHSTx9rzxuCopy8pMnwrTeb e2lxFPoX57LhWCSGECV8QtKP3WL//dGV+6wc4AgsunjkccB0rzTRo2mgT0hdfZkX /Hz/rpdJ1BF+K7+iAK1ESTGwIRO6U/pjT4hN2shWdnHJ5G0FYv2qNl2tWDViYkRT z8bBr2AfYXOYmWy0e97UZPO57QgPDd6Ud0y2Zslh147emyvR23cEspU6ZxZeAc5s w8qMf0y6TQGQt+/hycwO68KVvrRWFDndAuadYYX03vwlGqnbERBRydOgDHylpHc4 cHhTdOdPxPrlBYWlInO3TNDIOZ452oWJ6wVPIOZnU3rJIhXdpgDNI2srh2EfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYu2jrL4p2ciDeZ6wjNXNQypSfnMwHwYDVR0j BBgwFoAULfwT2FcVqgR4LCo9hvg4RDhfiW0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTliMDdhOWUtNjJkZi00ODA4LTlkMmEtYTZlNjg4NGJjYmJiLzAvMkRGQzEzRDg1 NzE1QUEwNDc4MkMyQTNEODZGODM4NDQzODVGODk2RC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yREZDMTNEODU3MTVBQTA0NzgyQzJBM0Q4NkY4Mzg0NDM4NUY4 OTZELmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNTliMDdhOWUtNjJkZi00ODA4LTlk MmEtYTZlNjg4NGJjYmJiLzAvMkRGQzEzRDg1NzE1QUEwNDc4MkMyQTNEODZGODM4 NDQzODVGODk2RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMLbAtAcxRfUv45Kvi0eU4bSSpkBBV8ZSMps rAUQ5HEzIVw2Rtv2vbDbSKSPhYkHWSecgbbsN+JnIZoceEXW2spC3iSKBMF1DUVR 3hdAtPgeUgzp4g8bp3UztIGsHe6LiZdtcAtbH8D9ugoYMxIpQYc02Ktl8X5KMtJS IP5W80/jXAXaOzLaXLYpYV56iLIrU6VjGqAJkjdTJ0aHIdYtWAgaTx1jlcYJR5sA kFz5OPSKPA5FoJTkDfIz31Nh99ZpPO2AllMKhagqyakB/Kd8YnLEbkbqAXVWs5De lUpx5q5d89WuzdpCzRlV+w1cCRfp3K5FQvnXK5Mo9AjIA4qOfO0= -----END CERTIFICATE-----Generated at Tue May 12 23:06:44 2026 by rpki-client