$ rpki-client -vvf rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.mft File: 23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.mft (raw, json) Hash identifier: b5A7ak8MfmpIxMM2e5sry4dNZhfkzNbSNHGN3Ku4FLg= Subject key identifier: A5:20:0A:5C:2F:C8:F8:95:99:59:7D:70:A8:1F:C6:F3:CF:7C:B4:FA Authority key identifier: 23:A0:F6:8C:EA:18:94:A3:2A:4A:04:BD:7E:64:F0:CF:0F:3D:EA:A0 Certificate issuer: /CN=23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0 Certificate serial: 45753075A68322BB430991BFC193AB4BBF50A72D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.mft Manifest number: 0F Signing time: Wed 13 May 2026 05:23:40 +0000 Manifest this update: Wed 13 May 2026 05:18:40 +0000 Manifest next update: Thu 14 May 2026 06:51:40 +0000 Files and hashes: 1: 3130332e3136392e3139392e302f32342d3234203d3e20313437313132.roa (hash: l/X2cP22D0Wy7RA8I5HP0mcO1xVHiIblMcBaMiAvS8U=) 2: 23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.crl (hash: CfHQAX52aJ5ak2O2TM5553fmqmGu3zoIrW9xCbsVwuM=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.crl rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:75:30:75:a6:83:22:bb:43:09:91:bf:c1:93:ab:4b:bf:50:a7:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0 Validity Not Before: May 13 05:18:40 2026 GMT Not After : May 14 06:51:40 2026 GMT Subject: CN=A5200A5C2FC8F89599597D70A81FC6F3CF7CB4FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:34:f6:09:f6:d1:e2:bb:1d:32:85:f9:0d:61: 5c:b2:bd:47:5b:e2:cf:0f:aa:75:9b:55:5d:7c:70: 00:46:80:b6:2c:2b:5b:54:1e:7c:a8:5e:bd:59:17: 1f:8d:7f:a5:bf:83:9e:2d:3a:0f:64:36:37:eb:6a: 82:fd:03:62:3c:25:48:97:f5:a1:5b:c5:bd:8d:71: 05:bc:b9:f3:3e:06:6d:5b:0f:4a:26:37:08:a7:47: 7e:db:5b:d6:64:a8:89:33:d8:ae:16:cd:ff:c3:38: 3e:94:27:a6:9f:25:c9:0c:96:f8:56:14:17:26:35: a4:1c:a5:cb:cb:69:9d:a6:c3:f3:fd:5d:ac:65:bf: bb:b5:a9:bc:d9:64:4d:1d:9b:fb:83:b9:90:54:f5: 26:72:46:16:b3:c0:60:fa:fb:6b:e4:54:dc:5c:7b: d3:33:67:02:03:7f:a1:9a:76:48:20:35:f4:a5:d0: de:fb:a1:15:c3:b4:82:ef:fc:2f:bd:94:2d:70:50: 3a:77:12:fb:6e:c8:e0:5e:e2:51:9b:fe:92:c8:56: ed:e9:ee:ab:7a:d3:a2:7a:35:a5:c9:2a:0d:d2:d7: 80:c9:28:10:e8:7a:09:c9:26:2a:ff:d1:c8:81:10: cf:2d:9d:83:9f:9f:31:68:96:21:b5:b6:6e:5d:d7: 96:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:20:0A:5C:2F:C8:F8:95:99:59:7D:70:A8:1F:C6:F3:CF:7C:B4:FA X509v3 Authority Key Identifier: keyid:23:A0:F6:8C:EA:18:94:A3:2A:4A:04:BD:7E:64:F0:CF:0F:3D:EA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5a54a8ce-18f4-4988-a951-9664dd176cd9/0/23A0F68CEA1894A32A4A04BD7E64F0CF0F3DEAA0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:a7:40:62:33:b0:75:3a:a8:55:ab:a3:70:dd:d3:bc:df:b3: c8:e8:60:8b:72:e1:39:69:4d:6a:8a:eb:80:b6:f4:92:89:d3: b3:1a:c5:35:f6:04:43:f9:36:22:94:9c:10:43:59:ef:cc:94: e2:18:4b:a7:bb:2f:ec:e7:2f:73:5f:a3:1e:81:3e:8a:52:b5: d8:f5:ae:87:9b:cf:a2:2e:01:84:28:57:f5:57:9d:c9:40:68: 62:a8:20:ae:c7:02:6b:8f:c1:a5:0f:cb:3f:9c:dc:49:2f:52: 1d:8a:4f:b9:be:8a:c0:b0:87:aa:ca:6a:3a:f0:0f:60:d4:39: 28:a6:45:ef:4f:7a:1a:83:30:2b:43:61:d7:18:db:a8:0e:0f: 9d:da:5b:94:2c:8f:13:b9:54:37:3a:bc:16:c4:02:f2:e8:02: 46:30:93:b6:50:4c:62:44:cd:65:7f:70:5d:30:53:02:49:5d: 71:ea:2d:87:10:cf:f0:aa:82:83:44:35:9a:5f:c9:4c:b5:ed: 2b:4f:94:c4:4e:38:fa:9a:08:2a:4a:05:45:4a:97:8c:d5:d7: 3f:fb:51:84:47:eb:8d:ca:39:ea:a6:e3:04:a2:ad:0c:fd:3b: 47:8e:05:db:87:e9:f1:a9:b4:1e:94:18:cd:8d:93:5b:d6:5d: 34:0c:56:e3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURXUwdaaDIrtDCZG/wZOrS79Qpy0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjNBMEY2OENFQTE4OTRBMzJBNEEwNEJEN0U2NEYwQ0Yw RjNERUFBMDAeFw0yNjA1MTMwNTE4NDBaFw0yNjA1MTQwNjUxNDBaMDMxMTAvBgNV BAMTKEE1MjAwQTVDMkZDOEY4OTU5OTU5N0Q3MEE4MUZDNkYzQ0Y3Q0I0RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeNPYJ9tHiux0yhfkNYVyyvUdb 4s8PqnWbVV18cABGgLYsK1tUHnyoXr1ZFx+Nf6W/g54tOg9kNjfraoL9A2I8JUiX 9aFbxb2NcQW8ufM+Bm1bD0omNwinR37bW9ZkqIkz2K4Wzf/DOD6UJ6afJckMlvhW FBcmNaQcpcvLaZ2mw/P9Xaxlv7u1qbzZZE0dm/uDuZBU9SZyRhazwGD6+2vkVNxc e9MzZwIDf6GadkggNfSl0N77oRXDtILv/C+9lC1wUDp3EvtuyOBe4lGb/pLIVu3p 7qt606J6NaXJKg3S14DJKBDoegnJJir/0ciBEM8tnYOfnzFoliG1tm5d15aHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpSAKXC/I+JWZWX1wqB/G8898tPowHwYDVR0j BBgwFoAUI6D2jOoYlKMqSgS9fmTwzw896qAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWE1NGE4Y2UtMThmNC00OTg4LWE5NTEtOTY2NGRkMTc2Y2Q5LzAvMjNBMEY2OENF QTE4OTRBMzJBNEEwNEJEN0U2NEYwQ0YwRjNERUFBMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yM0EwRjY4Q0VBMTg5NEEzMkE0QTA0QkQ3RTY0RjBDRjBGM0RF QUEwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNWE1NGE4Y2UtMThmNC00OTg4LWE5 NTEtOTY2NGRkMTc2Y2Q5LzAvMjNBMEY2OENFQTE4OTRBMzJBNEEwNEJEN0U2NEYw Q0YwRjNERUFBMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALCnQGIzsHU6qFWro3Dd07zfs8joYIty4Tlp TWqK64C29JKJ07MaxTX2BEP5NiKUnBBDWe/MlOIYS6e7L+znL3Nfox6BPopStdj1 roebz6IuAYQoV/VXnclAaGKoIK7HAmuPwaUPyz+c3EkvUh2KT7m+isCwh6rKajrw D2DUOSimRe9PehqDMCtDYdcY26gOD53aW5QsjxO5VDc6vBbEAvLoAkYwk7ZQTGJE zWV/cF0wUwJJXXHqLYcQz/CqgoNENZpfyUy17StPlMROOPqaCCpKBUVKl4zV1z/7 UYRH643KOeqm4wSirQz9O0eOBduH6fGptB6UGM2Nk1vWXTQMVuM= -----END CERTIFICATE-----Generated at Wed May 13 07:56:35 2026 by rpki-client