$ rpki-client -vvf rpki-rsync.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.mft File: CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.mft (raw, json) Hash identifier: HNuPSCl3bp9qbUJl3puZNh1QK1Za+AlpUDjesO+eOxo= Subject key identifier: 91:1E:F6:6C:36:B6:66:C8:A8:CF:52:C2:B6:FE:B7:28:3A:C2:BA:FE Authority key identifier: CE:F2:F9:FB:1D:BD:DE:75:7E:11:AC:59:2B:3E:34:10:ED:7D:67:7A Certificate issuer: /CN=CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A Certificate serial: 37F2271E4C761CBB84CD969193DF59B44AC8FF32 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.mft Manifest number: 0F Signing time: Tue 12 May 2026 17:17:03 +0000 Manifest this update: Tue 12 May 2026 17:12:03 +0000 Manifest next update: Wed 13 May 2026 18:59:03 +0000 Files and hashes: 1: CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.crl (hash: hhB99wiEl6bmZXo51k1q2luKnGaRd26t6Wd5p9qn5/k=) 2: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: omooex5wfOrA0XeW1EKkb/7PiiuJPMeS9GocCi2kkYk=) 3: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: zmOkQPvu0HR5PjSH0/1RM/A5vBfNpV5/4kSzFOHdh2I=) 4: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: NQu09oIddLktwWP+5dKMaQL7ObxpBVVxc9iif3qFPwk=) 5: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: jl/tgsbbyovIaob82eL8Ip1Qa2Rca9Qb4IBoUsYHZ3M=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.crl rsync://rpki-rsync.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:f2:27:1e:4c:76:1c:bb:84:cd:96:91:93:df:59:b4:4a:c8:ff:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A Validity Not Before: May 12 17:12:03 2026 GMT Not After : May 13 18:59:03 2026 GMT Subject: CN=911EF66C36B666C8A8CF52C2B6FEB7283AC2BAFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:36:ae:f7:99:02:a5:40:3c:78:76:6e:6d:35: aa:96:56:b0:6c:38:46:1f:19:c6:a8:40:1b:af:94: 62:41:5d:4d:5b:0e:99:c9:11:a8:d8:8d:28:5f:0d: f6:c6:2d:b8:5f:d8:94:45:66:18:78:c5:ce:72:09: ac:14:39:7d:cd:65:f9:7a:3c:88:a6:bd:f1:36:eb: 07:90:13:95:8a:d1:f5:cb:c6:a3:74:c6:2e:28:64: 99:18:6a:5c:24:e4:35:bc:d4:76:11:98:4a:a3:25: 4a:23:8b:38:44:71:89:8f:b8:d0:a2:5a:32:6f:49: 01:89:62:c7:48:1e:76:b8:b4:7b:33:34:7e:9b:38: 0c:11:b9:06:de:3a:4a:ea:ee:34:25:3d:ca:02:08: 6a:01:12:2a:04:13:c4:1b:be:c8:5b:7d:d2:29:d7: d5:f4:da:89:31:95:3d:40:10:9f:b7:87:a4:ad:4f: c2:d7:29:8f:8f:51:39:11:16:13:7a:19:0e:a8:7f: 44:dd:19:8c:b9:f1:06:18:3e:d6:33:b0:fc:f3:91: 45:15:e3:ae:13:2f:0d:0a:80:f4:33:a7:bd:38:2b: 00:24:b3:9b:3f:dd:74:da:b5:44:37:88:f4:1b:59: d9:97:6b:8f:6e:73:c3:1b:45:0b:cd:cf:3c:ac:e4: f0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:1E:F6:6C:36:B6:66:C8:A8:CF:52:C2:B6:FE:B7:28:3A:C2:BA:FE X509v3 Authority Key Identifier: keyid:CE:F2:F9:FB:1D:BD:DE:75:7E:11:AC:59:2B:3E:34:10:ED:7D:67:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/CEF2F9FB1DBDDE757E11AC592B3E3410ED7D677A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:4b:94:13:46:45:2d:5d:73:1b:dc:82:f8:e5:43:27:10:12: c7:c1:14:85:35:d8:12:53:e6:26:db:68:e7:ed:ed:76:93:09: 45:47:aa:51:60:8e:2d:53:b2:d3:56:72:05:e3:33:ce:c0:fe: 58:e1:09:d3:cc:9f:82:10:dd:ad:d6:4c:ce:86:07:0f:d1:2c: b0:d9:2e:43:1d:64:9b:ac:92:3d:ca:82:ed:a1:ef:c0:f3:13: e9:18:42:30:6b:e3:11:2e:2f:62:01:26:b0:e9:19:d5:a0:96: d1:30:cf:da:8f:c3:20:0d:a4:1b:16:c9:f0:78:78:e3:69:4c: f8:ed:de:67:61:20:42:d7:95:25:44:48:8f:3e:43:30:9e:5c: 20:57:c9:12:92:b9:fa:df:43:67:9b:f4:99:0d:17:30:f8:76: 10:04:7a:ae:5c:00:52:f6:68:e1:8b:ce:f9:61:71:12:ee:27: 70:cc:4d:b9:5d:17:02:ab:2b:7b:28:d1:c1:2d:32:89:bb:6f: 0e:84:15:e7:80:e7:d7:c7:77:df:85:ba:22:ab:e6:08:30:4f: 28:06:a7:15:82:fc:0f:fd:ac:ae:46:ad:52:81:53:51:f0:e6: 41:3b:6b:4c:ef:18:3b:f6:9b:e7:9c:9c:8d:b2:9c:d4:37:1e: 64:a3:2a:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN/InHkx2HLuEzZaRk99ZtErI/zIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VGMkY5RkIxREJEREU3NTdFMTFBQzU5MkIzRTM0MTBF RDdENjc3QTAeFw0yNjA1MTIxNzEyMDNaFw0yNjA1MTMxODU5MDNaMDMxMTAvBgNV BAMTKDkxMUVGNjZDMzZCNjY2QzhBOENGNTJDMkI2RkVCNzI4M0FDMkJBRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjNq73mQKlQDx4dm5tNaqWVrBs OEYfGcaoQBuvlGJBXU1bDpnJEajYjShfDfbGLbhf2JRFZhh4xc5yCawUOX3NZfl6 PIimvfE26weQE5WK0fXLxqN0xi4oZJkYalwk5DW81HYRmEqjJUojizhEcYmPuNCi WjJvSQGJYsdIHna4tHszNH6bOAwRuQbeOkrq7jQlPcoCCGoBEioEE8QbvshbfdIp 19X02okxlT1AEJ+3h6StT8LXKY+PUTkRFhN6GQ6of0TdGYy58QYYPtYzsPzzkUUV 464TLw0KgPQzp704KwAks5s/3XTatUQ3iPQbWdmXa49uc8MbRQvNzzys5PCVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkR72bDa2Zsioz1LCtv63KDrCuv4wHwYDVR0j BBgwFoAUzvL5+x293nV+EaxZKz40EO19Z3owDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWViYmFkYjMtOWFjOC00NmRmLWFiOTEtYmYzOWRmZWUxYmQwLzAvQ0VGMkY5RkIx REJEREU3NTdFMTFBQzU5MkIzRTM0MTBFRDdENjc3QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRUYyRjlGQjFEQkRERTc1N0UxMUFDNTkyQjNFMzQxMEVEN0Q2 NzdBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvQ0VGMkY5RkIxREJEREU3NTdFMTFBQzU5MkIzRTM0 MTBFRDdENjc3QS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHtLlBNGRS1dcxvcgvjlQycQEsfBFIU12BJT 5ibbaOft7XaTCUVHqlFgji1TstNWcgXjM87A/ljhCdPMn4IQ3a3WTM6GBw/RLLDZ LkMdZJuskj3Kgu2h78DzE+kYQjBr4xEuL2IBJrDpGdWgltEwz9qPwyANpBsWyfB4 eONpTPjt3mdhIELXlSVESI8+QzCeXCBXyRKSufrfQ2eb9JkNFzD4dhAEeq5cAFL2 aOGLzvlhcRLuJ3DMTbldFwKrK3so0cEtMom7bw6EFeeA59fHd9+FuiKr5ggwTygG pxWC/A/9rK5GrVKBU1Hw5kE7a0zvGDv2m+ecnI2ynNQ3HmSjKqA= -----END CERTIFICATE-----Generated at Wed May 13 00:45:16 2026 by rpki-client