$ rpki-client -vvf rpki-rsync.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/45E5895753396A59380E8B15A613362BDD0B9399.mft File: 45E5895753396A59380E8B15A613362BDD0B9399.mft (raw, json) Hash identifier: CrTyLPs+fl+a/bhwPiU/+S2SSXAb8tsm9R6XzMusfKg= Subject key identifier: E7:FB:69:18:6E:97:4D:24:5D:FD:D0:22:21:C3:2A:6D:13:D9:A0:E7 Authority key identifier: 45:E5:89:57:53:39:6A:59:38:0E:8B:15:A6:13:36:2B:DD:0B:93:99 Certificate issuer: /CN=45E5895753396A59380E8B15A613362BDD0B9399 Certificate serial: 5921702CFDEB354C8BEFD015509DD8D78638A3AB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/45E5895753396A59380E8B15A613362BDD0B9399.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/45E5895753396A59380E8B15A613362BDD0B9399.mft Manifest number: 0F Signing time: Tue 12 May 2026 15:30:07 +0000 Manifest this update: Tue 12 May 2026 15:25:07 +0000 Manifest next update: Wed 13 May 2026 18:37:07 +0000 Files and hashes: 1: 3138332e38312e3135322e302f32312d3234203d3e203234353237.roa (hash: KhIaiPcjWv7aKSlHmjk0jk/GmZyLW5p+ewjbZDKYFRM=) 2: 3130332e3134382e34362e302f32332d3234203d3e203234353237.roa (hash: 150lIPhgbdhzp4Y24XpmsufR4h1DDzZZlk0gSQD8XZc=) 3: 323430353a366334303a3a2f33322d3438203d3e203234353237.roa (hash: 9vIrzXo0hOqXg/rk1f6nwh6INf+P7PQpW2N95A+iLj4=) 4: 3230332e3136302e35362e302f32312d3234203d3e203234353237.roa (hash: apfoCrb1SRZGVQ94mZUP6Yq3PvFMs7dSvIUcNJlRoMg=) 5: 45E5895753396A59380E8B15A613362BDD0B9399.crl (hash: WNqkCP6zsOWQsQ1p5XxzDznxChf0eEkKC8W3gjqLse4=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/45E5895753396A59380E8B15A613362BDD0B9399.crl rsync://rpki-rsync.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/45E5895753396A59380E8B15A613362BDD0B9399.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/45E5895753396A59380E8B15A613362BDD0B9399.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 18:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:21:70:2c:fd:eb:35:4c:8b:ef:d0:15:50:9d:d8:d7:86:38:a3:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45E5895753396A59380E8B15A613362BDD0B9399 Validity Not Before: May 12 15:25:07 2026 GMT Not After : May 13 18:37:07 2026 GMT Subject: CN=E7FB69186E974D245DFDD02221C32A6D13D9A0E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2b:f1:34:35:11:00:36:a3:44:b3:8a:48:ae: ec:7f:cd:eb:59:34:59:f8:33:3f:d2:13:27:39:b6: b4:71:7a:34:c0:11:0e:5c:78:75:f8:b8:8b:1f:67: 1e:56:08:c4:1d:e2:e1:96:f2:25:92:31:35:4d:e6: 72:67:ba:8b:60:e5:4a:b7:72:69:cf:4d:81:13:7b: 55:db:51:df:0a:f6:c5:3d:c5:97:6b:31:c8:e6:7a: 17:37:0c:f4:67:be:7f:a8:eb:58:c8:7b:4f:78:3a: 01:2c:3a:9d:0d:24:35:99:a6:c2:b5:74:30:3f:ba: e6:73:50:7e:16:69:f2:96:fb:d7:b1:cc:ff:b2:44: de:19:3a:a5:d8:5f:04:e7:e9:25:af:54:df:37:ac: 1c:e3:6f:b1:c8:07:07:2a:61:49:aa:66:f9:9f:a3: dc:2d:20:62:48:1f:b7:2b:5b:71:43:3d:b5:01:77: ea:26:11:26:f5:a5:78:44:89:61:1f:49:fb:43:9b: cd:18:e9:6b:71:24:66:9c:1f:43:64:de:ae:16:11: 7d:17:ee:13:48:46:a7:12:9a:54:70:e3:00:1b:9b: 02:58:c4:cc:6c:39:d1:b3:07:f0:fb:4d:40:e3:3b: c0:00:42:fb:b6:34:66:f9:07:a4:aa:59:98:b3:60: 40:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FB:69:18:6E:97:4D:24:5D:FD:D0:22:21:C3:2A:6D:13:D9:A0:E7 X509v3 Authority Key Identifier: keyid:45:E5:89:57:53:39:6A:59:38:0E:8B:15:A6:13:36:2B:DD:0B:93:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/45E5895753396A59380E8B15A613362BDD0B9399.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/45E5895753396A59380E8B15A613362BDD0B9399.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/66b87feb-0fe2-418a-a37a-be3dd1f0e63c/0/45E5895753396A59380E8B15A613362BDD0B9399.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:a5:c2:3e:d5:b1:8e:c3:6a:b0:77:2f:c0:34:eb:a8:dc:ee: f3:b4:50:da:e8:7a:97:78:18:b1:ec:ed:5f:12:b4:4a:25:2d: fb:f7:c4:17:b9:81:e5:39:da:7a:59:98:61:32:14:e3:4f:bc: 1e:2e:25:50:f2:ef:e8:51:49:0d:69:c3:c9:26:83:c9:74:60: d0:cf:44:65:34:5e:80:77:6e:06:94:bd:f8:01:c0:68:33:7a: 3e:ae:72:05:f5:c9:c7:eb:3d:c2:8a:f3:88:69:e7:ed:2b:08: 88:25:93:87:92:e2:79:68:48:f1:dd:06:08:03:36:44:10:59: 76:a0:bc:a0:07:bc:83:76:fb:40:f4:64:c7:a7:a4:ab:8d:bc: 24:b1:6f:6f:39:0e:fa:e3:7b:c1:e4:a1:7c:af:07:7e:cb:90: 6f:70:94:e1:e5:34:cd:e7:cf:51:af:84:bf:02:3c:91:29:a8: 08:f7:7c:47:71:ac:57:a2:4b:9c:08:33:86:4d:3f:5b:4e:94: 1f:ee:ae:f8:d7:db:6a:3f:18:39:fc:44:98:5f:31:26:d4:63: ba:99:2a:e4:63:de:eb:83:ec:81:c3:1a:e7:04:9e:24:9a:e5: 31:fc:7c:d5:aa:05:33:5d:71:95:ec:f7:ec:37:0e:6f:7b:13: d8:e7:96:7e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWSFwLP3rNUyL79AVUJ3Y14Y4o6swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDVFNTg5NTc1MzM5NkE1OTM4MEU4QjE1QTYxMzM2MkJE RDBCOTM5OTAeFw0yNjA1MTIxNTI1MDdaFw0yNjA1MTMxODM3MDdaMDMxMTAvBgNV BAMTKEU3RkI2OTE4NkU5NzREMjQ1REZERDAyMjIxQzMyQTZEMTNEOUEwRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMK/E0NREANqNEs4pIrux/zetZ NFn4Mz/SEyc5trRxejTAEQ5ceHX4uIsfZx5WCMQd4uGW8iWSMTVN5nJnuotg5Uq3 cmnPTYETe1XbUd8K9sU9xZdrMcjmehc3DPRnvn+o61jIe094OgEsOp0NJDWZpsK1 dDA/uuZzUH4WafKW+9exzP+yRN4ZOqXYXwTn6SWvVN83rBzjb7HIBwcqYUmqZvmf o9wtIGJIH7crW3FDPbUBd+omESb1pXhEiWEfSftDm80Y6WtxJGacH0Nk3q4WEX0X 7hNIRqcSmlRw4wAbmwJYxMxsOdGzB/D7TUDjO8AAQvu2NGb5B6SqWZizYEC5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5/tpGG6XTSRd/dAiIcMqbRPZoOcwHwYDVR0j BBgwFoAUReWJV1M5alk4DosVphM2K90Lk5kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjZiODdmZWItMGZlMi00MThhLWEzN2EtYmUzZGQxZjBlNjNjLzAvNDVFNTg5NTc1 MzM5NkE1OTM4MEU4QjE1QTYxMzM2MkJERDBCOTM5OS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80NUU1ODk1NzUzMzk2QTU5MzgwRThCMTVBNjEzMzYyQkREMEI5 Mzk5LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjZiODdmZWItMGZlMi00MThhLWEz N2EtYmUzZGQxZjBlNjNjLzAvNDVFNTg5NTc1MzM5NkE1OTM4MEU4QjE1QTYxMzM2 MkJERDBCOTM5OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACylwj7VsY7DarB3L8A066jc7vO0UNroepd4 GLHs7V8StEolLfv3xBe5geU52npZmGEyFONPvB4uJVDy7+hRSQ1pw8kmg8l0YNDP RGU0XoB3bgaUvfgBwGgzej6ucgX1ycfrPcKK84hp5+0rCIglk4eS4nloSPHdBggD NkQQWXagvKAHvIN2+0D0ZMenpKuNvCSxb285Dvrje8HkoXyvB37LkG9wlOHlNM3n z1GvhL8CPJEpqAj3fEdxrFeiS5wIM4ZNP1tOlB/urvjX22o/GDn8RJhfMSbUY7qZ KuRj3uuD7IHDGucEniSa5TH8fNWqBTNdcZXs9+w3Dm97E9jnln4= -----END CERTIFICATE-----Generated at Wed May 13 06:19:37 2026 by rpki-client