$ rpki-client -vvf rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.mft File: 25F44906F292384CC9F1BE632798B911BD52EB7E.mft (raw, json) Hash identifier: lPNsdTj0CCO4oGiWCnwdN59eQ9U8hp5szAapnrevJvQ= Subject key identifier: 08:90:FC:05:49:3C:54:E5:09:03:33:28:66:BE:30:66:24:DE:91:67 Authority key identifier: 25:F4:49:06:F2:92:38:4C:C9:F1:BE:63:27:98:B9:11:BD:52:EB:7E Certificate issuer: /CN=25F44906F292384CC9F1BE632798B911BD52EB7E Certificate serial: 5A077F715DEF5DADB87C45D024DE6ECF4D569D89 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.mft Manifest number: 0E Signing time: Tue 12 May 2026 06:27:20 +0000 Manifest this update: Tue 12 May 2026 06:22:20 +0000 Manifest next update: Wed 13 May 2026 09:10:20 +0000 Files and hashes: 1: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (hash: OzJuT5ZCAhL2UGbM7eynbgVHZM3ndO0ync8Ih0A1zcQ=) 2: 25F44906F292384CC9F1BE632798B911BD52EB7E.crl (hash: ghM6S833/122dRXUb8EewzTCU+4kloMugtqNjKsu+ns=) 3: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (hash: GGZKA5imIJIaP+Schkic8gBw6IQQgIqOJecWWJTB5T4=) 4: 3130332e31392e38302e302f32332d3234203d3e20313332363339.roa (hash: OF+X7RZ12YwYbIl142vAny0I0e6fiCnAZ2BWIAMpqJs=) 5: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (hash: K3q/Ez2ylWAHvKZbfEY9nE0ATvil8bcfxJnHQI/5nNA=) 6: 3130332e31392e38302e302f32342d3234203d3e20313332363339.roa (hash: h0iqFz1JhYFaft+/rI1iyNCYNmEHURL6TWuWP9vtRec=) 7: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (hash: rJYDDAtDFH2sxeGVm+q7lH6NoJu3MNVWQxNtL3BpElI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.crl rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:07:7f:71:5d:ef:5d:ad:b8:7c:45:d0:24:de:6e:cf:4d:56:9d:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25F44906F292384CC9F1BE632798B911BD52EB7E Validity Not Before: May 12 06:22:20 2026 GMT Not After : May 13 09:10:20 2026 GMT Subject: CN=0890FC05493C54E50903332866BE306624DE9167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cf:77:89:72:f2:43:48:c9:5a:f3:9f:d2:67: 69:80:cc:e8:64:37:cf:28:6e:a2:b5:88:cc:9a:c0: a7:ee:ea:7f:b0:41:2e:cb:86:63:9c:8c:91:32:d4: 62:86:ff:8c:ff:9d:d2:19:bf:3d:5c:bb:7f:5d:30: b3:10:fe:21:1f:24:65:01:bc:69:7a:ea:1d:88:bf: b2:b8:cb:07:75:95:f5:1a:bc:b3:63:b4:03:0d:4b: d9:a4:ba:8a:a5:0f:c9:42:80:dd:5a:21:31:ee:71: 1e:c9:b8:e7:78:63:0b:6c:6f:c0:5e:cb:43:fb:6d: f2:29:9b:12:a1:85:cf:cc:ee:2c:78:c4:f1:aa:e8: bc:7d:c7:fe:c8:54:14:d6:b9:ae:15:0a:80:81:ea: 19:67:aa:e0:75:a7:37:90:52:ac:78:84:ce:76:5a: 6c:73:bf:d4:39:18:96:5b:d2:7a:30:be:89:d3:8b: 52:c7:c4:c3:22:91:ac:3d:41:4d:61:d0:dd:9b:0a: 07:21:7c:3a:d1:9b:40:e3:86:e9:7f:9d:cc:f5:a3: d5:f7:61:c8:22:a2:b2:78:2f:9b:6d:be:f0:bb:4d: 81:0b:2e:2e:55:6d:df:b0:96:65:37:d0:07:00:bf: 02:c4:9f:80:c9:90:a8:ee:8e:ed:24:89:fa:d3:3f: 1d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:90:FC:05:49:3C:54:E5:09:03:33:28:66:BE:30:66:24:DE:91:67 X509v3 Authority Key Identifier: keyid:25:F4:49:06:F2:92:38:4C:C9:F1:BE:63:27:98:B9:11:BD:52:EB:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25F44906F292384CC9F1BE632798B911BD52EB7E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/25F44906F292384CC9F1BE632798B911BD52EB7E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:1f:9f:90:74:5c:28:6f:ba:c7:c7:8a:e7:1b:72:48:38:b8: 5a:bd:9c:28:9d:41:b1:15:ca:5d:dc:27:a9:31:0a:0b:cb:fb: 4f:ed:62:de:8a:aa:18:5b:62:c1:18:f3:a5:e2:dc:05:bf:57: 09:dd:56:27:c2:14:c0:1b:99:a7:4f:82:1a:79:4b:4b:45:01: fd:95:13:34:6a:5a:3f:b9:a9:bc:91:d7:55:3c:74:1d:6d:f6: 77:c8:a5:88:0f:1e:5c:90:ab:e4:17:0f:82:d2:ac:ef:f0:ec: 54:f2:2a:5b:f7:f8:09:c4:d5:9c:aa:46:c6:cc:e1:4c:ec:b7: e2:c4:a1:9f:6a:e7:04:76:20:ff:0a:67:d3:44:b3:43:d1:47: 92:ac:3b:71:d3:c2:a5:0a:f3:3e:00:63:85:ec:95:97:0a:0e: 41:cc:27:dc:e3:24:df:d6:a5:b1:9a:f2:59:3a:1b:be:df:83: b1:fa:e7:28:25:e5:01:54:cf:1b:52:63:7f:a5:29:f8:a2:6a: 55:86:5d:ff:b8:99:f4:78:41:47:02:ba:fa:54:ac:42:d6:cb: 11:7e:92:f7:91:d8:c3:58:ee:bc:83:75:56:49:8d:cd:3c:b2: cb:0e:8a:73:38:73:75:39:3f:7f:8f:d1:0e:39:27:0a:81:70: db:14:7c:98 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWgd/cV3vXa24fEXQJN5uz01WnYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVGNDQ5MDZGMjkyMzg0Q0M5RjFCRTYzMjc5OEI5MTFC RDUyRUI3RTAeFw0yNjA1MTIwNjIyMjBaFw0yNjA1MTMwOTEwMjBaMDMxMTAvBgNV BAMTKDA4OTBGQzA1NDkzQzU0RTUwOTAzMzMyODY2QkUzMDY2MjRERTkxNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8z3eJcvJDSMla85/SZ2mAzOhk N88obqK1iMyawKfu6n+wQS7LhmOcjJEy1GKG/4z/ndIZvz1cu39dMLMQ/iEfJGUB vGl66h2Iv7K4ywd1lfUavLNjtAMNS9mkuoqlD8lCgN1aITHucR7JuOd4Ywtsb8Be y0P7bfIpmxKhhc/M7ix4xPGq6Lx9x/7IVBTWua4VCoCB6hlnquB1pzeQUqx4hM52 Wmxzv9Q5GJZb0nowvonTi1LHxMMikaw9QU1h0N2bCgchfDrRm0Djhul/ncz1o9X3 YcgiorJ4L5ttvvC7TYELLi5Vbd+wlmU30AcAvwLEn4DJkKjuju0kifrTPx21AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCJD8BUk8VOUJAzMoZr4wZiTekWcwHwYDVR0j BBgwFoAUJfRJBvKSOEzJ8b5jJ5i5Eb1S634wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmFhNDI3NDItODlkMi00OWJiLThhM2UtMjk0YzM2ODk3MWY1LzAvMjVGNDQ5MDZG MjkyMzg0Q0M5RjFCRTYzMjc5OEI5MTFCRDUyRUI3RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNUY0NDkwNkYyOTIzODRDQzlGMUJFNjMyNzk4QjkxMUJENTJF QjdFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNmFhNDI3NDItODlkMi00OWJiLThh M2UtMjk0YzM2ODk3MWY1LzAvMjVGNDQ5MDZGMjkyMzg0Q0M5RjFCRTYzMjc5OEI5 MTFCRDUyRUI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAMfn5B0XChvusfHiucbckg4uFq9nCidQbEV yl3cJ6kxCgvL+0/tYt6KqhhbYsEY86Xi3AW/VwndVifCFMAbmadPghp5S0tFAf2V EzRqWj+5qbyR11U8dB1t9nfIpYgPHlyQq+QXD4LSrO/w7FTyKlv3+AnE1ZyqRsbM 4Uzst+LEoZ9q5wR2IP8KZ9NEs0PRR5KsO3HTwqUK8z4AY4XslZcKDkHMJ9zjJN/W pbGa8lk6G77fg7H65ygl5QFUzxtSY3+lKfiialWGXf+4mfR4QUcCuvpUrELWyxF+ kveR2MNY7ryDdVZJjc08sssOinM4c3U5P3+P0Q45JwqBcNsUfJg= -----END CERTIFICATE-----Generated at Tue May 12 22:19:33 2026 by rpki-client