$ rpki-client -vvf rpki-rsync.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/208E4D9FFD14FC113BE24E9456AF88A703580FD7.mft File: 208E4D9FFD14FC113BE24E9456AF88A703580FD7.mft (raw, json) Hash identifier: uxYP2z4BdNJ+gd0GSKL/cVoHG/NRSqfgshhWMCdiuzE= Subject key identifier: CF:D5:BE:57:0E:87:CF:0E:C8:28:A8:CC:12:29:AC:C3:4D:EF:83:F2 Authority key identifier: 20:8E:4D:9F:FD:14:FC:11:3B:E2:4E:94:56:AF:88:A7:03:58:0F:D7 Certificate issuer: /CN=208E4D9FFD14FC113BE24E9456AF88A703580FD7 Certificate serial: 648D0CA02615063DBD0A61679B44E2FCFFBDF6EF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/208E4D9FFD14FC113BE24E9456AF88A703580FD7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/208E4D9FFD14FC113BE24E9456AF88A703580FD7.mft Manifest number: 0F Signing time: Tue 12 May 2026 16:26:01 +0000 Manifest this update: Tue 12 May 2026 16:21:01 +0000 Manifest next update: Wed 13 May 2026 18:49:01 +0000 Files and hashes: 1: 208E4D9FFD14FC113BE24E9456AF88A703580FD7.crl (hash: yLwRzG4ogWlRKl9G2jP8VuuM0iNMiXd356LgSFMHXdQ=) 2: 323430343a653930303a343030303a3a2f33342d3334203d3e203436303632.roa (hash: KbTN0zyFBhIzTtH0WTjt8SBU3pMK8PRdcnzLv/4GoTQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/208E4D9FFD14FC113BE24E9456AF88A703580FD7.crl rsync://rpki-rsync.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/208E4D9FFD14FC113BE24E9456AF88A703580FD7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/208E4D9FFD14FC113BE24E9456AF88A703580FD7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:8d:0c:a0:26:15:06:3d:bd:0a:61:67:9b:44:e2:fc:ff:bd:f6:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=208E4D9FFD14FC113BE24E9456AF88A703580FD7 Validity Not Before: May 12 16:21:01 2026 GMT Not After : May 13 18:49:01 2026 GMT Subject: CN=CFD5BE570E87CF0EC828A8CC1229ACC34DEF83F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:85:4f:95:f2:be:e2:9e:55:53:53:05:3b:3c: 5d:b4:a0:9c:fe:14:b3:a9:0f:a6:b0:77:0a:9b:e6: 5a:0c:31:79:75:fb:f6:80:48:24:fc:d4:62:59:c4: e6:e7:22:b9:90:cf:b7:2e:2d:27:bc:9a:5c:86:e2: a9:60:42:d1:8c:d2:d8:dd:70:af:df:87:2a:0b:dd: 88:92:a8:b4:01:37:cd:18:8e:4e:da:6d:2e:6a:84: bd:b0:1d:48:ed:6c:91:87:7d:5c:36:77:32:86:11: d2:b5:a5:eb:c3:c7:11:eb:24:5a:33:83:8b:27:1a: d6:ab:e7:0a:a2:e3:9c:13:f0:dc:41:e2:12:b2:66: 99:14:48:4d:91:03:33:2f:03:cf:a5:ee:8c:86:59: 83:ed:9a:3b:ea:e0:56:8c:e6:10:af:a7:70:bc:5c: 76:10:1c:8e:98:c4:ff:39:07:d7:c1:b8:da:93:af: 04:32:e2:9c:c1:da:39:4f:e1:85:2f:95:01:7b:9d: 7e:9f:10:3a:75:34:41:0b:2b:aa:67:9f:a8:78:87: 1f:61:a3:bd:f8:5d:dd:81:f5:03:d1:96:f2:2a:7f: d0:16:c8:63:0b:c4:bf:0a:59:43:14:8e:fd:e5:a0: af:50:36:6f:c2:13:de:32:ba:d4:86:04:26:6d:f2: 44:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D5:BE:57:0E:87:CF:0E:C8:28:A8:CC:12:29:AC:C3:4D:EF:83:F2 X509v3 Authority Key Identifier: keyid:20:8E:4D:9F:FD:14:FC:11:3B:E2:4E:94:56:AF:88:A7:03:58:0F:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/208E4D9FFD14FC113BE24E9456AF88A703580FD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/208E4D9FFD14FC113BE24E9456AF88A703580FD7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7488d4c0-dc92-4aa8-b169-52cab2a61ba1/0/208E4D9FFD14FC113BE24E9456AF88A703580FD7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:ea:43:8b:e5:25:f9:fd:b7:ed:5a:b4:3a:68:a0:65:2e:9e: 77:1f:5c:75:8a:21:44:d6:91:f0:12:85:0a:3f:29:5b:90:70: f6:6c:e7:a1:b2:45:6c:06:c1:38:bf:a8:72:fd:2a:e2:db:b9: 63:e0:e4:6c:61:0f:c0:7f:ae:de:76:34:6f:78:c4:50:40:3d: 32:bc:05:e2:8c:9e:2a:c1:9d:5d:67:ce:cf:1f:bd:59:2e:2d: c5:70:b6:8d:f1:b3:9e:46:09:6b:0d:bf:63:0a:a8:07:8f:17: 96:b3:3e:3a:28:0b:51:56:51:be:65:88:c3:85:44:a1:7c:df: df:8f:96:35:ee:3c:1c:98:af:89:67:0a:42:ff:bb:a6:78:4c: 91:33:e2:87:d4:9e:e9:50:26:66:b6:b1:66:bb:fd:1a:a9:fb: 46:16:4f:5b:30:54:f9:79:06:1c:b6:de:34:6b:52:ec:d6:c0: 75:2e:8a:13:8e:17:44:4f:3e:05:38:7b:5e:80:57:bf:fa:98: 59:89:ec:d8:22:6b:9a:28:a7:76:c5:ca:91:7b:4d:ad:ef:f0: 81:d1:c4:13:9c:3e:90:13:bb:83:19:a5:53:52:3e:47:8e:82: 74:d2:af:80:dc:ac:11:bf:1e:eb:c4:1b:a3:41:32:5a:77:23: fa:cc:ef:05 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZI0MoCYVBj29CmFnm0Ti/P+99u8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA4RTREOUZGRDE0RkMxMTNCRTI0RTk0NTZBRjg4QTcw MzU4MEZENzAeFw0yNjA1MTIxNjIxMDFaFw0yNjA1MTMxODQ5MDFaMDMxMTAvBgNV BAMTKENGRDVCRTU3MEU4N0NGMEVDODI4QThDQzEyMjlBQ0MzNERFRjgzRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8hU+V8r7inlVTUwU7PF20oJz+ FLOpD6awdwqb5loMMXl1+/aASCT81GJZxObnIrmQz7cuLSe8mlyG4qlgQtGM0tjd cK/fhyoL3YiSqLQBN80Yjk7abS5qhL2wHUjtbJGHfVw2dzKGEdK1pevDxxHrJFoz g4snGtar5wqi45wT8NxB4hKyZpkUSE2RAzMvA8+l7oyGWYPtmjvq4FaM5hCvp3C8 XHYQHI6YxP85B9fBuNqTrwQy4pzB2jlP4YUvlQF7nX6fEDp1NEELK6pnn6h4hx9h o734Xd2B9QPRlvIqf9AWyGMLxL8KWUMUjv3loK9QNm/CE94yutSGBCZt8kTXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUz9W+Vw6Hzw7IKKjMEimsw03vg/IwHwYDVR0j BBgwFoAUII5Nn/0U/BE74k6UVq+IpwNYD9cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzQ4OGQ0YzAtZGM5Mi00YWE4LWIxNjktNTJjYWIyYTYxYmExLzAvMjA4RTREOUZG RDE0RkMxMTNCRTI0RTk0NTZBRjg4QTcwMzU4MEZENy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDhFNEQ5RkZEMTRGQzExM0JFMjRFOTQ1NkFGODhBNzAzNTgw RkQ3LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzQ4OGQ0YzAtZGM5Mi00YWE4LWIx NjktNTJjYWIyYTYxYmExLzAvMjA4RTREOUZGRDE0RkMxMTNCRTI0RTk0NTZBRjg4 QTcwMzU4MEZENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABXqQ4vlJfn9t+1atDpooGUunncfXHWKIUTW kfAShQo/KVuQcPZs56GyRWwGwTi/qHL9KuLbuWPg5GxhD8B/rt52NG94xFBAPTK8 BeKMnirBnV1nzs8fvVkuLcVwto3xs55GCWsNv2MKqAePF5azPjooC1FWUb5liMOF RKF839+PljXuPByYr4lnCkL/u6Z4TJEz4ofUnulQJma2sWa7/Rqp+0YWT1swVPl5 Bhy23jRrUuzWwHUuihOOF0RPPgU4e16AV7/6mFmJ7Ngia5oop3bFypF7Ta3v8IHR xBOcPpATu4MZpVNSPkeOgnTSr4DcrBG/HuvEG6NBMlp3I/rM7wU= -----END CERTIFICATE-----Generated at Tue May 12 23:24:10 2026 by rpki-client