$ rpki-client -vvf rpki-rsync.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/5D885821D2406437CDFEC04380E967515A67AECC.mft File: 5D885821D2406437CDFEC04380E967515A67AECC.mft (raw, json) Hash identifier: QPqwoGpLR3sEeiSsw65cqoNRhaaPFJj/ygMG6HpL/So= Subject key identifier: 1D:51:39:60:0A:A0:29:29:FF:A6:D4:37:C0:D6:08:A4:93:A1:BB:23 Authority key identifier: 5D:88:58:21:D2:40:64:37:CD:FE:C0:43:80:E9:67:51:5A:67:AE:CC Certificate issuer: /CN=5D885821D2406437CDFEC04380E967515A67AECC Certificate serial: 4CB2F667406E53A1E2D358079A78A27A5EB6F14B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D885821D2406437CDFEC04380E967515A67AECC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/5D885821D2406437CDFEC04380E967515A67AECC.mft Manifest number: 0E Signing time: Tue 12 May 2026 08:19:48 +0000 Manifest this update: Tue 12 May 2026 08:14:48 +0000 Manifest next update: Wed 13 May 2026 11:06:48 +0000 Files and hashes: 1: 3130332e35342e3137312e302f32342d3234203d3e20313431303731.roa (hash: L6gQCpLzy7aXDtfuVgbwQW0xcldnnRmpgqFEsdoAP3Q=) 2: 3130332e35342e3137302e302f32342d3234203d3e20313336303532.roa (hash: K0RHUYKMgdp0wpj2LpgjeiPXy+duWorfZjM80sQwxyc=) 3: 5D885821D2406437CDFEC04380E967515A67AECC.crl (hash: q94poIyCur+BMY8dEvXAGNC9crODfzp+o7TAbbxGg48=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/5D885821D2406437CDFEC04380E967515A67AECC.crl rsync://rpki-rsync.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/5D885821D2406437CDFEC04380E967515A67AECC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D885821D2406437CDFEC04380E967515A67AECC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:b2:f6:67:40:6e:53:a1:e2:d3:58:07:9a:78:a2:7a:5e:b6:f1:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D885821D2406437CDFEC04380E967515A67AECC Validity Not Before: May 12 08:14:48 2026 GMT Not After : May 13 11:06:48 2026 GMT Subject: CN=1D5139600AA02929FFA6D437C0D608A493A1BB23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:94:5c:02:ba:a9:8b:f9:1d:67:6e:6a:b5:2b: 55:4f:8d:e4:ca:55:69:10:a0:12:84:b4:01:64:60: 03:16:b5:b2:0b:5b:2c:20:97:f2:f2:c6:53:46:e5: 0b:a6:2c:07:83:4b:87:8a:9d:cc:0c:58:3a:16:15: 84:13:43:b9:78:3e:53:6b:29:95:98:cc:36:78:e9: 3e:dd:f5:d0:e8:bd:dd:13:be:fc:7e:e1:0f:cf:96: 09:31:53:80:d6:1e:d0:a9:ab:24:ee:86:f1:2e:08: 9d:d2:6b:69:9b:ce:24:48:bf:bc:02:2d:f6:e0:ae: c0:a4:4d:67:b6:c2:90:d6:b0:8f:6b:0e:d0:97:f7: b6:69:5f:f5:2d:4c:b4:60:41:44:b4:2f:e0:bc:ff: e6:01:48:3d:8f:a6:1a:09:1c:ca:6f:76:2e:8d:e0: fb:71:55:e4:b1:13:63:fe:34:ac:7e:86:22:51:67: 6b:f2:73:c0:fe:82:94:c9:44:03:71:ac:b4:d7:fa: 13:c4:49:77:9a:1f:95:97:a3:a7:11:99:8f:54:33: 75:9f:e0:93:5a:d8:39:e3:95:e6:30:a0:5e:2f:18: 95:22:f6:9c:0c:ce:17:65:dd:54:77:97:65:e6:86: da:93:8c:6f:3b:71:4d:9d:5a:52:b1:77:b2:a5:9d: a3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:51:39:60:0A:A0:29:29:FF:A6:D4:37:C0:D6:08:A4:93:A1:BB:23 X509v3 Authority Key Identifier: keyid:5D:88:58:21:D2:40:64:37:CD:FE:C0:43:80:E9:67:51:5A:67:AE:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/5D885821D2406437CDFEC04380E967515A67AECC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5D885821D2406437CDFEC04380E967515A67AECC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/5D885821D2406437CDFEC04380E967515A67AECC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:d5:13:51:13:f8:f7:01:7f:6c:bc:fe:4f:9a:be:3c:f7:f2: 4f:c8:d7:8c:29:7c:5c:8a:14:4d:ac:ba:a0:e7:5a:1e:5f:70: b1:f0:74:7a:ca:9c:71:a2:a4:17:17:64:e9:06:a6:01:7e:90: 82:ce:7a:58:7d:48:89:2d:1f:67:99:42:18:eb:d0:9f:fe:ef: ff:25:37:1f:5a:cc:30:fa:06:3e:3b:ec:ec:cc:07:dc:ee:b6: a3:a6:5f:21:d0:48:cb:d9:31:2c:05:67:f2:49:aa:57:e6:d0: d8:34:9e:40:5d:dc:6d:ae:9a:b0:ba:25:bd:44:72:0c:ec:7e: ce:48:ba:ee:66:a8:f2:6f:2c:fc:ab:76:23:e9:c6:a3:13:51: 42:98:d1:11:f5:ce:77:de:89:40:3a:36:3e:e1:63:07:1f:f1: c6:61:a7:87:ae:1e:53:ba:7f:88:53:7e:7a:7d:a7:1a:a2:28: 31:e8:fc:3c:1c:12:49:9d:33:b8:08:1d:c1:79:42:ff:6b:44: ad:54:b8:1f:ba:07:3d:34:ab:43:d2:e0:b7:c2:f9:dd:e4:8a: 65:00:e9:53:94:a4:e2:4a:4e:38:79:d6:d3:9a:3f:6e:ee:47: 6d:a6:f9:d1:16:2f:dd:74:bb:56:e9:6f:d4:ad:1b:75:87:af: 36:d7:58:45 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTLL2Z0BuU6Hi01gHmniiel628UswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUQ4ODU4MjFEMjQwNjQzN0NERkVDMDQzODBFOTY3NTE1 QTY3QUVDQzAeFw0yNjA1MTIwODE0NDhaFw0yNjA1MTMxMTA2NDhaMDMxMTAvBgNV BAMTKDFENTEzOTYwMEFBMDI5MjlGRkE2RDQzN0MwRDYwOEE0OTNBMUJCMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3lFwCuqmL+R1nbmq1K1VPjeTK VWkQoBKEtAFkYAMWtbILWywgl/LyxlNG5QumLAeDS4eKncwMWDoWFYQTQ7l4PlNr KZWYzDZ46T7d9dDovd0Tvvx+4Q/PlgkxU4DWHtCpqyTuhvEuCJ3Sa2mbziRIv7wC LfbgrsCkTWe2wpDWsI9rDtCX97ZpX/UtTLRgQUS0L+C8/+YBSD2PphoJHMpvdi6N 4PtxVeSxE2P+NKx+hiJRZ2vyc8D+gpTJRANxrLTX+hPESXeaH5WXo6cRmY9UM3Wf 4JNa2DnjleYwoF4vGJUi9pwMzhdl3VR3l2XmhtqTjG87cU2dWlKxd7KlnaOPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHVE5YAqgKSn/ptQ3wNYIpJOhuyMwHwYDVR0j BBgwFoAUXYhYIdJAZDfN/sBDgOlnUVpnrswwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODM3Njk0YjctMzI1Ni00NjY2LWEzZmUtNmU4MmU3ODNiMWUxLzAvNUQ4ODU4MjFE MjQwNjQzN0NERkVDMDQzODBFOTY3NTE1QTY3QUVDQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81RDg4NTgyMUQyNDA2NDM3Q0RGRUMwNDM4MEU5Njc1MTVBNjdB RUNDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vODM3Njk0YjctMzI1Ni00NjY2LWEz ZmUtNmU4MmU3ODNiMWUxLzAvNUQ4ODU4MjFEMjQwNjQzN0NERkVDMDQzODBFOTY3 NTE1QTY3QUVDQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHjVE1ET+PcBf2y8/k+avjz38k/I14wpfFyK FE2suqDnWh5fcLHwdHrKnHGipBcXZOkGpgF+kILOelh9SIktH2eZQhjr0J/+7/8l Nx9azDD6Bj477OzMB9zutqOmXyHQSMvZMSwFZ/JJqlfm0Ng0nkBd3G2umrC6Jb1E cgzsfs5Iuu5mqPJvLPyrdiPpxqMTUUKY0RH1znfeiUA6Nj7hYwcf8cZhp4euHlO6 f4hTfnp9pxqiKDHo/DwcEkmdM7gIHcF5Qv9rRK1UuB+6Bz00q0PS4LfC+d3kimUA 6VOUpOJKTjh51tOaP27uR22m+dEWL910u1bpb9StG3WHrzbXWEU= -----END CERTIFICATE-----Generated at Wed May 13 02:12:32 2026 by rpki-client