$ rpki-client -vvf rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft File: A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft (raw, json) Hash identifier: smJlWSt3/wpYVJ/+0es/hypvqydBHKC8kzgElbPltAQ= Subject key identifier: DC:53:74:7D:73:C3:74:9E:90:32:33:75:1C:06:0E:5A:57:CF:88:E7 Authority key identifier: A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A Certificate issuer: /CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Certificate serial: 2079AE074ECDE1B06788587C6F73B9DBE75FBEC3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft Manifest number: 0E Signing time: Tue 12 May 2026 06:52:56 +0000 Manifest this update: Tue 12 May 2026 06:47:56 +0000 Manifest next update: Wed 13 May 2026 08:07:56 +0000 Files and hashes: 1: 3130332e37302e31362e302f32342d3234203d3e20313335343632.roa (hash: SJ+P4+oX8hijYzZ9qA/WaUDV4gideRVgm7o6icDoWoM=) 2: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (hash: m9ehKEyZKrnBxPUxglJU8vra1GpJJTUpkzpv7UpDmeA=) 3: A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl (hash: rmhhbdcpT38wDIp5MHk3LMSl/s7j1HXGzAP17drwuSI=) 4: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (hash: Tf1EVsRaCkdXitEPeo2GAGcjlLdYQ1D5kk2M9WCpy3U=) 5: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (hash: 7evCo+jZlUXwDGTBsCsQhDg2DWHBDqS4cWsJw91trY0=) 6: 3130332e37302e31372e302f32342d3234203d3e20313335343632.roa (hash: lI29Pn9PS61mVywxJrefD11DZjjtEbyEF7MkqWi1LZ4=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 08:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:79:ae:07:4e:cd:e1:b0:67:88:58:7c:6f:73:b9:db:e7:5f:be:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A8D211A540A0A57C5D6ACB5032091B1A80BA458A Validity Not Before: May 12 06:47:56 2026 GMT Not After : May 13 08:07:56 2026 GMT Subject: CN=DC53747D73C3749E903233751C060E5A57CF88E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:85:6a:f4:a6:f1:70:74:b8:da:03:4e:4a:33: 4a:d4:ac:40:60:dc:c9:ce:b7:4f:4b:05:68:86:63: 6c:2f:d2:3e:ec:59:01:ba:75:ef:0d:2c:8c:a2:01: 14:6c:a8:49:b0:a4:12:89:35:b8:94:ea:31:32:8e: ce:23:93:64:34:52:8a:75:9a:f1:12:a2:9d:f4:71: ea:bd:f1:2b:cc:c4:ac:41:98:54:18:a5:78:a1:bb: b9:9e:f8:4c:9e:89:a3:86:cc:03:cb:39:50:61:a0: aa:25:a3:bd:a6:ca:71:2e:4d:0d:27:67:14:19:f5: b2:06:da:2d:4b:c9:57:eb:3b:d9:db:fd:38:5e:2f: b5:fa:01:bf:72:d1:7b:b4:47:3c:2b:d5:fa:e7:0f: b2:83:f1:f2:f9:26:fe:77:60:2f:73:0f:da:6a:13: 0f:73:80:32:c3:5e:ac:16:ec:6e:e9:a8:49:c6:e9: 4d:9b:5f:47:e9:65:d1:11:16:43:04:6a:39:16:87: af:51:5a:4d:e1:39:c4:10:b9:18:ac:24:09:97:6d: d5:58:20:6e:08:55:0f:a3:28:04:0a:a6:64:cf:dc: 53:ed:45:95:d0:9a:50:e4:f8:15:ab:11:33:ee:28: cc:49:d1:8a:93:b3:4c:c6:b8:ca:3a:1b:a9:5d:b1: 54:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:53:74:7D:73:C3:74:9E:90:32:33:75:1C:06:0E:5A:57:CF:88:E7 X509v3 Authority Key Identifier: keyid:A8:D2:11:A5:40:A0:A5:7C:5D:6A:CB:50:32:09:1B:1A:80:BA:45:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/A8D211A540A0A57C5D6ACB5032091B1A80BA458A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:99:01:4a:db:f2:82:9b:36:f9:58:c0:dc:61:4b:d7:b4:d9: db:d4:5d:19:17:23:c7:53:b8:1f:45:51:25:27:cc:4d:25:dc: d4:3e:fd:18:5d:d5:06:04:5a:4d:4a:eb:63:40:aa:61:1d:3f: b0:8e:ae:f6:e9:49:5e:1e:8f:58:71:a4:46:e8:59:89:d5:75: 0e:85:7b:32:09:63:f3:4b:00:a3:ba:eb:cf:36:fd:c1:82:c7: 01:65:3e:51:da:5f:7c:fd:ca:fa:85:bb:f8:e0:b5:91:ae:73: 2d:94:4d:86:b0:7e:27:1d:c4:0c:5e:de:3f:87:5d:12:57:4b: 3a:06:bf:ef:e8:80:8c:23:f6:f2:6b:4d:e6:c5:76:86:cf:b2: fa:86:1d:eb:65:6f:5c:26:c2:0d:dd:48:68:dd:48:6e:27:56: 0c:7c:21:45:d1:b7:da:9a:b6:61:2e:81:53:31:1d:1a:38:18: 87:b1:28:49:43:51:26:f8:e9:f5:c0:80:58:67:08:0e:8b:b8: ad:42:1e:48:b6:23:c9:3b:1d:1c:05:a4:d0:76:03:63:2c:26: a0:d8:1d:fd:9f:f5:ea:87:71:dd:bd:84:24:61:3f:63:6b:1b: 7c:73:55:d5:55:7e:15:10:f7:55:79:82:91:aa:13:4b:56:e3: 8d:db:94:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIHmuB07N4bBniFh8b3O52+dfvsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQThEMjExQTU0MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4 MEJBNDU4QTAeFw0yNjA1MTIwNjQ3NTZaFw0yNjA1MTMwODA3NTZaMDMxMTAvBgNV BAMTKERDNTM3NDdENzNDMzc0OUU5MDMyMzM3NTFDMDYwRTVBNTdDRjg4RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0hWr0pvFwdLjaA05KM0rUrEBg 3MnOt09LBWiGY2wv0j7sWQG6de8NLIyiARRsqEmwpBKJNbiU6jEyjs4jk2Q0Uop1 mvESop30ceq98SvMxKxBmFQYpXihu7me+EyeiaOGzAPLOVBhoKolo72mynEuTQ0n ZxQZ9bIG2i1LyVfrO9nb/TheL7X6Ab9y0Xu0Rzwr1frnD7KD8fL5Jv53YC9zD9pq Ew9zgDLDXqwW7G7pqEnG6U2bX0fpZdERFkMEajkWh69RWk3hOcQQuRisJAmXbdVY IG4IVQ+jKAQKpmTP3FPtRZXQmlDk+BWrETPuKMxJ0YqTs0zGuMo6G6ldsVRDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3FN0fXPDdJ6QMjN1HAYOWlfPiOcwHwYDVR0j BBgwFoAUqNIRpUCgpXxdastQMgkbGoC6RYowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4NDQtNGU2YzdhM2M5N2Q5LzAvQThEMjExQTU0 MEEwQTU3QzVENkFDQjUwMzIwOTFCMUE4MEJBNDU4QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOEQyMTFBNTQwQTBBNTdDNUQ2QUNCNTAzMjA5MUIxQTgwQkE0 NThBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4 NDQtNGU2YzdhM2M5N2Q5LzAvQThEMjExQTU0MEEwQTU3QzVENkFDQjUwMzIwOTFC MUE4MEJBNDU4QS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABaZAUrb8oKbNvlYwNxhS9e02dvUXRkXI8dT uB9FUSUnzE0l3NQ+/Rhd1QYEWk1K62NAqmEdP7COrvbpSV4ej1hxpEboWYnVdQ6F ezIJY/NLAKO66882/cGCxwFlPlHaX3z9yvqFu/jgtZGucy2UTYawficdxAxe3j+H XRJXSzoGv+/ogIwj9vJrTebFdobPsvqGHetlb1wmwg3dSGjdSG4nVgx8IUXRt9qa tmEugVMxHRo4GIexKElDUSb46fXAgFhnCA6LuK1CHki2I8k7HRwFpNB2A2MsJqDY Hf2f9eqHcd29hCRhP2NrG3xzVdVVfhUQ91V5gpGqE0tW443blEY= -----END CERTIFICATE-----Generated at Wed May 13 01:44:34 2026 by rpki-client