$ rpki-client -vvf rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.mft File: CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.mft (raw, json) Hash identifier: LXNiq2NMRyGD6nQUxUTrpb4jHskndTs1UKwwaqadO1k= Subject key identifier: 47:2D:63:01:06:CB:59:74:D4:68:22:B6:03:D0:F9:AF:05:AA:16:25 Authority key identifier: CE:62:0D:0F:51:CB:0E:E1:C8:DF:26:4C:48:8C:E3:4D:0C:F3:3C:1C Certificate issuer: /CN=CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C Certificate serial: 27320758FF9072D3B128014F2EC598EF6D068C43 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.mft Manifest number: 0E Signing time: Tue 12 May 2026 04:54:58 +0000 Manifest this update: Tue 12 May 2026 04:49:58 +0000 Manifest next update: Wed 13 May 2026 07:31:58 +0000 Files and hashes: 1: 3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa (hash: C3zLhXQdm0Y8L/fkvQyrUb6nvy5u+LmWUMPrd0571WA=) 2: 3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa (hash: Zbsf0dYqnLxdlncAJCYqnzQ41srbRVWGXwAiyL3mwjg=) 3: CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.crl (hash: K2TH6zHoNBpeecyAMHvOYW/SNuOr+YTMLWq9H04raSQ=) 4: 3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa (hash: TA/s8DKqVENi0iNK6VJjUYJ9iOIFI3fpPu0mJtiANFQ=) 5: 3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa (hash: ymqzNsOJhmLcRFDDsoYR0MwzS6+nUhmsNkUUP+/NCsk=) 6: 3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa (hash: ubZK1JZSOkQSdT51nvL6YxDcdnyD6UzUmGgbeftTx40=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.crl rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:32:07:58:ff:90:72:d3:b1:28:01:4f:2e:c5:98:ef:6d:06:8c:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C Validity Not Before: May 12 04:49:58 2026 GMT Not After : May 13 07:31:58 2026 GMT Subject: CN=472D630106CB5974D46822B603D0F9AF05AA1625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5a:3d:81:c1:51:cf:6e:78:fb:80:97:0f:f9: da:51:d1:af:df:f9:ba:4b:a7:81:3d:84:41:cb:ba: 50:34:79:d7:ae:70:1b:f6:3b:e0:fb:f0:79:4d:63: af:9e:ff:54:03:0a:3d:06:f8:e7:46:45:94:5b:60: c0:23:f8:be:f9:0b:20:ea:04:c9:d0:4a:42:d9:de: 8b:63:f8:12:fa:6e:fd:f3:05:ae:77:23:57:a8:0f: 32:05:ba:9f:4e:5d:cc:a5:5b:fb:82:a5:82:27:f4: 69:00:b1:41:a1:a1:87:99:2d:a9:a9:cd:bf:bd:1a: e9:8a:f0:02:9c:b6:d7:9d:a2:8d:78:22:38:a2:98: 26:4c:62:69:09:16:7c:a2:05:a9:36:89:0e:a6:10: dc:c0:f9:05:59:6a:61:99:04:38:69:d4:6d:bd:0d: 54:a9:ae:ad:a9:f9:aa:88:d3:75:0c:f7:e0:a9:4c: d6:b4:96:f8:60:91:fa:00:b1:10:a8:65:41:ad:be: cc:8d:0b:a1:12:3a:2c:23:78:ba:b0:17:2b:cf:c4: b3:29:65:30:e8:d5:7b:30:13:35:17:f9:66:c6:97: 88:0b:69:d2:3f:3e:f1:e1:ba:68:a0:05:4a:13:fe: 54:ad:cf:2b:67:85:2c:5f:30:eb:b9:14:f7:e0:76: f3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2D:63:01:06:CB:59:74:D4:68:22:B6:03:D0:F9:AF:05:AA:16:25 X509v3 Authority Key Identifier: keyid:CE:62:0D:0F:51:CB:0E:E1:C8:DF:26:4C:48:8C:E3:4D:0C:F3:3C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/CE620D0F51CB0EE1C8DF264C488CE34D0CF33C1C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:53:f8:6a:5a:e0:c3:e1:90:c2:13:ea:b1:81:8b:a0:5a:5e: 21:20:4a:78:94:a4:40:d6:7b:34:71:ed:be:09:34:a4:cc:f1: 14:ea:44:1b:d4:92:92:94:f7:11:cc:d1:a3:1b:d1:e7:11:1f: da:1b:61:f9:d8:67:36:8b:67:a8:02:b8:fc:9c:74:d5:11:de: 55:22:29:d5:ed:91:60:6c:ba:b0:29:75:85:f5:60:5c:43:92: 24:81:ff:33:49:e5:1e:b6:d2:ef:dc:95:0c:0c:7d:e3:ce:fd: 0e:df:5e:b8:31:30:01:07:66:09:aa:12:91:d9:b7:fb:13:86: 33:dc:9c:41:82:29:79:7f:92:45:31:90:5a:80:d5:72:ee:1c: 38:3d:c0:94:6f:24:94:36:a0:9b:f3:5e:3f:ef:52:19:40:dd: b4:62:70:61:4e:22:7b:2e:ad:e9:bc:46:bb:9b:45:9f:14:18: 61:f3:87:68:96:ed:4d:dc:27:53:08:4f:9d:09:6b:15:69:c5: 04:f2:c0:d7:cc:4d:35:4d:af:42:be:d1:9e:ca:3f:15:5e:48: 7f:3a:bb:27:9d:8a:3e:ca:97:38:7f:7c:49:3d:24:1d:93:e0: d2:64:b6:76:66:a3:ee:cd:29:bb:c5:dc:8d:bc:e0:d2:e9:9b: 47:a4:cf:dc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJzIHWP+QctOxKAFPLsWY720GjEMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U2MjBEMEY1MUNCMEVFMUM4REYyNjRDNDg4Q0UzNEQw Q0YzM0MxQzAeFw0yNjA1MTIwNDQ5NThaFw0yNjA1MTMwNzMxNThaMDMxMTAvBgNV BAMTKDQ3MkQ2MzAxMDZDQjU5NzRENDY4MjJCNjAzRDBGOUFGMDVBQTE2MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Wj2BwVHPbnj7gJcP+dpR0a/f +bpLp4E9hEHLulA0edeucBv2O+D78HlNY6+e/1QDCj0G+OdGRZRbYMAj+L75CyDq BMnQSkLZ3otj+BL6bv3zBa53I1eoDzIFup9OXcylW/uCpYIn9GkAsUGhoYeZLamp zb+9GumK8AKcttedoo14IjiimCZMYmkJFnyiBak2iQ6mENzA+QVZamGZBDhp1G29 DVSprq2p+aqI03UM9+CpTNa0lvhgkfoAsRCoZUGtvsyNC6ESOiwjeLqwFyvPxLMp ZTDo1XswEzUX+WbGl4gLadI/PvHhumigBUoT/lStzytnhSxfMOu5FPfgdvNjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURy1jAQbLWXTUaCK2A9D5rwWqFiUwHwYDVR0j BBgwFoAUzmIND1HLDuHI3yZMSIzjTQzzPBwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OGQwM2FmMDEtZjIzOS00YTFmLTgxY2QtNDEwNmJlYmIyYTIyLzAvQ0U2MjBEMEY1 MUNCMEVFMUM4REYyNjRDNDg4Q0UzNEQwQ0YzM0MxQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRTYyMEQwRjUxQ0IwRUUxQzhERjI2NEM0ODhDRTM0RDBDRjMz QzFDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOGQwM2FmMDEtZjIzOS00YTFmLTgx Y2QtNDEwNmJlYmIyYTIyLzAvQ0U2MjBEMEY1MUNCMEVFMUM4REYyNjRDNDg4Q0Uz NEQwQ0YzM0MxQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIJT+Gpa4MPhkMIT6rGBi6BaXiEgSniUpEDW ezRx7b4JNKTM8RTqRBvUkpKU9xHM0aMb0ecRH9obYfnYZzaLZ6gCuPycdNUR3lUi KdXtkWBsurApdYX1YFxDkiSB/zNJ5R620u/clQwMfePO/Q7fXrgxMAEHZgmqEpHZ t/sThjPcnEGCKXl/kkUxkFqA1XLuHDg9wJRvJJQ2oJvzXj/vUhlA3bRicGFOInsu rem8RrubRZ8UGGHzh2iW7U3cJ1MIT50JaxVpxQTywNfMTTVNr0K+0Z7KPxVeSH86 uyedij7Klzh/fEk9JB2T4NJktnZmo+7NKbvF3I284NLpm0ekz9w= -----END CERTIFICATE-----Generated at Wed May 13 01:44:49 2026 by rpki-client