$ rpki-client -vvf rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft File: 85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft (raw, json) Hash identifier: RIJGXo2wK3pIUUzN+ujGMANT/RvGm5sfffMP4vl6qHE= Subject key identifier: 4C:0E:8A:47:3E:58:98:0D:CE:82:00:A0:7E:37:EE:EC:A2:C1:F2:F7 Authority key identifier: 85:67:2F:F4:60:7E:3A:FD:9C:AC:D9:7C:84:E0:F2:47:A8:9F:C3:C7 Certificate issuer: /CN=85672FF4607E3AFD9CACD97C84E0F247A89FC3C7 Certificate serial: 0AA8A2C6A2FA1949215B34DBCA1CE691BF41ECC0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft Manifest number: 0F Signing time: Tue 12 May 2026 17:17:02 +0000 Manifest this update: Tue 12 May 2026 17:12:02 +0000 Manifest next update: Wed 13 May 2026 18:58:02 +0000 Files and hashes: 1: 3130332e39332e3135382e302f32332d3234203d3e20313336313136.roa (hash: SMyShINBZJhBLQDbVGEzp9/aVi59DehpgguYlaDtpEI=) 2: 3130332e3131322e3232382e302f32332d3234203d3e20313336313136.roa (hash: yAzMQkLI2YElNnNv3RsEoxmgF9F1Ze8FCH2iEusLcbI=) 3: 85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.crl (hash: mHXp0vFISDsBxdAR1hwSYOQp0ZmM3Eq7E2NS7SU5Acw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.crl rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:a8:a2:c6:a2:fa:19:49:21:5b:34:db:ca:1c:e6:91:bf:41:ec:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85672FF4607E3AFD9CACD97C84E0F247A89FC3C7 Validity Not Before: May 12 17:12:02 2026 GMT Not After : May 13 18:58:02 2026 GMT Subject: CN=4C0E8A473E58980DCE8200A07E37EEECA2C1F2F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:63:72:f3:85:2b:02:c8:5f:6b:b9:82:cb:52: 8c:4e:a4:31:85:9a:6e:4e:6b:29:7f:9d:51:4a:56: c1:18:68:6b:ea:64:5a:6a:73:f2:ab:38:e1:96:c5: 74:40:7e:03:fc:60:40:38:09:a5:a1:3e:c2:cf:9b: 0c:32:ac:e0:36:8f:02:10:86:a6:4a:bb:07:38:26: 0e:46:0f:2f:b5:81:f0:ea:da:f1:60:7b:e7:0f:dc: 87:db:12:da:47:3e:4f:d3:85:91:08:1e:c7:f8:ef: f0:c3:62:b7:f2:57:f9:93:4e:ad:e0:1f:a5:ab:cb: 8c:c1:5e:0f:70:57:39:c1:42:c6:4b:d9:d5:7a:fc: 1b:24:a0:30:8e:b0:a1:5e:6a:33:19:91:9f:dd:ae: 0e:49:b7:ec:bc:bb:e6:25:0e:dd:34:c2:b1:9b:c3: a4:9e:6e:51:f4:59:0f:61:58:cc:62:80:2e:91:ea: db:47:43:f6:96:1e:07:6b:d1:67:2b:71:e6:b7:80: f1:5d:b7:da:64:17:d0:20:1c:66:98:89:59:ea:46: 95:81:9c:21:3c:06:55:62:03:41:fe:c7:9d:04:20: b8:a3:6e:3a:a7:7d:dc:e8:08:e4:77:60:c5:eb:b4: 03:1a:1f:6e:b8:55:de:de:91:f0:09:a4:ed:d8:f2: 64:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:0E:8A:47:3E:58:98:0D:CE:82:00:A0:7E:37:EE:EC:A2:C1:F2:F7 X509v3 Authority Key Identifier: keyid:85:67:2F:F4:60:7E:3A:FD:9C:AC:D9:7C:84:E0:F2:47:A8:9F:C3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:62:78:9f:4b:e1:af:68:61:9c:bd:ea:6c:55:6b:cb:d1:eb: 2c:69:06:b4:c5:ab:b1:a9:f0:dd:ca:80:cc:81:71:46:3f:d5: c7:61:ec:89:c2:09:a7:43:1f:cd:16:d3:7f:73:ff:04:b5:76: 36:7c:15:14:09:68:a9:a2:4c:c6:4d:c0:d7:7b:e2:29:f7:db: a8:cb:93:73:46:60:01:d4:6c:6f:b2:d3:ca:d8:88:ee:5c:08: 6a:f6:92:d0:46:2f:6b:86:a4:01:4a:e9:25:1c:65:02:2c:dd: be:0e:15:38:3a:c2:81:5a:0f:df:f1:3b:50:46:b0:ed:39:8d: cb:ab:5c:5d:07:e1:35:9e:e7:11:84:7b:8b:2b:f8:19:dc:97: 60:45:8b:a8:48:98:05:68:8c:dc:66:85:40:5c:5b:8e:56:14: 91:aa:37:5d:05:5d:42:e6:76:f6:87:3b:ad:9b:be:5c:c1:7d: f0:7e:86:52:85:7f:85:06:e6:d3:5b:0b:87:4f:9f:7f:78:99: e6:38:d3:19:c0:71:c1:7c:54:ee:40:ed:72:28:74:78:17:94: 34:28:2b:ee:fc:cb:10:61:f5:39:dc:83:ed:d7:6d:e2:8f:c8: 3e:c8:a5:31:1b:fb:47:f2:15:2b:db:34:46:69:41:a2:7a:ec: ec:43:3f:7e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCqiixqL6GUkhWzTbyhzmkb9B7MAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU2NzJGRjQ2MDdFM0FGRDlDQUNEOTdDODRFMEYyNDdB ODlGQzNDNzAeFw0yNjA1MTIxNzEyMDJaFw0yNjA1MTMxODU4MDJaMDMxMTAvBgNV BAMTKDRDMEU4QTQ3M0U1ODk4MERDRTgyMDBBMDdFMzdFRUVDQTJDMUYyRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfY3LzhSsCyF9ruYLLUoxOpDGF mm5Oayl/nVFKVsEYaGvqZFpqc/KrOOGWxXRAfgP8YEA4CaWhPsLPmwwyrOA2jwIQ hqZKuwc4Jg5GDy+1gfDq2vFge+cP3IfbEtpHPk/ThZEIHsf47/DDYrfyV/mTTq3g H6Wry4zBXg9wVznBQsZL2dV6/BskoDCOsKFeajMZkZ/drg5Jt+y8u+YlDt00wrGb w6SeblH0WQ9hWMxigC6R6ttHQ/aWHgdr0Wcrcea3gPFdt9pkF9AgHGaYiVnqRpWB nCE8BlViA0H+x50EILijbjqnfdzoCOR3YMXrtAMaH264Vd7ekfAJpO3Y8mRlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTA6KRz5YmA3OggCgfjfu7KLB8vcwHwYDVR0j BBgwFoAUhWcv9GB+Ov2crNl8hODyR6ifw8cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWI2YWUyYTItZDkzZi00OWNhLWJhNGItMTcxZmY4ZDFlNTdmLzAvODU2NzJGRjQ2 MDdFM0FGRDlDQUNEOTdDODRFMEYyNDdBODlGQzNDNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTY3MkZGNDYwN0UzQUZEOUNBQ0Q5N0M4NEUwRjI0N0E4OUZD M0M3LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOWI2YWUyYTItZDkzZi00OWNhLWJh NGItMTcxZmY4ZDFlNTdmLzAvODU2NzJGRjQ2MDdFM0FGRDlDQUNEOTdDODRFMEYy NDdBODlGQzNDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA9ieJ9L4a9oYZy96mxVa8vR6yxpBrTFq7Gp 8N3KgMyBcUY/1cdh7InCCadDH80W039z/wS1djZ8FRQJaKmiTMZNwNd74in326jL k3NGYAHUbG+y08rYiO5cCGr2ktBGL2uGpAFK6SUcZQIs3b4OFTg6woFaD9/xO1BG sO05jcurXF0H4TWe5xGEe4sr+Bncl2BFi6hImAVojNxmhUBcW45WFJGqN10FXULm dvaHO62bvlzBffB+hlKFf4UG5tNbC4dPn394meY40xnAccF8VO5A7XIodHgXlDQo K+78yxBh9Tncg+3XbeKPyD7IpTEb+0fyFSvbNEZpQaJ67OxDP34= -----END CERTIFICATE-----Generated at Tue May 12 22:45:43 2026 by rpki-client