$ rpki-client -vvf rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.mft File: AF2070B1260531FBF069F7AE728D1824E0197266.mft (raw, json) Hash identifier: RvfqvoQLjP5FB87ooU4xGTjQlIkALKDX5f9Ev7lj3ww= Subject key identifier: C3:C9:A7:75:9E:0C:65:C5:64:AD:C9:38:BF:27:8E:D6:D1:84:47:AE Authority key identifier: AF:20:70:B1:26:05:31:FB:F0:69:F7:AE:72:8D:18:24:E0:19:72:66 Certificate issuer: /CN=AF2070B1260531FBF069F7AE728D1824E0197266 Certificate serial: 561E06607D9A4E7F419920B76D10FE7474C2133D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF2070B1260531FBF069F7AE728D1824E0197266.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.mft Manifest number: 0F Signing time: Tue 12 May 2026 20:22:17 +0000 Manifest this update: Tue 12 May 2026 20:17:17 +0000 Manifest next update: Wed 13 May 2026 23:16:17 +0000 Files and hashes: 1: 3135372e32302e3232332e302f32342d3234203d3e20313532343337.roa (hash: Cn5QDaDrkWjZkYo9i7Qsji3m8C/nPclaYaM3+4eiEFI=) 2: 3135372e32302e3232322e302f32342d3234203d3e20313532343337.roa (hash: EKUa1vnxpRzh4ZDuHDfZ4gRqG//+vsL4hxhqb+zan3U=) 3: AF2070B1260531FBF069F7AE728D1824E0197266.crl (hash: 694Doh/qQELcahid4OaQOLH39ML2tH4Jjt6pW91AjW4=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.crl rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF2070B1260531FBF069F7AE728D1824E0197266.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:1e:06:60:7d:9a:4e:7f:41:99:20:b7:6d:10:fe:74:74:c2:13:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF2070B1260531FBF069F7AE728D1824E0197266 Validity Not Before: May 12 20:17:17 2026 GMT Not After : May 13 23:16:17 2026 GMT Subject: CN=C3C9A7759E0C65C564ADC938BF278ED6D18447AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d6:d2:77:25:0b:f0:3a:6a:50:26:d6:94:54: 2f:04:02:f3:fa:1d:d0:1e:ef:75:50:4d:5c:a0:16: 48:24:14:54:4d:23:b5:a1:cc:80:59:ca:42:fe:b1: e9:9a:fc:1a:9f:75:1f:37:60:6b:c1:0a:e9:b9:30: 9f:50:91:be:c8:e1:08:d0:67:b2:dc:0b:dd:f0:ad: 0a:3e:39:26:f6:42:eb:c0:c8:ea:42:46:3e:5c:0d: 8a:72:14:fd:bd:c3:3b:c4:22:66:c3:42:bc:3d:cb: a8:21:a8:a9:1e:17:41:20:c9:58:57:a6:dd:3a:1d: 66:e8:89:cd:d4:bb:ce:52:1b:0a:69:ec:9d:51:6e: 81:16:15:c6:0c:bd:f3:8e:19:0d:df:6d:52:77:61: b7:6b:26:63:7e:61:f1:f2:06:68:d2:c9:91:b9:f2: 9b:3b:2a:ba:d3:d5:91:a1:d6:7a:8d:60:b4:59:e4: b8:28:9a:f7:01:a3:7f:12:86:ba:1d:f9:83:86:93: 0e:15:a7:4f:86:d1:5c:51:a6:e7:ad:bd:cb:62:13: 97:35:c2:c2:07:93:8e:87:6b:bc:be:d5:65:b2:f0: a3:4c:1e:3d:19:b7:88:1d:7a:db:7f:66:06:cc:2d: 62:8e:b3:b8:23:11:f2:d3:89:e7:23:4e:84:1b:78: a8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C9:A7:75:9E:0C:65:C5:64:AD:C9:38:BF:27:8E:D6:D1:84:47:AE X509v3 Authority Key Identifier: keyid:AF:20:70:B1:26:05:31:FB:F0:69:F7:AE:72:8D:18:24:E0:19:72:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/AF2070B1260531FBF069F7AE728D1824E0197266.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a1f15a1d-5dac-4cc9-811a-e49cb4e7bce1/0/AF2070B1260531FBF069F7AE728D1824E0197266.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:ef:80:00:ad:b7:e8:20:e3:61:eb:c9:85:c9:9b:77:64:30: 7e:89:4e:d5:3c:8e:05:f4:df:e9:8b:ea:12:cd:5a:d5:57:7e: d4:09:10:d1:6a:13:b9:16:67:96:03:16:2f:04:66:34:1e:46: 7b:36:8e:b5:6c:e2:12:0c:dd:4f:41:39:33:94:d5:09:4d:7d: 2c:69:c3:62:61:82:86:dd:17:b9:19:82:0b:71:03:b0:e7:b7: 21:6a:25:74:85:7b:90:c6:43:19:30:78:90:4b:06:27:1a:87: ff:4a:f8:0b:1c:c5:73:dc:e0:7c:e2:ee:d3:e1:03:38:a4:ce: c8:a3:c8:50:f5:72:7f:13:5f:e3:61:47:7a:71:40:3a:e8:3c: 74:2e:1e:a9:f7:36:2b:9c:4f:de:cf:3a:f9:7b:5a:7b:56:01: 1b:03:a7:67:45:25:7d:02:bb:9f:82:fe:5b:82:81:6b:74:95: a4:13:39:7d:b0:43:87:15:7b:dd:b7:10:17:02:66:ec:4f:91: e8:32:57:5a:b5:c7:98:6a:06:34:7a:34:71:39:ed:8c:21:38: 5a:76:d5:30:d2:73:df:ce:42:ad:16:e1:7e:37:fc:da:c8:f0: 26:64:4a:1d:01:2c:50:ed:8d:3f:fd:98:93:63:19:e3:11:3c: 1e:7b:b5:22 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVh4GYH2aTn9BmSC3bRD+dHTCEz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYyMDcwQjEyNjA1MzFGQkYwNjlGN0FFNzI4RDE4MjRF MDE5NzI2NjAeFw0yNjA1MTIyMDE3MTdaFw0yNjA1MTMyMzE2MTdaMDMxMTAvBgNV BAMTKEMzQzlBNzc1OUUwQzY1QzU2NEFEQzkzOEJGMjc4RUQ2RDE4NDQ3QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa1tJ3JQvwOmpQJtaUVC8EAvP6 HdAe73VQTVygFkgkFFRNI7WhzIBZykL+sema/BqfdR83YGvBCum5MJ9Qkb7I4QjQ Z7LcC93wrQo+OSb2QuvAyOpCRj5cDYpyFP29wzvEImbDQrw9y6ghqKkeF0EgyVhX pt06HWboic3Uu85SGwpp7J1RboEWFcYMvfOOGQ3fbVJ3YbdrJmN+YfHyBmjSyZG5 8ps7KrrT1ZGh1nqNYLRZ5LgomvcBo38Shrod+YOGkw4Vp0+G0VxRpuetvctiE5c1 wsIHk46Ha7y+1WWy8KNMHj0Zt4gdett/ZgbMLWKOs7gjEfLTiecjToQbeKhJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUw8mndZ4MZcVkrck4vyeO1tGER64wHwYDVR0j BBgwFoAUryBwsSYFMfvwafeuco0YJOAZcmYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTFmMTVhMWQtNWRhYy00Y2M5LTgxMWEtZTQ5Y2I0ZTdiY2UxLzAvQUYyMDcwQjEy NjA1MzFGQkYwNjlGN0FFNzI4RDE4MjRFMDE5NzI2Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BRjIwNzBCMTI2MDUzMUZCRjA2OUY3QUU3MjhEMTgyNEUwMTk3 MjY2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTFmMTVhMWQtNWRhYy00Y2M5LTgx MWEtZTQ5Y2I0ZTdiY2UxLzAvQUYyMDcwQjEyNjA1MzFGQkYwNjlGN0FFNzI4RDE4 MjRFMDE5NzI2Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJjvgACtt+gg42HryYXJm3dkMH6JTtU8jgX0 3+mL6hLNWtVXftQJENFqE7kWZ5YDFi8EZjQeRns2jrVs4hIM3U9BOTOU1QlNfSxp w2JhgobdF7kZggtxA7DntyFqJXSFe5DGQxkweJBLBicah/9K+AscxXPc4Hzi7tPh AzikzsijyFD1cn8TX+NhR3pxQDroPHQuHqn3NiucT97POvl7WntWARsDp2dFJX0C u5+C/luCgWt0laQTOX2wQ4cVe923EBcCZuxPkegyV1q1x5hqBjR6NHE57YwhOFp2 1TDSc9/OQq0W4X43/NrI8CZkSh0BLFDtjT/9mJNjGeMRPB57tSI= -----END CERTIFICATE-----Generated at Tue May 12 22:47:00 2026 by rpki-client