$ rpki-client -vvf rpki-rsync.idnic.net/repo/a40fccb2-ce1c-4862-8edf-8c35273011c2/0/309D66BED7C5AAB839669782F24FE6D817B8209A.mft File: 309D66BED7C5AAB839669782F24FE6D817B8209A.mft (raw, json) Hash identifier: MyO1l571BW8mmoYatw8Mod96CrI0xIQWhGlwuaXtDkQ= Subject key identifier: 06:EF:14:A1:C3:D3:53:78:E2:F3:9F:A6:AF:64:6B:4D:FB:2E:63:38 Authority key identifier: 30:9D:66:BE:D7:C5:AA:B8:39:66:97:82:F2:4F:E6:D8:17:B8:20:9A Certificate issuer: /CN=309D66BED7C5AAB839669782F24FE6D817B8209A Certificate serial: 3BCB8AE33D5C99CC8ABEA4EB1874430A6557865D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/309D66BED7C5AAB839669782F24FE6D817B8209A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a40fccb2-ce1c-4862-8edf-8c35273011c2/0/309D66BED7C5AAB839669782F24FE6D817B8209A.mft Manifest number: 0F Signing time: Tue 12 May 2026 19:15:08 +0000 Manifest this update: Tue 12 May 2026 19:10:08 +0000 Manifest next update: Wed 13 May 2026 22:04:08 +0000 Files and hashes: 1: 3130332e3131362e3131302e302f32342d3234203d3e20313337333634.roa (hash: +xmmKCCGNPjDepHqzXzJnlfxWWK0PUzYuwz3sX367Vg=) 2: 309D66BED7C5AAB839669782F24FE6D817B8209A.crl (hash: XDobL6vL2plMLJ2V9NAY2+WSycYjsBJQpg6cfVy/TmE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a40fccb2-ce1c-4862-8edf-8c35273011c2/0/309D66BED7C5AAB839669782F24FE6D817B8209A.crl rsync://rpki-rsync.idnic.net/repo/a40fccb2-ce1c-4862-8edf-8c35273011c2/0/309D66BED7C5AAB839669782F24FE6D817B8209A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/309D66BED7C5AAB839669782F24FE6D817B8209A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:cb:8a:e3:3d:5c:99:cc:8a:be:a4:eb:18:74:43:0a:65:57:86:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=309D66BED7C5AAB839669782F24FE6D817B8209A Validity Not Before: May 12 19:10:08 2026 GMT Not After : May 13 22:04:08 2026 GMT Subject: CN=06EF14A1C3D35378E2F39FA6AF646B4DFB2E6338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d3:92:fe:ea:c4:f3:9c:85:b2:c8:eb:46:58: d2:d3:8f:bc:73:43:13:4f:e3:3b:ce:d3:d5:d3:48: 19:39:63:51:c9:a2:fb:93:d3:31:fd:86:7e:e5:2e: e8:79:5e:de:74:43:36:9f:35:3b:4e:39:3b:8a:35: c5:54:a8:6b:43:f2:1d:b3:21:39:00:74:65:3b:89: 1b:47:f2:f8:d4:e1:f1:ac:7f:21:8a:ae:46:51:8e: 9c:53:4e:63:37:6f:3d:b9:f2:1e:3a:ea:a3:d9:2c: c9:bb:a7:1c:2f:bf:1e:9e:95:d9:b1:21:e7:fb:51: e2:2f:15:a3:8d:c7:51:39:fd:75:00:45:33:51:3c: 5f:f4:8b:ee:92:89:05:f0:cc:8a:31:0a:be:f1:60: 4d:99:c0:0d:75:d7:47:6d:7f:e3:cc:42:bc:c5:52: 25:a9:a6:57:c9:40:13:f4:a2:72:2b:e5:60:5e:78: 5f:1a:6a:07:52:6a:8e:f6:1e:21:9b:f1:31:8d:04: c4:e6:53:5e:53:c7:8a:7f:22:5f:db:0b:bd:f3:c9: c1:37:31:22:76:f4:1f:42:a2:f9:58:3b:5a:7d:d8: 88:ab:38:12:f9:04:0a:4e:65:3c:8b:65:3a:69:ba: 4d:ae:7b:0b:55:95:e4:88:ff:f4:73:09:f9:89:3c: 25:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:EF:14:A1:C3:D3:53:78:E2:F3:9F:A6:AF:64:6B:4D:FB:2E:63:38 X509v3 Authority Key Identifier: keyid:30:9D:66:BE:D7:C5:AA:B8:39:66:97:82:F2:4F:E6:D8:17:B8:20:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a40fccb2-ce1c-4862-8edf-8c35273011c2/0/309D66BED7C5AAB839669782F24FE6D817B8209A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/309D66BED7C5AAB839669782F24FE6D817B8209A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a40fccb2-ce1c-4862-8edf-8c35273011c2/0/309D66BED7C5AAB839669782F24FE6D817B8209A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:8d:2f:e1:bd:aa:bc:3f:31:ba:f2:7e:dc:ae:71:ae:7d:e8: 18:c2:b5:7f:00:ab:8f:c7:62:7c:24:01:67:2a:83:c1:18:63: 40:99:88:20:ba:c6:77:94:5e:e3:e2:4a:f6:cf:0b:83:cc:33: 9f:35:02:85:23:92:54:ea:5d:70:65:23:80:2e:42:78:93:74: 0c:43:0c:20:c5:01:ae:1f:d8:47:77:71:02:de:56:05:e1:4a: 67:c8:31:88:cd:80:24:09:4d:db:b4:f8:ab:05:36:3e:27:82: b8:b5:44:97:6a:55:14:13:84:ef:33:56:aa:82:df:ef:b3:69: 93:0e:3c:fb:40:75:54:32:fa:26:09:7d:2d:e2:d3:6b:19:d6: 84:bb:58:48:c0:1a:ce:f1:74:fc:7c:c9:e2:b8:1a:bc:9d:23: d3:d4:d9:66:a4:91:26:eb:f3:d8:3a:13:00:79:ac:af:1f:ec: f2:f7:0c:39:45:54:4f:f2:d0:75:84:2d:24:30:32:40:6f:19: d3:23:ea:48:2b:00:2f:13:10:d5:20:93:16:65:23:dd:50:a9: fe:67:a7:bb:ab:2f:68:c4:66:cd:9e:f1:2b:b2:64:ef:dd:ef: 31:8e:4d:85:6f:f4:e4:fd:b7:02:fb:ef:9b:ed:f0:cd:e4:30: d0:f1:b5:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO8uK4z1cmcyKvqTrGHRDCmVXhl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzA5RDY2QkVEN0M1QUFCODM5NjY5NzgyRjI0RkU2RDgx N0I4MjA5QTAeFw0yNjA1MTIxOTEwMDhaFw0yNjA1MTMyMjA0MDhaMDMxMTAvBgNV BAMTKDA2RUYxNEExQzNEMzUzNzhFMkYzOUZBNkFGNjQ2QjRERkIyRTYzMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ05L+6sTznIWyyOtGWNLTj7xz QxNP4zvO09XTSBk5Y1HJovuT0zH9hn7lLuh5Xt50QzafNTtOOTuKNcVUqGtD8h2z ITkAdGU7iRtH8vjU4fGsfyGKrkZRjpxTTmM3bz258h466qPZLMm7pxwvvx6eldmx Ief7UeIvFaONx1E5/XUARTNRPF/0i+6SiQXwzIoxCr7xYE2ZwA1110dtf+PMQrzF UiWpplfJQBP0onIr5WBeeF8aagdSao72HiGb8TGNBMTmU15Tx4p/Il/bC73zycE3 MSJ29B9CovlYO1p92IirOBL5BApOZTyLZTppuk2uewtVleSI//RzCfmJPCXTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBu8UocPTU3ji85+mr2RrTfsuYzgwHwYDVR0j BBgwFoAUMJ1mvtfFqrg5ZpeC8k/m2Be4IJowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTQwZmNjYjItY2UxYy00ODYyLThlZGYtOGMzNTI3MzAxMWMyLzAvMzA5RDY2QkVE N0M1QUFCODM5NjY5NzgyRjI0RkU2RDgxN0I4MjA5QS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMDlENjZCRUQ3QzVBQUI4Mzk2Njk3ODJGMjRGRTZEODE3Qjgy MDlBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTQwZmNjYjItY2UxYy00ODYyLThl ZGYtOGMzNTI3MzAxMWMyLzAvMzA5RDY2QkVEN0M1QUFCODM5NjY5NzgyRjI0RkU2 RDgxN0I4MjA5QS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABqNL+G9qrw/Mbryftyuca596BjCtX8Aq4/H YnwkAWcqg8EYY0CZiCC6xneUXuPiSvbPC4PMM581AoUjklTqXXBlI4AuQniTdAxD DCDFAa4f2Ed3cQLeVgXhSmfIMYjNgCQJTdu0+KsFNj4ngri1RJdqVRQThO8zVqqC 3++zaZMOPPtAdVQy+iYJfS3i02sZ1oS7WEjAGs7xdPx8yeK4GrydI9PU2WakkSbr 89g6EwB5rK8f7PL3DDlFVE/y0HWELSQwMkBvGdMj6kgrAC8TENUgkxZlI91Qqf5n p7urL2jEZs2e8SuyZO/d7zGOTYVv9OT9twL775vt8M3kMNDxtXo= -----END CERTIFICATE-----Generated at Wed May 13 02:16:04 2026 by rpki-client