$ rpki-client -vvf rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft File: 0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft (raw, json) Hash identifier: tPT+hS43N+s31mCG9VpE6DuSCqRBh88yZYFDrWT9ZnQ= Subject key identifier: BB:5F:72:A8:03:1E:C4:A0:D2:4D:E1:59:77:DF:CC:D3:F3:39:01:4E Authority key identifier: 0F:20:B0:60:14:9D:BF:31:68:1B:43:21:BA:85:D6:7D:EF:E9:B5:A3 Certificate issuer: /CN=0F20B060149DBF31681B4321BA85D67DEFE9B5A3 Certificate serial: 37074CC9B636D62ECC0C9FDC56D8863FF2CD7025 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft Manifest number: 0E Signing time: Tue 12 May 2026 04:55:00 +0000 Manifest this update: Tue 12 May 2026 04:50:00 +0000 Manifest next update: Wed 13 May 2026 05:48:00 +0000 Files and hashes: 1: 3130332e3136302e3138342e302f32342d3234203d3e20313339393532.roa (hash: k9hB5TmUACjkJxeE951FHmSf1SEQX33K8sTdpuXO8BI=) 2: 0F20B060149DBF31681B4321BA85D67DEFE9B5A3.crl (hash: STUw48i/O8rjfWFLOQQpnJdQf9TOWIy1g7K1PDnPsQQ=) 3: 3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa (hash: 7c9GFWm6MdcJLg2P6c+DTGg5L9Fs6wlnaF02bkc0nhw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.crl rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 05:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:07:4c:c9:b6:36:d6:2e:cc:0c:9f:dc:56:d8:86:3f:f2:cd:70:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F20B060149DBF31681B4321BA85D67DEFE9B5A3 Validity Not Before: May 12 04:50:00 2026 GMT Not After : May 13 05:48:00 2026 GMT Subject: CN=BB5F72A8031EC4A0D24DE15977DFCCD3F339014E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:88:8f:2b:24:aa:30:32:cf:55:18:b6:6b:db: b1:26:02:b8:e8:65:96:2e:01:d3:0c:03:13:11:66: 33:2c:05:bb:45:48:f5:f4:75:31:32:fd:fb:23:98: 94:52:0c:15:18:c1:f6:d9:9d:c5:be:6d:3d:eb:9e: 4a:7b:69:93:aa:8e:92:fc:c0:0b:d5:0d:66:e6:d1: 82:d5:94:b2:02:40:65:92:1f:6c:75:b7:b3:a2:d5: da:bd:d1:da:21:18:16:73:db:57:70:d9:14:73:81: 0b:56:ef:4f:5b:22:f8:54:43:a2:e0:ba:69:02:09: 43:f3:1f:7d:7b:1d:de:19:7b:5c:ef:40:d8:e7:b0: 12:e0:d3:56:7d:8f:7e:0f:58:83:90:a2:10:de:2a: b5:f0:d9:d5:d9:17:00:8c:d6:ef:ec:7f:63:05:b8: c8:09:89:a5:1d:e9:ff:4e:8f:55:d2:e9:a1:12:57: 94:86:0d:68:0e:5c:67:56:6c:19:1a:38:4f:4c:58: 5d:7e:7a:83:14:a5:df:2f:47:74:b4:bd:68:be:82: f3:16:3b:d9:f9:da:99:5d:f2:55:a4:bf:e9:99:4e: 5d:a5:2e:d3:bd:4f:0b:f9:c0:57:60:dc:af:10:0d: f3:9a:e9:52:ac:e9:f2:23:0f:c6:b1:7f:45:30:ba: 5e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:5F:72:A8:03:1E:C4:A0:D2:4D:E1:59:77:DF:CC:D3:F3:39:01:4E X509v3 Authority Key Identifier: keyid:0F:20:B0:60:14:9D:BF:31:68:1B:43:21:BA:85:D6:7D:EF:E9:B5:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:80:ca:0d:a7:64:13:a8:79:9b:dd:19:a2:a8:84:cf:07:89: 2b:9b:3f:f2:34:23:75:0c:37:84:8c:cc:8f:4e:bf:25:49:d2: 8c:3c:04:b5:20:7c:b5:2f:69:5d:4c:f2:4e:7d:f8:cc:f2:37: 83:65:a6:d3:3d:53:4d:3e:4e:e8:8f:ff:bd:a4:37:2e:e7:6d: 55:34:92:75:88:22:4f:1d:73:dd:cf:b7:59:51:70:ab:0d:77: 21:a7:4b:5c:c2:94:fe:a1:ce:8a:c4:8b:f3:8c:76:d3:e4:39: b6:dd:be:50:21:f6:27:03:02:f1:fe:ec:a9:2e:ea:8f:a8:97: 44:fe:97:3d:21:bc:97:40:58:2a:3a:fb:56:d7:1c:34:ce:35: 65:10:ba:0e:bd:81:16:f8:b7:bc:e4:c4:a4:29:4a:b1:75:c1: 12:df:82:e6:7b:4d:5a:f5:bc:7f:74:52:8f:a0:16:0d:c5:1f: c5:22:2f:58:57:e0:fc:3e:d9:b5:b0:26:48:c9:e7:09:b6:91: 17:ae:86:c1:3f:df:60:d4:7e:aa:39:b2:fc:3e:ba:63:3f:eb: 23:24:59:f9:9b:7d:7d:d6:6c:16:26:d7:f6:3c:91:bf:f7:1d: 47:32:df:7c:f5:7d:81:72:9f:58:15:9a:b8:87:5d:0d:86:bc: 70:18:d6:7b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNwdMybY21i7MDJ/cVtiGP/LNcCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEYyMEIwNjAxNDlEQkYzMTY4MUI0MzIxQkE4NUQ2N0RF RkU5QjVBMzAeFw0yNjA1MTIwNDUwMDBaFw0yNjA1MTMwNTQ4MDBaMDMxMTAvBgNV BAMTKEJCNUY3MkE4MDMxRUM0QTBEMjRERTE1OTc3REZDQ0QzRjMzOTAxNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRiI8rJKowMs9VGLZr27EmArjo ZZYuAdMMAxMRZjMsBbtFSPX0dTEy/fsjmJRSDBUYwfbZncW+bT3rnkp7aZOqjpL8 wAvVDWbm0YLVlLICQGWSH2x1t7Oi1dq90dohGBZz21dw2RRzgQtW709bIvhUQ6Lg umkCCUPzH317Hd4Ze1zvQNjnsBLg01Z9j34PWIOQohDeKrXw2dXZFwCM1u/sf2MF uMgJiaUd6f9Oj1XS6aESV5SGDWgOXGdWbBkaOE9MWF1+eoMUpd8vR3S0vWi+gvMW O9n52pld8lWkv+mZTl2lLtO9Twv5wFdg3K8QDfOa6VKs6fIjD8axf0Uwul4DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUu19yqAMexKDSTeFZd9/M0/M5AU4wHwYDVR0j BBgwFoAUDyCwYBSdvzFoG0MhuoXWfe/ptaMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY4MmJjYTMtZTg1OC00ZDUyLWIxYTMtMmY0YmFlNDdjOWYyLzAvMEYyMEIwNjAx NDlEQkYzMTY4MUI0MzIxQkE4NUQ2N0RFRkU5QjVBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRjIwQjA2MDE0OURCRjMxNjgxQjQzMjFCQTg1RDY3REVGRTlC NUEzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTY4MmJjYTMtZTg1OC00ZDUyLWIx YTMtMmY0YmFlNDdjOWYyLzAvMEYyMEIwNjAxNDlEQkYzMTY4MUI0MzIxQkE4NUQ2 N0RFRkU5QjVBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFWAyg2nZBOoeZvdGaKohM8HiSubP/I0I3UM N4SMzI9OvyVJ0ow8BLUgfLUvaV1M8k59+MzyN4NlptM9U00+TuiP/72kNy7nbVU0 knWIIk8dc93Pt1lRcKsNdyGnS1zClP6hzorEi/OMdtPkObbdvlAh9icDAvH+7Kku 6o+ol0T+lz0hvJdAWCo6+1bXHDTONWUQug69gRb4t7zkxKQpSrF1wRLfguZ7TVr1 vH90Uo+gFg3FH8UiL1hX4Pw+2bWwJkjJ5wm2kReuhsE/32DUfqo5svw+umM/6yMk WfmbfX3WbBYm1/Y8kb/3HUcy33z1fYFyn1gVmriHXQ2GvHAY1ns= -----END CERTIFICATE-----Generated at Tue May 12 22:13:31 2026 by rpki-client