$ rpki-client -vvf rpki-rsync.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.mft File: 3028A8BB1ECF7550222580449D4FA78158DBF42A.mft (raw, json) Hash identifier: xWitDOWhY+RGyCZ0UFw18ER2TVOvg0nTMTuQ7ybaNMI= Subject key identifier: EB:2A:72:6E:30:99:F3:41:1F:59:E8:7C:1F:37:5A:F6:7E:64:2F:22 Authority key identifier: 30:28:A8:BB:1E:CF:75:50:22:25:80:44:9D:4F:A7:81:58:DB:F4:2A Certificate issuer: /CN=3028A8BB1ECF7550222580449D4FA78158DBF42A Certificate serial: 44AFC22B176999CD564F7BB6BD3AB2E3EB0C8AED Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.mft Manifest number: 0F Signing time: Tue 12 May 2026 15:25:01 +0000 Manifest this update: Tue 12 May 2026 15:20:01 +0000 Manifest next update: Wed 13 May 2026 19:10:01 +0000 Files and hashes: 1: 3028A8BB1ECF7550222580449D4FA78158DBF42A.crl (hash: S2pqawtB3g7BRV7Rc03elqexK3oSjSVBfOg2hzgfBeM=) 2: 3136302e32352e3135362e302f32342d3234203d3e20313533303838.roa (hash: EAY48hYNH/6TUE1xmrb2C7cSV9ZpqN9x7POku5Es1R0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.crl rsync://rpki-rsync.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:af:c2:2b:17:69:99:cd:56:4f:7b:b6:bd:3a:b2:e3:eb:0c:8a:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3028A8BB1ECF7550222580449D4FA78158DBF42A Validity Not Before: May 12 15:20:01 2026 GMT Not After : May 13 19:10:01 2026 GMT Subject: CN=EB2A726E3099F3411F59E87C1F375AF67E642F22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:52:64:a3:a1:26:40:f5:0d:85:91:3c:d2:0b: ea:cd:46:05:5c:c2:e1:65:e2:a6:96:01:3d:42:81: d5:48:dc:4a:c5:96:6f:b1:81:06:87:06:4b:19:b1: c8:8b:29:85:ea:b5:a3:18:84:90:84:a3:f6:5f:fa: 9b:7b:1c:72:10:c2:d6:9c:b1:e2:6c:e3:8a:4c:ab: 0e:6f:ce:ab:fc:e9:a9:de:fd:f8:fd:c6:29:4c:9b: 5a:00:48:08:41:98:81:a5:a8:33:4d:bd:a6:6a:43: 2a:c2:c1:36:f9:09:05:24:45:3f:1c:a4:3c:1b:d5: 9f:99:1b:9e:ca:e6:af:72:4a:be:51:7f:77:06:d1: a3:d6:74:50:64:a6:a2:b6:79:00:f7:aa:f6:b9:ba: 20:b3:9e:97:32:9a:bb:41:63:23:4e:1e:5f:84:70: 55:f8:bd:52:41:43:ea:4e:6a:fe:f9:fe:00:6c:0b: e5:a1:5f:97:c6:70:1e:c5:5a:f8:f7:10:04:df:eb: f2:19:c0:74:6e:88:b6:3d:cb:51:52:9a:b9:ab:3d: 9f:8a:67:98:da:c6:c8:d1:81:99:74:71:c4:a7:8b: b9:0b:8b:52:d3:42:d3:07:9b:f9:a9:e7:43:bf:7e: 5a:d3:53:3f:8e:78:14:9b:f4:d9:34:62:91:bb:81: 8f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:2A:72:6E:30:99:F3:41:1F:59:E8:7C:1F:37:5A:F6:7E:64:2F:22 X509v3 Authority Key Identifier: keyid:30:28:A8:BB:1E:CF:75:50:22:25:80:44:9D:4F:A7:81:58:DB:F4:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/3028A8BB1ECF7550222580449D4FA78158DBF42A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:24:b7:57:83:2d:03:f3:4d:00:8a:2a:7a:5e:46:8f:db:b0: 58:69:9c:bd:37:d5:59:8d:4e:aa:0d:10:fd:61:61:7e:5a:ed: 4b:2b:12:69:ee:6a:7b:80:2e:04:af:20:d1:4b:7e:7e:fc:7b: 53:5e:6e:dd:8a:03:16:b8:30:c4:ac:f6:c6:84:4e:20:be:f5: b1:07:07:70:16:e2:95:2d:83:2d:ae:2f:eb:19:bc:22:fd:9d: 28:8c:35:10:2d:4c:44:5e:1b:a1:f7:e5:d5:d0:e2:ed:7c:a9: 63:bc:3b:39:d9:4d:04:86:15:3f:90:97:4a:b5:fa:26:8e:fd: 52:1d:41:ad:f6:26:6c:44:55:03:cd:aa:c2:0f:d5:7c:30:f1: 85:b2:a3:45:17:56:cd:2f:5f:45:1c:37:9c:ea:95:e8:6e:1e: d7:49:77:18:aa:c7:67:86:29:e4:15:76:32:ae:ba:53:bf:7b: 29:75:af:73:aa:b8:d1:58:2d:ae:c4:64:d7:b1:e9:a8:44:32: cd:ef:83:64:96:cc:23:d5:e8:2c:d8:bb:0f:55:76:5d:28:e8: c5:2d:72:0c:c8:73:61:1f:25:be:95:9b:7b:07:1b:0c:f9:db: bf:75:5d:f2:ab:18:b5:74:7e:1d:86:d8:0c:eb:3c:e4:6c:73: 4d:f0:67:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURK/CKxdpmc1WT3u2vTqy4+sMiu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzAyOEE4QkIxRUNGNzU1MDIyMjU4MDQ0OUQ0RkE3ODE1 OERCRjQyQTAeFw0yNjA1MTIxNTIwMDFaFw0yNjA1MTMxOTEwMDFaMDMxMTAvBgNV BAMTKEVCMkE3MjZFMzA5OUYzNDExRjU5RTg3QzFGMzc1QUY2N0U2NDJGMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQUmSjoSZA9Q2FkTzSC+rNRgVc wuFl4qaWAT1CgdVI3ErFlm+xgQaHBksZsciLKYXqtaMYhJCEo/Zf+pt7HHIQwtac seJs44pMqw5vzqv86ane/fj9xilMm1oASAhBmIGlqDNNvaZqQyrCwTb5CQUkRT8c pDwb1Z+ZG57K5q9ySr5Rf3cG0aPWdFBkpqK2eQD3qva5uiCznpcymrtBYyNOHl+E cFX4vVJBQ+pOav75/gBsC+WhX5fGcB7FWvj3EATf6/IZwHRuiLY9y1FSmrmrPZ+K Z5jaxsjRgZl0ccSni7kLi1LTQtMHm/mp50O/flrTUz+OeBSb9Nk0YpG7gY83AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6ypybjCZ80EfWeh8Hzda9n5kLyIwHwYDVR0j BBgwFoAUMCioux7PdVAiJYBEnU+ngVjb9CowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWFmZGQ2ZjktYjc5OS00YTk2LTllMmEtMWZlZjY5YmZhNTk3LzAvMzAyOEE4QkIx RUNGNzU1MDIyMjU4MDQ0OUQ0RkE3ODE1OERCRjQyQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8zMDI4QThCQjFFQ0Y3NTUwMjIyNTgwNDQ5RDRGQTc4MTU4REJG NDJBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWFmZGQ2ZjktYjc5OS00YTk2LTll MmEtMWZlZjY5YmZhNTk3LzAvMzAyOEE4QkIxRUNGNzU1MDIyMjU4MDQ0OUQ0RkE3 ODE1OERCRjQyQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFUkt1eDLQPzTQCKKnpeRo/bsFhpnL031VmN TqoNEP1hYX5a7UsrEmnuanuALgSvINFLfn78e1Nebt2KAxa4MMSs9saETiC+9bEH B3AW4pUtgy2uL+sZvCL9nSiMNRAtTEReG6H35dXQ4u18qWO8OznZTQSGFT+Ql0q1 +iaO/VIdQa32JmxEVQPNqsIP1Xww8YWyo0UXVs0vX0UcN5zqlehuHtdJdxiqx2eG KeQVdjKuulO/eyl1r3OquNFYLa7EZNex6ahEMs3vg2SWzCPV6CzYuw9Vdl0o6MUt cgzIc2EfJb6Vm3sHGwz52791XfKrGLV0fh2G2AzrPORsc03wZ10= -----END CERTIFICATE-----Generated at Wed May 13 00:21:22 2026 by rpki-client