$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft File: AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft (raw, json) Hash identifier: JQQFvIRbmZRj0pTrtVhahM9fJmCQKSL0WFbxFSydOnc= Subject key identifier: A8:9B:21:7F:50:73:12:26:90:0C:45:12:3A:63:9B:08:05:C7:D2:8F Authority key identifier: AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA Certificate issuer: /CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Certificate serial: 2DFB1AE37490C047F7550CACD531F2BDB78AE02E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft Manifest number: 0E Signing time: Tue 12 May 2026 05:20:42 +0000 Manifest this update: Tue 12 May 2026 05:15:42 +0000 Manifest next update: Wed 13 May 2026 09:09:42 +0000 Files and hashes: 1: AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl (hash: N+EOK33ZVYstL9g6LF1dBkftPcIpFVWlp2GOYhEUfBI=) 2: 3130332e3138342e31392e302f32342d3234203d3e203438343635.roa (hash: jT66ugDcwrPPZn+FW9LcATaa7pa94IbpNMskVZmpYyA=) 3: 3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa (hash: tpylCt5CgrBx6WkyqQ/Q0MxG2lKbEyC1EbhCs0e+Yuo=) 4: 3130332e3138342e31382e302f32342d3234203d3e203438343635.roa (hash: AMN816Na79PG9Dr8taQyQqg9+CtJXIVEVEtntXynyXw=) 5: 3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa (hash: etrhCGlRM8YYOHb6oshuOaV8mvXHwHvEf9qlp95P9kg=) 6: 3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa (hash: IKu3DMB2Lrk9WDHkDL4CNW43tnQhk2oAbk+rhH/oyA8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:09:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:fb:1a:e3:74:90:c0:47:f7:55:0c:ac:d5:31:f2:bd:b7:8a:e0:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Validity Not Before: May 12 05:15:42 2026 GMT Not After : May 13 09:09:42 2026 GMT Subject: CN=A89B217F50731226900C45123A639B0805C7D28F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:61:be:e5:61:87:8d:02:f9:30:45:30:cf:4e: 4e:0f:53:b4:81:29:61:d7:46:13:ce:63:1b:86:22: fe:86:15:e4:4c:4f:a4:10:e8:c7:58:8d:a9:7f:18: a7:bd:aa:7d:b8:94:38:11:aa:12:68:7f:33:3c:a0: 3e:f5:1f:ef:dd:c1:ae:b9:13:92:31:e3:dc:cb:db: 83:64:d6:8b:83:7d:75:ac:04:8d:09:42:00:27:be: e7:96:a5:c8:54:e1:fa:60:c6:f7:74:88:f0:c5:b5: c1:6e:f5:35:b7:9b:6c:45:23:e0:26:83:12:d5:4f: cd:86:44:06:1b:4d:58:1a:57:4a:99:c5:ad:e1:2e: c3:e6:58:ff:9a:25:11:3c:a9:49:bd:14:87:55:97: 37:9b:51:36:e7:c3:e2:a1:d6:da:c0:d5:ee:f4:05: 61:b5:b7:e6:ce:38:d2:8c:ee:af:bc:27:8b:01:ea: 62:b9:9c:37:c8:ba:39:77:40:c5:85:8b:c2:de:ff: 20:bd:fe:7c:de:a4:ec:56:ee:e6:0c:02:d0:f2:0e: 22:ea:88:a0:90:ea:40:f2:ae:12:80:5e:82:04:e0: bf:b8:4c:33:f4:15:f7:e2:c4:97:a3:8f:be:10:5e: 63:66:6d:d1:08:7c:f4:75:3d:8b:e8:0f:1a:14:9d: df:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:9B:21:7F:50:73:12:26:90:0C:45:12:3A:63:9B:08:05:C7:D2:8F X509v3 Authority Key Identifier: keyid:AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:e2:2d:4b:b5:ed:5e:57:05:75:44:68:42:43:a0:9c:ed:ac: 70:34:2b:9f:40:d9:1a:28:f8:aa:83:92:35:0a:4d:87:38:a6: cd:08:a3:b1:96:83:01:6d:a3:fa:15:28:49:e6:82:a4:f7:7e: 44:63:a5:f2:1c:31:2a:16:dd:68:30:e2:70:75:9a:6c:3a:96: c7:01:f5:c2:e7:b3:ab:4e:c3:c0:a6:9e:a0:4b:a1:27:20:c5: e0:52:78:5e:81:47:e0:f2:71:fe:89:23:04:cf:d2:58:6b:79: 52:b5:0c:7d:91:16:bd:1c:e4:b1:fc:7b:7c:0b:bd:22:32:6f: 2c:cc:ce:ff:8a:ea:a0:e1:ea:a2:0f:28:fc:56:df:2c:6e:6a: fc:4c:42:de:f9:71:33:29:25:d7:d1:a1:d8:b4:5d:3d:43:bd: 67:93:5e:5f:b0:5e:7c:4d:86:eb:28:72:af:e0:ee:fb:96:7c: 0a:66:e8:b9:b2:ee:7b:69:95:aa:df:41:49:0d:a1:6e:85:f3: 0a:57:b5:1e:2f:1a:50:52:7a:4a:3d:ae:9f:c1:02:43:0c:90: 45:f5:30:f7:e9:d1:21:9e:3f:3e:c5:cc:51:73:d5:b0:7d:84: 1b:5a:26:c0:a1:a2:fd:2d:89:05:90:de:77:c1:a7:9f:14:7e: 33:43:e4:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULfsa43SQwEf3VQys1THyvbeK4C4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDNDOEYx RTYwRDFDQTAeFw0yNjA1MTIwNTE1NDJaFw0yNjA1MTMwOTA5NDJaMDMxMTAvBgNV BAMTKEE4OUIyMTdGNTA3MzEyMjY5MDBDNDUxMjNBNjM5QjA4MDVDN0QyOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGYb7lYYeNAvkwRTDPTk4PU7SB KWHXRhPOYxuGIv6GFeRMT6QQ6MdYjal/GKe9qn24lDgRqhJofzM8oD71H+/dwa65 E5Ix49zL24Nk1ouDfXWsBI0JQgAnvueWpchU4fpgxvd0iPDFtcFu9TW3m2xFI+Am gxLVT82GRAYbTVgaV0qZxa3hLsPmWP+aJRE8qUm9FIdVlzebUTbnw+Kh1trA1e70 BWG1t+bOONKM7q+8J4sB6mK5nDfIujl3QMWFi8Le/yC9/nzepOxW7uYMAtDyDiLq iKCQ6kDyrhKAXoIE4L+4TDP0FffixJejj74QXmNmbdEIfPR1PYvoDxoUnd8NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqJshf1BzEiaQDEUSOmObCAXH0o8wHwYDVR0j BBgwFoAUrCPdqiyJ38Q/DRIDMc08jx5g0cowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBkOTE0ZWYtMGIxZi00OTBiLTgwOGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEy Qzg5REZDNDNGMEQxMjAzMzFDRDNDOEYxRTYwRDFDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzIzRERBQTJDODlERkM0M0YwRDEyMDMzMUNEM0M4RjFFNjBE MUNBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjBkOTE0ZWYtMGIxZi00OTBiLTgw OGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDND OEYxRTYwRDFDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGTiLUu17V5XBXVEaEJDoJztrHA0K59A2Roo +KqDkjUKTYc4ps0Io7GWgwFto/oVKEnmgqT3fkRjpfIcMSoW3Wgw4nB1mmw6lscB 9cLns6tOw8CmnqBLoScgxeBSeF6BR+Dycf6JIwTP0lhreVK1DH2RFr0c5LH8e3wL vSIybyzMzv+K6qDh6qIPKPxW3yxuavxMQt75cTMpJdfRodi0XT1DvWeTXl+wXnxN husocq/g7vuWfApm6Lmy7ntplarfQUkNoW6F8wpXtR4vGlBSeko9rp/BAkMMkEX1 MPfp0SGePz7FzFFz1bB9hBtaJsChov0tiQWQ3nfBp58UfjND5OA= -----END CERTIFICATE-----Generated at Wed May 13 01:07:01 2026 by rpki-client