$ rpki-client -vvf rpki-rsync.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/AA8D66437A40D4CB7037D059FE692144FA3EE83F.mft File: AA8D66437A40D4CB7037D059FE692144FA3EE83F.mft (raw, json) Hash identifier: RfFI8m1E9lfklZ2yhsk3gyHqxUFq2T4TEkn1SBL9TnU= Subject key identifier: 23:18:43:C9:C2:AD:6D:F5:C6:CC:03:F7:27:42:2C:A7:50:EE:A3:27 Authority key identifier: AA:8D:66:43:7A:40:D4:CB:70:37:D0:59:FE:69:21:44:FA:3E:E8:3F Certificate issuer: /CN=AA8D66437A40D4CB7037D059FE692144FA3EE83F Certificate serial: 357455229FBDC7E63F0D24199124E0FD647A09DE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA8D66437A40D4CB7037D059FE692144FA3EE83F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/AA8D66437A40D4CB7037D059FE692144FA3EE83F.mft Manifest number: 0F Signing time: Tue 12 May 2026 23:48:00 +0000 Manifest this update: Tue 12 May 2026 23:43:00 +0000 Manifest next update: Thu 14 May 2026 00:54:00 +0000 Files and hashes: 1: AA8D66437A40D4CB7037D059FE692144FA3EE83F.crl (hash: Xt9kK5LfOuBWM9x2kkmsRIdfAzHaYkomu9iEIKoICVE=) 2: 3130332e3135352e32382e302f32342d3234203d3e20313431303636.roa (hash: ewfsYYBTx06fI9ZJBdkWQ9OcyfPFI+ANp/78GnZ38BE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/AA8D66437A40D4CB7037D059FE692144FA3EE83F.crl rsync://rpki-rsync.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/AA8D66437A40D4CB7037D059FE692144FA3EE83F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA8D66437A40D4CB7037D059FE692144FA3EE83F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:74:55:22:9f:bd:c7:e6:3f:0d:24:19:91:24:e0:fd:64:7a:09:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA8D66437A40D4CB7037D059FE692144FA3EE83F Validity Not Before: May 12 23:43:00 2026 GMT Not After : May 14 00:54:00 2026 GMT Subject: CN=231843C9C2AD6DF5C6CC03F727422CA750EEA327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d4:19:a9:b9:78:ee:f5:cc:49:f5:a3:a8:61: d2:c2:e2:fe:3c:1d:0c:52:40:74:95:6f:75:95:c0: 69:52:13:f5:a9:55:3e:3c:bb:e5:ea:69:02:6f:b5: c9:9b:03:bb:f6:b1:65:ac:1e:27:ce:75:9a:df:6c: 7a:1a:1c:05:aa:f6:1a:6d:90:03:d0:f4:95:af:e0: 35:db:18:cb:4f:89:b6:87:b6:86:68:ba:00:29:b6: b6:43:31:02:dd:aa:6f:3d:82:18:62:e5:45:01:14: d8:d2:81:1e:40:09:7f:86:5b:54:5b:63:59:ce:07: 22:a5:d6:f7:8d:ac:73:9a:d5:f9:eb:ef:18:c3:f8: 5f:a9:24:44:ca:1f:53:43:d2:4a:57:c1:88:5b:ba: e6:7d:76:a0:71:40:35:f7:78:3c:fc:33:2a:17:3d: 41:cd:37:fa:09:b4:56:5c:8b:3f:f2:b4:72:c5:eb: 38:06:20:22:20:03:b5:93:c7:9c:26:b0:f7:b9:34: 95:46:b5:1d:b1:7d:c5:6a:93:04:a4:23:62:c2:df: fa:87:12:ea:e4:7e:4f:f3:ef:18:eb:9a:c9:92:08: 5e:8a:33:43:a6:48:6d:1c:7b:39:ea:09:b6:13:55: d0:06:ba:c3:4f:ec:c7:71:99:57:cb:75:92:76:c7: 10:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:18:43:C9:C2:AD:6D:F5:C6:CC:03:F7:27:42:2C:A7:50:EE:A3:27 X509v3 Authority Key Identifier: keyid:AA:8D:66:43:7A:40:D4:CB:70:37:D0:59:FE:69:21:44:FA:3E:E8:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/AA8D66437A40D4CB7037D059FE692144FA3EE83F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA8D66437A40D4CB7037D059FE692144FA3EE83F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b27b11c2-ab90-420f-b49c-3cc332eb7d64/0/AA8D66437A40D4CB7037D059FE692144FA3EE83F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:77:18:99:a0:03:e6:d6:b7:d1:46:41:e0:1d:ae:c8:1d:3e: b0:23:7d:73:9d:10:79:cd:d6:3c:68:78:91:e8:aa:9d:79:d4: e1:65:6f:fa:85:e2:21:2d:7e:aa:e1:42:8b:51:35:f2:24:e9: f6:5f:7e:ed:a2:e2:6b:ef:f1:b3:ac:1f:bd:d9:3c:80:7f:18: c7:b2:cc:c0:9a:1f:6b:9e:4f:24:af:40:cd:17:bf:27:42:4c: 13:51:d1:ca:63:92:86:70:ac:8f:e6:f5:32:91:fc:58:90:66: e5:49:4a:70:01:71:97:32:ac:90:23:68:f3:ae:3c:62:dd:a7: 62:28:e6:a9:43:ed:ac:4f:1b:84:df:9b:04:e9:fd:ae:57:bf: bb:34:9b:9d:fa:86:f9:5f:91:e3:9c:49:85:2c:05:65:bc:cc: 50:c7:91:e8:c8:6a:c8:e6:1f:39:69:f7:c9:b1:15:21:34:55: 6b:bf:37:80:8b:a8:49:41:cb:6a:1c:94:b6:5d:8f:de:0f:65: c1:20:d5:6d:60:bf:6c:a1:96:8d:c1:f1:ab:28:23:3a:25:ed: a8:e0:d9:fa:63:cc:79:7c:b6:67:6f:9a:f7:33:af:71:21:49: 1a:66:d9:45:fa:43:f0:ad:0b:94:6e:68:8c:95:94:79:a6:19: 2c:46:7c:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNXRVIp+9x+Y/DSQZkSTg/WR6Cd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE4RDY2NDM3QTQwRDRDQjcwMzdEMDU5RkU2OTIxNDRG QTNFRTgzRjAeFw0yNjA1MTIyMzQzMDBaFw0yNjA1MTQwMDU0MDBaMDMxMTAvBgNV BAMTKDIzMTg0M0M5QzJBRDZERjVDNkNDMDNGNzI3NDIyQ0E3NTBFRUEzMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ1BmpuXju9cxJ9aOoYdLC4v48 HQxSQHSVb3WVwGlSE/WpVT48u+XqaQJvtcmbA7v2sWWsHifOdZrfbHoaHAWq9hpt kAPQ9JWv4DXbGMtPibaHtoZougAptrZDMQLdqm89ghhi5UUBFNjSgR5ACX+GW1Rb Y1nOByKl1veNrHOa1fnr7xjD+F+pJETKH1ND0kpXwYhbuuZ9dqBxQDX3eDz8MyoX PUHNN/oJtFZciz/ytHLF6zgGICIgA7WTx5wmsPe5NJVGtR2xfcVqkwSkI2LC3/qH Eurkfk/z7xjrmsmSCF6KM0OmSG0ceznqCbYTVdAGusNP7MdxmVfLdZJ2xxBJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIxhDycKtbfXGzAP3J0Isp1DuoycwHwYDVR0j BBgwFoAUqo1mQ3pA1MtwN9BZ/mkhRPo+6D8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjI3YjExYzItYWI5MC00MjBmLWI0OWMtM2NjMzMyZWI3ZDY0LzAvQUE4RDY2NDM3 QTQwRDRDQjcwMzdEMDU5RkU2OTIxNDRGQTNFRTgzRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQThENjY0MzdBNDBENENCNzAzN0QwNTlGRTY5MjE0NEZBM0VF ODNGLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjI3YjExYzItYWI5MC00MjBmLWI0 OWMtM2NjMzMyZWI3ZDY0LzAvQUE4RDY2NDM3QTQwRDRDQjcwMzdEMDU5RkU2OTIx NDRGQTNFRTgzRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACp3GJmgA+bWt9FGQeAdrsgdPrAjfXOdEHnN 1jxoeJHoqp151OFlb/qF4iEtfqrhQotRNfIk6fZffu2i4mvv8bOsH73ZPIB/GMey zMCaH2ueTySvQM0XvydCTBNR0cpjkoZwrI/m9TKR/FiQZuVJSnABcZcyrJAjaPOu PGLdp2Io5qlD7axPG4TfmwTp/a5Xv7s0m536hvlfkeOcSYUsBWW8zFDHkejIasjm Hzlp98mxFSE0VWu/N4CLqElBy2oclLZdj94PZcEg1W1gv2yhlo3B8asoIzol7ajg 2fpjzHl8tmdvmvczr3EhSRpm2UX6Q/CtC5RuaIyVlHmmGSxGfHk= -----END CERTIFICATE-----Generated at Wed May 13 02:40:43 2026 by rpki-client