$ rpki-client -vvf rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.mft File: DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.mft (raw, json) Hash identifier: bSkFfwiPFW3awFI4Tb3aCdEtq3XmtDSsuBseK8DAlS4= Subject key identifier: FE:15:B0:0D:67:74:85:A5:77:BA:37:C5:3F:65:92:5A:57:37:4D:BE Authority key identifier: DF:34:17:50:0C:E0:95:64:B4:A4:CE:AF:ED:E4:A7:6C:DF:A5:A4:25 Certificate issuer: /CN=DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425 Certificate serial: 67D364F66D295CBC603F0FEE4CD50AD3722F03D6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.mft Manifest number: 0F Signing time: Tue 12 May 2026 16:56:34 +0000 Manifest this update: Tue 12 May 2026 16:51:34 +0000 Manifest next update: Wed 13 May 2026 19:10:34 +0000 Files and hashes: 1: 323030313a6466333a623938303a3a2f34382d3438203d3e203137353338.roa (hash: Bl/k50LueSgJjg8VDKjdeOLA5vAz35PavygXYOL9fXU=) 2: 3130332e3135312e39382e302f32342d3234203d3e203137353338.roa (hash: SGuts0/+uyJce0bHFyKC5/STYlo5gf3uXrTdV1Kngrs=) 3: DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.crl (hash: 6EqC1KZZKpeT5B2QaJsWQwRuya0uM4+Itds7ng1KT1I=) 4: 3130332e3135312e39392e302f32342d3234203d3e203137353338.roa (hash: cHi+wDASSXBvEYUwne4ghJo+D7FzU4toHGViW0cqxos=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.crl rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:d3:64:f6:6d:29:5c:bc:60:3f:0f:ee:4c:d5:0a:d3:72:2f:03:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425 Validity Not Before: May 12 16:51:34 2026 GMT Not After : May 13 19:10:34 2026 GMT Subject: CN=FE15B00D677485A577BA37C53F65925A57374DBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d8:9e:29:32:09:87:b4:83:24:0f:93:8d:eb: 63:a7:52:45:5e:6e:65:13:46:06:01:f8:2b:67:a8: 5a:3b:22:f7:69:07:62:7d:c8:c1:99:22:51:4c:c2: 6c:b4:c1:fa:b3:b3:f2:25:23:33:be:52:ba:25:5a: 5f:c9:91:7a:05:1b:60:2f:fa:ee:b5:a7:3f:d8:f5: c8:ac:d2:09:e2:e3:52:37:4b:8c:06:c9:14:56:60: 70:93:07:6c:18:52:06:0e:47:dd:ed:c7:25:4b:a5: 8b:71:5c:1a:ce:9f:8b:77:e8:1d:e6:1d:73:8e:68: a7:8d:4a:29:35:dc:f5:65:13:97:de:49:72:c0:c7: e9:74:86:9e:e4:f4:db:7a:8a:5a:92:f4:2a:c4:92: c6:16:6a:f7:fa:9f:2e:76:be:d6:1d:a5:f6:f3:5b: c6:6b:a2:b9:9a:45:7f:e3:ec:ae:be:00:ff:e8:c0: f2:95:dd:9b:0b:54:2e:5e:a9:c5:23:ad:a7:2d:b5: 1d:b6:25:ac:ca:d4:9c:ea:5a:c1:c9:09:c4:fa:ff: 41:92:e3:6c:34:75:f7:d3:1a:81:c6:86:a2:ed:6d: 33:3b:f1:30:9a:a9:50:cc:1c:d6:3e:e6:bc:46:7c: 65:0d:c3:f0:f9:32:7f:e7:13:c4:0f:4f:a3:08:b6: 68:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:15:B0:0D:67:74:85:A5:77:BA:37:C5:3F:65:92:5A:57:37:4D:BE X509v3 Authority Key Identifier: keyid:DF:34:17:50:0C:E0:95:64:B4:A4:CE:AF:ED:E4:A7:6C:DF:A5:A4:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b3785e65-51e2-4b1b-82f9-e753ad4b240f/0/DF3417500CE09564B4A4CEAFEDE4A76CDFA5A425.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:1d:23:d1:74:b4:f7:2b:5b:5a:1f:ae:20:30:dd:9c:2a:09: b9:4b:61:e2:5b:62:f6:f3:fd:14:71:eb:07:a1:0f:7c:0c:45: 5b:a5:67:80:04:e5:e2:54:5c:a8:09:6c:10:57:8c:47:91:c3: 39:f7:a0:70:61:c1:a9:8e:39:ae:0b:49:58:72:a6:fc:6c:e0: ca:e9:07:b2:61:ff:7d:20:2a:6d:00:66:30:0d:e7:6c:6c:46: 5a:a8:31:37:16:5e:56:0e:bd:57:27:d3:b0:a7:41:df:9e:ba: ac:81:e3:61:5e:85:c1:63:bf:4c:39:79:89:12:6e:3c:7f:7a: 05:70:8b:e3:df:77:f4:63:ca:73:e7:27:4e:48:3b:42:21:84: bb:16:78:37:ca:78:46:8d:79:31:67:5a:b9:d5:8a:d3:9a:fe: bc:d8:2d:3b:0e:f5:fb:f8:ed:6b:c7:e1:c9:a1:14:ef:e9:2d: 2d:04:7a:b5:10:5d:fb:be:75:44:65:7d:f6:ce:5a:64:76:23: 5b:4b:e4:d4:c3:49:1b:2e:eb:09:00:c5:64:12:be:f1:1f:ff: 9a:da:a6:93:37:ad:29:20:7e:53:04:37:87:17:37:4b:24:06: e4:81:88:b9:fa:8a:6b:e5:b1:6a:a2:0c:e8:90:1c:3e:19:a6: 79:fe:e0:2d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ9Nk9m0pXLxgPw/uTNUK03IvA9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYzNDE3NTAwQ0UwOTU2NEI0QTRDRUFGRURFNEE3NkNE RkE1QTQyNTAeFw0yNjA1MTIxNjUxMzRaFw0yNjA1MTMxOTEwMzRaMDMxMTAvBgNV BAMTKEZFMTVCMDBENjc3NDg1QTU3N0JBMzdDNTNGNjU5MjVBNTczNzREQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm2J4pMgmHtIMkD5ON62OnUkVe bmUTRgYB+CtnqFo7IvdpB2J9yMGZIlFMwmy0wfqzs/IlIzO+UrolWl/JkXoFG2Av +u61pz/Y9cis0gni41I3S4wGyRRWYHCTB2wYUgYOR93txyVLpYtxXBrOn4t36B3m HXOOaKeNSik13PVlE5feSXLAx+l0hp7k9Nt6ilqS9CrEksYWavf6ny52vtYdpfbz W8ZrormaRX/j7K6+AP/owPKV3ZsLVC5eqcUjracttR22JazK1JzqWsHJCcT6/0GS 42w0dffTGoHGhqLtbTM78TCaqVDMHNY+5rxGfGUNw/D5Mn/nE8QPT6MItmiFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/hWwDWd0haV3ujfFP2WSWlc3Tb4wHwYDVR0j BBgwFoAU3zQXUAzglWS0pM6v7eSnbN+lpCUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjM3ODVlNjUtNTFlMi00YjFiLTgyZjktZTc1M2FkNGIyNDBmLzAvREYzNDE3NTAw Q0UwOTU2NEI0QTRDRUFGRURFNEE3NkNERkE1QTQyNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ERjM0MTc1MDBDRTA5NTY0QjRBNENFQUZFREU0QTc2Q0RGQTVB NDI1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjM3ODVlNjUtNTFlMi00YjFiLTgy ZjktZTc1M2FkNGIyNDBmLzAvREYzNDE3NTAwQ0UwOTU2NEI0QTRDRUFGRURFNEE3 NkNERkE1QTQyNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIkdI9F0tPcrW1ofriAw3ZwqCblLYeJbYvbz /RRx6wehD3wMRVulZ4AE5eJUXKgJbBBXjEeRwzn3oHBhwamOOa4LSVhypvxs4Mrp B7Jh/30gKm0AZjAN52xsRlqoMTcWXlYOvVcn07CnQd+euqyB42FehcFjv0w5eYkS bjx/egVwi+Pfd/RjynPnJ05IO0IhhLsWeDfKeEaNeTFnWrnVitOa/rzYLTsO9fv4 7WvH4cmhFO/pLS0EerUQXfu+dURlffbOWmR2I1tL5NTDSRsu6wkAxWQSvvEf/5ra ppM3rSkgflMEN4cXN0skBuSBiLn6imvlsWqiDOiQHD4Zpnn+4C0= -----END CERTIFICATE-----Generated at Tue May 12 22:47:52 2026 by rpki-client