$ rpki-client -vvf rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.mft File: 53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.mft (raw, json) Hash identifier: FZFNH3wKzDwZ5qrsFCeeqdfelKtpYziNa617DzmfGBk= Subject key identifier: 08:E8:F9:92:86:F5:1A:92:07:1A:12:80:90:9C:FD:37:C8:F0:51:77 Authority key identifier: 53:AB:7D:32:5B:35:CB:89:AC:FA:1B:63:C2:2B:EA:9E:19:33:5D:A1 Certificate issuer: /CN=53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1 Certificate serial: 1D9D203043FBBA58B6B156B8FAC5DA8C88D7BD93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.mft Manifest number: 0F Signing time: Tue 12 May 2026 16:41:17 +0000 Manifest this update: Tue 12 May 2026 16:36:17 +0000 Manifest next update: Wed 13 May 2026 17:31:17 +0000 Files and hashes: 1: 3130332e3133332e36382e302f32322d3234203d3e203338333230.roa (hash: sGKE5Fi9WNAXy6MtGSBzO3fsWvU5EdeEKi1Fq0HGEPY=) 2: 53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.crl (hash: 0Lu50cJtcmWBp/J468esch3/GyC61vUrCwNqRyQE2wc=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.crl rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 17:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:9d:20:30:43:fb:ba:58:b6:b1:56:b8:fa:c5:da:8c:88:d7:bd:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1 Validity Not Before: May 12 16:36:17 2026 GMT Not After : May 13 17:31:17 2026 GMT Subject: CN=08E8F99286F51A92071A1280909CFD37C8F05177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:52:e0:32:fc:95:91:f0:9e:d9:31:4c:14:08: 5b:0e:b7:61:99:21:ef:b4:00:1a:2a:4c:17:a1:17: 34:f8:45:d9:fc:5f:64:cc:ee:09:4b:08:ae:4f:78: 12:4e:a8:46:c3:1b:32:8f:47:1f:17:3f:b5:ac:65: 9f:c0:11:fe:95:ed:08:ee:81:4b:36:60:07:59:27: a7:a6:e3:d3:00:85:32:c3:1f:ab:f8:8b:0d:5a:5a: 86:0a:58:b5:df:dc:89:0e:33:a2:7d:c8:e8:c9:a1: a5:6c:b1:d7:d3:d4:5c:87:11:5c:1a:54:46:9e:0a: 12:1e:d6:c0:48:be:aa:fe:30:33:ed:91:7a:bf:55: 57:eb:bf:17:ab:bd:73:f5:a2:27:bb:8f:f6:d7:26: 9e:81:56:c6:3e:8c:51:44:6d:dc:2e:6f:ad:01:eb: 90:ab:19:6a:cb:b4:59:8a:7e:79:85:28:fe:8d:0f: aa:79:56:84:43:46:6d:55:88:48:c7:5a:91:a8:05: ea:bb:0c:b1:f6:d6:55:eb:da:8c:b2:94:c5:54:c5: 5c:d1:6a:69:b2:2c:94:e4:0b:67:0e:2e:59:fc:c4: 72:5b:a5:71:bf:91:47:e3:1e:1e:a6:39:1f:c8:0a: b4:11:d8:c2:b7:12:de:f6:cc:a0:c8:b2:eb:df:b5: 13:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E8:F9:92:86:F5:1A:92:07:1A:12:80:90:9C:FD:37:C8:F0:51:77 X509v3 Authority Key Identifier: keyid:53:AB:7D:32:5B:35:CB:89:AC:FA:1B:63:C2:2B:EA:9E:19:33:5D:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b69fd5a1-6026-4bfa-a671-f2771afe007c/0/53AB7D325B35CB89ACFA1B63C22BEA9E19335DA1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:c7:fe:5d:ef:f9:ba:37:4f:50:34:68:3a:ed:6e:e1:f0:c0: b2:f2:a1:f6:d7:49:f0:c3:e9:85:65:79:9b:57:1a:d8:f8:07: 87:cf:a2:c0:89:68:54:01:47:8a:f1:1e:bc:27:d4:98:ab:de: 45:62:14:31:40:4b:8c:50:9c:1c:f5:91:00:d3:2f:3c:aa:e7: ee:c3:4e:ec:65:61:e0:a9:1e:66:1d:86:c1:9e:9d:3a:33:f7: 6e:dc:9c:60:7e:2c:a8:43:1e:42:92:1b:fd:e7:75:26:76:41: a2:83:dd:08:c1:0e:31:e0:a3:0b:b6:7e:64:97:f4:f5:3b:7b: 8c:f4:6e:6f:a0:45:51:e5:ca:70:83:a0:07:6e:6f:3c:3a:8c: 82:71:a2:0c:40:cd:5b:85:29:e4:b0:ce:51:9e:4f:93:70:e6: 3b:00:18:91:2d:29:52:eb:c1:aa:e2:51:b4:71:c0:0f:c7:9f: d3:18:a7:d4:15:b7:1b:73:4b:ae:a8:47:a5:7f:2d:57:1d:83: 8c:73:07:95:b5:e2:dd:62:ce:f8:ca:79:41:e2:1a:df:09:33: 31:e2:43:c7:45:4c:b3:a0:9b:3f:a0:56:37:91:6a:99:56:d7: b5:6f:62:2e:f5:4e:a7:1d:3c:bf:2e:f5:9e:02:2c:49:d9:f5: e5:85:21:0c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHZ0gMEP7uli2sVa4+sXajIjXvZMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNBQjdEMzI1QjM1Q0I4OUFDRkExQjYzQzIyQkVBOUUx OTMzNURBMTAeFw0yNjA1MTIxNjM2MTdaFw0yNjA1MTMxNzMxMTdaMDMxMTAvBgNV BAMTKDA4RThGOTkyODZGNTFBOTIwNzFBMTI4MDkwOUNGRDM3QzhGMDUxNzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtUuAy/JWR8J7ZMUwUCFsOt2GZ Ie+0ABoqTBehFzT4Rdn8X2TM7glLCK5PeBJOqEbDGzKPRx8XP7WsZZ/AEf6V7Qju gUs2YAdZJ6em49MAhTLDH6v4iw1aWoYKWLXf3IkOM6J9yOjJoaVssdfT1FyHEVwa VEaeChIe1sBIvqr+MDPtkXq/VVfrvxervXP1oie7j/bXJp6BVsY+jFFEbdwub60B 65CrGWrLtFmKfnmFKP6ND6p5VoRDRm1ViEjHWpGoBeq7DLH21lXr2oyylMVUxVzR ammyLJTkC2cOLln8xHJbpXG/kUfjHh6mOR/ICrQR2MK3Et72zKDIsuvftRPnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCOj5kob1GpIHGhKAkJz9N8jwUXcwHwYDVR0j BBgwFoAUU6t9Mls1y4ms+htjwivqnhkzXaEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjY5ZmQ1YTEtNjAyNi00YmZhLWE2NzEtZjI3NzFhZmUwMDdjLzAvNTNBQjdEMzI1 QjM1Q0I4OUFDRkExQjYzQzIyQkVBOUUxOTMzNURBMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81M0FCN0QzMjVCMzVDQjg5QUNGQTFCNjNDMjJCRUE5RTE5MzM1 REExLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjY5ZmQ1YTEtNjAyNi00YmZhLWE2 NzEtZjI3NzFhZmUwMDdjLzAvNTNBQjdEMzI1QjM1Q0I4OUFDRkExQjYzQzIyQkVB OUUxOTMzNURBMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADTH/l3v+bo3T1A0aDrtbuHwwLLyofbXSfDD 6YVleZtXGtj4B4fPosCJaFQBR4rxHrwn1Jir3kViFDFAS4xQnBz1kQDTLzyq5+7D TuxlYeCpHmYdhsGenToz927cnGB+LKhDHkKSG/3ndSZ2QaKD3QjBDjHgowu2fmSX 9PU7e4z0bm+gRVHlynCDoAdubzw6jIJxogxAzVuFKeSwzlGeT5Nw5jsAGJEtKVLr wariUbRxwA/Hn9MYp9QVtxtzS66oR6V/LVcdg4xzB5W14t1izvjKeUHiGt8JMzHi Q8dFTLOgmz+gVjeRaplW17VvYi71TqcdPL8u9Z4CLEnZ9eWFIQw= -----END CERTIFICATE-----Generated at Wed May 13 09:17:35 2026 by rpki-client