$ rpki-client -vvf rpki-rsync.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.mft File: 2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.mft (raw, json) Hash identifier: tv+c0vt77qDZDfqKszxsKVY1FXrdW9RKVAdopDZSO+Y= Subject key identifier: 13:98:8C:A7:0E:DD:0B:9A:A7:D5:FA:9A:3A:FF:6A:F0:2B:79:BA:A5 Authority key identifier: 2F:F9:D5:2A:DC:77:7F:A3:CE:51:AA:F9:44:8B:87:76:DC:B4:33:B3 Certificate issuer: /CN=2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3 Certificate serial: 5508777056294ADAE028B50F99BE89C89D954CC1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.mft Manifest number: 0F Signing time: Tue 12 May 2026 19:56:25 +0000 Manifest this update: Tue 12 May 2026 19:51:25 +0000 Manifest next update: Wed 13 May 2026 20:32:25 +0000 Files and hashes: 1: 3130332e3137382e38342e302f32342d3234203d3e20313439333138.roa (hash: Fc1cIIy7yp6fwFNt9JFBozT8wGm732U+MIRuBDuRJKc=) 2: 3130332e3137382e38352e302f32342d3234203d3e20313439333138.roa (hash: ba9T7QeA28DMOyzLlfoljNenw5738a58LQmu3hf+TMU=) 3: 2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.crl (hash: xuttmV/U+zZNrOxDvgkbQcxDMxiMvw13iIV0bDDjxd8=) 4: 3130332e3137382e38342e302f32332d3233203d3e20313439333138.roa (hash: uD4zXPlmJIJvDYKeBCRvwCSXSW9r9c2Pd73kp0tq76c=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.crl rsync://rpki-rsync.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:08:77:70:56:29:4a:da:e0:28:b5:0f:99:be:89:c8:9d:95:4c:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3 Validity Not Before: May 12 19:51:25 2026 GMT Not After : May 13 20:32:25 2026 GMT Subject: CN=13988CA70EDD0B9AA7D5FA9A3AFF6AF02B79BAA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e9:a3:5c:b8:fd:96:1e:c6:9b:4d:f4:70:1f: 54:cd:05:64:0f:a6:7a:80:21:fb:49:67:63:f2:9c: 32:e4:67:2b:5f:c4:28:89:5b:c1:16:d1:46:83:84: 7e:fa:f4:40:eb:a1:94:e1:b3:ea:4b:46:8b:d1:7a: ea:e8:5e:bf:1d:9a:60:cc:32:e9:b0:bc:93:9d:6a: 7d:24:04:ca:94:b4:7f:78:be:45:0c:df:d9:a5:76: 6b:af:a3:02:52:35:41:e5:43:86:a7:50:4c:ce:55: 8f:13:f3:6b:ec:79:92:fd:93:af:64:e0:78:11:a5: 8d:94:00:59:15:18:ff:35:c0:f6:a1:81:8c:04:14: b7:c3:52:2b:c4:7c:01:fc:54:96:01:95:cb:97:53: ff:00:67:00:90:3e:3d:6e:0b:70:fd:c6:24:a1:78: 21:44:e1:e5:0e:1f:61:a1:e4:bf:98:78:06:5e:8b: c7:e6:a3:6b:8a:81:50:06:38:ca:ff:1b:d8:9b:3a: 95:7d:97:a2:97:cb:e5:4e:1e:99:67:a0:dc:8e:dc: c1:19:49:19:75:c9:51:2c:45:48:ba:72:2d:87:89: d8:9d:42:20:21:5a:ef:c8:61:dc:02:ad:9c:f5:7b: c4:85:c0:b1:91:f2:d0:70:75:2c:79:42:33:84:4c: e0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:98:8C:A7:0E:DD:0B:9A:A7:D5:FA:9A:3A:FF:6A:F0:2B:79:BA:A5 X509v3 Authority Key Identifier: keyid:2F:F9:D5:2A:DC:77:7F:A3:CE:51:AA:F9:44:8B:87:76:DC:B4:33:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cc075ef6-a251-47dd-8dda-cadff497a7e5/0/2FF9D52ADC777FA3CE51AAF9448B8776DCB433B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:5e:5f:97:22:bc:09:28:18:65:60:c0:5f:67:98:74:91:9b: b2:f6:23:20:f1:d2:fd:94:03:60:54:ce:1a:1c:f6:83:72:d0: f5:39:71:96:a6:f5:7e:f9:37:25:48:22:b9:ef:b8:77:94:07: a9:a1:61:42:17:1e:27:b4:51:1e:83:85:ff:4d:dd:14:09:6e: c4:57:7c:42:4e:88:c4:e2:07:e7:ac:af:35:34:ea:fb:76:aa: 60:a1:63:68:b1:4d:2b:dc:de:4d:3e:83:df:2e:45:34:c7:5a: 46:42:b9:15:75:2c:4f:29:9c:df:3a:18:c7:61:9a:e2:21:1a: d0:fa:4a:d7:11:f9:12:a7:be:5b:81:3c:5e:c4:ae:86:c9:14: ea:dd:d8:f0:1b:a6:36:b5:a9:4d:60:84:23:29:d0:f6:53:f0: 66:f7:2e:ea:39:f8:63:16:99:87:01:5c:fe:bd:af:38:be:7b: 77:0b:4f:44:09:c9:c4:62:09:cb:96:49:94:e3:af:78:40:b7: 9f:f9:2f:92:6d:80:2f:0b:fa:d6:6b:db:6b:ad:77:8a:a3:e6: 8e:e3:dc:41:e5:fa:9c:27:59:e3:0f:3c:27:99:b9:3b:45:6d: 35:53:5c:d0:0b:95:ff:07:5e:5b:7e:d2:31:7b:c6:03:97:78: 21:d2:c5:d4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVQh3cFYpStrgKLUPmb6JyJ2VTMEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZGOUQ1MkFEQzc3N0ZBM0NFNTFBQUY5NDQ4Qjg3NzZE Q0I0MzNCMzAeFw0yNjA1MTIxOTUxMjVaFw0yNjA1MTMyMDMyMjVaMDMxMTAvBgNV BAMTKDEzOTg4Q0E3MEVERDBCOUFBN0Q1RkE5QTNBRkY2QUYwMkI3OUJBQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm6aNcuP2WHsabTfRwH1TNBWQP pnqAIftJZ2PynDLkZytfxCiJW8EW0UaDhH769EDroZThs+pLRovReuroXr8dmmDM MumwvJOdan0kBMqUtH94vkUM39mldmuvowJSNUHlQ4anUEzOVY8T82vseZL9k69k 4HgRpY2UAFkVGP81wPahgYwEFLfDUivEfAH8VJYBlcuXU/8AZwCQPj1uC3D9xiSh eCFE4eUOH2Gh5L+YeAZei8fmo2uKgVAGOMr/G9ibOpV9l6KXy+VOHplnoNyO3MEZ SRl1yVEsRUi6ci2HididQiAhWu/IYdwCrZz1e8SFwLGR8tBwdSx5QjOETOAfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUE5iMpw7dC5qn1fqaOv9q8Ct5uqUwHwYDVR0j BBgwFoAUL/nVKtx3f6POUar5RIuHdty0M7MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2MwNzVlZjYtYTI1MS00N2RkLThkZGEtY2FkZmY0OTdhN2U1LzAvMkZGOUQ1MkFE Qzc3N0ZBM0NFNTFBQUY5NDQ4Qjg3NzZEQ0I0MzNCMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRkY5RDUyQURDNzc3RkEzQ0U1MUFBRjk0NDhCODc3NkRDQjQz M0IzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vY2MwNzVlZjYtYTI1MS00N2RkLThk ZGEtY2FkZmY0OTdhN2U1LzAvMkZGOUQ1MkFEQzc3N0ZBM0NFNTFBQUY5NDQ4Qjg3 NzZEQ0I0MzNCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGVeX5civAkoGGVgwF9nmHSRm7L2IyDx0v2U A2BUzhoc9oNy0PU5cZam9X75NyVIIrnvuHeUB6mhYUIXHie0UR6Dhf9N3RQJbsRX fEJOiMTiB+esrzU06vt2qmChY2ixTSvc3k0+g98uRTTHWkZCuRV1LE8pnN86GMdh muIhGtD6StcR+RKnvluBPF7ErobJFOrd2PAbpja1qU1ghCMp0PZT8Gb3Luo5+GMW mYcBXP69rzi+e3cLT0QJycRiCcuWSZTjr3hAt5/5L5JtgC8L+tZr22utd4qj5o7j 3EHl+pwnWeMPPCeZuTtFbTVTXNALlf8HXlt+0jF7xgOXeCHSxdQ= -----END CERTIFICATE-----Generated at Tue May 12 23:20:37 2026 by rpki-client