$ rpki-client -vvf rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.mft File: CD845730E45E4D531071D97C1EDC23DA378D662F.mft (raw, json) Hash identifier: 4av8V8nI45bBmVUsCn2M8kA+2JTu9on/0cKFy4iRRZU= Subject key identifier: 8D:E6:0A:FD:CF:77:53:6F:4A:F6:0E:BC:22:8C:D6:DA:AE:D2:A8:07 Authority key identifier: CD:84:57:30:E4:5E:4D:53:10:71:D9:7C:1E:DC:23:DA:37:8D:66:2F Certificate issuer: /CN=CD845730E45E4D531071D97C1EDC23DA378D662F Certificate serial: 0A7BB2B542FF4ECD237B3B1D80C06852B3C47ADA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CD845730E45E4D531071D97C1EDC23DA378D662F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.mft Manifest number: 0F Signing time: Tue 12 May 2026 14:09:02 +0000 Manifest this update: Tue 12 May 2026 14:04:02 +0000 Manifest next update: Wed 13 May 2026 15:08:02 +0000 Files and hashes: 1: 3130332e3131342e35332e302f32342d3234203d3e20313337333439.roa (hash: BgiKJc54U9vx0Bz6VAlgbJ7Gti2eL3QTE9xees67wzA=) 2: 3130332e3131342e35322e302f32332d3234203d3e20313337333439.roa (hash: ZyTKIgLUxCGhcIet/CFJoBSXRoiA7e9G+Kr6S5o0mEQ=) 3: CD845730E45E4D531071D97C1EDC23DA378D662F.crl (hash: PDnCh+B+5wXO2MVd2mP+rXo/6mdQFhPzfTmyj0Kp0uw=) 4: 323030313a6466343a663330303a3a2f34382d3438203d3e20313337333439.roa (hash: lb4d9lrnmMWGai0ItqfgLnvKFt7iEuEC2HCE9pUg2nE=) 5: 3130332e3131342e35322e302f32342d3234203d3e20313337333439.roa (hash: qBRAe7C40tWA04dsJPNXkwqtoGUaunwx7S+rfFhu9ho=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.crl rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CD845730E45E4D531071D97C1EDC23DA378D662F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:7b:b2:b5:42:ff:4e:cd:23:7b:3b:1d:80:c0:68:52:b3:c4:7a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CD845730E45E4D531071D97C1EDC23DA378D662F Validity Not Before: May 12 14:04:02 2026 GMT Not After : May 13 15:08:02 2026 GMT Subject: CN=8DE60AFDCF77536F4AF60EBC228CD6DAAED2A807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c6:83:6c:12:88:6a:74:f0:ce:00:80:48:c2: 0f:fc:bc:c8:1b:0b:14:f0:68:8e:d7:eb:0a:a4:81: da:99:86:1f:14:ee:75:d9:48:5f:42:81:df:43:c1: 73:bd:3d:9f:56:4b:73:00:ac:68:2e:34:e7:6c:e9: bc:66:f7:c7:eb:f8:01:67:a8:30:bd:3e:d5:15:ec: ab:20:a0:fd:d4:92:dc:37:2d:25:c7:0a:83:8d:84: 75:25:88:68:b7:d4:e4:4d:94:80:f8:b3:1d:52:59: 87:73:31:8e:0a:0f:96:a5:5c:0c:92:5e:e4:b0:ed: 7e:35:e6:71:be:1f:c7:05:57:a5:c0:f3:42:de:03: 64:f6:90:12:d7:3c:50:2f:37:f9:42:fe:87:a1:1d: a4:b4:27:07:d1:eb:50:92:22:fb:68:c2:97:72:7c: c8:aa:0e:cc:1c:8b:30:99:2f:9b:fc:95:61:c2:8d: af:0c:6b:1f:af:34:ff:3d:76:42:e6:45:0c:7c:04: a0:71:fe:26:7f:d5:99:a9:6a:9a:ae:59:cb:03:7a: 67:61:47:06:e2:cd:66:fc:f9:a7:f8:63:fa:05:1d: c8:f0:13:e6:44:34:2d:ff:56:34:55:b5:86:97:e2: 67:ea:91:e0:b7:37:f2:af:31:89:d6:47:cd:f2:91: 0d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E6:0A:FD:CF:77:53:6F:4A:F6:0E:BC:22:8C:D6:DA:AE:D2:A8:07 X509v3 Authority Key Identifier: keyid:CD:84:57:30:E4:5E:4D:53:10:71:D9:7C:1E:DC:23:DA:37:8D:66:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CD845730E45E4D531071D97C1EDC23DA378D662F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d0962c6e-595a-47c4-aa7c-ef8e77cae642/0/CD845730E45E4D531071D97C1EDC23DA378D662F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:a5:d5:44:cd:b2:38:22:c1:6a:4f:c7:1d:b7:96:11:87:ba: e8:1c:43:6c:fc:fa:21:a4:a6:c6:d8:3e:cf:12:82:f6:7e:08: 16:14:c8:7e:bc:cc:fd:90:b6:85:97:c2:50:46:c5:37:c6:7c: f3:71:82:64:c7:7c:fa:f3:6e:69:35:97:cc:ad:94:b7:f1:6b: 5e:0a:27:10:8b:23:12:b8:ee:02:c0:34:28:14:23:4f:94:3f: 8a:b2:9f:9e:fc:13:1a:11:a6:c5:ab:60:18:f1:3a:df:c2:18: dd:c5:8e:d8:ed:1e:c0:7b:38:0c:8c:53:8b:55:c5:57:98:da: d5:3d:f7:f1:cb:3c:77:d0:21:db:cc:67:3c:03:bb:e7:a2:d5: 67:75:db:9f:3e:b1:41:b2:0d:2f:be:44:a1:e0:17:66:77:fb: 30:9f:91:b2:1c:87:67:38:32:2d:6e:fc:44:11:77:92:71:90: 3e:92:63:5f:0d:97:d1:3f:d3:5c:6e:d4:90:58:25:2f:e3:92: 24:36:55:99:52:44:bc:d0:a4:01:ee:1a:c6:79:92:cb:a8:e2: 52:4b:5f:aa:6f:7b:a9:3c:57:00:a6:7d:b0:9d:1e:c1:46:85: 18:14:d3:52:ff:4b:ee:4c:4c:62:71:ed:49:cd:7d:7b:64:7a: 0f:b0:4f:2a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCnuytUL/Ts0jezsdgMBoUrPEetowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Q4NDU3MzBFNDVFNEQ1MzEwNzFEOTdDMUVEQzIzREEz NzhENjYyRjAeFw0yNjA1MTIxNDA0MDJaFw0yNjA1MTMxNTA4MDJaMDMxMTAvBgNV BAMTKDhERTYwQUZEQ0Y3NzUzNkY0QUY2MEVCQzIyOENENkRBQUVEMkE4MDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvxoNsEohqdPDOAIBIwg/8vMgb CxTwaI7X6wqkgdqZhh8U7nXZSF9Cgd9DwXO9PZ9WS3MArGguNOds6bxm98fr+AFn qDC9PtUV7KsgoP3Uktw3LSXHCoONhHUliGi31ORNlID4sx1SWYdzMY4KD5alXAyS XuSw7X415nG+H8cFV6XA80LeA2T2kBLXPFAvN/lC/oehHaS0JwfR61CSIvtowpdy fMiqDswcizCZL5v8lWHCja8Max+vNP89dkLmRQx8BKBx/iZ/1ZmpapquWcsDemdh RwbizWb8+af4Y/oFHcjwE+ZENC3/VjRVtYaX4mfqkeC3N/KvMYnWR83ykQ0tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjeYK/c93U29K9g68IozW2q7SqAcwHwYDVR0j BBgwFoAUzYRXMOReTVMQcdl8Htwj2jeNZi8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDA5NjJjNmUtNTk1YS00N2M0LWFhN2MtZWY4ZTc3Y2FlNjQyLzAvQ0Q4NDU3MzBF NDVFNEQ1MzEwNzFEOTdDMUVEQzIzREEzNzhENjYyRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRDg0NTczMEU0NUU0RDUzMTA3MUQ5N0MxRURDMjNEQTM3OEQ2 NjJGLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDA5NjJjNmUtNTk1YS00N2M0LWFh N2MtZWY4ZTc3Y2FlNjQyLzAvQ0Q4NDU3MzBFNDVFNEQ1MzEwNzFEOTdDMUVEQzIz REEzNzhENjYyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADCl1UTNsjgiwWpPxx23lhGHuugcQ2z8+iGk psbYPs8SgvZ+CBYUyH68zP2QtoWXwlBGxTfGfPNxgmTHfPrzbmk1l8ytlLfxa14K JxCLIxK47gLANCgUI0+UP4qyn578ExoRpsWrYBjxOt/CGN3FjtjtHsB7OAyMU4tV xVeY2tU99/HLPHfQIdvMZzwDu+ei1Wd1258+sUGyDS++RKHgF2Z3+zCfkbIch2c4 Mi1u/EQRd5JxkD6SY18Nl9E/01xu1JBYJS/jkiQ2VZlSRLzQpAHuGsZ5ksuo4lJL X6pve6k8VwCmfbCdHsFGhRgU01L/S+5MTGJx7UnNfXtkeg+wTyo= -----END CERTIFICATE-----Generated at Wed May 13 01:37:17 2026 by rpki-client