$ rpki-client -vvf rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft File: 228D8D937BBC58B186163CE4DD0333EF171136B5.mft (raw, json) Hash identifier: L5dS9GxzjXyOYcUi4XlSFeVdWO5AUse432922VD565o= Subject key identifier: E1:79:62:93:83:C5:98:88:B7:16:66:34:5E:A1:DC:13:3E:57:7F:FD Authority key identifier: 22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 Certificate issuer: /CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Certificate serial: 42A980622263D3153A5E0EF0DD97C59323CEDBEB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft Manifest number: 0E Signing time: Tue 12 May 2026 17:01:42 +0000 Manifest this update: Tue 12 May 2026 16:56:42 +0000 Manifest next update: Wed 13 May 2026 18:14:42 +0000 Files and hashes: 1: 34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa (hash: Dk+nSXFZDNacuokslAhQOKnR2rRHLun2ihG3BWOPCgU=) 2: 34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa (hash: JM/02KXvppUFA6M2lfoMyS0PaD1KXTG0P2tE2Kswrq4=) 3: 34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa (hash: MTpdy0CYG7SIZe6cOf6a6b9EOLMRkXO/tTUBIEJ2xwQ=) 4: 228D8D937BBC58B186163CE4DD0333EF171136B5.crl (hash: syGU4CZeYoD1xihttCy6v7QfIaXAgFitEljTNWKOw6o=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.crl rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a9:80:62:22:63:d3:15:3a:5e:0e:f0:dd:97:c5:93:23:ce:db:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Validity Not Before: May 12 16:56:42 2026 GMT Not After : May 13 18:14:42 2026 GMT Subject: CN=E179629383C59888B71666345EA1DC133E577FFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:84:5e:af:15:c2:13:ca:1e:96:3f:a6:80:1a: 91:22:14:f8:28:3d:bd:4b:91:ea:ee:bf:c8:04:ee: 91:80:bf:69:4a:79:d8:60:8e:a9:68:44:8b:78:26: fd:33:62:66:c0:80:7b:e6:ed:ce:cd:f9:ec:ae:d8: 21:7d:08:01:0b:5b:fd:c8:3c:c7:02:d6:3c:d0:1d: d4:bd:8d:3c:8b:22:0d:b9:e3:ba:0d:86:3b:13:75: 3e:77:ba:68:1f:6a:af:c1:b3:62:7d:fc:a3:43:53: 5d:9e:9c:c2:1a:67:6f:51:70:15:d6:e4:50:31:22: 95:e4:0f:91:07:49:56:81:10:f2:c4:ea:a0:03:6d: 40:e4:f2:f7:75:bb:01:03:cc:b6:4c:f4:2f:7c:0a: 6a:17:44:34:e8:81:b8:2d:4d:0b:df:6e:ad:a2:0d: 0f:65:5d:4c:fb:86:fe:ac:e0:9c:2f:b7:95:32:25: e7:4c:f5:84:29:fe:98:1e:c8:e6:85:fc:34:97:11: 49:65:47:06:a9:a1:11:af:c1:d9:16:3a:1e:a2:b3: 12:9f:8a:51:08:a3:3d:90:22:24:f2:ea:e8:76:cf: 3d:a4:7c:76:9d:a7:2b:4c:26:8d:ec:7d:9a:07:c5: cb:25:70:ed:b8:db:95:1d:ac:59:7f:b7:72:ca:c3: e7:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:79:62:93:83:C5:98:88:B7:16:66:34:5E:A1:DC:13:3E:57:7F:FD X509v3 Authority Key Identifier: keyid:22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:4a:34:2a:22:44:29:77:f4:b8:8e:ec:5b:1a:8b:80:c9:9b: 9b:25:f8:9c:3e:62:a5:89:7b:d6:e2:29:4c:34:1e:a4:bb:c3: 90:a4:82:74:60:70:fa:a1:69:b2:20:32:2b:63:a7:d4:21:42: 28:1b:7c:68:7f:9d:4a:d1:9e:73:8c:b4:f5:1b:7d:7a:fd:82: f7:0f:36:a8:af:37:7f:bc:96:d5:4e:91:b2:27:fe:52:70:78: 25:80:ac:db:11:8d:c9:02:a8:2b:b6:84:c5:98:e7:62:74:27: d2:a0:58:80:3c:51:5f:70:84:13:18:7e:70:98:45:27:31:9a: b3:60:00:28:0d:9e:a6:88:c1:df:84:7f:d5:0c:a8:f8:98:dc: a1:a9:8a:69:58:85:eb:f7:e3:5a:a3:3c:ce:2e:86:8d:5c:4c: 56:62:33:a6:dc:b7:73:05:43:70:31:66:e9:64:c9:b1:ce:6d: 44:06:57:8f:48:18:0a:c2:16:4f:47:85:f8:ea:38:6b:b7:f0: b9:ca:ed:a0:b9:33:05:7d:c6:82:1f:92:ca:f3:65:7f:a4:ac: 86:44:5d:5a:0f:63:1a:65:46:94:5d:c1:f7:33:d3:c7:df:33: e3:1b:fe:ab:28:64:63:1b:cc:bf:35:de:74:fa:e3:69:d5:e5: 9a:0e:2c:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQqmAYiJj0xU6Xg7w3ZfFkyPO2+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RDhEOTM3QkJDNThCMTg2MTYzQ0U0REQwMzMzRUYx NzExMzZCNTAeFw0yNjA1MTIxNjU2NDJaFw0yNjA1MTMxODE0NDJaMDMxMTAvBgNV BAMTKEUxNzk2MjkzODNDNTk4ODhCNzE2NjYzNDVFQTFEQzEzM0U1NzdGRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKhF6vFcITyh6WP6aAGpEiFPgo Pb1Lkeruv8gE7pGAv2lKedhgjqloRIt4Jv0zYmbAgHvm7c7N+eyu2CF9CAELW/3I PMcC1jzQHdS9jTyLIg2547oNhjsTdT53umgfaq/Bs2J9/KNDU12enMIaZ29RcBXW 5FAxIpXkD5EHSVaBEPLE6qADbUDk8vd1uwEDzLZM9C98CmoXRDTogbgtTQvfbq2i DQ9lXUz7hv6s4Jwvt5UyJedM9YQp/pgeyOaF/DSXEUllRwapoRGvwdkWOh6isxKf ilEIoz2QIiTy6uh2zz2kfHadpytMJo3sfZoHxcslcO2425UdrFl/t3LKw+f5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4Xlik4PFmIi3FmY0XqHcEz5Xf/0wHwYDVR0j BBgwFoAUIo2Nk3u8WLGGFjzk3QMz7xcRNrUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDliODk5YWMtNDg3MC00ZTI4LThlNGUtMmMyMzc1MmE0YTYwLzAvMjI4RDhEOTM3 QkJDNThCMTg2MTYzQ0U0REQwMzMzRUYxNzExMzZCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMjhEOEQ5MzdCQkM1OEIxODYxNjNDRTRERDAzMzNFRjE3MTEz NkI1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDliODk5YWMtNDg3MC00ZTI4LThl NGUtMmMyMzc1MmE0YTYwLzAvMjI4RDhEOTM3QkJDNThCMTg2MTYzQ0U0REQwMzMz RUYxNzExMzZCNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG1KNCoiRCl39LiO7Fsai4DJm5sl+Jw+YqWJ e9biKUw0HqS7w5CkgnRgcPqhabIgMitjp9QhQigbfGh/nUrRnnOMtPUbfXr9gvcP NqivN3+8ltVOkbIn/lJweCWArNsRjckCqCu2hMWY52J0J9KgWIA8UV9whBMYfnCY RScxmrNgACgNnqaIwd+Ef9UMqPiY3KGpimlYhev341qjPM4uho1cTFZiM6bct3MF Q3AxZulkybHObUQGV49IGArCFk9HhfjqOGu38LnK7aC5MwV9xoIfksrzZX+krIZE XVoPYxplRpRdwfcz08ffM+Mb/qsoZGMbzL813nT642nV5ZoOLJM= -----END CERTIFICATE-----Generated at Wed May 13 00:21:47 2026 by rpki-client