$ rpki-client -vvf rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft File: 7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft (raw, json) Hash identifier: YZzBdqSme70mvoyXMN3V2hNMZZmmoyRYYCEb2h7qu8c= Subject key identifier: F2:F3:0B:C1:3F:9F:CC:50:4E:83:B0:E1:37:66:A5:1E:02:7D:8F:85 Authority key identifier: 7D:2A:02:CF:AA:CD:51:FA:2E:B1:D7:AE:C7:0E:CD:81:04:47:5F:53 Certificate issuer: /CN=7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53 Certificate serial: 57EB0418D052FA2F378C35EE418EF738EC64B139 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft Manifest number: 0F Signing time: Tue 12 May 2026 23:12:03 +0000 Manifest this update: Tue 12 May 2026 23:07:03 +0000 Manifest next update: Thu 14 May 2026 02:38:03 +0000 Files and hashes: 1: 323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa (hash: nFLDPD776WE/L2X/jlMFqVRg6eI7I+qoNOVFN/HkArY=) 2: 3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa (hash: caZbilaazkpxqRWhkCpM9BxKghMhKlcvJxCPrxBN/3Q=) 3: 7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.crl (hash: uaJZ1VDv9uspEWgEjzLM4oDQhWvon2ceh9uX1Y6U0yw=) 4: 3130332e3136342e3139332e302f32342d3234203d3e20313431393339.roa (hash: VOmlgkQp1tgA9VYOLX2CHv85GyyaVqqf5FgzdISInaI=) 5: 3130332e3136342e3139322e302f32342d3234203d3e20313431393339.roa (hash: FuJt3vcY9L09+RmWxid8u8pgisIt7rO49/5ndQMSY6Q=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.crl rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:eb:04:18:d0:52:fa:2f:37:8c:35:ee:41:8e:f7:38:ec:64:b1:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53 Validity Not Before: May 12 23:07:03 2026 GMT Not After : May 14 02:38:03 2026 GMT Subject: CN=F2F30BC13F9FCC504E83B0E13766A51E027D8F85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a7:5b:e6:ae:78:d7:12:8d:20:99:76:d1:3d: 2f:cd:2e:3c:da:fc:0d:99:49:24:50:f8:1a:e2:4e: 97:d9:3c:a5:30:2d:a4:86:43:db:25:05:88:c2:f2: 75:5a:fc:2b:57:f9:ca:72:be:c6:9a:9c:1c:93:c5: 35:51:a8:89:f0:0a:bd:d2:e7:5b:7f:fb:bb:e4:35: 45:b9:ba:c9:77:cf:26:77:44:55:0e:8d:0b:61:a6: 56:01:16:50:65:e6:e6:22:c6:7a:09:eb:d7:7b:b1: c2:ca:e1:a5:b2:bd:ed:e2:39:0e:93:5d:fb:5a:c9: 5b:b5:eb:28:5e:a0:56:0b:60:eb:6c:6e:86:25:75: 3a:4f:e9:cc:7e:e8:ca:03:58:77:db:e2:d9:5c:c1: 32:22:ca:63:2f:c9:22:c3:96:87:67:17:4a:ed:51: 96:94:10:3b:ec:6c:28:3f:6e:3f:3d:2f:0e:cd:de: d6:92:eb:c1:b6:fa:0c:53:17:99:aa:77:eb:ec:9d: 32:2e:c3:64:ff:66:af:a7:20:cb:f7:46:ce:f0:d7: 84:2a:07:39:b5:2b:09:47:6f:a8:eb:c2:3f:37:74: ad:06:de:4e:15:02:86:0f:6c:53:df:aa:f9:f4:a1: eb:38:6b:d0:12:93:ec:0b:13:7f:f5:a2:df:3c:f9: c3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F3:0B:C1:3F:9F:CC:50:4E:83:B0:E1:37:66:A5:1E:02:7D:8F:85 X509v3 Authority Key Identifier: keyid:7D:2A:02:CF:AA:CD:51:FA:2E:B1:D7:AE:C7:0E:CD:81:04:47:5F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:9c:76:37:66:6b:84:23:76:67:cb:c6:2b:86:a0:b8:11:d6: ec:09:07:01:95:91:b0:a8:47:f0:7f:92:86:59:15:d1:3a:fd: f6:71:0e:dc:45:52:07:df:04:e0:80:37:ee:ad:db:b5:a0:b7: 48:d3:4a:86:24:d2:b4:b9:b0:a1:96:ec:a5:85:ba:f8:c2:ff: b9:7d:57:96:bd:37:41:4f:67:bf:f1:6e:09:18:df:f8:0d:5e: 48:e0:e2:91:1a:5d:b1:56:b5:a9:8d:32:fe:e5:54:d2:ad:da: ba:1a:55:16:77:bc:ae:b1:ce:18:3e:50:76:13:eb:6e:9f:e2: ec:fd:ff:e4:0b:94:0b:5a:7f:c3:db:f1:0b:c8:c6:b3:68:18: 1b:67:15:61:00:79:03:4b:56:3f:e0:b6:5b:0b:96:b2:0c:4f: 43:69:7a:f6:a0:4f:18:63:9b:0d:f7:bb:82:84:14:80:d3:d4: 26:13:ba:e2:6a:31:b5:d7:9b:ae:fe:8a:64:ef:02:1c:fc:83: b1:22:79:4e:7d:12:c5:ca:96:16:f5:4c:24:ca:a5:ea:4b:1c: 3f:2b:f1:6c:5c:58:47:fb:b8:cc:e7:f8:e2:0f:b0:f8:f7:9c: 9c:1d:f4:e1:79:0c:c4:d0:9a:fc:16:ef:d5:39:62:7a:66:c2: a9:6d:28:8a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV+sEGNBS+i83jDXuQY73OOxksTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QyQTAyQ0ZBQUNENTFGQTJFQjFEN0FFQzcwRUNEODEw NDQ3NUY1MzAeFw0yNjA1MTIyMzA3MDNaFw0yNjA1MTQwMjM4MDNaMDMxMTAvBgNV BAMTKEYyRjMwQkMxM0Y5RkNDNTA0RTgzQjBFMTM3NjZBNTFFMDI3RDhGODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNp1vmrnjXEo0gmXbRPS/NLjza /A2ZSSRQ+BriTpfZPKUwLaSGQ9slBYjC8nVa/CtX+cpyvsaanByTxTVRqInwCr3S 51t/+7vkNUW5usl3zyZ3RFUOjQthplYBFlBl5uYixnoJ69d7scLK4aWyve3iOQ6T XftayVu16yheoFYLYOtsboYldTpP6cx+6MoDWHfb4tlcwTIiymMvySLDlodnF0rt UZaUEDvsbCg/bj89Lw7N3taS68G2+gxTF5mqd+vsnTIuw2T/Zq+nIMv3Rs7w14Qq Bzm1KwlHb6jrwj83dK0G3k4VAoYPbFPfqvn0oes4a9ASk+wLE3/1ot88+cMBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8vMLwT+fzFBOg7DhN2alHgJ9j4UwHwYDVR0j BBgwFoAUfSoCz6rNUfousdeuxw7NgQRHX1MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmJhNDhlNGUtZmM5NS00YWNmLWJlYWMtZDkzYTBmNjk0NDIxLzAvN0QyQTAyQ0ZB QUNENTFGQTJFQjFEN0FFQzcwRUNEODEwNDQ3NUY1My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RDJBMDJDRkFBQ0Q1MUZBMkVCMUQ3QUVDNzBFQ0Q4MTA0NDc1 RjUzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZmJhNDhlNGUtZmM5NS00YWNmLWJl YWMtZDkzYTBmNjk0NDIxLzAvN0QyQTAyQ0ZBQUNENTFGQTJFQjFEN0FFQzcwRUNE ODEwNDQ3NUY1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIicdjdma4QjdmfLxiuGoLgR1uwJBwGVkbCo R/B/koZZFdE6/fZxDtxFUgffBOCAN+6t27Wgt0jTSoYk0rS5sKGW7KWFuvjC/7l9 V5a9N0FPZ7/xbgkY3/gNXkjg4pEaXbFWtamNMv7lVNKt2roaVRZ3vK6xzhg+UHYT 626f4uz9/+QLlAtaf8Pb8QvIxrNoGBtnFWEAeQNLVj/gtlsLlrIMT0NpevagTxhj mw33u4KEFIDT1CYTuuJqMbXXm67+imTvAhz8g7EieU59EsXKlhb1TCTKpepLHD8r 8WxcWEf7uMzn+OIPsPj3nJwd9OF5DMTQmvwW79U5YnpmwqltKIo= -----END CERTIFICATE-----Generated at Wed May 13 02:19:03 2026 by rpki-client