$ rpki-client -vvf rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft File: 68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft (raw, json) Hash identifier: Kl4M2q65WFFbBYbEpwIxzszS48jyTpP6BxUaESJeM/U= Subject key identifier: 0D:27:CA:77:74:21:C4:4B:91:0E:69:68:1B:8D:6C:A8:09:A1:A3:22 Authority key identifier: 68:B5:03:53:22:FF:DB:9C:8D:6E:EC:10:B5:D2:F1:A7:7D:FF:70:CF Certificate issuer: /CN=68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF Certificate serial: 73EA7F2A2BE7BF24548DAC01CCD238C26EAD7AC0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft Manifest number: 0E Signing time: Tue 12 May 2026 08:19:47 +0000 Manifest this update: Tue 12 May 2026 08:14:47 +0000 Manifest next update: Wed 13 May 2026 10:57:47 +0000 Files and hashes: 1: 3135372e31302e36332e302f32342d3234203d3e20313532303835.roa (hash: yL9CLlILHqLbQJKBIi0ABV5wanAH6ejKvh6ick9wGpY=) 2: 68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.crl (hash: K0qT4sxkcP2aDT7VwVG/7/ApK3oo5aXaWx4OBHRIUUQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.crl rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 07:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ea:7f:2a:2b:e7:bf:24:54:8d:ac:01:cc:d2:38:c2:6e:ad:7a:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF Validity Not Before: May 12 08:14:47 2026 GMT Not After : May 13 10:57:47 2026 GMT Subject: CN=0D27CA777421C44B910E69681B8D6CA809A1A322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0e:26:af:20:a4:64:45:73:fc:3c:4b:a2:c6: 42:e8:b9:80:a2:a5:47:47:aa:7b:56:92:a7:1e:73: 2e:f7:e1:1d:78:44:ff:aa:2e:5b:d0:48:3a:0f:6f: 24:00:4c:a8:b5:ae:1a:ef:ca:4e:0f:c2:6f:b8:b1: b9:1e:c3:0d:a9:64:4e:9d:5a:e1:8d:ef:d9:a1:a4: 70:8f:f2:2c:0f:a1:82:22:0a:73:38:02:49:74:40: 29:ca:22:07:f7:a5:ce:91:89:10:05:7b:00:47:8d: 08:a7:a3:a3:f0:f2:f6:2b:4d:9c:57:ab:8c:91:41: 05:16:15:97:8a:6d:d8:d8:d8:5c:9d:66:8b:f3:bb: be:07:57:8b:64:d0:32:88:70:fa:c6:69:e4:3b:a8: b4:df:b2:f5:a7:8d:e4:50:ec:c4:16:53:d8:5e:8f: 05:af:d0:48:71:3e:35:66:44:8e:b5:23:fe:71:ca: 70:0e:a3:fb:a6:98:81:94:c7:00:a0:e1:35:62:d9: 6a:17:ec:0a:a4:ea:e6:6a:05:04:12:c2:df:e9:25: 97:64:46:88:09:0e:30:56:cd:8c:52:65:4b:e8:99: 29:48:b2:f8:e4:28:22:a3:db:35:67:c1:51:a6:31: ce:ee:85:23:a2:be:bc:de:42:63:fc:49:c5:7c:7d: 83:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:27:CA:77:74:21:C4:4B:91:0E:69:68:1B:8D:6C:A8:09:A1:A3:22 X509v3 Authority Key Identifier: keyid:68:B5:03:53:22:FF:DB:9C:8D:6E:EC:10:B5:D2:F1:A7:7D:FF:70:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:7f:bd:48:79:78:bb:37:03:fe:ae:0d:b2:63:cb:ff:71:35: 7e:be:1f:39:b3:2e:00:7e:60:39:4b:af:1a:f1:14:01:64:42: d7:08:92:64:72:07:a3:1f:e2:d9:7d:81:5e:b3:6a:cd:ed:8b: 1d:7c:87:8a:29:ab:c6:fe:29:5c:d4:79:e2:aa:df:11:39:f5: 2a:8b:24:27:25:73:dd:00:cc:c8:39:1b:aa:5b:5c:ad:da:e3: d2:2b:2d:61:25:10:82:a2:ba:5d:37:85:ed:b1:20:e1:22:3d: 0f:2c:26:39:93:a5:73:56:d0:4c:a6:49:19:ac:53:70:34:9d: 38:04:0b:bd:48:72:af:68:f6:38:e4:50:01:ce:7c:11:52:d6: b5:fd:2d:48:07:6a:a8:b2:42:bb:68:da:29:76:37:52:13:bf: e6:f4:46:3a:b7:65:a8:bc:55:92:0a:b4:fc:f6:be:a9:9a:90: d8:e1:6f:41:ee:e5:30:b2:df:fd:2a:42:98:dc:3b:30:2a:01: c7:d9:28:ec:ce:c3:33:a9:29:cc:5f:48:0e:92:bf:bb:0d:ff: 47:ff:0d:cf:e6:42:04:7c:d6:6d:e4:4e:13:dc:d5:8f:32:05: 17:4d:01:04:c4:b8:8e:a1:e9:ee:ad:ad:b2:b2:67:1a:3e:5a: 7b:75:ed:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUc+p/KivnvyRUjawBzNI4wm6tesAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhCNTAzNTMyMkZGREI5QzhENkVFQzEwQjVEMkYxQTc3 REZGNzBDRjAeFw0yNjA1MTIwODE0NDdaFw0yNjA1MTMxMDU3NDdaMDMxMTAvBgNV BAMTKDBEMjdDQTc3NzQyMUM0NEI5MTBFNjk2ODFCOEQ2Q0E4MDlBMUEzMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyDiavIKRkRXP8PEuixkLouYCi pUdHqntWkqcecy734R14RP+qLlvQSDoPbyQATKi1rhrvyk4Pwm+4sbkeww2pZE6d WuGN79mhpHCP8iwPoYIiCnM4Akl0QCnKIgf3pc6RiRAFewBHjQino6Pw8vYrTZxX q4yRQQUWFZeKbdjY2FydZovzu74HV4tk0DKIcPrGaeQ7qLTfsvWnjeRQ7MQWU9he jwWv0EhxPjVmRI61I/5xynAOo/ummIGUxwCg4TVi2WoX7Aqk6uZqBQQSwt/pJZdk RogJDjBWzYxSZUvomSlIsvjkKCKj2zVnwVGmMc7uhSOivrzeQmP8ScV8fYNBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDSfKd3QhxEuRDmloG41sqAmhoyIwHwYDVR0j BBgwFoAUaLUDUyL/25yNbuwQtdLxp33/cM8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmQzYTJmZGYtYmNiYS00NzU3LWIzNjYtZTFhMGFkMmQzNzRhLzAvNjhCNTAzNTMy MkZGREI5QzhENkVFQzEwQjVEMkYxQTc3REZGNzBDRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82OEI1MDM1MzIyRkZEQjlDOEQ2RUVDMTBCNUQyRjFBNzdERkY3 MENGLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZmQzYTJmZGYtYmNiYS00NzU3LWIz NjYtZTFhMGFkMmQzNzRhLzAvNjhCNTAzNTMyMkZGREI5QzhENkVFQzEwQjVEMkYx QTc3REZGNzBDRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG9/vUh5eLs3A/6uDbJjy/9xNX6+HzmzLgB+ YDlLrxrxFAFkQtcIkmRyB6Mf4tl9gV6zas3tix18h4opq8b+KVzUeeKq3xE59SqL JCclc90AzMg5G6pbXK3a49IrLWElEIKiul03he2xIOEiPQ8sJjmTpXNW0EymSRms U3A0nTgEC71Icq9o9jjkUAHOfBFS1rX9LUgHaqiyQrto2il2N1ITv+b0Rjq3Zai8 VZIKtPz2vqmakNjhb0Hu5TCy3/0qQpjcOzAqAcfZKOzOwzOpKcxfSA6Sv7sN/0f/ Dc/mQgR81m3kThPc1Y8yBRdNAQTEuI6h6e6trbKyZxo+Wnt17dc= -----END CERTIFICATE-----Generated at Tue May 12 23:00:00 2026 by rpki-client