$ rpki-client -vvf rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft File: D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft (raw, json) Hash identifier: sMaIijh+Xc20Tfs5Ms6dmFbz71nR77V8quu0lYLnLnA= Subject key identifier: 8A:1B:9E:67:37:13:C0:B6:15:A3:B8:72:D8:D9:4F:14:09:B3:E3:3F Authority key identifier: D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B Certificate issuer: /CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Certificate serial: 6563FA46D591AC491DE39A44C9C79A1F3DCC55E1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft Manifest number: 14 Signing time: Sat 16 May 2026 18:18:13 +0000 Manifest this update: Sat 16 May 2026 18:13:13 +0000 Manifest next update: Sun 17 May 2026 19:54:13 +0000 Files and hashes: 1: D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl (hash: rHfq0IiEUx8C7cyNB+Y+MD+CpxmV5H7rH4NX5/p8WW0=) 2: 3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa (hash: Q5OWZuOjXammbPGdiQX0OH3xtPw9qN8aeQNvsFX0Ohg=) 3: 323430373a373234303a3a2f33322d3438203d3e203538383230.roa (hash: pbfRu1u/17aE+5jbLOXSjK5kSHLY3NJFYSy/GgweGtc=) 4: 323430373a373234303a3a2f33322d3332203d3e203538383230.roa (hash: XbL3x6HL60HenYCDQv+H+1fWOEpLqL6GUYrIDXhN5Ec=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 19:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:63:fa:46:d5:91:ac:49:1d:e3:9a:44:c9:c7:9a:1f:3d:cc:55:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B Validity Not Before: May 16 18:13:13 2026 GMT Not After : May 17 19:54:13 2026 GMT Subject: CN=8A1B9E673713C0B615A3B872D8D94F1409B3E33F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0c:6b:3c:b4:2c:c0:ac:9f:4b:f9:6c:55:1c: 5a:7e:cb:8b:0d:1e:67:2e:6d:84:fe:96:b5:68:c1: 56:a6:24:fa:70:37:b5:46:05:e1:5b:2b:c8:14:69: fe:d2:a4:37:f5:09:e3:68:ae:13:dd:a4:cd:27:9c: 7e:6d:6e:a2:ae:f2:e3:bb:20:54:eb:41:a7:3a:08: ec:74:cd:90:21:fd:3a:c8:5f:4d:5b:b2:25:17:3a: 0a:51:a5:bb:49:31:87:e4:89:51:69:2b:8b:de:ed: 0e:0d:bb:9a:d3:b8:9e:a6:eb:4a:b4:f5:c1:51:87: 31:36:92:94:20:f5:5a:6a:48:ab:d4:86:a4:96:eb: 56:e6:fb:92:1c:08:1b:50:4f:29:ce:dd:88:81:96: 9e:41:a2:09:44:a4:6e:ce:27:b4:86:99:e3:0e:85: d4:75:84:11:f7:98:77:09:7a:32:f2:f7:7a:aa:ac: 10:73:63:64:e6:15:bb:72:87:d7:b6:05:ba:9a:c5: 7c:d0:2f:47:11:50:e9:2e:b8:5e:f2:e8:8d:58:83: 16:55:4f:d6:da:04:58:ac:8f:ec:f2:c9:0f:e6:09: 3c:3a:b5:0f:14:77:b0:e5:99:01:f2:47:ba:5c:80: 06:33:b5:7e:cf:49:7d:80:bc:7f:7d:35:08:95:f8: f3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1B:9E:67:37:13:C0:B6:15:A3:B8:72:D8:D9:4F:14:09:B3:E3:3F X509v3 Authority Key Identifier: keyid:D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:56:9e:57:a9:67:6b:ba:ed:7c:2e:34:32:12:2a:de:71:5b: 24:74:70:ba:07:22:21:2c:6d:4a:28:53:1c:8e:c2:f2:ab:4e: 2b:7f:1a:53:3d:18:44:e2:d2:eb:9e:64:6f:c5:54:13:4f:be: 19:3b:00:71:93:99:f2:4b:84:55:74:7a:0e:45:ec:70:4b:60: 52:fb:02:bc:9e:62:30:2c:35:f0:54:ce:b9:03:43:4a:33:43: 1b:be:a9:82:60:99:15:bc:fe:a0:a8:a4:99:85:c9:53:2b:01: 3a:ad:3b:1a:7c:a9:e0:f0:b1:5e:8c:3a:8e:27:df:21:1f:de: fc:25:c5:25:0f:66:5d:c6:62:64:12:9d:8c:43:a0:1d:67:65: e6:62:92:ab:e5:85:bd:80:34:ad:71:7a:56:b1:a5:51:b2:61: 3a:8c:6f:ca:d9:32:ca:d2:bc:0d:70:65:aa:40:18:d4:e8:7d: 99:d9:85:73:53:d2:f2:7c:7e:78:3e:f2:d4:a3:2e:89:9f:c2: 98:47:96:79:43:36:f8:3f:22:cb:12:a5:96:03:1e:59:a9:72: cb:f2:85:7b:2e:c2:74:22:97:1b:76:19:ff:05:64:3b:a7:b1: 09:6a:2c:4b:f4:7c:47:f6:e8:60:b5:22:6a:8e:a1:b0:71:52: 79:35:bc:cb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZWP6RtWRrEkd45pEyceaHz3MVeEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDdCM0QyOUExQzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4 NTIzRTE0QjAeFw0yNjA1MTYxODEzMTNaFw0yNjA1MTcxOTU0MTNaMDMxMTAvBgNV BAMTKDhBMUI5RTY3MzcxM0MwQjYxNUEzQjg3MkQ4RDk0RjE0MDlCM0UzM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1DGs8tCzArJ9L+WxVHFp+y4sN HmcubYT+lrVowVamJPpwN7VGBeFbK8gUaf7SpDf1CeNorhPdpM0nnH5tbqKu8uO7 IFTrQac6COx0zZAh/TrIX01bsiUXOgpRpbtJMYfkiVFpK4ve7Q4Nu5rTuJ6m60q0 9cFRhzE2kpQg9VpqSKvUhqSW61bm+5IcCBtQTynO3YiBlp5BoglEpG7OJ7SGmeMO hdR1hBH3mHcJejLy93qqrBBzY2TmFbtyh9e2BbqaxXzQL0cRUOkuuF7y6I1YgxZV T9baBFisj+zyyQ/mCTw6tQ8Ud7DlmQHyR7pcgAYztX7PSX2AvH99NQiV+POJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUihueZzcTwLYVo7hy2NlPFAmz4z8wHwYDVR0j BBgwFoAU17PSmhxY8qdk73HZDus0oIUj4UswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjRiYTY3NzgtYjE2ZC00YmE4LTk4NGYtMzRlNDE5ZmM5YzQ5LzAvRDdCM0QyOUEx QzU4RjJBNzY0RUY3MUQ5MEVFQjM0QTA4NTIzRTE0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EN0IzRDI5QTFDNThGMkE3NjRFRjcxRDkwRUVCMzRBMDg1MjNF MTRCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjRiYTY3NzgtYjE2ZC00YmE4LTk4 NGYtMzRlNDE5ZmM5YzQ5LzAvRDdCM0QyOUExQzU4RjJBNzY0RUY3MUQ5MEVFQjM0 QTA4NTIzRTE0Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC5WnlepZ2u67XwuNDISKt5xWyR0cLoHIiEs bUooUxyOwvKrTit/GlM9GETi0uueZG/FVBNPvhk7AHGTmfJLhFV0eg5F7HBLYFL7 AryeYjAsNfBUzrkDQ0ozQxu+qYJgmRW8/qCopJmFyVMrATqtOxp8qeDwsV6MOo4n 3yEf3vwlxSUPZl3GYmQSnYxDoB1nZeZikqvlhb2ANK1xelaxpVGyYTqMb8rZMsrS vA1wZapAGNTofZnZhXNT0vJ8fng+8tSjLomfwphHlnlDNvg/IssSpZYDHlmpcsvy hXsuwnQilxt2Gf8FZDunsQlqLEv0fEf26GC1ImqOobBxUnk1vMs= -----END CERTIFICATE-----Generated at Sun May 17 10:54:14 2026 by rpki-client