$ rpki-client -vvf rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft File: 9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft (raw, json) Hash identifier: CvYwnsl8PH73jaH+wByCOBvQFtxfbhjNNhej89EI+hs= Subject key identifier: B1:77:06:E2:AB:E0:98:D6:06:E1:7F:B0:C1:58:B7:3D:2C:45:48:46 Authority key identifier: 9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 Certificate issuer: /CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Certificate serial: 1B1AE70E3A2FD7EC769E973C42BDC06C3BF68299 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft Manifest number: 14 Signing time: Sat 16 May 2026 18:38:46 +0000 Manifest this update: Sat 16 May 2026 18:33:46 +0000 Manifest next update: Sun 17 May 2026 19:05:46 +0000 Files and hashes: 1: 3230322e37332e32342e302f32342d3234203d3e203535373031.roa (hash: PInvCtxVVtioPbfgKwU3owF3bAZaDoVKCpPjomKqIrc=) 2: 3130332e33312e3233322e302f32322d3234203d3e203535373031.roa (hash: LXq7hGEpfDwOU/0U2QR8rTojO84R6vUdH42Dh5XJwhA=) 3: 3130332e31382e37362e302f32322d3234203d3e203535373031.roa (hash: ZIatr5akU/o2NWBe3N+oXda5TMJkC+DkwhEJDyTCXOU=) 4: 3230322e37332e32362e302f32342d3234203d3e20313431383932.roa (hash: 2Omj4R13yIfbTM8O99f4AEQ3eWdecD3Qz56Vk4+EoQE=) 5: 34332e3235322e3233362e302f32332d3234203d3e203535373031.roa (hash: 9/aJzkpwQD5bM8J0s7lmNbtmibtAmha33amC/3lwiTs=) 6: 3230322e37332e32352e302f32342d3234203d3e20313431383932.roa (hash: ZdJ+uJ+H3LCclcBMDstVIbOnA5HzlWlzhGq8cMXXKag=) 7: 34392e302e302e302f32322d3234203d3e203535373031.roa (hash: sLZQYwwJZGFMTL7izEAM/LPP1kYOTnZL+ruwm/tAWUw=) 8: 9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl (hash: CfsQZf4GH8bxbvHEMbuDw7rg4eeERfoqPG9L8uS19qI=) 9: 3230322e37332e32372e302f32342d3234203d3e203535373031.roa (hash: BAdz9q0heD7H4d5EINNzizZi9X7k9sip5rKeZrRgrbA=) 10: 34332e3235322e3233382e302f32342d3234203d3e203535373031.roa (hash: jervWvS7fVPh370uN91AucyVv2pORH48B5fUUflxIjw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 09:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:1a:e7:0e:3a:2f:d7:ec:76:9e:97:3c:42:bd:c0:6c:3b:f6:82:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1 Validity Not Before: May 16 18:33:46 2026 GMT Not After : May 17 19:05:46 2026 GMT Subject: CN=B17706E2ABE098D606E17FB0C158B73D2C454846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c5:50:00:25:6e:ea:e4:7e:a3:54:e8:e2:77: 57:97:4c:22:af:c9:c7:9a:52:75:fc:99:58:a8:3d: 09:76:03:8d:9f:86:5b:69:9f:2d:e3:0b:6c:9c:ba: 61:31:8f:1f:60:ff:81:6c:05:22:64:cc:6c:b8:c6: 98:47:94:66:2d:ce:d7:bb:17:fc:8d:b5:cc:01:d9: be:c7:a0:e4:4c:1c:38:61:d8:d1:ee:c2:0a:d1:09: be:8e:7d:28:03:1b:8e:41:1e:4b:d5:db:df:01:3f: 04:93:38:2f:05:b5:da:2b:cb:c0:0b:75:d2:ca:a9: 3d:0a:fa:cb:77:6f:7c:28:98:df:81:29:9f:6e:6e: 06:b8:f3:a3:e9:9f:00:58:ed:32:03:77:2f:3b:1d: 2c:24:5e:c7:d9:ca:b0:7b:0c:ba:4e:c9:0d:ea:8e: a8:0f:cc:8f:94:ba:a0:bf:c9:ed:65:3e:4b:d1:7e: 56:41:22:ee:43:2d:d3:13:b4:0a:96:4c:7f:99:4d: d4:8a:4f:a3:64:28:90:5c:7b:9f:fe:ad:6e:cf:2d: 84:81:06:73:ba:9b:9c:05:05:74:67:0f:80:e9:44: db:11:11:e8:c5:91:7c:51:e5:32:93:eb:77:00:7e: 03:11:e4:25:5f:35:81:c4:ff:82:34:08:e1:b5:56: a9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:77:06:E2:AB:E0:98:D6:06:E1:7F:B0:C1:58:B7:3D:2C:45:48:46 X509v3 Authority Key Identifier: keyid:9F:D7:FF:4D:3F:B3:73:40:FA:A8:C7:EE:71:D1:CB:9E:AF:08:59:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/9FD7FF4D3FB37340FAA8C7EE71D1CB9EAF0859C1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:b0:ae:4b:09:4a:b8:c3:a3:29:96:e4:ff:e0:68:72:e1:2e: 8a:95:e2:55:d0:3a:74:95:7f:ab:3d:b3:d0:07:e0:5e:d2:6b: d3:9e:e1:61:32:24:2b:02:c3:38:29:b2:98:f3:73:15:e3:c3: 98:9b:58:dc:9c:48:a9:f9:55:9b:7a:64:41:c6:28:92:05:9c: 36:85:1c:e6:62:f3:1b:c5:89:e3:13:ca:69:66:9d:43:ce:a1: 5c:45:ee:48:e1:6c:07:ee:87:28:ff:c6:20:be:12:27:2b:9a: b0:f8:cb:3e:b3:26:6b:74:05:01:2c:b4:8b:ec:8a:ea:06:f3: 77:ee:db:04:b8:92:cc:09:07:79:18:57:33:ad:cd:1a:85:88: 68:ad:c9:a5:f8:8f:dd:f9:9f:ba:2b:9c:27:37:07:ff:a1:fe: ac:cf:1c:21:c9:dd:c8:e6:3d:a1:2c:fb:95:15:bf:1f:fa:fe: 05:e0:d5:c0:b0:0e:ac:94:68:1e:0e:2c:7b:5e:43:b6:54:f5: af:6e:1f:59:67:55:63:5a:73:59:a1:03:fb:ac:4d:16:d8:71: c8:fe:7d:8f:03:10:55:cd:3a:c3:8d:a5:16:2a:73:d5:c2:aa: 43:f1:35:f8:f9:87:28:0a:04:ff:b0:aa:f2:38:8e:99:ac:f6: b5:33:39:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGxrnDjov1+x2npc8Qr3AbDv2gpkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZEN0ZGNEQzRkIzNzM0MEZBQThDN0VFNzFEMUNCOUVB RjA4NTlDMTAeFw0yNjA1MTYxODMzNDZaFw0yNjA1MTcxOTA1NDZaMDMxMTAvBgNV BAMTKEIxNzcwNkUyQUJFMDk4RDYwNkUxN0ZCMEMxNThCNzNEMkM0NTQ4NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXxVAAJW7q5H6jVOjid1eXTCKv yceaUnX8mVioPQl2A42fhltpny3jC2ycumExjx9g/4FsBSJkzGy4xphHlGYtzte7 F/yNtcwB2b7HoORMHDhh2NHuwgrRCb6OfSgDG45BHkvV298BPwSTOC8Ftdory8AL ddLKqT0K+st3b3womN+BKZ9ubga486PpnwBY7TIDdy87HSwkXsfZyrB7DLpOyQ3q jqgPzI+UuqC/ye1lPkvRflZBIu5DLdMTtAqWTH+ZTdSKT6NkKJBce5/+rW7PLYSB BnO6m5wFBXRnD4DpRNsREejFkXxR5TKT63cAfgMR5CVfNYHE/4I0COG1VqljAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsXcG4qvgmNYG4X+wwVi3PSxFSEYwHwYDVR0j BBgwFoAUn9f/TT+zc0D6qMfucdHLnq8IWcEwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjdkOWY4NTEtN2U3My00Mzg0LTk1MGUtOGJlOGUxNWZkM2VlLzAvOUZEN0ZGNEQz RkIzNzM0MEZBQThDN0VFNzFEMUNCOUVBRjA4NTlDMS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RkQ3RkY0RDNGQjM3MzQwRkFBOEM3RUU3MUQxQ0I5RUFGMDg1 OUMxLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjdkOWY4NTEtN2U3My00Mzg0LTk1 MGUtOGJlOGUxNWZkM2VlLzAvOUZEN0ZGNEQzRkIzNzM0MEZBQThDN0VFNzFEMUNC OUVBRjA4NTlDMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADuwrksJSrjDoymW5P/gaHLhLoqV4lXQOnSV f6s9s9AH4F7Sa9Oe4WEyJCsCwzgpspjzcxXjw5ibWNycSKn5VZt6ZEHGKJIFnDaF HOZi8xvFieMTymlmnUPOoVxF7kjhbAfuhyj/xiC+EicrmrD4yz6zJmt0BQEstIvs iuoG83fu2wS4kswJB3kYVzOtzRqFiGityaX4j935n7ornCc3B/+h/qzPHCHJ3cjm PaEs+5UVvx/6/gXg1cCwDqyUaB4OLHteQ7ZU9a9uH1lnVWNac1mhA/usTRbYccj+ fY8DEFXNOsONpRYqc9XCqkPxNfj5hygKBP+wqvI4jpms9rUzOdY= -----END CERTIFICATE-----Generated at Sat May 16 20:17:24 2026 by rpki-client