$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft File: A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft (raw, json) Hash identifier: GomEsCUP4Z3UAOOc/QivlFKB7hT96JMGSdKtTyGu7QE= Subject key identifier: 87:86:CA:CE:EF:20:ED:85:9F:9D:8E:AF:14:25:13:10:D6:B2:1A:3B Authority key identifier: A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 Certificate issuer: /CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Certificate serial: 1DD3A7EFDE6AE1B401774CBE6ACE956647FEA27C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft Manifest number: 14 Signing time: Sat 16 May 2026 19:19:26 +0000 Manifest this update: Sat 16 May 2026 19:14:26 +0000 Manifest next update: Sun 17 May 2026 19:46:26 +0000 Files and hashes: 1: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: /BLy7k3doovw3jQVTXaYTnBas7DL4Zfrgn7U9J4fWVA=) 2: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: 2ZuwNGg62iU8raGM9TYM3A0jrh0UG5HDKyy6dwXOLS0=) 3: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: qDJ/c5qWojiJYfc9eIqgLudqj78rlDzX+1L2SPWNYTQ=) 4: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: dyN12mfoRjXFlNHqIFEChK7+mIsDEFYombQgQudcekM=) 5: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: nNs3zCmZDfGYSq9FVm5Dz3ukk7qRss0F7cyqFrIdiUs=) 6: A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl (hash: 16oaNHWamRjQPbrhHykv98qz+Jo9HnqAWDt85aNxD7I=) 7: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: xw+egA02OX5uOYAGnedHg8tG8xIxYeukOfUcUDfNNIQ=) 8: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: eVL30F9FmWg9xfcbeGTmvP0LqqOdBiZkfgWJnF3c51k=) 9: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: 5ev3rc/Wu45AIU9QKYFuF4qHEkUSlKkTnsZ3JdywnVM=) 10: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: +zXAXB63RMz7uGSWbbDCPnLGVqN8tZG7EPNtc0tQGQw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 17 May 2026 09:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:d3:a7:ef:de:6a:e1:b4:01:77:4c:be:6a:ce:95:66:47:fe:a2:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Validity Not Before: May 16 19:14:26 2026 GMT Not After : May 17 19:46:26 2026 GMT Subject: CN=8786CACEEF20ED859F9D8EAF14251310D6B21A3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:3a:a7:da:dd:95:8d:41:78:37:8b:67:aa: c5:09:dd:a5:3a:dc:16:d1:cf:63:4e:7c:41:99:99: e3:7f:d0:1d:b9:dc:13:05:96:38:b2:8c:36:b8:b1: 28:97:ef:a3:7f:4b:10:99:c3:15:47:ba:50:4e:18: 7b:a1:2c:ba:7f:75:bb:1d:0c:66:43:d3:6d:f4:5f: d3:61:fd:56:f8:97:36:fc:c0:1f:9a:f5:06:b4:9a: 62:a4:5d:e9:cd:7b:de:3d:13:25:1d:b9:06:5a:12: 67:95:3e:22:93:78:ce:e5:31:07:20:10:80:f8:00: df:1c:05:db:aa:39:af:c6:9b:60:97:1c:19:1e:f6: 62:96:d3:4f:e5:19:db:0e:17:66:e9:25:ea:3d:cf: c2:35:89:8d:3b:cc:e1:1f:86:aa:ac:6a:70:07:a1: 91:e3:98:31:f3:a3:39:66:9e:a3:f5:03:b5:85:fc: 1a:7f:a4:53:fc:92:c3:61:6a:d0:60:be:41:52:a7: f1:c2:a6:39:fb:66:48:30:aa:7c:b0:70:04:cc:08: ad:df:02:a9:42:3d:a3:8d:7e:28:39:15:1e:7b:0d: 13:80:d2:5e:85:79:74:98:7f:7e:57:48:15:39:d3: da:a4:97:8b:f7:dd:93:67:58:af:b4:42:e5:1c:c8: 41:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:86:CA:CE:EF:20:ED:85:9F:9D:8E:AF:14:25:13:10:D6:B2:1A:3B X509v3 Authority Key Identifier: keyid:A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2f:a5:a0:fd:86:81:46:08:82:ec:5b:83:e2:8e:73:a4:bf: 35:48:03:cd:d2:04:34:dc:4b:3b:7a:1b:e2:24:5e:e4:f9:cd: 0d:94:5f:34:8c:b7:02:46:5d:33:a8:b1:a0:1a:0d:f2:72:71: 1f:15:4d:10:68:0a:1e:0a:8f:3d:cd:7c:b0:de:92:1a:d4:1b: 85:78:d0:92:4e:26:d4:5d:22:7b:55:ee:cb:aa:47:84:cb:7a: bd:62:b1:8a:96:6f:e4:6b:87:05:9e:0a:bd:5f:0b:de:2c:57: ad:68:92:66:72:b5:f0:9c:48:0d:23:71:2f:f0:c8:d6:48:27: ff:de:d0:0a:48:b3:62:70:b3:75:72:1a:be:8b:76:dd:db:78: 2d:c8:40:7e:b6:af:16:f8:74:12:08:70:59:af:37:cf:b1:f0: 74:23:1c:e1:5d:4c:1a:d8:f8:e2:e2:5d:1c:75:98:7a:58:9c: 44:55:b2:3f:25:3f:f5:39:a6:b2:8f:e2:22:c4:26:6a:a1:92: b2:04:b7:bc:cc:92:22:87:84:4f:15:9f:56:8b:50:c1:e3:1b: 7b:fd:9d:37:88:51:a2:f4:e2:9e:9a:48:dc:3e:7d:f4:35:60: 9e:5b:29:36:07:3c:f4:f3:51:79:1d:c8:99:6d:da:f5:62:bf: 28:d5:f9:07 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHdOn795q4bQBd0y+as6VZkf+onwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIx RjMzNDlGMzAeFw0yNjA1MTYxOTE0MjZaFw0yNjA1MTcxOTQ2MjZaMDMxMTAvBgNV BAMTKDg3ODZDQUNFRUYyMEVEODU5RjlEOEVBRjE0MjUxMzEwRDZCMjFBM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPZTqn2t2VjUF4N4tnqsUJ3aU6 3BbRz2NOfEGZmeN/0B253BMFljiyjDa4sSiX76N/SxCZwxVHulBOGHuhLLp/dbsd DGZD0230X9Nh/Vb4lzb8wB+a9Qa0mmKkXenNe949EyUduQZaEmeVPiKTeM7lMQcg EID4AN8cBduqOa/Gm2CXHBke9mKW00/lGdsOF2bpJeo9z8I1iY07zOEfhqqsanAH oZHjmDHzozlmnqP1A7WF/Bp/pFP8ksNhatBgvkFSp/HCpjn7ZkgwqnywcATMCK3f AqlCPaONfig5FR57DROA0l6FeXSYf35XSBU509qkl4v33ZNnWK+0QuUcyEGZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUh4bKzu8g7YWfnY6vFCUTENayGjswHwYDVR0j BBgwFoAUoIuvLYhRTsBBqH8JLmtqUh8zSfMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJjNmFhMDMtMWI0ZC00MzhlLWE5ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4 ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIxRjMzNDlGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDhCQUYyRDg4NTE0RUMwNDFBODdGMDkyRTZCNkE1MjFGMzM0 OUYzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZB NTIxRjMzNDlGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE4vpaD9hoFGCILsW4PijnOkvzVIA83SBDTc Szt6G+IkXuT5zQ2UXzSMtwJGXTOosaAaDfJycR8VTRBoCh4Kjz3NfLDekhrUG4V4 0JJOJtRdIntV7suqR4TLer1isYqWb+RrhwWeCr1fC94sV61okmZytfCcSA0jcS/w yNZIJ//e0ApIs2Jws3VyGr6Ldt3beC3IQH62rxb4dBIIcFmvN8+x8HQjHOFdTBrY +OLiXRx1mHpYnERVsj8lP/U5prKP4iLEJmqhkrIEt7zMkiKHhE8Vn1aLUMHjG3v9 nTeIUaL04p6aSNw+ffQ1YJ5bKTYHPPTzUXkdyJlt2vVivyjV+Qc= -----END CERTIFICATE-----Generated at Sun May 17 01:09:31 2026 by rpki-client