$ rpki-client -vvf rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft File: 2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft (raw, json) Hash identifier: RR9MdCkSOAT+E8dwUwl5X8GMY4543y1V7UAD0Owp66s= Subject key identifier: DF:A4:EA:2A:38:4C:5D:29:52:3C:A0:98:60:DC:9E:DF:9B:CA:4D:1E Authority key identifier: 2A:31:37:EE:F7:7F:1A:F1:6F:7A:12:DD:6D:36:94:4C:72:E2:C4:63 Certificate issuer: /CN=2A3137EEF77F1AF16F7A12DD6D36944C72E2C463 Certificate serial: 0D4F9B086B8888A7F799D727E238394465542ABF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft Manifest number: 05 Signing time: Tue 05 May 2026 09:12:04 +0000 Manifest this update: Tue 05 May 2026 09:07:04 +0000 Manifest next update: Wed 06 May 2026 13:05:04 +0000 Files and hashes: 1: 3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa (hash: i83P/tWxpN7+zDb3L4rKQFgIev7DrUCxoADIDDyJE9U=) 2: 3130332e35312e3132322e302f32342d3234203d3e203438343635.roa (hash: 6lFtnPCNARkQq8uMVyUcH9X2yfQ7BRCjGYYqyfiHjKo=) 3: 2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.crl (hash: kDQq1TZ8e/hL75IgY3CkLOMpY3r10iEqYw/PqgTsXmM=) 4: 3130332e35312e3132322e302f32342d3234203d3e20313530343730.roa (hash: 6oOlCIxGneY8XQmzJaSA+rXwKrW4Xz1wcUf44XfKjgk=) 5: 3130332e35312e3132322e302f32332d3233203d3e20313530343730.roa (hash: JbxVAMh0l8cOOEqUdkvkAwk1Vty1kRSyKXbV2pl/yFg=) 6: 3130332e35312e3132332e302f32342d3234203d3e203438343635.roa (hash: iJm4NhgPbIn9ZoK9MCrx0LzGYq+XRWtI9oNHEB41bTw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.crl rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 13:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:4f:9b:08:6b:88:88:a7:f7:99:d7:27:e2:38:39:44:65:54:2a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A3137EEF77F1AF16F7A12DD6D36944C72E2C463 Validity Not Before: May 5 09:07:04 2026 GMT Not After : May 6 13:05:04 2026 GMT Subject: CN=DFA4EA2A384C5D29523CA09860DC9EDF9BCA4D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:4d:e1:1e:0b:fd:c5:7c:a7:39:4e:ce:57: b9:ff:e3:2a:23:02:7d:9b:8e:8e:74:13:4b:4b:20: 12:c6:f3:d4:ce:3f:ac:94:68:af:48:0e:09:22:73: 40:4d:02:ba:91:c5:4e:c1:12:76:ab:20:6a:37:6c: 49:1e:54:3c:fc:aa:a1:55:02:6f:95:e3:d0:9e:d6: 24:e1:4d:0d:80:6b:f9:b8:e8:75:be:10:32:3d:69: 49:12:84:45:9b:2f:3d:f8:59:c9:84:fc:79:0e:4a: 2a:90:bb:46:75:e7:06:1e:1f:d8:92:44:ca:d4:84: 05:34:c4:d7:02:2e:21:ca:42:2c:4c:6b:e2:25:09: 7a:1e:c6:71:53:bf:1c:3f:c3:af:2e:a8:c0:95:7b: 8c:7c:3d:ce:95:1f:d5:1b:99:b7:c5:7e:8a:00:de: 8b:ba:ff:d2:b1:61:90:69:4e:1a:ef:1e:ba:68:b6: 8d:22:46:1d:75:df:f6:fe:5f:a5:17:cd:df:c5:b9: 33:99:e7:f7:20:a1:ff:e0:67:44:ed:da:4f:cb:cf: fc:5d:13:ad:94:e1:57:c9:2a:f2:18:cc:7c:02:9f: 2f:82:b9:bd:93:95:3e:5d:e1:44:f3:3a:3f:65:87: ad:2d:b5:97:2d:78:aa:05:e6:d1:fe:df:89:cc:3b: 1e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A4:EA:2A:38:4C:5D:29:52:3C:A0:98:60:DC:9E:DF:9B:CA:4D:1E X509v3 Authority Key Identifier: keyid:2A:31:37:EE:F7:7F:1A:F1:6F:7A:12:DD:6D:36:94:4C:72:E2:C4:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:de:c4:bb:ce:f1:15:94:b0:10:b5:3c:5d:3c:e1:a1:eb:2a: c8:d0:7b:27:70:76:66:1e:c9:0d:7b:93:43:4b:2b:5b:ee:3b: dd:97:3c:a2:44:b3:03:2b:44:82:b9:25:8e:96:44:08:49:83: 94:58:2f:35:a9:1a:d8:39:1e:e3:06:28:9b:cd:25:f5:82:61: 3e:8f:bf:8e:6b:6e:51:23:06:5a:3c:72:94:cb:5d:c0:a8:e2: 1c:ea:94:25:ab:29:ee:f3:c4:9c:78:f3:4a:8c:11:90:60:f6: 6d:58:1f:9d:f3:3b:13:c9:5d:ae:a6:74:d0:99:08:3a:68:c4: db:36:d1:a2:00:51:5e:49:6f:00:ef:e4:7e:d2:31:10:f9:1f: 4a:0b:2d:9e:d9:a7:9d:db:b6:c1:36:3a:ea:43:60:81:28:08: b8:62:5c:35:e3:bf:1f:25:c8:83:09:a2:51:8c:27:62:90:a5: 0a:45:00:f2:9b:6e:82:06:8e:f4:30:22:7a:72:b6:a8:66:d8: dc:61:c7:40:61:66:12:84:84:1f:f4:d7:e4:f1:39:71:99:b6: a8:a5:cf:82:5c:83:b4:0c:98:7b:f6:69:ad:5a:50:0c:0d:93: 8d:8f:7b:5b:fa:2f:7c:d8:2c:0b:6c:7e:1f:34:bc:30:59:3c: aa:9d:74:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDU+bCGuIiKf3mdcn4jg5RGVUKr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEzMTM3RUVGNzdGMUFGMTZGN0ExMkRENkQzNjk0NEM3 MkUyQzQ2MzAeFw0yNjA1MDUwOTA3MDRaFw0yNjA1MDYxMzA1MDRaMDMxMTAvBgNV BAMTKERGQTRFQTJBMzg0QzVEMjk1MjNDQTA5ODYwREM5RURGOUJDQTREMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI5k3hHgv9xXynOU7OV7n/4yoj An2bjo50E0tLIBLG89TOP6yUaK9IDgkic0BNArqRxU7BEnarIGo3bEkeVDz8qqFV Am+V49Ce1iThTQ2Aa/m46HW+EDI9aUkShEWbLz34WcmE/HkOSiqQu0Z15wYeH9iS RMrUhAU0xNcCLiHKQixMa+IlCXoexnFTvxw/w68uqMCVe4x8Pc6VH9UbmbfFfooA 3ou6/9KxYZBpThrvHrpoto0iRh113/b+X6UXzd/FuTOZ5/cgof/gZ0Tt2k/Lz/xd E62U4VfJKvIYzHwCny+Cub2TlT5d4UTzOj9lh60ttZcteKoF5tH+34nMOx4zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU36TqKjhMXSlSPKCYYNye35vKTR4wHwYDVR0j BBgwFoAUKjE37vd/GvFvehLdbTaUTHLixGMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzI4ZWVjNWItNTMyNC00NDIyLWEzMmYtOWIxZGNlZDM3NTlmLzAvMkEzMTM3RUVG NzdGMUFGMTZGN0ExMkRENkQzNjk0NEM3MkUyQzQ2My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQTMxMzdFRUY3N0YxQUYxNkY3QTEyREQ2RDM2OTQ0QzcyRTJD NDYzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzI4ZWVjNWItNTMyNC00NDIyLWEz MmYtOWIxZGNlZDM3NTlmLzAvMkEzMTM3RUVGNzdGMUFGMTZGN0ExMkRENkQzNjk0 NEM3MkUyQzQ2My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHvexLvO8RWUsBC1PF084aHrKsjQeydwdmYe yQ17k0NLK1vuO92XPKJEswMrRIK5JY6WRAhJg5RYLzWpGtg5HuMGKJvNJfWCYT6P v45rblEjBlo8cpTLXcCo4hzqlCWrKe7zxJx480qMEZBg9m1YH53zOxPJXa6mdNCZ CDpoxNs20aIAUV5JbwDv5H7SMRD5H0oLLZ7Zp53btsE2OupDYIEoCLhiXDXjvx8l yIMJolGMJ2KQpQpFAPKbboIGjvQwInpytqhm2Nxhx0BhZhKEhB/01+TxOXGZtqil z4Jcg7QMmHv2aa1aUAwNk42Pe1v6L3zYLAtsfh80vDBZPKqddOw= -----END CERTIFICATE-----Generated at Tue May 5 17:52:00 2026 by rpki-client