$ rpki-client -vvf rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft File: 684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft (raw, json) Hash identifier: mkRUkPJr0w6mVoRcT2UWaF3A+koUkvFM8dcHZLlayiQ= Subject key identifier: 77:33:6A:74:0F:BB:92:EB:BC:42:A7:68:8D:BB:CC:C8:16:60:2A:8D Authority key identifier: 68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 Certificate issuer: /CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Certificate serial: 6E85D23404AF40D5A975268C8CF3A3EC101588EB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft Manifest number: 02 Signing time: Sun 03 May 2026 02:26:00 +0000 Manifest this update: Sun 03 May 2026 02:21:00 +0000 Manifest next update: Mon 04 May 2026 03:14:00 +0000 Files and hashes: 1: 3132322e3132382e31362e302f32342d3234203d3e20323632393239.roa (hash: UaISP/uY7XkkGaHXlOEwAwG75CPuMEMHw61HTW14NUQ=) 2: 3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa (hash: jgtxGKm3LP85gwx19iWA4QGiKmWy0ishwiJxJ2igqrE=) 3: 3132322e3132382e32302e302f32342d3234203d3e203436303435.roa (hash: XU6dF5kwf5bWTJ1/a8IF9/Fb9ws8DLxf9mFKHwzpv/s=) 4: 684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl (hash: 3CBKMiyTYL5bCN6/bM8DGye2CqzUbPNvZvKEA/9cN9M=) 5: 3132322e3132382e31392e302f32342d3234203d3e203436303435.roa (hash: f90muGwEvtJshM8UMxgg/nx9xD7G/jpJOwdYaZZH2XQ=) 6: 3132322e3132382e32322e302f32342d3234203d3e203436303435.roa (hash: sGqaucoiUMSpvJe6Y7d7aRIvCySU6Gl0kNce7gLs15k=) 7: 3132322e3132382e31362e302f32312d3231203d3e203436303435.roa (hash: QjIsYLAQdXRD6h2SZxXBE1ZfdVE4XjnDSV8HWQWoECg=) 8: 3132322e3132382e31372e302f32342d3234203d3e203436303435.roa (hash: f4Rl+nEgaWKSfHvI6SarQnjAj9HfH/JElIfFiaKpdS0=) 9: 3132322e3132382e31362e302f32342d3234203d3e203531323032.roa (hash: Bv30QUp2YXB4ZkzrwlFua6Ycz6SNktruBYqYMaGWd0g=) 10: 3132322e3132382e31362e302f32342d3234203d3e203436303435.roa (hash: 0/QfoiXNfL7+6Rn9uHai+/eg6bnR/TAMxEM4trzBDyY=) 11: 3132322e3132382e32332e302f32342d3234203d3e203436303435.roa (hash: KEJHq843nvxE3v+1uF2PUpxNf5dPeN2bB+G+EF1vi9s=) 12: 3132322e3132382e31382e302f32342d3234203d3e203436303435.roa (hash: gwwfNJ3TqgMMt80Y8lGgjD5cKLvhjKTSdlvsB5BPRvM=) 13: 3132322e3132382e32312e302f32342d3234203d3e203531323032.roa (hash: qBUfAntsq3Gd1hTTTeKJeQxEEitXpMPHd1jbETTGZrw=) 14: 3132322e3132382e32312e302f32342d3234203d3e203436303435.roa (hash: gPkV1b2SmorRDQ1yqKufZI+SOzHwtp71j+eQg1Bwiak=) 15: 3132322e3132382e32322e302f32342d3234203d3e20323032363733.roa (hash: OBUrmS2no0yMHmoVDSN7g30tMnwj1huZn97XU2ZYw1k=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 May 2026 03:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:85:d2:34:04:af:40:d5:a9:75:26:8c:8c:f3:a3:ec:10:15:88:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Validity Not Before: May 3 02:21:00 2026 GMT Not After : May 4 03:14:00 2026 GMT Subject: CN=77336A740FBB92EBBC42A7688DBBCCC816602A8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ec:c7:5b:08:e5:be:e9:3a:4f:95:1b:22:e8: 29:22:3b:59:d2:01:be:0b:e4:84:c2:bd:3c:07:67: c3:c9:4d:52:76:de:6e:5c:f9:8a:8e:17:e5:cf:eb: f3:7e:b8:25:d3:0b:0f:55:c3:23:73:d6:f8:6c:a2: e8:f8:9c:6e:82:c6:d5:db:f1:c2:a8:69:73:cc:d5: 7b:7e:86:57:e7:29:33:64:37:50:4f:b2:fe:23:a1: 2d:ec:58:59:fd:91:b1:38:09:c5:a2:b5:13:dd:38: 40:a4:07:4f:b7:f0:de:34:8f:12:f6:4a:22:f0:d0: 6f:7b:6e:fb:aa:e5:98:06:23:b9:74:bb:8b:31:bd: 4c:f1:e3:e6:29:ad:64:df:23:6d:1a:c3:89:54:cb: 08:9f:a9:18:aa:bd:3c:18:61:ea:aa:da:3a:13:a7: 84:d7:ff:5e:b4:25:ff:04:c6:fc:59:9a:36:b2:9a: c4:0f:e0:5b:6d:3e:24:b1:35:fb:9f:45:11:44:c8: f2:d4:47:2e:02:a8:82:e1:3e:ef:17:09:39:e4:fc: 58:05:20:c7:6b:54:65:9e:72:49:d1:76:eb:b6:68: 31:8b:52:49:58:56:8b:2e:e3:a7:ba:3c:5a:e4:f4: 8e:d1:39:86:f1:16:cd:ba:fd:5b:73:21:b5:64:e5: 2a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:33:6A:74:0F:BB:92:EB:BC:42:A7:68:8D:BB:CC:C8:16:60:2A:8D X509v3 Authority Key Identifier: keyid:68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:c4:7c:c1:c4:f4:e7:a1:08:b7:01:1e:be:6e:0b:5b:1a:0c: 37:e3:04:b9:6b:61:dd:df:15:4f:ee:c2:91:fb:64:36:05:38: bf:51:85:db:b1:a0:4e:4a:fa:d8:46:d0:40:57:3f:e2:4d:db: 61:47:61:76:9f:3d:3c:30:83:a8:7b:44:b3:4e:19:a2:64:b1: 22:1c:9a:9f:06:33:3c:e4:b9:56:a4:74:0a:c1:18:ba:c4:e8: b1:cb:2c:fb:e8:61:cd:92:89:de:7c:e7:14:c8:46:da:bb:0a: 8b:74:ae:d4:73:a3:a1:c1:d8:39:4c:e3:5f:52:03:74:8f:c0: 94:be:62:54:0f:db:ba:ca:7f:c3:3a:80:9c:c6:77:32:17:99: 69:39:e7:ca:4a:b1:8a:d4:fb:ad:7d:78:ca:d6:63:4e:f6:65: 0f:b8:6a:bf:1d:32:c0:c8:f2:67:c1:e3:cd:35:3d:f7:c5:2c: 95:56:ab:32:df:8e:fe:e3:cc:0d:b5:b9:4a:9e:9b:b0:33:e8: c4:79:a3:a0:34:5a:dd:3a:fa:a5:34:8d:94:36:83:35:2c:7b: 56:f1:9a:ef:f3:55:9b:91:3a:72:1d:5a:d1:46:6f:4b:f0:fe: 56:ac:3e:1a:44:b1:6f:90:07:b0:33:c9:a7:d9:b8:9f:2b:b8: ed:e9:41:3b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUboXSNASvQNWpdSaMjPOj7BAViOswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg0REUzNEE2NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJG QjJFNkFBNTAeFw0yNjA1MDMwMjIxMDBaFw0yNjA1MDQwMzE0MDBaMDMxMTAvBgNV BAMTKDc3MzM2QTc0MEZCQjkyRUJCQzQyQTc2ODhEQkJDQ0M4MTY2MDJBOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU7MdbCOW+6TpPlRsi6CkiO1nS Ab4L5ITCvTwHZ8PJTVJ23m5c+YqOF+XP6/N+uCXTCw9VwyNz1vhsouj4nG6CxtXb 8cKoaXPM1Xt+hlfnKTNkN1BPsv4joS3sWFn9kbE4CcWitRPdOECkB0+38N40jxL2 SiLw0G97bvuq5ZgGI7l0u4sxvUzx4+YprWTfI20aw4lUywifqRiqvTwYYeqq2joT p4TX/160Jf8ExvxZmjaymsQP4FttPiSxNfufRRFEyPLURy4CqILhPu8XCTnk/FgF IMdrVGWecknRduu2aDGLUklYVosu46e6PFrk9I7ROYbxFs26/VtzIbVk5SqRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdzNqdA+7kuu8QqdojbvMyBZgKo0wHwYDVR0j BBgwFoAUaE3jSmTzr+1EoCOF/LNYgvsuaqUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg1M2YyMjgtMzdmMi00N2Q5LWI5ZmUtNDc2YmFkZTEzMzkzLzAvNjg0REUzNEE2 NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJGQjJFNkFBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82ODRERTM0QTY0RjNBRkVENDRBMDIzODVGQ0IzNTg4MkZCMkU2 QUE1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzg1M2YyMjgtMzdmMi00N2Q5LWI5 ZmUtNDc2YmFkZTEzMzkzLzAvNjg0REUzNEE2NEYzQUZFRDQ0QTAyMzg1RkNCMzU4 ODJGQjJFNkFBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEPEfMHE9OehCLcBHr5uC1saDDfjBLlrYd3f FU/uwpH7ZDYFOL9RhduxoE5K+thG0EBXP+JN22FHYXafPTwwg6h7RLNOGaJksSIc mp8GMzzkuVakdArBGLrE6LHLLPvoYc2Sid585xTIRtq7Cot0rtRzo6HB2DlM419S A3SPwJS+YlQP27rKf8M6gJzGdzIXmWk558pKsYrU+619eMrWY072ZQ+4ar8dMsDI 8mfB4801PffFLJVWqzLfjv7jzA21uUqem7Az6MR5o6A0Wt06+qU0jZQ2gzUse1bx mu/zVZuROnIdWtFGb0vw/lasPhpEsW+QB7AzyafZuJ8ruO3pQTs= -----END CERTIFICATE-----Generated at Sun May 3 19:18:47 2026 by rpki-client