$ rpki-client -vvf rpki-rsync.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/25C2ACFFB836196566A3BCCE3421DBB96CD84116.mft File: 25C2ACFFB836196566A3BCCE3421DBB96CD84116.mft (raw, json) Hash identifier: mejPpK3NNqAflx3e7GPsvUGxTaLClGgsAZzLl4aiC/U= Subject key identifier: F2:B0:F7:59:78:0C:62:21:DF:17:5D:EC:53:09:19:39:D3:31:8F:F5 Authority key identifier: 25:C2:AC:FF:B8:36:19:65:66:A3:BC:CE:34:21:DB:B9:6C:D8:41:16 Certificate issuer: /CN=25C2ACFFB836196566A3BCCE3421DBB96CD84116 Certificate serial: 0589CA74691C231E79A32556BBD5DBFDB24CCB46 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25C2ACFFB836196566A3BCCE3421DBB96CD84116.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/25C2ACFFB836196566A3BCCE3421DBB96CD84116.mft Manifest number: 1D Signing time: Sat 23 May 2026 11:11:33 +0000 Manifest this update: Sat 23 May 2026 11:06:33 +0000 Manifest next update: Sun 24 May 2026 13:49:33 +0000 Files and hashes: 1: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: ohDVM2o2IOUVSNhwh1E7felK+Pc0SKnjsPpIi1yZSaw=) 2: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: zEDT0INoIq23WBcFzMUv15oPL7BGutII4EaV+fPSC68=) 3: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: p5VGWtHjvpIWNYWejy2oeQf0oISTWP+7YBr4TnXtjDM=) 4: 25C2ACFFB836196566A3BCCE3421DBB96CD84116.crl (hash: /b+16+fWgVgtxuyLR+5KJOlBqI1roCaISKPOCrH/iUA=) 5: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: HwpDGD2SJ/iUFIW/7Q0l9KkQ0CWL7/v9c6sBLXd1KZY=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/25C2ACFFB836196566A3BCCE3421DBB96CD84116.crl rsync://rpki-rsync.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/25C2ACFFB836196566A3BCCE3421DBB96CD84116.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25C2ACFFB836196566A3BCCE3421DBB96CD84116.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 May 2026 13:49:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:89:ca:74:69:1c:23:1e:79:a3:25:56:bb:d5:db:fd:b2:4c:cb:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25C2ACFFB836196566A3BCCE3421DBB96CD84116 Validity Not Before: May 23 11:06:33 2026 GMT Not After : May 24 13:49:33 2026 GMT Subject: CN=F2B0F759780C6221DF175DEC53091939D3318FF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:94:24:6c:38:62:e7:26:46:54:7e:84:93:6d: b0:78:c5:fa:d1:cd:4f:fe:d8:fa:5d:52:59:7c:62: f5:3e:7a:47:a6:2a:17:a9:f0:6f:d1:36:ff:e5:51: 8a:4c:06:f5:92:5e:74:16:e8:3a:ce:61:80:dd:6e: 63:d2:d8:b0:49:0c:f1:4c:64:78:4e:7f:ee:28:62: e7:0c:db:74:5b:09:d7:75:b8:70:c7:5e:58:21:a7: a6:3f:44:69:9b:98:b8:ab:60:47:94:b9:55:2c:60: 21:25:45:d2:2f:bd:b6:b9:fa:da:a7:15:55:eb:eb: 45:79:dc:65:0c:7d:25:18:3f:94:13:68:c9:b4:ae: f1:28:d7:c0:55:94:80:ac:0a:cc:5c:05:8c:e1:b5: 1e:28:f3:89:a8:38:81:cb:54:7b:53:f8:c7:bd:d2: a4:21:14:e0:2a:7e:93:d2:9d:9c:44:98:74:39:08: 4d:94:7e:3d:7f:d8:60:86:5c:be:d3:16:0d:08:f1: ab:b4:ce:61:1a:ef:b9:55:71:63:1a:77:a1:65:bf: 2c:45:56:38:f1:d0:f0:3c:a1:5c:65:84:92:0c:7b: ca:9c:64:93:37:fb:1a:ae:67:17:e1:5b:97:8e:46: 2c:77:0b:5c:67:54:f5:f8:12:73:ec:d4:b3:a2:19: e9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B0:F7:59:78:0C:62:21:DF:17:5D:EC:53:09:19:39:D3:31:8F:F5 X509v3 Authority Key Identifier: keyid:25:C2:AC:FF:B8:36:19:65:66:A3:BC:CE:34:21:DB:B9:6C:D8:41:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/25C2ACFFB836196566A3BCCE3421DBB96CD84116.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/25C2ACFFB836196566A3BCCE3421DBB96CD84116.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/25C2ACFFB836196566A3BCCE3421DBB96CD84116.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:f1:46:3f:58:c3:75:93:67:b6:e9:7c:8b:4d:3c:08:1c:22: f5:58:30:59:b7:2d:da:dd:ed:93:50:d4:03:a6:26:a1:2a:02: fb:92:b8:6b:a3:f7:3e:0e:f5:34:f1:f9:d1:cc:1d:26:ab:8e: 76:96:31:29:82:39:59:66:76:df:d7:76:7c:23:6d:dc:b4:24: 37:bf:a6:81:4a:86:5c:35:58:44:5d:35:e2:4f:91:c8:b3:03: 80:13:e0:75:43:87:53:2d:9b:0e:23:3a:3e:0f:de:cf:15:84: b5:ca:c2:db:8c:77:75:0a:d1:f2:34:6e:a2:b0:3a:54:74:4b: a2:68:b1:d0:1a:f9:b3:c1:6c:2b:03:a3:ac:4c:d4:cd:b2:3d: 51:08:49:3d:26:0b:ab:8e:cb:c9:e7:81:63:21:b2:80:23:2c: d7:72:60:5e:69:68:f8:d7:7f:cc:37:38:4a:60:27:8a:af:4c: 71:43:58:3c:c3:bb:bf:07:22:8f:e3:5d:9a:cb:97:bd:5c:00: c1:dc:14:ef:e4:dc:19:0c:c1:4f:47:3e:f4:a3:78:ca:73:fb: 2f:07:89:a1:9c:9e:03:6d:c4:7a:ce:38:ac:e4:2c:8d:1f:51: fc:74:79:dc:bc:b3:62:18:42:f8:67:e5:4f:eb:11:e3:da:f4: 50:d7:52:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBYnKdGkcIx55oyVWu9Xb/bJMy0YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVDMkFDRkZCODM2MTk2NTY2QTNCQ0NFMzQyMURCQjk2 Q0Q4NDExNjAeFw0yNjA1MjMxMTA2MzNaFw0yNjA1MjQxMzQ5MzNaMDMxMTAvBgNV BAMTKEYyQjBGNzU5NzgwQzYyMjFERjE3NURFQzUzMDkxOTM5RDMzMThGRjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOlCRsOGLnJkZUfoSTbbB4xfrR zU/+2PpdUll8YvU+ekemKhep8G/RNv/lUYpMBvWSXnQW6DrOYYDdbmPS2LBJDPFM ZHhOf+4oYucM23RbCdd1uHDHXlghp6Y/RGmbmLirYEeUuVUsYCElRdIvvba5+tqn FVXr60V53GUMfSUYP5QTaMm0rvEo18BVlICsCsxcBYzhtR4o84moOIHLVHtT+Me9 0qQhFOAqfpPSnZxEmHQ5CE2Ufj1/2GCGXL7TFg0I8au0zmEa77lVcWMad6FlvyxF Vjjx0PA8oVxlhJIMe8qcZJM3+xquZxfhW5eORix3C1xnVPX4EnPs1LOiGelPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8rD3WXgMYiHfF13sUwkZOdMxj/UwHwYDVR0j BBgwFoAUJcKs/7g2GWVmo7zONCHbuWzYQRYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGYzNzc3MTEtMWUzZC00ZTVhLWE0YWMtMDVhMWM1MDJhZDI4LzAvMjVDMkFDRkZC ODM2MTk2NTY2QTNCQ0NFMzQyMURCQjk2Q0Q4NDExNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yNUMyQUNGRkI4MzYxOTY1NjZBM0JDQ0UzNDIxREJCOTZDRDg0 MTE2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvMjVDMkFDRkZCODM2MTk2NTY2QTNCQ0NFMzQyMURC Qjk2Q0Q4NDExNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACHxRj9Yw3WTZ7bpfItNPAgcIvVYMFm3Ldrd 7ZNQ1AOmJqEqAvuSuGuj9z4O9TTx+dHMHSarjnaWMSmCOVlmdt/Xdnwjbdy0JDe/ poFKhlw1WERdNeJPkcizA4AT4HVDh1Mtmw4jOj4P3s8VhLXKwtuMd3UK0fI0bqKw OlR0S6JosdAa+bPBbCsDo6xM1M2yPVEIST0mC6uOy8nngWMhsoAjLNdyYF5paPjX f8w3OEpgJ4qvTHFDWDzDu78HIo/jXZrLl71cAMHcFO/k3BkMwU9HPvSjeMpz+y8H iaGcngNtxHrOOKzkLI0fUfx0edy8s2IYQvhn5U/rEePa9FDXUmM= -----END CERTIFICATE-----Generated at Sun May 24 04:34:51 2026 by rpki-client