$ rpki-client -vvf rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft File: 8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft (raw, json) Hash identifier: 0iV+PuaQ9F95Hj9aVZLn/oPCto+ZA6c4EXP970cfiZQ= Subject key identifier: A5:FF:E6:A3:E1:72:3C:A0:07:A4:9E:82:70:53:9A:FC:13:18:8B:89 Authority key identifier: 8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 Certificate issuer: /CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Certificate serial: 36EFA3D8EBC44CF37AAA5E0D9E48B4AEF4144831 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft Manifest number: 05 Signing time: Tue 05 May 2026 05:33:06 +0000 Manifest this update: Tue 05 May 2026 05:28:06 +0000 Manifest next update: Wed 06 May 2026 08:38:06 +0000 Files and hashes: 1: 8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl (hash: vRtLL7dNLRxOdZR6uHGDRJjyVrQNPPuskBtOlxdDygA=) 2: 3130332e3138362e3139352e302f32342d3234203d3e203438343635.roa (hash: r7dovsQ2SZSV7IfPAfAuGK0MlNXhEY5b9y9M8jygZbk=) 3: 3130332e3138362e3139342e302f32332d3234203d3e20313439373132.roa (hash: nhCth3GuuL56/ZX/YpeRjeCAIHYgJ/lFofg+gthNMoU=) 4: 3130332e3138362e3139342e302f32342d3234203d3e20313439373132.roa (hash: FAM0vFS+CEP/k4I2FWb6JASyBXq3gfqT8CiCE9WHTo0=) 5: 3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa (hash: 3gBu5z4wg47/tNqaD7YsE1EFFZZ6JYTR0325QFX63A0=) 6: 3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa (hash: vEKBFb87szZHK58hOoWh27DXWyqF6KjiEygYywKcCcA=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 08:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ef:a3:d8:eb:c4:4c:f3:7a:aa:5e:0d:9e:48:b4:ae:f4:14:48:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Validity Not Before: May 5 05:28:06 2026 GMT Not After : May 6 08:38:06 2026 GMT Subject: CN=A5FFE6A3E1723CA007A49E8270539AFC13188B89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:21:8d:ed:8a:5f:8a:ac:04:fa:69:1f:dd:fa: 52:09:d9:ff:37:56:09:3f:43:c8:d4:5e:75:0c:97: 9c:37:82:96:81:36:48:67:2c:ac:28:a9:0b:30:00: 90:e1:67:c4:f1:8d:cf:76:40:7a:56:b7:31:fb:c4: dd:9c:03:b9:c1:44:4e:48:8b:19:09:12:cf:ba:bb: 16:91:69:54:25:f7:f2:2b:57:19:18:02:19:6f:88: 5d:d2:b6:5e:1f:d8:fb:20:7c:df:1f:2d:79:c5:45: e9:e5:48:67:f3:82:32:7d:06:85:eb:3a:89:a4:2d: c9:10:1e:88:6b:ce:3a:61:92:3a:95:98:35:2b:96: d7:8f:c5:4d:e5:9c:44:9a:bf:8a:c9:32:38:07:a8: d9:02:65:fd:f7:c3:c7:90:b4:33:17:81:b4:67:95: 18:ef:df:ae:a3:f5:0d:dc:d9:8d:56:4a:54:fe:1c: 3d:32:e4:40:70:d0:c9:88:04:a6:c7:2c:4d:6c:be: 42:ed:18:8d:b7:f4:b2:e0:7c:f9:fe:50:2c:ad:c9: db:23:87:f7:ec:d7:8d:d8:cb:1d:71:90:6f:4c:bf: f6:e0:9a:82:5e:9a:bc:41:d0:86:e6:a8:e0:bb:82: e3:ff:48:86:f7:46:a7:ba:b1:6c:8e:ec:8f:78:99: 5c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:FF:E6:A3:E1:72:3C:A0:07:A4:9E:82:70:53:9A:FC:13:18:8B:89 X509v3 Authority Key Identifier: keyid:8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:ef:1c:98:64:c5:a5:2d:e3:27:27:0b:64:ab:47:83:ae:88: f4:a9:0a:d4:22:61:81:34:6c:2e:94:9d:b5:cd:33:f2:13:72: 6a:9c:51:30:1b:27:db:b6:46:da:d2:56:5e:a1:82:a1:a6:59: 8c:95:e1:38:5b:90:3d:6f:3e:af:d8:6c:f9:d9:23:92:ec:38: 5c:70:ec:e9:4d:09:9a:53:31:49:b5:52:06:39:d2:e9:a7:f7: a6:0b:a3:19:a9:41:eb:bf:59:d7:32:56:50:6c:f7:28:19:fe: 9c:69:aa:b6:6a:ff:aa:5e:e2:47:6b:cc:da:8c:ae:18:c7:23: e3:aa:5c:79:17:90:d1:24:b4:62:6c:be:ee:71:64:f0:dd:31: 15:27:6b:81:c3:87:c6:5a:d8:ce:1c:08:13:7f:37:8a:fb:08: 62:14:22:e4:e1:d4:13:92:ba:61:ac:d2:1d:52:26:01:15:54: 08:28:32:00:48:44:18:f3:de:1f:21:bc:56:e8:d8:21:13:3d: ba:65:41:eb:17:d9:36:b4:d7:a8:a7:67:44:93:2e:50:9c:f1: 8c:7e:11:2b:33:fd:1b:ef:b2:0d:0d:49:52:f3:6e:47:82:df: 1c:61:b0:94:41:e7:b6:69:5b:cb:c7:fb:53:47:93:32:6b:1a: 49:6e:f5:f5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNu+j2OvETPN6ql4Nnki0rvQUSDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU3RDI5QjhCMkU2RjJGMDlCNTA3RkMzNkIzMTczMTYy QTQzMTZFOTAeFw0yNjA1MDUwNTI4MDZaFw0yNjA1MDYwODM4MDZaMDMxMTAvBgNV BAMTKEE1RkZFNkEzRTE3MjNDQTAwN0E0OUU4MjcwNTM5QUZDMTMxODhCODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaIY3til+KrAT6aR/d+lIJ2f83 Vgk/Q8jUXnUMl5w3gpaBNkhnLKwoqQswAJDhZ8Txjc92QHpWtzH7xN2cA7nBRE5I ixkJEs+6uxaRaVQl9/IrVxkYAhlviF3Stl4f2PsgfN8fLXnFRenlSGfzgjJ9BoXr OomkLckQHohrzjphkjqVmDUrltePxU3lnESav4rJMjgHqNkCZf33w8eQtDMXgbRn lRjv366j9Q3c2Y1WSlT+HD0y5EBw0MmIBKbHLE1svkLtGI239LLgfPn+UCytydsj h/fs143Yyx1xkG9Mv/bgmoJemrxB0IbmqOC7guP/SIb3Rqe6sWyO7I94mVwjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpf/mo+FyPKAHpJ6CcFOa/BMYi4kwHwYDVR0j BBgwFoAUjn0puLLm8vCbUH/DazFzFipDFukwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTI1MmVhZDMtZGM4Zi00ZDg2LWFmY2YtYTE0MGU1Yjg3NTMyLzAvOEU3RDI5QjhC MkU2RjJGMDlCNTA3RkMzNkIzMTczMTYyQTQzMTZFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84RTdEMjlCOEIyRTZGMkYwOUI1MDdGQzM2QjMxNzMxNjJBNDMx NkU5LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNTI1MmVhZDMtZGM4Zi00ZDg2LWFm Y2YtYTE0MGU1Yjg3NTMyLzAvOEU3RDI5QjhCMkU2RjJGMDlCNTA3RkMzNkIzMTcz MTYyQTQzMTZFOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC7vHJhkxaUt4ycnC2SrR4OuiPSpCtQiYYE0 bC6UnbXNM/ITcmqcUTAbJ9u2RtrSVl6hgqGmWYyV4ThbkD1vPq/YbPnZI5LsOFxw 7OlNCZpTMUm1UgY50umn96YLoxmpQeu/WdcyVlBs9ygZ/pxpqrZq/6pe4kdrzNqM rhjHI+OqXHkXkNEktGJsvu5xZPDdMRUna4HDh8Za2M4cCBN/N4r7CGIUIuTh1BOS umGs0h1SJgEVVAgoMgBIRBjz3h8hvFbo2CETPbplQesX2Ta016inZ0STLlCc8Yx+ ESsz/Rvvsg0NSVLzbkeC3xxhsJRB57ZpW8vH+1NHkzJrGklu9fU= -----END CERTIFICATE-----Generated at Tue May 5 18:15:53 2026 by rpki-client