$ rpki-client -vvf rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft File: 202D68B92C393694107A2F9B59DF1822383F0A40.mft (raw, json) Hash identifier: ZOoGvKEOLwrL52pq3QIdk6vTFBausfT8Ay+9nruIpdQ= Subject key identifier: 99:05:AF:75:9C:D0:64:73:FC:59:43:A0:56:56:A3:77:10:6B:43:3A Authority key identifier: 20:2D:68:B9:2C:39:36:94:10:7A:2F:9B:59:DF:18:22:38:3F:0A:40 Certificate issuer: /CN=202D68B92C393694107A2F9B59DF1822383F0A40 Certificate serial: 650671887B4F22EDC3D999DFCDF2F700C87E1438 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft Manifest number: 05 Signing time: Tue 05 May 2026 07:11:21 +0000 Manifest this update: Tue 05 May 2026 07:06:21 +0000 Manifest next update: Wed 06 May 2026 09:09:21 +0000 Files and hashes: 1: 3130332e3232302e34352e302f32342d3234203d3e203438343635.roa (hash: s1JJ4qxqnX+/x2wRLTL/vn6XvEiBu3g0RUuaHJFKCfY=) 2: 3130332e3232302e34342e302f32342d3234203d3e203438343635.roa (hash: 59w4gZXVO0UF24xOSJ6tHWLfwtyek7qt4pTN2C7JT58=) 3: 3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa (hash: JJn7HIlfA2u7cKl1pj836AvFJgvd06b+L9BxXbXGPiQ=) 4: 202D68B92C393694107A2F9B59DF1822383F0A40.crl (hash: 14MqqxAGldeAuz+VtbY2bkjmhwG3wmXBgF29DMIcBmY=) 5: 3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa (hash: sVkX/3BAqlUnIX3vPMQ13bPbeRbhUsec2KXwzV7qXyg=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.crl rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 09:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:06:71:88:7b:4f:22:ed:c3:d9:99:df:cd:f2:f7:00:c8:7e:14:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202D68B92C393694107A2F9B59DF1822383F0A40 Validity Not Before: May 5 07:06:21 2026 GMT Not After : May 6 09:09:21 2026 GMT Subject: CN=9905AF759CD06473FC5943A05656A377106B433A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9c:dc:72:ee:21:fe:a3:b8:df:32:f2:da:56: 77:94:80:49:d5:5c:5f:71:b1:21:be:d1:10:4f:5b: 5c:55:c8:b4:24:80:85:5f:28:21:42:a9:7e:89:34: c8:ab:56:8a:14:04:31:6a:ce:bc:1b:73:3a:5e:f1: 18:b3:5b:cc:61:02:b0:86:4d:48:8d:09:f3:c7:0c: 59:95:b4:25:48:68:f8:5b:e5:86:f4:c1:8e:9d:fe: 70:c6:02:ff:75:cc:e7:93:09:93:54:e0:66:94:9a: ae:cb:5d:64:3a:ba:a4:19:48:48:fc:4a:c4:df:05: 3f:09:d9:c6:b4:5c:68:ed:e0:11:9d:fd:f4:b3:97: cd:c5:aa:df:dc:0f:af:00:c3:2e:05:61:e9:59:3e: 41:3b:3b:8d:58:ef:c7:46:b6:0d:d5:ba:1d:c8:66: 90:06:b0:6f:b3:8a:3c:f6:d4:d4:49:2a:e6:00:4b: 4a:ce:c9:ee:8b:85:2f:e8:d0:cf:11:27:8d:6c:04: 53:5b:61:ee:25:35:8e:57:82:5f:89:66:dd:4d:76: 58:33:f0:cb:15:27:b3:3f:3b:b4:21:eb:5d:d4:f9: 78:73:ef:a9:50:53:a9:43:de:65:a4:91:63:ea:29: 66:8e:c4:25:30:a3:15:68:37:8e:79:a0:7a:97:bb: 2f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:05:AF:75:9C:D0:64:73:FC:59:43:A0:56:56:A3:77:10:6B:43:3A X509v3 Authority Key Identifier: keyid:20:2D:68:B9:2C:39:36:94:10:7A:2F:9B:59:DF:18:22:38:3F:0A:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:02:c5:d4:18:0b:51:32:5a:90:cd:d5:e4:a0:08:6f:16:77: f6:c9:f6:b1:34:89:b0:d8:92:f8:d3:d2:26:95:77:5e:b8:94: 47:df:49:15:8e:4e:70:0b:d8:70:97:ce:01:92:a6:dd:25:2c: 45:f0:28:15:94:9e:58:e5:cf:a0:ae:09:f7:9f:d3:5e:94:35: d6:a8:94:c1:a4:42:3d:9e:f2:a2:fe:81:31:fc:e2:fe:7f:8f: d0:73:dc:ed:b7:e1:a2:92:e9:f5:6e:31:ff:a4:23:3d:15:a0: 71:df:86:d2:70:91:2e:73:88:4f:be:25:7b:c5:dc:61:a4:58: a0:50:54:4f:f0:d3:88:df:ab:07:18:d9:36:f1:da:bf:f1:e9: c4:2f:b1:78:77:fa:a2:49:89:bc:da:72:7b:f0:f7:62:34:db: 90:b4:22:1a:07:44:10:c3:62:3e:4a:95:8f:ab:63:49:57:ff: 9b:5f:08:6f:5f:eb:58:30:c7:80:79:9a:56:4e:7d:3d:12:a4: 72:99:21:1b:6a:f5:5a:24:e0:b5:c1:66:e3:86:e4:ff:fc:df: 4a:7e:5e:9a:8e:9f:cb:62:52:9a:42:91:e8:e9:62:27:61:73: da:17:16:e1:82:b3:e6:91:45:43:ea:3f:cf:5a:e7:28:80:15: c3:5a:90:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZQZxiHtPIu3D2ZnfzfL3AMh+FDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyRDY4QjkyQzM5MzY5NDEwN0EyRjlCNTlERjE4MjIz ODNGMEE0MDAeFw0yNjA1MDUwNzA2MjFaFw0yNjA1MDYwOTA5MjFaMDMxMTAvBgNV BAMTKDk5MDVBRjc1OUNEMDY0NzNGQzU5NDNBMDU2NTZBMzc3MTA2QjQzM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbnNxy7iH+o7jfMvLaVneUgEnV XF9xsSG+0RBPW1xVyLQkgIVfKCFCqX6JNMirVooUBDFqzrwbczpe8RizW8xhArCG TUiNCfPHDFmVtCVIaPhb5Yb0wY6d/nDGAv91zOeTCZNU4GaUmq7LXWQ6uqQZSEj8 SsTfBT8J2ca0XGjt4BGd/fSzl83Fqt/cD68Awy4FYelZPkE7O41Y78dGtg3Vuh3I ZpAGsG+zijz21NRJKuYAS0rOye6LhS/o0M8RJ41sBFNbYe4lNY5Xgl+JZt1Ndlgz 8MsVJ7M/O7Qh613U+Xhz76lQU6lD3mWkkWPqKWaOxCUwoxVoN455oHqXuy9ZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmQWvdZzQZHP8WUOgVlajdxBrQzowHwYDVR0j BBgwFoAUIC1ouSw5NpQQei+bWd8YIjg/CkAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjU3MjkyOTEtYTFhNy00YjE5LTkzZjYtMWQ4NDU3NGE2N2FlLzAvMjAyRDY4Qjky QzM5MzY5NDEwN0EyRjlCNTlERjE4MjIzODNGMEE0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDJENjhCOTJDMzkzNjk0MTA3QTJGOUI1OURGMTgyMjM4M0Yw QTQwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjU3MjkyOTEtYTFhNy00YjE5LTkz ZjYtMWQ4NDU3NGE2N2FlLzAvMjAyRDY4QjkyQzM5MzY5NDEwN0EyRjlCNTlERjE4 MjIzODNGMEE0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABsCxdQYC1EyWpDN1eSgCG8Wd/bJ9rE0ibDY kvjT0iaVd164lEffSRWOTnAL2HCXzgGSpt0lLEXwKBWUnljlz6CuCfef016UNdao lMGkQj2e8qL+gTH84v5/j9Bz3O234aKS6fVuMf+kIz0VoHHfhtJwkS5ziE++JXvF 3GGkWKBQVE/w04jfqwcY2Tbx2r/x6cQvsXh3+qJJibzacnvw92I025C0IhoHRBDD Yj5KlY+rY0lX/5tfCG9f61gwx4B5mlZOfT0SpHKZIRtq9Vok4LXBZuOG5P/830p+ XpqOn8tiUppCkejpYidhc9oXFuGCs+aRRUPqP89a5yiAFcNakEM= -----END CERTIFICATE-----Generated at Tue May 5 18:19:13 2026 by rpki-client