$ rpki-client -vvf rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.mft File: 823E59BE50593557F29378EC4CAC8BDE16BF5074.mft (raw, json) Hash identifier: Z9wjyDToZjIrTQc7R4xBBVvBHcEenkE2gkq8QfLejzI= Subject key identifier: A3:A3:FB:F2:7D:EE:8A:FA:47:3D:07:6D:5E:E5:59:A1:04:A4:53:9B Authority key identifier: 82:3E:59:BE:50:59:35:57:F2:93:78:EC:4C:AC:8B:DE:16:BF:50:74 Certificate issuer: /CN=823E59BE50593557F29378EC4CAC8BDE16BF5074 Certificate serial: 2523DC5CEFB22443454A7E10423AA7A83D85FFC4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/823E59BE50593557F29378EC4CAC8BDE16BF5074.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.mft Manifest number: 05 Signing time: Tue 05 May 2026 06:34:52 +0000 Manifest this update: Tue 05 May 2026 06:29:52 +0000 Manifest next update: Wed 06 May 2026 09:06:52 +0000 Files and hashes: 1: 823E59BE50593557F29378EC4CAC8BDE16BF5074.crl (hash: NY1eMFYm5uJ5lrFJ2gfPi9WPGPwwR0r4bES9619xDSQ=) 2: 3130332e3139302e35312e302f32342d3234203d3e2039333431.roa (hash: xnCevyudli2t9um2DVMk2wF4GvogAhTTvOVWqK7SaCE=) 3: 3130332e3139302e35302e302f32332d3233203d3e2039333431.roa (hash: 8cSHk4Qmt00Rlx//RoPVD8OhEt2winz9iHDLk522or4=) 4: 3130332e3139302e35302e302f32342d3234203d3e2039333431.roa (hash: dzAufJOseFap4DRjmnUOc2LvueVNrB6swsyJUi6b4Xw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.crl rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/823E59BE50593557F29378EC4CAC8BDE16BF5074.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 06 May 2026 09:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:23:dc:5c:ef:b2:24:43:45:4a:7e:10:42:3a:a7:a8:3d:85:ff:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=823E59BE50593557F29378EC4CAC8BDE16BF5074 Validity Not Before: May 5 06:29:52 2026 GMT Not After : May 6 09:06:52 2026 GMT Subject: CN=A3A3FBF27DEE8AFA473D076D5EE559A104A4539B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:74:b5:85:35:21:e8:b2:5f:7f:53:bf:88:3a: d8:b4:26:1f:cb:37:26:db:dd:19:32:0c:85:99:04: d1:07:7d:4b:20:40:d6:d1:1d:a5:50:40:d7:9d:a1: b0:10:66:3a:16:e2:d7:d7:4a:87:d2:7d:fd:b7:23: 1d:65:63:19:40:95:2e:f9:8f:f7:1a:6e:d6:7a:e9: 77:03:0d:e3:b5:be:e1:6e:b8:80:4e:e6:d3:7c:23: e1:e6:9b:93:57:ef:e4:80:7a:4b:10:21:19:28:c7: 39:b7:69:3a:df:05:25:f3:82:02:eb:2c:14:fc:1d: cd:73:b1:89:d3:a9:12:a5:64:4b:1e:ca:e2:66:eb: 97:86:7a:18:46:0b:a9:49:38:ba:e8:be:67:06:0f: 26:b6:bc:32:2c:3f:e5:68:99:3b:33:7a:77:99:c4: ee:d5:ee:48:f6:28:04:35:41:db:86:61:a5:20:54: cc:1f:2c:48:d6:98:1b:5d:31:86:e2:6f:a3:07:eb: cf:cc:b8:d6:8e:a8:4f:15:e0:e5:af:c4:e7:4b:15: 49:82:3b:2e:cf:9c:b6:b5:c6:6f:0a:69:b2:9d:90: b9:40:49:04:cc:94:db:7f:f9:aa:fd:f5:f8:7e:fd: a3:a2:ac:d9:fa:fc:9a:c0:8f:c0:75:1c:1d:49:41: c2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:A3:FB:F2:7D:EE:8A:FA:47:3D:07:6D:5E:E5:59:A1:04:A4:53:9B X509v3 Authority Key Identifier: keyid:82:3E:59:BE:50:59:35:57:F2:93:78:EC:4C:AC:8B:DE:16:BF:50:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/823E59BE50593557F29378EC4CAC8BDE16BF5074.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:db:b1:9c:d8:55:fb:0b:13:3d:18:cc:6c:db:42:7f:d2:a2: 2c:9a:34:3a:5c:da:5e:80:a9:6f:f6:13:01:50:af:3d:0d:27: c1:de:0d:23:d2:eb:08:66:e3:9a:b0:ab:a7:f3:62:f9:8b:8d: 1a:d1:f8:72:da:ef:50:f5:cc:28:65:e2:4a:bd:43:93:12:e8: c0:e6:3c:6e:ea:78:7e:4d:49:05:fd:a0:39:8b:91:79:f9:40: aa:27:a1:24:0c:83:2c:3f:04:7b:8f:d9:30:2c:c6:df:68:07: fe:f5:be:8e:47:fd:91:11:dc:a3:ae:a8:93:4c:b6:3d:da:53: 89:01:be:60:2a:ad:db:09:35:74:81:71:a5:af:f8:b6:9a:23: 70:1d:ad:50:e4:4d:b5:c8:88:45:c1:30:a5:bc:00:cd:ca:b6: a6:90:8b:7e:1e:de:cb:1d:c8:f4:7c:f7:aa:ba:9d:2f:07:68: 4d:a8:1b:08:6d:ca:ba:f7:a0:76:1f:45:ac:4b:37:5d:f6:d8: ee:5f:68:21:53:aa:8b:98:fa:68:d0:77:cd:9d:a8:a3:5e:1d: 6b:ed:3e:23:4e:9d:6d:a3:32:f7:f6:c8:b9:a6:05:53:11:d3: 89:1d:9e:d7:f7:31:07:15:f6:bf:8a:ab:49:bf:4a:c9:de:09: 8b:d1:88:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJSPcXO+yJENFSn4QQjqnqD2F/8QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIzRTU5QkU1MDU5MzU1N0YyOTM3OEVDNENBQzhCREUx NkJGNTA3NDAeFw0yNjA1MDUwNjI5NTJaFw0yNjA1MDYwOTA2NTJaMDMxMTAvBgNV BAMTKEEzQTNGQkYyN0RFRThBRkE0NzNEMDc2RDVFRTU1OUExMDRBNDUzOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2dLWFNSHosl9/U7+IOti0Jh/L Nybb3RkyDIWZBNEHfUsgQNbRHaVQQNedobAQZjoW4tfXSofSff23Ix1lYxlAlS75 j/cabtZ66XcDDeO1vuFuuIBO5tN8I+Hmm5NX7+SAeksQIRkoxzm3aTrfBSXzggLr LBT8Hc1zsYnTqRKlZEseyuJm65eGehhGC6lJOLrovmcGDya2vDIsP+VomTszeneZ xO7V7kj2KAQ1QduGYaUgVMwfLEjWmBtdMYbib6MH68/MuNaOqE8V4OWvxOdLFUmC Oy7PnLa1xm8KabKdkLlASQTMlNt/+ar99fh+/aOirNn6/JrAj8B1HB1JQcJ/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo6P78n3uivpHPQdtXuVZoQSkU5swHwYDVR0j BBgwFoAUgj5ZvlBZNVfyk3jsTKyL3ha/UHQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjU4MzgzZTItMjA2Yy00Yjc0LWJhNGEtY2Q4YTRkN2NkODYxLzAvODIzRTU5QkU1 MDU5MzU1N0YyOTM3OEVDNENBQzhCREUxNkJGNTA3NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84MjNFNTlCRTUwNTkzNTU3RjI5Mzc4RUM0Q0FDOEJERTE2QkY1 MDc0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZjU4MzgzZTItMjA2Yy00Yjc0LWJh NGEtY2Q4YTRkN2NkODYxLzAvODIzRTU5QkU1MDU5MzU1N0YyOTM3OEVDNENBQzhC REUxNkJGNTA3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG3bsZzYVfsLEz0YzGzbQn/SoiyaNDpc2l6A qW/2EwFQrz0NJ8HeDSPS6whm45qwq6fzYvmLjRrR+HLa71D1zChl4kq9Q5MS6MDm PG7qeH5NSQX9oDmLkXn5QKonoSQMgyw/BHuP2TAsxt9oB/71vo5H/ZER3KOuqJNM tj3aU4kBvmAqrdsJNXSBcaWv+LaaI3AdrVDkTbXIiEXBMKW8AM3KtqaQi34e3ssd yPR896q6nS8HaE2oGwhtyrr3oHYfRaxLN1322O5faCFTqouY+mjQd82dqKNeHWvt PiNOnW2jMvf2yLmmBVMR04kdntf3MQcV9r+Kq0m/SsneCYvRiHI= -----END CERTIFICATE-----Generated at Tue May 5 14:08:32 2026 by rpki-client