$ rpki-client -vvf rpki-rsync.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.mft File: D2707D53E07D53B00AF1917C7B06CAFE0B48C105.mft (raw, json) Hash identifier: Ie77HtKUDPaoXmYjzfgNNTD+7hs3sUImJ3FpsgKaa4Y= Subject key identifier: 7A:4B:68:B8:41:FB:9B:F4:4B:0F:AA:51:71:D8:F9:CD:A9:FF:F0:A4 Authority key identifier: D2:70:7D:53:E0:7D:53:B0:0A:F1:91:7C:7B:06:CA:FE:0B:48:C1:05 Certificate issuer: /CN=D2707D53E07D53B00AF1917C7B06CAFE0B48C105 Certificate serial: 0D4108E088A0B97E9539E932A9C28B08CAA8C19F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.mft Manifest number: 1A Signing time: Thu 21 May 2026 02:07:24 +0000 Manifest this update: Thu 21 May 2026 02:02:24 +0000 Manifest next update: Fri 22 May 2026 03:46:24 +0000 Files and hashes: 1: D2707D53E07D53B00AF1917C7B06CAFE0B48C105.crl (hash: it0Q1qPZ7Ck9ZfE22SRlKE+byygQCnVIPVkcPXOU4t0=) 2: 3130332e37392e3133312e302f32342d3234203d3e20313430343433.roa (hash: N+OTkKCrsA8j5gwyH0Mpha31q8YHuNMGpdCuA0VgWcY=) 3: 3130332e37392e3133302e302f32332d3233203d3e20313430343433.roa (hash: z0PNiSkl97AAkKJELLOVf430z2bBk4x4W6fIOoHOGmo=) 4: 3130332e37392e3133302e302f32342d3234203d3e20313430343433.roa (hash: TWEuLcbFsQpYWxLsu1a0ItVks1vfqJFaCCURAAEUNEI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.crl rsync://rpki-rsync.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 May 2026 03:46:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:41:08:e0:88:a0:b9:7e:95:39:e9:32:a9:c2:8b:08:ca:a8:c1:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2707D53E07D53B00AF1917C7B06CAFE0B48C105 Validity Not Before: May 21 02:02:24 2026 GMT Not After : May 22 03:46:24 2026 GMT Subject: CN=7A4B68B841FB9BF44B0FAA5171D8F9CDA9FFF0A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d2:ea:fd:f2:3f:c6:a9:dd:24:a6:50:7f:44: 5f:d7:a9:af:d0:50:cc:ef:64:51:c7:32:8a:a9:88: d9:9f:cd:86:e5:f1:ea:32:16:5d:69:43:03:bc:8e: d4:4f:0a:c2:20:e4:e1:cf:c1:35:67:b5:1d:be:e9: 2a:97:55:bf:b2:53:b6:1e:8b:16:09:68:06:6f:27: a5:66:33:7d:b6:c9:0a:86:54:c2:ec:16:b0:e7:3a: 06:54:56:a2:fc:68:0a:f4:2c:c0:b3:3c:09:d5:f3: 7e:bc:8d:96:30:79:9c:04:f6:68:65:e6:04:64:a6: 0d:2a:e5:46:30:ec:7b:f5:ce:27:98:cf:74:3c:12: d7:95:cd:a6:ac:14:41:ce:fc:cb:99:7f:06:ff:99: 57:bf:f7:ea:66:14:9f:ba:0f:61:5a:cd:16:e4:f0: e8:10:c0:ad:c4:03:40:5a:1e:d4:31:6c:7a:b5:5a: 1b:5e:57:9e:89:51:3c:ae:f0:d1:7c:fb:30:36:80: d3:8c:91:90:b5:45:e5:ab:0b:9b:55:d6:81:eb:04: 62:fb:4c:12:42:29:d0:d1:7e:e9:c3:18:91:d1:a6: 07:f5:c2:ef:52:f3:8d:e6:b5:2d:99:d2:48:0d:86: c3:38:a8:66:3f:3d:9f:0f:4f:22:c4:38:8c:b3:cc: df:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4B:68:B8:41:FB:9B:F4:4B:0F:AA:51:71:D8:F9:CD:A9:FF:F0:A4 X509v3 Authority Key Identifier: keyid:D2:70:7D:53:E0:7D:53:B0:0A:F1:91:7C:7B:06:CA:FE:0B:48:C1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fae24907-a6f2-4a55-aa6f-18c7db143fe8/0/D2707D53E07D53B00AF1917C7B06CAFE0B48C105.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:28:e4:34:92:c0:92:c5:e1:16:09:15:04:17:f2:7b:b5:c6: 5f:16:4a:0f:79:aa:87:91:b1:01:87:d9:25:c6:10:26:fa:5b: 26:2a:0e:3e:fe:fa:3c:91:87:18:c1:8f:85:95:79:7d:89:4f: b3:8f:1b:4a:27:c0:16:fc:03:c2:a1:06:14:45:b3:1b:fd:b8: 5c:9b:ef:94:03:d2:41:fd:fe:d3:81:69:a1:33:55:6d:da:50: fa:a0:40:b7:c1:98:3d:dc:09:9e:68:63:71:0d:65:ba:21:d8: 6e:db:e0:ae:74:72:86:36:b9:ee:98:f1:83:12:05:6f:4b:5e: 0e:ba:53:1e:ea:3e:dc:43:b1:fe:7d:31:70:6d:35:5e:91:eb: dc:79:bb:29:49:34:87:73:34:73:a5:81:4a:73:50:60:38:43: ba:61:d0:5a:c5:dc:ac:89:52:83:bf:bd:d8:5a:d9:71:d8:04: 81:f8:ab:ca:cf:f1:70:aa:0e:0f:5c:de:4e:8b:d8:ec:a1:c7: 70:19:49:8a:51:fe:30:b8:da:9d:2c:9b:46:6b:c2:1c:03:87: 61:ca:9b:6a:08:71:65:5c:ca:9c:3f:1d:f7:4b:c4:00:fc:3d: 3c:16:42:b6:e4:f2:70:fe:e2:d2:56:4a:d3:94:44:aa:91:34: b9:45:27:37 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDUEI4IiguX6VOekyqcKLCMqowZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI3MDdENTNFMDdENTNCMDBBRjE5MTdDN0IwNkNBRkUw QjQ4QzEwNTAeFw0yNjA1MjEwMjAyMjRaFw0yNjA1MjIwMzQ2MjRaMDMxMTAvBgNV BAMTKDdBNEI2OEI4NDFGQjlCRjQ0QjBGQUE1MTcxRDhGOUNEQTlGRkYwQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB0ur98j/Gqd0kplB/RF/Xqa/Q UMzvZFHHMoqpiNmfzYbl8eoyFl1pQwO8jtRPCsIg5OHPwTVntR2+6SqXVb+yU7Ye ixYJaAZvJ6VmM322yQqGVMLsFrDnOgZUVqL8aAr0LMCzPAnV8368jZYweZwE9mhl 5gRkpg0q5UYw7Hv1zieYz3Q8EteVzaasFEHO/MuZfwb/mVe/9+pmFJ+6D2FazRbk 8OgQwK3EA0BaHtQxbHq1WhteV56JUTyu8NF8+zA2gNOMkZC1ReWrC5tV1oHrBGL7 TBJCKdDRfunDGJHRpgf1wu9S843mtS2Z0kgNhsM4qGY/PZ8PTyLEOIyzzN8zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUektouEH7m/RLD6pRcdj5zan/8KQwHwYDVR0j BBgwFoAU0nB9U+B9U7AK8ZF8ewbK/gtIwQUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmFlMjQ5MDctYTZmMi00YTU1LWFhNmYtMThjN2RiMTQzZmU4LzAvRDI3MDdENTNF MDdENTNCMDBBRjE5MTdDN0IwNkNBRkUwQjQ4QzEwNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMjcwN0Q1M0UwN0Q1M0IwMEFGMTkxN0M3QjA2Q0FGRTBCNDhD MTA1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZmFlMjQ5MDctYTZmMi00YTU1LWFh NmYtMThjN2RiMTQzZmU4LzAvRDI3MDdENTNFMDdENTNCMDBBRjE5MTdDN0IwNkNB RkUwQjQ4QzEwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK0o5DSSwJLF4RYJFQQX8nu1xl8WSg95qoeR sQGH2SXGECb6WyYqDj7++jyRhxjBj4WVeX2JT7OPG0onwBb8A8KhBhRFsxv9uFyb 75QD0kH9/tOBaaEzVW3aUPqgQLfBmD3cCZ5oY3ENZboh2G7b4K50coY2ue6Y8YMS BW9LXg66Ux7qPtxDsf59MXBtNV6R69x5uylJNIdzNHOlgUpzUGA4Q7ph0FrF3KyJ UoO/vdha2XHYBIH4q8rP8XCqDg9c3k6L2Oyhx3AZSYpR/jC42p0sm0ZrwhwDh2HK m2oIcWVcypw/HfdLxAD8PTwWQrbk8nD+4tJWStOURKqRNLlFJzc= -----END CERTIFICATE-----Generated at Thu May 21 12:32:43 2026 by rpki-client