$ rpki-client -vvf rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft File: D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft (raw, json) Hash identifier: 9phi7708JlJ8jrFrN+mzgRqogmoT6ytMbrC2jNcQ2Bg= Subject key identifier: 4B:5D:5D:79:EA:6E:DC:8B:CA:0F:CB:54:04:E9:3F:CF:02:E1:5D:54 Authority key identifier: D8:5F:97:EC:28:98:23:A0:FE:C5:9A:16:FE:DF:A0:9F:72:EB:C8:35 Certificate issuer: /CN=D85F97EC289823A0FEC59A16FEDFA09F72EBC835 Certificate serial: 18CC649BE2CCA54859ACACD97BFEC912D1675AAB Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft Manifest number: 39 Signing time: Sat 13 Jun 2026 05:46:00 +0000 Manifest this update: Sat 13 Jun 2026 05:41:00 +0000 Manifest next update: Sun 14 Jun 2026 05:52:00 +0000 Files and hashes: 1: 33362e35302e34362e302f32342d3234203d3e20313338383838.roa (hash: Nvdk0iQE3TVdSwCANLKWH60xsOqyH90GO9904bD5/jk=) 2: 33362e35302e34372e302f32342d3234203d3e20313338383838.roa (hash: i4qKsTrQYXXhXKXalOlOEUcc525wPy7zaNFMk5Bgx/c=) 3: D85F97EC289823A0FEC59A16FEDFA09F72EBC835.crl (hash: 2wuBK8ynINjcc6B/N2rYczXatYy32tAiiyddJwznaDE=) 4: 33362e35302e34362e302f32332d3233203d3e20313338383838.roa (hash: /7DADKxkcEneVChkCCyUD/ZC0G20xDnhNSvZJoeZ1RA=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.crl rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 05:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:cc:64:9b:e2:cc:a5:48:59:ac:ac:d9:7b:fe:c9:12:d1:67:5a:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F97EC289823A0FEC59A16FEDFA09F72EBC835 Validity Not Before: Jun 13 05:41:00 2026 GMT Not After : Jun 14 05:52:00 2026 GMT Subject: CN=4B5D5D79EA6EDC8BCA0FCB5404E93FCF02E15D54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:48:35:b5:c2:38:03:5f:80:b5:63:77:be:4c: 4a:7c:a8:91:da:a8:76:36:b5:9f:32:24:56:36:51: 2f:95:18:8b:79:bd:d1:68:89:f1:2e:0e:41:1d:10: 33:63:e8:58:09:af:40:8c:2c:44:28:3f:d3:0e:66: cc:23:da:6a:89:fe:3f:92:28:83:ba:a4:d3:59:de: 7a:ee:81:4b:03:44:5f:9d:78:d4:5e:54:49:b2:6e: cf:8d:f2:fe:42:20:fa:f4:b1:19:68:33:d6:d4:89: 25:b7:00:75:25:fb:8e:6c:55:5a:59:89:7e:d5:48: b1:46:0b:b9:8e:cc:b7:e6:74:92:df:c5:0f:94:bc: 5d:fa:e5:34:9c:27:88:d4:c1:a3:e6:80:5a:c6:be: d2:0d:30:3b:d8:5f:55:b5:f0:07:8d:d4:30:e7:92: a3:6c:22:b3:3b:38:1d:af:cf:8f:4f:d6:11:b8:18: 31:0a:54:67:41:4d:8d:8f:e9:14:e5:dd:36:0a:ff: 55:ce:3b:84:4e:91:8c:56:62:b8:40:4d:ab:f4:b3: 1a:1e:5a:17:bf:9a:92:fb:c0:8b:94:53:f1:7b:33: 93:1b:8c:a3:16:10:cf:e8:44:6c:a6:06:e9:dc:13: 85:ba:d5:8e:43:36:a5:3a:d6:e9:b6:59:db:90:3a: 5c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5D:5D:79:EA:6E:DC:8B:CA:0F:CB:54:04:E9:3F:CF:02:E1:5D:54 X509v3 Authority Key Identifier: keyid:D8:5F:97:EC:28:98:23:A0:FE:C5:9A:16:FE:DF:A0:9F:72:EB:C8:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0268462e-bfa5-4337-9153-c556d9d771fa/0/D85F97EC289823A0FEC59A16FEDFA09F72EBC835.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:f4:9f:8c:39:1b:9d:d7:64:a0:03:75:f2:9c:16:ff:4d:8a: 74:a9:c4:eb:aa:3e:a0:54:a3:d0:46:65:59:06:cb:ee:be:8d: bd:ab:5b:4c:bc:5f:87:fc:44:e1:8b:ba:55:67:43:f4:11:74: c9:03:78:e1:ee:a6:d1:b6:03:83:63:29:be:62:4d:7f:47:8e: bd:e8:f9:75:6b:60:95:79:d4:7c:61:89:3b:cf:2f:1c:51:15: 04:7f:d9:ed:65:25:e3:1f:6d:1e:e8:c3:50:52:9b:f5:41:d9: 43:41:c8:7d:96:2f:45:86:06:27:d2:98:1c:a6:5b:46:96:54: 7b:3a:1f:49:bc:06:bc:52:ca:0c:73:3e:73:db:3c:1f:3f:ba: 94:a2:aa:56:ea:fe:18:46:00:56:52:44:b7:ca:da:fe:ce:2e: 7c:ae:41:6f:37:a3:ee:c3:91:ca:92:2b:63:b9:08:50:81:e8: 58:c4:b1:5f:92:32:e0:09:0d:c6:3a:7e:42:f0:14:98:08:ff: 74:22:4f:b9:fc:5d:a1:43:23:f5:66:3f:07:a2:70:5a:6b:ec: 37:ce:f4:e4:94:ad:69:36:e2:68:c1:cf:3f:1f:98:04:27:ec: 06:f1:89:7f:f0:cb:8e:72:b0:db:39:1a:c3:31:b2:9e:83:14: e7:49:e6:57 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGMxkm+LMpUhZrKzZe/7JEtFnWqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1Rjk3RUMyODk4MjNBMEZFQzU5QTE2RkVERkEwOUY3 MkVCQzgzNTAeFw0yNjA2MTMwNTQxMDBaFw0yNjA2MTQwNTUyMDBaMDMxMTAvBgNV BAMTKDRCNUQ1RDc5RUE2RURDOEJDQTBGQ0I1NDA0RTkzRkNGMDJFMTVENTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzSDW1wjgDX4C1Y3e+TEp8qJHa qHY2tZ8yJFY2US+VGIt5vdFoifEuDkEdEDNj6FgJr0CMLEQoP9MOZswj2mqJ/j+S KIO6pNNZ3nrugUsDRF+deNReVEmybs+N8v5CIPr0sRloM9bUiSW3AHUl+45sVVpZ iX7VSLFGC7mOzLfmdJLfxQ+UvF365TScJ4jUwaPmgFrGvtINMDvYX1W18AeN1DDn kqNsIrM7OB2vz49P1hG4GDEKVGdBTY2P6RTl3TYK/1XOO4ROkYxWYrhATav0sxoe Whe/mpL7wIuUU/F7M5MbjKMWEM/oRGymBuncE4W61Y5DNqU61um2WduQOlzlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUS11deepu3IvKD8tUBOk/zwLhXVQwHwYDVR0j BBgwFoAU2F+X7CiYI6D+xZoW/t+gn3LryDUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDI2ODQ2MmUtYmZhNS00MzM3LTkxNTMtYzU1NmQ5ZDc3MWZhLzAvRDg1Rjk3RUMy ODk4MjNBMEZFQzU5QTE2RkVERkEwOUY3MkVCQzgzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EODVGOTdFQzI4OTgyM0EwRkVDNTlBMTZGRURGQTA5RjcyRUJD ODM1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMDI2ODQ2MmUtYmZhNS00MzM3LTkx NTMtYzU1NmQ5ZDc3MWZhLzAvRDg1Rjk3RUMyODk4MjNBMEZFQzU5QTE2RkVERkEw OUY3MkVCQzgzNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG/0n4w5G53XZKADdfKcFv9NinSpxOuqPqBU o9BGZVkGy+6+jb2rW0y8X4f8ROGLulVnQ/QRdMkDeOHuptG2A4NjKb5iTX9Hjr3o +XVrYJV51HxhiTvPLxxRFQR/2e1lJeMfbR7ow1BSm/VB2UNByH2WL0WGBifSmBym W0aWVHs6H0m8BrxSygxzPnPbPB8/upSiqlbq/hhGAFZSRLfK2v7OLnyuQW83o+7D kcqSK2O5CFCB6FjEsV+SMuAJDcY6fkLwFJgI/3QiT7n8XaFDI/VmPweicFpr7DfO 9OSUrWk24mjBzz8fmAQn7AbxiX/wy45ysNs5GsMxsp6DFOdJ5lc= -----END CERTIFICATE-----Generated at Sat Jun 13 23:12:37 2026 by rpki-client