$ rpki-client -vvf rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft File: AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft (raw, json) Hash identifier: VOb3rBpoiWysNX6Q77CxXezXzozyo1QzWkmWzEO5CyI= Subject key identifier: 22:3C:74:52:71:01:E8:0D:27:15:2C:4F:55:69:D9:77:62:F2:89:71 Authority key identifier: AA:23:A6:85:C6:72:62:26:B6:31:C7:DF:6C:89:BB:44:13:F6:F3:B6 Certificate issuer: /CN=AA23A685C6726226B631C7DF6C89BB4413F6F3B6 Certificate serial: 49D1A01DFDF108802CC565EE8100AFEA910D4FD6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft Manifest number: 3F Signing time: Wed 17 Jun 2026 07:42:08 +0000 Manifest this update: Wed 17 Jun 2026 07:37:08 +0000 Manifest next update: Thu 18 Jun 2026 09:45:08 +0000 Files and hashes: 1: 3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa (hash: wM3JMaIp+zvVQetOr/lRp0Azv2B1AVIYfVuKB1kJoRo=) 2: AA23A685C6726226B631C7DF6C89BB4413F6F3B6.crl (hash: nXl7FqDem/rjE8rxwA+tG3gu+JeMjPBY0dn8g3Aw+1I=) 3: 3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa (hash: vehsLc9IdsSn7EUUdSdrNurNOdDJw1QIcbLPuX3RJb4=) 4: 3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa (hash: RQ6zv/OcNcVun/cTLFBfmSLzfQJzMXKgcoU2+4K4YAw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.crl rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d1:a0:1d:fd:f1:08:80:2c:c5:65:ee:81:00:af:ea:91:0d:4f:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA23A685C6726226B631C7DF6C89BB4413F6F3B6 Validity Not Before: Jun 17 07:37:08 2026 GMT Not After : Jun 18 09:45:08 2026 GMT Subject: CN=223C74527101E80D27152C4F5569D97762F28971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c1:67:9f:1b:c9:57:9a:9d:46:df:c8:41:10: a7:7e:2d:11:14:c3:a6:3d:9d:4e:fe:22:99:ab:23: f6:76:4b:5e:95:53:00:37:8f:fb:10:4a:fa:0a:a2: fe:00:c4:f6:70:ef:92:f3:9f:bd:b3:dc:e6:21:0b: 68:94:be:f7:f2:93:e9:d6:9d:68:ee:10:c9:2a:a0: 33:97:d1:df:74:30:88:d7:4a:be:1c:d0:81:23:18: b7:05:bd:b8:1b:a6:b9:e4:7c:54:5c:9b:29:4e:3b: ca:21:5b:6b:3d:65:e2:94:2e:3f:fc:7a:4e:80:83: d1:b0:fd:7c:e1:31:0e:75:2b:45:05:9d:57:ec:d7: 89:69:f8:18:06:94:08:5c:e9:a9:ca:59:b6:4d:54: af:b3:e2:8f:80:17:8f:88:c2:f3:a3:13:cf:87:cd: d2:36:d3:67:d0:c0:01:01:1f:fb:36:d6:d7:bb:72: df:70:a8:69:56:f0:66:8f:d6:eb:a3:aa:3a:ca:ab: a6:76:dd:fd:71:dc:a3:b5:72:a6:74:81:1b:d6:0e: 61:b7:29:87:68:b5:12:36:70:17:16:7a:e0:5d:c9: 33:91:98:19:6e:fd:ff:40:33:6d:f3:e1:47:95:15: 32:89:33:7f:aa:1a:e3:69:9b:b0:34:fb:57:0a:05: 1e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:3C:74:52:71:01:E8:0D:27:15:2C:4F:55:69:D9:77:62:F2:89:71 X509v3 Authority Key Identifier: keyid:AA:23:A6:85:C6:72:62:26:B6:31:C7:DF:6C:89:BB:44:13:F6:F3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:ed:44:88:b2:54:a7:0a:b7:25:d6:86:0f:4c:be:84:69:f7: 45:01:c1:b9:74:44:11:ff:fc:14:8f:d5:47:a3:00:dd:25:36: a3:c5:a0:6a:c3:40:68:3a:fe:43:f7:79:78:5f:91:4c:92:52: b0:a9:2c:42:24:6c:60:4d:a7:7a:cf:50:f4:6b:e7:93:3f:16: 09:b5:2b:01:81:6e:15:28:9e:80:e6:ee:85:ab:80:0b:54:37: 25:05:d7:ce:51:dc:cb:aa:f5:d8:1a:c4:93:d5:24:13:c4:b6: 4c:c1:e9:3c:51:b3:90:48:7f:41:fd:fb:ab:36:df:29:76:ea: d8:56:c1:12:42:47:79:fc:8d:da:39:7a:a3:43:6e:83:6f:c1: 36:3c:e7:9e:0d:32:82:b3:a1:e4:bb:f4:7f:d5:ad:0f:a2:e4: 9f:c7:93:8c:f6:7a:e2:23:5f:bd:a4:04:b4:40:bb:8f:2f:f4: 02:9f:91:54:53:7a:45:58:8c:9f:4d:35:ec:53:ed:e0:79:1e: 44:3c:8f:fa:91:ef:f4:18:78:79:e4:5a:d8:b3:90:7f:74:ff: e2:52:ef:13:f4:96:ba:db:d0:d4:79:af:36:50:80:17:4b:57: fd:88:ce:f7:ff:3f:b6:22:45:ea:af:f1:01:25:9b:8d:38:0d: f1:ab:5c:54 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSdGgHf3xCIAsxWXugQCv6pENT9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEyM0E2ODVDNjcyNjIyNkI2MzFDN0RGNkM4OUJCNDQx M0Y2RjNCNjAeFw0yNjA2MTcwNzM3MDhaFw0yNjA2MTgwOTQ1MDhaMDMxMTAvBgNV BAMTKDIyM0M3NDUyNzEwMUU4MEQyNzE1MkM0RjU1NjlEOTc3NjJGMjg5NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTwWefG8lXmp1G38hBEKd+LREU w6Y9nU7+IpmrI/Z2S16VUwA3j/sQSvoKov4AxPZw75Lzn72z3OYhC2iUvvfyk+nW nWjuEMkqoDOX0d90MIjXSr4c0IEjGLcFvbgbprnkfFRcmylOO8ohW2s9ZeKULj/8 ek6Ag9Gw/XzhMQ51K0UFnVfs14lp+BgGlAhc6anKWbZNVK+z4o+AF4+IwvOjE8+H zdI202fQwAEBH/s21te7ct9wqGlW8GaP1uujqjrKq6Z23f1x3KO1cqZ0gRvWDmG3 KYdotRI2cBcWeuBdyTORmBlu/f9AM23z4UeVFTKJM3+qGuNpm7A0+1cKBR7zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUIjx0UnEB6A0nFSxPVWnZd2LyiXEwHwYDVR0j BBgwFoAUqiOmhcZyYia2McffbIm7RBP287YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDQ2M2FlN2MtYTZmZi00ZmQ4LTk2ZjItMGJhMTg4MDEzM2M3LzAvQUEyM0E2ODVD NjcyNjIyNkI2MzFDN0RGNkM4OUJCNDQxM0Y2RjNCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTIzQTY4NUM2NzI2MjI2QjYzMUM3REY2Qzg5QkI0NDEzRjZG M0I2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMDQ2M2FlN2MtYTZmZi00ZmQ4LTk2 ZjItMGJhMTg4MDEzM2M3LzAvQUEyM0E2ODVDNjcyNjIyNkI2MzFDN0RGNkM4OUJC NDQxM0Y2RjNCNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC7tRIiyVKcKtyXWhg9MvoRp90UBwbl0RBH/ /BSP1UejAN0lNqPFoGrDQGg6/kP3eXhfkUySUrCpLEIkbGBNp3rPUPRr55M/Fgm1 KwGBbhUonoDm7oWrgAtUNyUF185R3Muq9dgaxJPVJBPEtkzB6TxRs5BIf0H9+6s2 3yl26thWwRJCR3n8jdo5eqNDboNvwTY8554NMoKzoeS79H/VrQ+i5J/Hk4z2euIj X72kBLRAu48v9AKfkVRTekVYjJ9NNexT7eB5HkQ8j/qR7/QYeHnkWtizkH90/+JS 7xP0lrrb0NR5rzZQgBdLV/2Izvf/P7YiReqv8QElm404DfGrXFQ= -----END CERTIFICATE-----Generated at Wed Jun 17 11:30:46 2026 by rpki-client