$ rpki-client -vvf rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.mft File: 85638E4C723F993851F22E4C79D5E467D64EF6E5.mft (raw, json) Hash identifier: N98BfT6E/5rdlHVf9GiQVvRAsOf5E8CX7NebOH0phVE= Subject key identifier: 1B:57:A7:EB:EC:4D:11:B5:62:90:9D:28:4F:D1:C4:09:34:8E:CA:D9 Authority key identifier: 85:63:8E:4C:72:3F:99:38:51:F2:2E:4C:79:D5:E4:67:D6:4E:F6:E5 Certificate issuer: /CN=85638E4C723F993851F22E4C79D5E467D64EF6E5 Certificate serial: 2935919B00BC08908618E03E528B18495C5E8C62 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85638E4C723F993851F22E4C79D5E467D64EF6E5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.mft Manifest number: 3E Signing time: Wed 17 Jun 2026 05:29:35 +0000 Manifest this update: Wed 17 Jun 2026 05:24:34 +0000 Manifest next update: Thu 18 Jun 2026 06:10:34 +0000 Files and hashes: 1: 85638E4C723F993851F22E4C79D5E467D64EF6E5.crl (hash: ZjqVCqjp9+2ZiSQn+dLCZBQLaZCr/yNiatl6fCcTbvw=) 2: 3230332e3131312e3235342e302f32332d3234203d3e20313531393931.roa (hash: otj2sIGnWzWgRnhmdcO20guHoUVJ8w7hWeCj8su+1ls=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.crl rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85638E4C723F993851F22E4C79D5E467D64EF6E5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:35:91:9b:00:bc:08:90:86:18:e0:3e:52:8b:18:49:5c:5e:8c:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85638E4C723F993851F22E4C79D5E467D64EF6E5 Validity Not Before: Jun 17 05:24:34 2026 GMT Not After : Jun 18 06:10:34 2026 GMT Subject: CN=1B57A7EBEC4D11B562909D284FD1C409348ECAD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:20:c4:84:26:2f:6a:e5:a4:f4:d1:80:8c:f9: 57:92:b2:be:0f:60:7e:9b:4a:f5:53:85:55:a1:34: 19:b6:ca:78:e0:7d:85:bc:91:1e:05:75:48:ac:33: 7b:32:1e:a9:bb:84:d8:ce:65:f9:cf:27:62:21:b6: 13:60:8c:99:81:3a:d5:de:db:eb:d5:fb:52:62:91: a7:a2:3c:77:21:57:be:a8:6d:ba:41:38:0e:07:d2: 82:34:d7:27:69:83:63:b2:38:fc:bc:cb:f7:2e:fd: 84:74:6a:d1:90:7f:ec:a0:3b:67:71:dd:f4:99:b4: 67:fe:33:a7:64:2c:2e:c7:ad:ff:e8:16:c6:cd:8a: 39:5c:d3:f7:d9:da:e2:31:bc:10:ce:7d:d4:8c:61: 3d:bb:ac:6f:6c:92:08:99:d1:60:f7:3c:07:21:44: db:11:b4:31:7c:df:b6:fe:9f:34:9e:ab:56:8c:6c: 82:c8:fa:30:19:6c:0b:d7:f5:65:71:45:90:1f:ff: 55:a1:12:a1:5a:b4:88:cc:58:6a:8d:53:09:00:ab: 72:e2:39:c2:47:9e:f7:05:40:91:29:60:80:ec:80: 00:d3:b7:c3:53:cd:63:11:42:3a:4d:1c:3e:74:c0: d1:f6:df:4f:94:25:0a:ed:22:d2:85:65:3a:e9:e8: c4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:57:A7:EB:EC:4D:11:B5:62:90:9D:28:4F:D1:C4:09:34:8E:CA:D9 X509v3 Authority Key Identifier: keyid:85:63:8E:4C:72:3F:99:38:51:F2:2E:4C:79:D5:E4:67:D6:4E:F6:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85638E4C723F993851F22E4C79D5E467D64EF6E5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/04e377b9-5889-4cb3-a4c9-08712b4f66fc/0/85638E4C723F993851F22E4C79D5E467D64EF6E5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:af:3d:35:dd:aa:54:d2:af:59:ec:5b:70:a4:0a:2e:70:24: ac:ad:7a:93:9f:1f:cb:f0:cd:1d:c8:08:a2:fc:6d:c1:e0:13: 26:39:93:c5:b7:07:61:62:d3:60:1c:58:b9:ab:67:33:3b:97: 51:45:8b:97:b8:87:ac:4b:f6:46:57:eb:f1:29:7f:1f:f4:08: 41:e1:2d:3a:89:e7:1c:ab:b2:0b:91:67:6e:83:16:3e:8e:4c: 7b:81:a1:e8:ae:3b:8a:72:ef:d0:4b:8f:33:96:8d:d7:d7:a9: 04:e7:aa:23:e9:06:72:8d:cb:40:a1:e8:9b:ae:b2:b0:cf:bd: 08:50:4e:a1:52:b3:c4:0f:20:b4:1b:b0:f5:29:2e:25:94:58: 3f:e3:5e:9d:f0:a1:4b:5b:a1:04:87:5d:15:75:af:68:c8:08: 64:3a:bc:f4:3f:91:f3:95:6d:5a:11:2c:e3:88:10:17:89:6a: 45:12:a3:e7:1f:5b:4e:2e:4b:91:c3:a7:b2:29:a8:95:d4:28: 23:20:48:6c:6f:d1:de:15:2d:1f:de:25:3c:6a:0f:e4:1c:4a: f2:5b:4a:c4:28:04:36:56:02:f5:fe:af:da:60:5e:50:8f:89: bb:30:06:97:78:c7:16:71:f3:e5:71:a5:71:ae:a3:6d:91:47: 11:e1:c4:ca -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKTWRmwC8CJCGGOA+UosYSVxejGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU2MzhFNEM3MjNGOTkzODUxRjIyRTRDNzlENUU0NjdE NjRFRjZFNTAeFw0yNjA2MTcwNTI0MzRaFw0yNjA2MTgwNjEwMzRaMDMxMTAvBgNV BAMTKDFCNTdBN0VCRUM0RDExQjU2MjkwOUQyODRGRDFDNDA5MzQ4RUNBRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJIMSEJi9q5aT00YCM+VeSsr4P YH6bSvVThVWhNBm2ynjgfYW8kR4FdUisM3syHqm7hNjOZfnPJ2IhthNgjJmBOtXe 2+vV+1JikaeiPHchV76obbpBOA4H0oI01ydpg2OyOPy8y/cu/YR0atGQf+ygO2dx 3fSZtGf+M6dkLC7Hrf/oFsbNijlc0/fZ2uIxvBDOfdSMYT27rG9skgiZ0WD3PAch RNsRtDF837b+nzSeq1aMbILI+jAZbAvX9WVxRZAf/1WhEqFatIjMWGqNUwkAq3Li OcJHnvcFQJEpYIDsgADTt8NTzWMRQjpNHD50wNH230+UJQrtItKFZTrp6MQvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUG1en6+xNEbVikJ0oT9HECTSOytkwHwYDVR0j BBgwFoAUhWOOTHI/mThR8i5MedXkZ9ZO9uUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDRlMzc3YjktNTg4OS00Y2IzLWE0YzktMDg3MTJiNGY2NmZjLzAvODU2MzhFNEM3 MjNGOTkzODUxRjIyRTRDNzlENUU0NjdENjRFRjZFNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTYzOEU0QzcyM0Y5OTM4NTFGMjJFNEM3OUQ1RTQ2N0Q2NEVG NkU1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMDRlMzc3YjktNTg4OS00Y2IzLWE0 YzktMDg3MTJiNGY2NmZjLzAvODU2MzhFNEM3MjNGOTkzODUxRjIyRTRDNzlENUU0 NjdENjRFRjZFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB2vPTXdqlTSr1nsW3CkCi5wJKytepOfH8vw zR3ICKL8bcHgEyY5k8W3B2Fi02AcWLmrZzM7l1FFi5e4h6xL9kZX6/Epfx/0CEHh LTqJ5xyrsguRZ26DFj6OTHuBoeiuO4py79BLjzOWjdfXqQTnqiPpBnKNy0Ch6Juu srDPvQhQTqFSs8QPILQbsPUpLiWUWD/jXp3woUtboQSHXRV1r2jICGQ6vPQ/kfOV bVoRLOOIEBeJakUSo+cfW04uS5HDp7IpqJXUKCMgSGxv0d4VLR/eJTxqD+QcSvJb SsQoBDZWAvX+r9pgXlCPibswBpd4xxZx8+VxpXGuo22RRxHhxMo= -----END CERTIFICATE-----Generated at Wed Jun 17 11:30:41 2026 by rpki-client