$ rpki-client -vvf rpki-rsync.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.mft File: 85D73D804E8B428E434B4D2A773BA02F5C60F5C3.mft (raw, json) Hash identifier: LQBwGwld4fGm89n1/Esu1f5+d3vs9fIjdZmsQANF4to= Subject key identifier: B7:CA:31:F6:AE:F4:09:96:06:8D:D5:2B:ED:1A:51:58:B0:21:73:BF Authority key identifier: 85:D7:3D:80:4E:8B:42:8E:43:4B:4D:2A:77:3B:A0:2F:5C:60:F5:C3 Certificate issuer: /CN=85D73D804E8B428E434B4D2A773BA02F5C60F5C3 Certificate serial: 7D45EC94EE47F103EB7195790A1BEB5931D5E5E0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 18:06:03 +0000 Manifest this update: Tue 16 Jun 2026 18:01:03 +0000 Manifest next update: Wed 17 Jun 2026 19:13:03 +0000 Files and hashes: 1: 3130332e3133322e35322e302f32322d3234203d3e20313338313233.roa (hash: s667PtqoW0WKaw5tY6mNJ2X7kSPQ3a5nNNVlKXVkn2g=) 2: 3130332e3133322e35342e302f32342d3234203d3e20313338313233.roa (hash: epFZ7zWYLgQKVmQro1YL1zQJbgOEFFHEwNqHtx29BxM=) 3: 85D73D804E8B428E434B4D2A773BA02F5C60F5C3.crl (hash: eeLGmcyDZ4STY9fK5klxzqQbBY8wI6rYwnEtGx2DWuw=) 4: 3130332e3133322e35322e302f32342d3234203d3e20313338313233.roa (hash: 5z/bJ+/CuNEw4m9GqIpMgGnlawNQOmNZd7tIdNX/UD8=) 5: 3130332e3133322e35352e302f32342d3234203d3e20313338313233.roa (hash: MYHc1QilfD2U8Oz6IIqNh/TzUhL1fSoeXnQW/OCLsII=) 6: 3130332e3133322e35332e302f32342d3234203d3e20313338313233.roa (hash: +B7APtjLCoUGlmZg2IX9a/3yBj6gC7Y5su6xqwGObds=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.crl rsync://rpki-rsync.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 19:13:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:45:ec:94:ee:47:f1:03:eb:71:95:79:0a:1b:eb:59:31:d5:e5:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85D73D804E8B428E434B4D2A773BA02F5C60F5C3 Validity Not Before: Jun 16 18:01:03 2026 GMT Not After : Jun 17 19:13:03 2026 GMT Subject: CN=B7CA31F6AEF40996068DD52BED1A5158B02173BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:72:68:2d:5b:02:16:e2:d2:7e:b1:e7:74:75: 2a:57:27:15:dd:67:e1:c0:ae:98:4e:56:97:42:46: 69:2d:36:66:43:e5:dc:52:60:06:62:cc:6d:e1:fc: 98:06:39:80:33:25:ee:38:6e:d9:95:2b:18:57:e0: 76:57:f7:be:3d:07:e3:65:aa:eb:4c:86:cc:2b:07: a8:bd:33:7b:92:ad:17:54:bf:c7:3a:1e:9d:2f:7b: 7e:d0:bf:0a:f0:62:71:7a:6f:34:a7:73:3c:33:bb: e1:a0:08:83:96:72:6c:51:d9:ac:2a:6e:88:4e:04: ac:d9:ba:20:6f:db:34:47:54:d0:b1:0b:4f:29:a5: 65:db:22:c2:42:0c:05:99:ed:19:44:45:5d:f9:ac: 7f:05:e7:ab:32:ec:ca:26:97:cd:b8:99:90:6a:70: 33:b3:ac:36:8a:f9:1e:bd:2d:e8:05:32:37:87:89: eb:cc:19:ed:0b:1d:30:83:aa:1e:79:c5:90:23:ae: b8:a0:6e:bf:9e:dd:80:6a:69:6d:af:ee:a9:62:c3: da:cb:37:a1:14:5f:2e:b8:89:09:a4:40:70:a2:a7: 34:8f:6c:15:7c:96:a9:f9:0c:90:bb:0d:ff:d8:f5: 31:60:29:25:9f:f5:42:df:b7:8d:8e:bc:a8:ce:a7: 2a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CA:31:F6:AE:F4:09:96:06:8D:D5:2B:ED:1A:51:58:B0:21:73:BF X509v3 Authority Key Identifier: keyid:85:D7:3D:80:4E:8B:42:8E:43:4B:4D:2A:77:3B:A0:2F:5C:60:F5:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0e96ed89-2a16-4151-bf83-59dce561460c/0/85D73D804E8B428E434B4D2A773BA02F5C60F5C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:8a:3c:e6:de:ca:b7:ac:2b:44:26:bb:e1:7f:ab:c7:11:3d: 1c:e9:12:bc:59:c3:df:8b:97:41:be:02:b2:6c:ae:1d:6f:42: 63:1b:11:d1:e3:74:8a:d5:13:98:03:b0:a3:db:8b:74:c3:16: 58:56:8e:25:ba:da:a5:e2:3b:2e:ed:4e:d0:a9:83:c7:1c:28: 2e:8c:c4:01:f8:6a:aa:0d:02:73:a4:ef:31:f3:89:e3:d9:a8: 30:0a:77:ca:eb:ac:57:77:7d:ef:0a:a8:32:74:ac:82:f4:b3: b9:46:99:9c:44:c9:36:d1:fd:e9:3c:a4:65:44:cd:c0:af:32: 76:ef:b7:01:69:fc:19:74:4b:2a:eb:b0:e1:e4:28:5c:c9:ca: 1b:1d:1f:46:0b:31:82:a3:33:e1:81:33:9d:56:7f:a7:2d:fd: ac:fe:2c:69:58:71:49:b6:8b:f0:18:1c:01:0f:86:e7:38:e2: ec:48:4c:e5:9d:e5:b8:e6:f3:21:c6:c4:a4:25:f7:9c:c1:fc: 94:bb:53:dc:87:f4:8e:43:94:65:fb:e3:8c:dc:b9:3f:36:58: 79:03:47:86:55:5d:19:1d:b0:4a:0c:13:4c:34:d0:11:72:77: 4a:d5:e7:06:c8:f4:a1:d4:ea:0d:61:f2:dd:a7:0f:1e:42:37: 74:fe:a1:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfUXslO5H8QPrcZV5ChvrWTHV5eAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVENzNEODA0RThCNDI4RTQzNEI0RDJBNzczQkEwMkY1 QzYwRjVDMzAeFw0yNjA2MTYxODAxMDNaFw0yNjA2MTcxOTEzMDNaMDMxMTAvBgNV BAMTKEI3Q0EzMUY2QUVGNDA5OTYwNjhERDUyQkVEMUE1MTU4QjAyMTczQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdcmgtWwIW4tJ+sed0dSpXJxXd Z+HArphOVpdCRmktNmZD5dxSYAZizG3h/JgGOYAzJe44btmVKxhX4HZX9749B+Nl qutMhswrB6i9M3uSrRdUv8c6Hp0ve37QvwrwYnF6bzSnczwzu+GgCIOWcmxR2awq bohOBKzZuiBv2zRHVNCxC08ppWXbIsJCDAWZ7RlERV35rH8F56sy7Moml824mZBq cDOzrDaK+R69LegFMjeHievMGe0LHTCDqh55xZAjrrigbr+e3YBqaW2v7qliw9rL N6EUXy64iQmkQHCipzSPbBV8lqn5DJC7Df/Y9TFgKSWf9ULft42OvKjOpyrnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUt8ox9q70CZYGjdUr7RpRWLAhc78wHwYDVR0j BBgwFoAUhdc9gE6LQo5DS00qdzugL1xg9cMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MGU5NmVkODktMmExNi00MTUxLWJmODMtNTlkY2U1NjE0NjBjLzAvODVENzNEODA0 RThCNDI4RTQzNEI0RDJBNzczQkEwMkY1QzYwRjVDMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NUQ3M0Q4MDRFOEI0MjhFNDM0QjREMkE3NzNCQTAyRjVDNjBG NUMzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMGU5NmVkODktMmExNi00MTUxLWJm ODMtNTlkY2U1NjE0NjBjLzAvODVENzNEODA0RThCNDI4RTQzNEI0RDJBNzczQkEw MkY1QzYwRjVDMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHKKPObeyresK0Qmu+F/q8cRPRzpErxZw9+L l0G+ArJsrh1vQmMbEdHjdIrVE5gDsKPbi3TDFlhWjiW62qXiOy7tTtCpg8ccKC6M xAH4aqoNAnOk7zHziePZqDAKd8rrrFd3fe8KqDJ0rIL0s7lGmZxEyTbR/ek8pGVE zcCvMnbvtwFp/Bl0SyrrsOHkKFzJyhsdH0YLMYKjM+GBM51Wf6ct/az+LGlYcUm2 i/AYHAEPhuc44uxITOWd5bjm8yHGxKQl95zB/JS7U9yH9I5DlGX744zcuT82WHkD R4ZVXRkdsEoME0w00BFyd0rV5wbI9KHU6g1h8t2nDx5CN3T+oQA= -----END CERTIFICATE-----Generated at Wed Jun 17 11:12:44 2026 by rpki-client