$ rpki-client -vvf rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft File: 5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft (raw, json) Hash identifier: Lsrlx24n7U0CpZAzL7McGDjr7v4grzUiudsJe09M13Q= Subject key identifier: DD:F5:0A:BC:09:1A:22:C8:F0:F3:43:B0:DD:76:9F:4C:90:EF:F2:EA Authority key identifier: 5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 Certificate issuer: /CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Certificate serial: 27BF9F98678CD53F064ABCC3EBB2C81CD223CC0B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft Manifest number: 3A Signing time: Sat 13 Jun 2026 13:05:30 +0000 Manifest this update: Sat 13 Jun 2026 13:00:30 +0000 Manifest next update: Sun 14 Jun 2026 13:23:30 +0000 Files and hashes: 1: 3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa (hash: lTUq2TXc5o2FAnT0cBjbniSYESMJX3Ig96J0JouvM0I=) 2: 3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa (hash: j3/lM2rV4nx+Cn6dsqDo2ERknLnpkGf86BWvcy+vYVs=) 3: 5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl (hash: XYD7NiEODfhIbG8Y05HWAH0NWnnt7dUNl48Yj+5YOKc=) 4: 3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa (hash: Fy9HvcnOOuartl2MyrCM5SQFmtu1CV6p6EtA15KIkk0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 13:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:bf:9f:98:67:8c:d5:3f:06:4a:bc:c3:eb:b2:c8:1c:d2:23:cc:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Validity Not Before: Jun 13 13:00:30 2026 GMT Not After : Jun 14 13:23:30 2026 GMT Subject: CN=DDF50ABC091A22C8F0F343B0DD769F4C90EFF2EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7c:f3:b0:2d:ea:08:26:0d:8c:d9:69:ff:34: 26:33:d2:11:4b:af:1e:14:08:ff:98:a9:f3:04:6d: 56:ef:c1:1a:c1:f1:5a:8f:35:9a:1f:b7:99:38:2a: ea:b9:96:50:77:e3:d1:9b:5e:49:f6:50:8e:dd:ff: 71:bf:32:ce:68:f0:d7:48:b2:bd:c3:65:39:1e:48: d5:5e:33:80:c5:07:05:83:a8:aa:e6:ec:e6:bd:5e: eb:0b:64:fe:ca:26:43:f2:d6:cb:53:7a:21:94:76: 0c:38:ce:45:e9:83:0a:06:60:04:d2:dd:84:3d:f4: be:fc:bd:69:c7:09:af:4c:e1:bb:3d:42:26:78:0a: 5f:7b:c1:3c:6a:58:d8:46:02:24:f4:d4:7a:28:37: 55:38:dc:cb:d5:2c:da:ce:b5:29:19:a5:58:c0:a1: b4:7e:0c:b7:d4:a4:84:1a:a6:44:e7:f0:ad:78:58: 55:3a:ff:c4:c2:6f:2d:61:4d:c7:fc:a1:e5:05:e2: 85:90:6f:bb:7d:88:97:6e:cf:0c:dc:b1:fe:6a:9b: 02:92:18:13:2d:18:40:17:8e:57:59:df:62:95:b6: 09:cb:47:bf:e0:99:79:ce:9d:05:fc:8a:ee:c5:80: 15:ea:05:13:9e:da:10:02:54:07:f9:92:02:58:a4: 94:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F5:0A:BC:09:1A:22:C8:F0:F3:43:B0:DD:76:9F:4C:90:EF:F2:EA X509v3 Authority Key Identifier: keyid:5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:ba:ad:20:81:f6:db:e7:8e:57:13:30:21:40:d0:4f:db:ed: ea:de:83:9d:85:71:db:24:b9:22:39:20:ce:f4:9a:b3:94:fc: 0c:dc:60:ec:fc:8a:ba:06:a0:20:38:10:7f:77:f3:09:d8:47: ab:80:16:bf:36:f6:be:96:8c:ae:1a:6b:70:4c:0e:37:84:a5: 17:86:3d:5a:f7:dc:b3:45:9d:e4:48:0d:00:e4:ec:6f:4b:b7: dc:ac:f5:4f:75:ce:54:14:a2:0e:b5:21:a8:d4:5c:f1:2f:9f: f9:b6:61:32:3e:07:b1:4d:eb:5e:30:4f:0b:21:bd:09:84:f7: 38:e3:18:79:1e:36:28:c7:0c:de:56:c4:d7:fb:e7:26:f6:0e: 11:a8:fc:14:15:59:89:68:e4:73:de:d8:cc:f7:2b:54:a6:b4: d3:08:bd:64:a3:30:b2:62:e7:27:8d:02:80:4e:b1:28:b7:43: e9:5a:62:ed:ca:e8:f8:a3:fe:03:6d:09:12:0f:be:c8:7b:95: 24:f7:0e:2d:1a:07:45:ef:b9:f8:5c:1b:6a:49:f4:f1:cd:8d: 9e:bf:97:07:66:c1:76:e7:8f:7c:44:f9:5f:d8:6b:20:90:19: f1:41:13:2f:43:9d:70:13:31:5a:91:ae:3d:32:ba:8e:4c:c5: 6f:7a:4b:8f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ7+fmGeM1T8GSrzD67LIHNIjzAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFGRTI0RDIzRTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5 QzBFRUVBMjAeFw0yNjA2MTMxMzAwMzBaFw0yNjA2MTQxMzIzMzBaMDMxMTAvBgNV BAMTKERERjUwQUJDMDkxQTIyQzhGMEYzNDNCMERENzY5RjRDOTBFRkYyRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrfPOwLeoIJg2M2Wn/NCYz0hFL rx4UCP+YqfMEbVbvwRrB8VqPNZoft5k4Kuq5llB349GbXkn2UI7d/3G/Ms5o8NdI sr3DZTkeSNVeM4DFBwWDqKrm7Oa9XusLZP7KJkPy1stTeiGUdgw4zkXpgwoGYATS 3YQ99L78vWnHCa9M4bs9QiZ4Cl97wTxqWNhGAiT01HooN1U43MvVLNrOtSkZpVjA obR+DLfUpIQapkTn8K14WFU6/8TCby1hTcf8oeUF4oWQb7t9iJduzwzcsf5qmwKS GBMtGEAXjldZ32KVtgnLR7/gmXnOnQX8iu7FgBXqBROe2hACVAf5kgJYpJSFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3fUKvAkaIsjw80Ow3XafTJDv8uowHwYDVR0j BBgwFoAUWv4k0j42JUhNfZs+ugAlqpwO7qIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MThkMWM0NDktOTc4Yy00ODQ1LWI4MjMtYjU5MjVhOTA1NDI3LzAvNUFGRTI0RDIz RTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5QzBFRUVBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81QUZFMjREMjNFMzYyNTQ4NEQ3RDlCM0VCQTAwMjVBQTlDMEVF RUEyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMThkMWM0NDktOTc4Yy00ODQ1LWI4 MjMtYjU5MjVhOTA1NDI3LzAvNUFGRTI0RDIzRTM2MjU0ODREN0Q5QjNFQkEwMDI1 QUE5QzBFRUVBMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACa6rSCB9tvnjlcTMCFA0E/b7ereg52Fcdsk uSI5IM70mrOU/AzcYOz8iroGoCA4EH938wnYR6uAFr829r6WjK4aa3BMDjeEpReG PVr33LNFneRIDQDk7G9Lt9ys9U91zlQUog61IajUXPEvn/m2YTI+B7FN614wTwsh vQmE9zjjGHkeNijHDN5WxNf75yb2DhGo/BQVWYlo5HPe2Mz3K1SmtNMIvWSjMLJi 5yeNAoBOsSi3Q+laYu3K6Pij/gNtCRIPvsh7lST3Di0aB0XvufhcG2pJ9PHNjZ6/ lwdmwXbnj3xE+V/YayCQGfFBEy9DnXATMVqRrj0yuo5MxW96S48= -----END CERTIFICATE-----Generated at Sat Jun 13 20:18:38 2026 by rpki-client