$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.mft File: 8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.mft (raw, json) Hash identifier: Fl9U2M8ARfqEgOeztPamqpwIqGP88dNjr04HsVo/vHA= Subject key identifier: FF:88:29:4D:9A:A8:FD:8D:B5:9C:EF:CD:A4:74:3F:5B:75:25:D6:B0 Authority key identifier: 81:10:57:0C:E5:5D:85:12:FC:BD:F0:28:19:FB:8A:0D:3B:AD:1F:94 Certificate issuer: /CN=8110570CE55D8512FCBDF02819FB8A0D3BAD1F94 Certificate serial: 7EAFB51089AFF98A8F3ED82B4F49FDB7420D31B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.mft Manifest number: 3F Signing time: Wed 17 Jun 2026 08:12:47 +0000 Manifest this update: Wed 17 Jun 2026 08:07:47 +0000 Manifest next update: Thu 18 Jun 2026 11:29:47 +0000 Files and hashes: 1: 3130332e37312e31302e302f32332d3234203d3e203535363632.roa (hash: 0kmlYn3U9dmyxdriKnU2KVYL6nRWvq4iRJ06VUJD99I=) 2: 323430303a393134303a3a2f33322d3332203d3e203535363632.roa (hash: QKq/ZGAbqKpUm7CoKZ+QT0ihf4BxzPyawZc6Ixihqm0=) 3: 3130332e37312e382e302f32332d3234203d3e203535363632.roa (hash: ABGORh4lWt4WpXDSQFC2AfJLsKMZzwquOOsUkRU5KZw=) 4: 3130332e37312e382e302f32342d3234203d3e203535363632.roa (hash: 4e1qd57hMv+OkXmKRzkE4lf5ZpRQjvmNHhGL7MHMPZQ=) 5: 8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.crl (hash: OQA/MgzXkMZd5o+e7uTfH6lvHRRwU6DjFfPyK5HnAXw=) 6: 3130332e37312e392e302f32342d3234203d3e203535363632.roa (hash: MdXlPd40mbCtjh7iBEjKVSFA2qec8G7HYFT+dNSNEB4=) 7: 3130332e37312e31312e302f32342d3234203d3e203535363632.roa (hash: p8zNdOn26qSx4BGXz+vWlqG1YbrlG0OsNQVGyFkCQnw=) 8: 3130332e37312e31302e302f32342d3234203d3e203535363632.roa (hash: OJi67+qUPfc5UtqMYAV/z7dfCJOkcVNQkK5jTXZKwTQ=) 9: 3130332e37312e382e302f32322d3234203d3e203535363632.roa (hash: ZkDRUzZF2wR3zLgrv+xtI4hjJvx2gIYYCb4LSNtWkmg=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.crl rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:af:b5:10:89:af:f9:8a:8f:3e:d8:2b:4f:49:fd:b7:42:0d:31:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8110570CE55D8512FCBDF02819FB8A0D3BAD1F94 Validity Not Before: Jun 17 08:07:47 2026 GMT Not After : Jun 18 11:29:47 2026 GMT Subject: CN=FF88294D9AA8FD8DB59CEFCDA4743F5B7525D6B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ad:1f:20:36:9c:be:d1:08:70:df:01:bc:0d: ab:5a:ef:8a:ff:67:86:cc:6c:57:c9:92:08:aa:45: 24:fa:db:75:c4:a3:97:e2:b4:85:23:b8:6d:3d:12: 7f:00:0e:69:88:23:be:44:28:5b:a5:97:a1:ca:12: c0:97:3c:e1:b9:8d:4f:03:2f:75:fd:ed:82:5e:2b: 02:ed:6f:98:e4:d2:b2:f8:25:33:99:80:5b:3f:4e: 29:9e:a2:33:6a:55:3d:f8:d5:da:a0:7f:cf:46:67: e3:f4:61:d5:14:04:4e:24:3c:40:d9:23:53:6e:6d: 9e:f4:23:99:2b:1a:7c:ec:12:35:b0:7f:00:10:8d: bf:0d:57:68:c7:7d:98:67:9b:3b:a6:dd:d7:06:71: 60:9b:b3:28:88:5f:ed:0f:24:de:8b:7a:24:f5:fc: aa:f2:2f:98:a4:f7:f6:4b:03:d9:52:40:17:9a:ca: b5:5d:bb:32:04:9a:4a:cc:d1:42:fc:09:29:97:f4: 76:79:d7:e4:25:7d:0e:68:13:61:1f:5c:aa:47:eb: 3a:6e:0f:5f:6b:bc:b1:22:52:16:0c:db:77:1b:be: f0:d0:4e:71:ff:2a:a5:24:f2:3c:46:b4:85:82:17: be:27:59:95:da:8c:e8:2f:b6:83:9d:aa:c5:fa:bb: c3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:88:29:4D:9A:A8:FD:8D:B5:9C:EF:CD:A4:74:3F:5B:75:25:D6:B0 X509v3 Authority Key Identifier: keyid:81:10:57:0C:E5:5D:85:12:FC:BD:F0:28:19:FB:8A:0D:3B:AD:1F:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a496082-a0aa-4836-b587-973dd7e297af/0/8110570CE55D8512FCBDF02819FB8A0D3BAD1F94.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:70:4e:6a:42:8a:f1:fd:22:e3:59:2a:ca:c7:7d:a8:cb:5f: 7a:86:ca:dc:93:ff:45:b8:6e:31:18:ea:0b:e6:b7:02:d6:d1: 33:5a:11:49:04:5a:ef:70:00:fe:b7:63:30:9f:e1:79:d9:5d: dc:08:c4:4e:2d:76:4d:76:1c:4a:f0:bd:f2:e5:da:7f:29:e2: 46:6b:b6:62:c3:0d:c2:6c:33:71:5f:01:05:2a:a2:d5:7d:2e: f4:0a:d2:f4:26:45:80:ca:27:db:6a:9c:43:cf:dc:d7:4a:86: 82:9e:13:41:4c:20:58:82:1b:bd:cc:13:a3:f2:f6:91:2d:46: a1:c0:af:ae:a6:ab:c3:f2:15:c2:f8:e7:67:44:14:c8:0f:4c: 14:76:fe:fc:62:b5:09:58:78:ff:60:ee:59:2c:7d:13:59:5d: 85:cf:08:6c:aa:6a:99:a9:05:73:39:6c:fd:34:2e:a3:40:94: 8b:ac:c1:c8:e3:48:83:40:64:80:0c:89:5f:08:2e:5b:da:e8: 21:98:6a:53:6a:0f:12:8d:c5:d0:aa:d0:18:f4:66:07:cf:2e: 70:ab:a6:8d:d1:fb:2d:a6:3c:80:e3:58:a9:e7:f8:b8:05:73: a1:9b:bf:67:ce:00:fc:76:74:d6:d4:8b:00:c5:f0:48:79:3f: 9a:66:3b:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfq+1EImv+YqPPtgrT0n9t0INMbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODExMDU3MENFNTVEODUxMkZDQkRGMDI4MTlGQjhBMEQz QkFEMUY5NDAeFw0yNjA2MTcwODA3NDdaFw0yNjA2MTgxMTI5NDdaMDMxMTAvBgNV BAMTKEZGODgyOTREOUFBOEZEOERCNTlDRUZDREE0NzQzRjVCNzUyNUQ2QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUrR8gNpy+0Qhw3wG8Data74r/ Z4bMbFfJkgiqRST623XEo5fitIUjuG09En8ADmmII75EKFull6HKEsCXPOG5jU8D L3X97YJeKwLtb5jk0rL4JTOZgFs/TimeojNqVT341dqgf89GZ+P0YdUUBE4kPEDZ I1NubZ70I5krGnzsEjWwfwAQjb8NV2jHfZhnmzum3dcGcWCbsyiIX+0PJN6LeiT1 /KryL5ik9/ZLA9lSQBeayrVduzIEmkrM0UL8CSmX9HZ51+QlfQ5oE2EfXKpH6zpu D19rvLEiUhYM23cbvvDQTnH/KqUk8jxGtIWCF74nWZXajOgvtoOdqsX6u8NfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/4gpTZqo/Y21nO/NpHQ/W3Ul1rAwHwYDVR0j BBgwFoAUgRBXDOVdhRL8vfAoGfuKDTutH5QwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmE0OTYwODItYTBhYS00ODM2LWI1ODctOTczZGQ3ZTI5N2FmLzAvODExMDU3MENF NTVEODUxMkZDQkRGMDI4MTlGQjhBMEQzQkFEMUY5NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84MTEwNTcwQ0U1NUQ4NTEyRkNCREYwMjgxOUZCOEEwRDNCQUQx Rjk0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmE0OTYwODItYTBhYS00ODM2LWI1 ODctOTczZGQ3ZTI5N2FmLzAvODExMDU3MENFNTVEODUxMkZDQkRGMDI4MTlGQjhB MEQzQkFEMUY5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABNwTmpCivH9IuNZKsrHfajLX3qGytyT/0W4 bjEY6gvmtwLW0TNaEUkEWu9wAP63YzCf4XnZXdwIxE4tdk12HErwvfLl2n8p4kZr tmLDDcJsM3FfAQUqotV9LvQK0vQmRYDKJ9tqnEPP3NdKhoKeE0FMIFiCG73ME6Py 9pEtRqHAr66mq8PyFcL452dEFMgPTBR2/vxitQlYeP9g7lksfRNZXYXPCGyqapmp BXM5bP00LqNAlIuswcjjSINAZIAMiV8ILlva6CGYalNqDxKNxdCq0Bj0ZgfPLnCr po3R+y2mPIDjWKnn+LgFc6Gbv2fOAPx2dNbUiwDF8Eh5P5pmO+w= -----END CERTIFICATE-----Generated at Wed Jun 17 10:40:56 2026 by rpki-client