$ rpki-client -vvf rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.mft File: D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.mft (raw, json) Hash identifier: NZBEnVo+BHBqlOlM5wMHIBACKd+xD+/eXY35C3Bmkr4= Subject key identifier: 38:93:76:57:C4:3E:7D:AD:C6:1F:C9:CB:B6:13:0B:28:5E:66:B1:72 Authority key identifier: D2:0C:1E:0D:D0:2A:A8:B1:CE:1F:EB:A4:76:97:7C:F8:BB:16:14:36 Certificate issuer: /CN=D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436 Certificate serial: 61755CD4138CAF54A468638342984EAF33891AFD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 16:49:34 +0000 Manifest this update: Tue 16 Jun 2026 16:44:34 +0000 Manifest next update: Wed 17 Jun 2026 18:41:34 +0000 Files and hashes: 1: D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.crl (hash: 53Sc4XyHdWJLlhEGcp+9SyALIpnVjutif+lNpPkkT6w=) 2: 3230322e35312e3232342e302f32302d3234203d3e203338313434.roa (hash: NWVRwRUJEoPLPqz3cDGwdvfhxswf8EJ/TbLr4jkDe78=) 3: 36302e3235332e39362e302f31392d3234203d3e203338313434.roa (hash: NMwe5J+/CXgAi6nFmZAKAhCZ3C0lGwYdxKCNwpdKULE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.crl rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 18:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:75:5c:d4:13:8c:af:54:a4:68:63:83:42:98:4e:af:33:89:1a:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436 Validity Not Before: Jun 16 16:44:34 2026 GMT Not After : Jun 17 18:41:34 2026 GMT Subject: CN=38937657C43E7DADC61FC9CBB6130B285E66B172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:3e:90:d3:c0:e9:54:54:84:6c:3f:84:67:c8: bd:a3:c9:2f:64:0d:cc:55:6d:38:63:ae:cc:2d:6f: b3:1a:b6:ec:30:57:83:d9:84:03:cd:07:09:22:e4: 39:7f:94:03:f6:c2:ba:d7:43:0c:b2:55:77:56:24: 54:d5:7c:02:29:02:42:10:f6:1b:8b:81:9c:33:19: e2:78:4e:42:66:54:8c:8e:41:f9:f0:b3:9c:0e:5e: 46:fe:13:95:0f:d9:26:66:0b:e8:12:9f:cb:b9:17: ea:f7:92:9b:82:c4:f9:92:93:b7:d3:bd:6a:ae:74: d7:88:dd:94:32:90:2e:65:d5:85:24:b5:a0:d2:10: 75:98:3d:0e:d4:b3:dd:1c:1b:d0:0d:25:10:0e:e0: 98:16:e7:5e:5b:c8:6d:58:5d:ed:07:b1:12:56:fc: 56:89:b3:34:4d:46:7e:d0:fa:7f:e8:ee:11:0c:9f: 57:87:2c:c3:3e:0a:42:04:17:b4:aa:c0:90:77:15: 13:f4:5f:99:1a:0c:a0:45:9e:1e:c1:e5:c0:67:07: b7:16:b2:97:51:d5:a7:6a:1b:f7:f7:d8:6b:32:5b: b6:5b:84:b5:44:27:47:32:0a:0f:a4:1e:0d:78:52: 03:53:ca:00:88:23:0f:91:62:37:81:85:83:dd:fc: 5a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:93:76:57:C4:3E:7D:AD:C6:1F:C9:CB:B6:13:0B:28:5E:66:B1:72 X509v3 Authority Key Identifier: keyid:D2:0C:1E:0D:D0:2A:A8:B1:CE:1F:EB:A4:76:97:7C:F8:BB:16:14:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/D20C1E0DD02AA8B1CE1FEBA476977CF8BB161436.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:de:38:c3:87:9d:ef:12:6b:e2:7a:75:23:62:79:a6:69:0e: b7:a0:6f:8a:d7:d7:19:1b:fc:dd:b8:d4:3d:13:e4:f2:7e:26: c0:33:4c:d1:66:ad:52:fb:49:4a:6b:81:d7:2a:aa:e2:1d:d6: 5b:a7:56:61:ed:ce:c2:00:7c:e1:b3:2d:0b:c3:b1:d1:f5:3c: 97:b5:a3:a5:d6:b3:89:48:cc:f2:66:ce:9e:7f:b6:69:4a:8c: 33:38:ca:21:3b:14:87:8e:ad:d6:d9:98:b9:31:28:26:6a:1f: 67:3a:c2:7f:68:c6:31:e2:de:04:d7:6c:11:ea:66:e7:62:e9: 33:ab:6d:80:9f:1d:fe:7f:84:2e:19:da:94:5a:cd:30:65:de: 0b:d4:d0:e2:7a:39:d0:1c:a0:6b:fe:d7:22:3e:af:b6:f4:f9: cf:76:0a:ae:72:22:4c:c2:04:8b:48:02:a3:e6:9a:7f:c2:47: e2:52:6a:a4:2b:e0:ff:3a:cd:97:50:da:48:18:06:d7:09:5e: 3b:a7:4c:d8:85:e5:4e:46:71:58:ad:3f:26:0d:66:0c:f6:ae: a5:78:2c:1e:fb:2e:bf:01:c7:6c:dc:46:c1:9a:07:0c:f5:49: df:a8:2f:84:96:28:4a:f6:39:93:c7:16:90:40:64:9e:08:46: 55:12:a7:83 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYXVc1BOMr1SkaGODQphOrzOJGv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIwQzFFMEREMDJBQThCMUNFMUZFQkE0NzY5NzdDRjhC QjE2MTQzNjAeFw0yNjA2MTYxNjQ0MzRaFw0yNjA2MTcxODQxMzRaMDMxMTAvBgNV BAMTKDM4OTM3NjU3QzQzRTdEQURDNjFGQzlDQkI2MTMwQjI4NUU2NkIxNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpPpDTwOlUVIRsP4RnyL2jyS9k DcxVbThjrswtb7MatuwwV4PZhAPNBwki5Dl/lAP2wrrXQwyyVXdWJFTVfAIpAkIQ 9huLgZwzGeJ4TkJmVIyOQfnws5wOXkb+E5UP2SZmC+gSn8u5F+r3kpuCxPmSk7fT vWqudNeI3ZQykC5l1YUktaDSEHWYPQ7Us90cG9ANJRAO4JgW515byG1YXe0HsRJW /FaJszRNRn7Q+n/o7hEMn1eHLMM+CkIEF7SqwJB3FRP0X5kaDKBFnh7B5cBnB7cW spdR1adqG/f32GsyW7ZbhLVEJ0cyCg+kHg14UgNTygCIIw+RYjeBhYPd/FqxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOJN2V8Q+fa3GH8nLthMLKF5msXIwHwYDVR0j BBgwFoAU0gweDdAqqLHOH+ukdpd8+LsWFDYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmNkNzUzNmQtOWUxMC00ZDQ5LWI2Y2EtMDQxY2M5YTU5MTRlLzAvRDIwQzFFMERE MDJBQThCMUNFMUZFQkE0NzY5NzdDRjhCQjE2MTQzNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9EMjBDMUUwREQwMkFBOEIxQ0UxRkVCQTQ3Njk3N0NGOEJCMTYx NDM2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmNkNzUzNmQtOWUxMC00ZDQ5LWI2 Y2EtMDQxY2M5YTU5MTRlLzAvRDIwQzFFMEREMDJBQThCMUNFMUZFQkE0NzY5NzdD RjhCQjE2MTQzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEjeOMOHne8Sa+J6dSNieaZpDregb4rX1xkb /N241D0T5PJ+JsAzTNFmrVL7SUprgdcqquId1lunVmHtzsIAfOGzLQvDsdH1PJe1 o6XWs4lIzPJmzp5/tmlKjDM4yiE7FIeOrdbZmLkxKCZqH2c6wn9oxjHi3gTXbBHq Zudi6TOrbYCfHf5/hC4Z2pRazTBl3gvU0OJ6OdAcoGv+1yI+r7b0+c92Cq5yIkzC BItIAqPmmn/CR+JSaqQr4P86zZdQ2kgYBtcJXjunTNiF5U5GcVitPyYNZgz2rqV4 LB77Lr8Bx2zcRsGaBwz1Sd+oL4SWKEr2OZPHFpBAZJ4IRlUSp4M= -----END CERTIFICATE-----Generated at Wed Jun 17 11:30:13 2026 by rpki-client