$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/0/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.mft File: 53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.mft (raw, json) Hash identifier: 0Bg7vyR5s5oX71lpKlAJfxrY5jjK9It3i6OECXBdoFo= Subject key identifier: 03:74:3C:D2:CF:4E:1B:D0:A8:CC:16:D6:4E:9B:4A:DE:E1:52:C4:97 Authority key identifier: 53:A7:C1:EF:D7:33:AC:5F:5B:FF:90:D3:FD:6A:C0:8C:A3:0F:7B:66 Certificate issuer: /CN=53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66 Certificate serial: 0E9213DA44111BD063E7027125588980A2826C59 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/0/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 17:04:52 +0000 Manifest this update: Tue 16 Jun 2026 16:59:52 +0000 Manifest next update: Wed 17 Jun 2026 20:17:52 +0000 Files and hashes: 1: 53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.crl (hash: ALGrSaPoAlc+yDAUTVD3rfWnzUOg3wllGZnnW2chHYQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/0/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.crl rsync://rpki-rsync.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/0/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 20:17:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:92:13:da:44:11:1b:d0:63:e7:02:71:25:58:89:80:a2:82:6c:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66 Validity Not Before: Jun 16 16:59:52 2026 GMT Not After : Jun 17 20:17:52 2026 GMT Subject: CN=03743CD2CF4E1BD0A8CC16D64E9B4ADEE152C497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4b:9e:d9:d0:78:f5:97:1f:f3:36:10:ad:a0: 89:47:62:4d:e6:c8:9c:db:14:88:94:61:33:15:1d: 2a:52:21:33:2d:18:ea:d5:40:07:e5:c0:57:f8:a0: 8f:25:07:ec:5f:8c:6a:e3:32:30:3b:02:8b:df:03: bf:16:04:37:bc:7d:cb:48:19:39:2a:7d:5b:36:2f: 67:57:35:ff:2a:d9:37:4d:7a:0b:b8:6a:88:90:cf: a8:f1:7e:4d:e0:f2:30:b8:48:2b:cb:f4:93:cf:56: 01:e6:0c:0b:c9:29:be:3e:85:60:d0:55:59:d2:f2: 5f:f0:5e:1b:9e:17:37:c6:9a:44:14:c8:8e:2f:ee: 50:33:3d:46:8a:ab:97:7e:75:42:9c:9d:be:b4:0e: 2c:81:b1:d8:d4:20:2d:37:41:87:dd:f9:b8:99:a3: d9:7e:15:76:66:9f:4c:51:95:a2:f7:89:05:c3:0b: e0:c6:c4:85:8b:83:4f:21:5e:83:d2:b2:dc:c2:02: 0f:6c:82:2b:07:00:ed:1f:b6:ee:c0:73:ca:2e:bf: 5a:57:79:f8:af:76:f2:31:25:80:79:d5:61:9d:b7: 41:8d:04:d7:34:ef:94:07:4f:72:ef:41:01:be:25: 7b:4f:96:99:ed:2e:5f:24:26:ee:3c:b8:42:bb:60: 02:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:74:3C:D2:CF:4E:1B:D0:A8:CC:16:D6:4E:9B:4A:DE:E1:52:C4:97 X509v3 Authority Key Identifier: keyid:53:A7:C1:EF:D7:33:AC:5F:5B:FF:90:D3:FD:6A:C0:8C:A3:0F:7B:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/0/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ef16f31-60ce-47a7-ae8d-5a28c511c947/0/53A7C1EFD733AC5F5BFF90D3FD6AC08CA30F7B66.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:de:1b:f2:4a:49:c3:10:a4:78:1b:b5:5e:59:13:91:e1:76: 89:04:41:1b:4a:3e:3c:e0:24:1e:4a:70:d2:a6:b1:a4:ea:ae: 2e:dd:bf:c7:57:0a:83:b2:6f:ae:ba:e6:40:7e:68:96:92:08: 61:bc:36:00:fe:65:02:04:07:ba:d8:f2:14:03:72:c2:a9:9c: 01:71:f3:94:2f:84:8e:20:18:47:ab:76:98:b7:be:e8:77:54: 5c:49:f5:e1:30:ca:c5:4c:fe:2c:36:49:7f:66:19:27:af:66: 0b:7a:cc:9a:26:d6:61:ca:23:f3:f1:7f:d6:40:83:d5:57:1a: a1:be:34:5d:62:05:de:f4:a9:31:e7:c1:44:56:c4:55:26:a9: b5:37:b6:b9:fa:58:df:46:e4:20:8a:89:32:51:07:2b:0c:06: 3c:a6:87:b1:af:ec:95:d9:db:7e:25:eb:02:4b:83:c8:c1:2b: 09:76:43:d9:b4:82:7d:73:10:00:bf:6a:bf:34:06:66:f2:2a: fe:f3:68:3b:b2:b3:b2:f6:d8:1a:e0:a3:20:2b:60:8c:f0:f9: 9d:2f:66:a1:30:f5:c1:1b:60:c7:c1:19:62:8d:41:b7:b3:e7: a4:22:e1:5a:12:fa:7b:e6:00:87:16:ed:cf:4d:e5:95:7e:96: c8:d5:03:d8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDpIT2kQRG9Bj5wJxJViJgKKCbFkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNBN0MxRUZENzMzQUM1RjVCRkY5MEQzRkQ2QUMwOENB MzBGN0I2NjAeFw0yNjA2MTYxNjU5NTJaFw0yNjA2MTcyMDE3NTJaMDMxMTAvBgNV BAMTKDAzNzQzQ0QyQ0Y0RTFCRDBBOENDMTZENjRFOUI0QURFRTE1MkM0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1S57Z0Hj1lx/zNhCtoIlHYk3m yJzbFIiUYTMVHSpSITMtGOrVQAflwFf4oI8lB+xfjGrjMjA7AovfA78WBDe8fctI GTkqfVs2L2dXNf8q2TdNegu4aoiQz6jxfk3g8jC4SCvL9JPPVgHmDAvJKb4+hWDQ VVnS8l/wXhueFzfGmkQUyI4v7lAzPUaKq5d+dUKcnb60DiyBsdjUIC03QYfd+biZ o9l+FXZmn0xRlaL3iQXDC+DGxIWLg08hXoPSstzCAg9sgisHAO0ftu7Ac8ouv1pX efivdvIxJYB51WGdt0GNBNc075QHT3LvQQG+JXtPlpntLl8kJu48uEK7YAIrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUA3Q80s9OG9CozBbWTptK3uFSxJcwHwYDVR0j BBgwFoAUU6fB79czrF9b/5DT/WrAjKMPe2YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmVmMTZmMzEtNjBjZS00N2E3LWFlOGQtNWEyOGM1MTFjOTQ3LzAvNTNBN0MxRUZE NzMzQUM1RjVCRkY5MEQzRkQ2QUMwOENBMzBGN0I2Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81M0E3QzFFRkQ3MzNBQzVGNUJGRjkwRDNGRDZBQzA4Q0EzMEY3 QjY2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmVmMTZmMzEtNjBjZS00N2E3LWFl OGQtNWEyOGM1MTFjOTQ3LzAvNTNBN0MxRUZENzMzQUM1RjVCRkY5MEQzRkQ2QUMw OENBMzBGN0I2Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJHeG/JKScMQpHgbtV5ZE5HhdokEQRtKPjzg JB5KcNKmsaTqri7dv8dXCoOyb6665kB+aJaSCGG8NgD+ZQIEB7rY8hQDcsKpnAFx 85QvhI4gGEerdpi3vuh3VFxJ9eEwysVM/iw2SX9mGSevZgt6zJom1mHKI/Pxf9ZA g9VXGqG+NF1iBd70qTHnwURWxFUmqbU3trn6WN9G5CCKiTJRBysMBjymh7Gv7JXZ 234l6wJLg8jBKwl2Q9m0gn1zEAC/ar80BmbyKv7zaDuys7L22BrgoyArYIzw+Z0v ZqEw9cEbYMfBGWKNQbez56Qi4VoS+nvmAIcW7c9N5ZV+lsjVA9g= -----END CERTIFICATE-----Generated at Wed Jun 17 12:40:43 2026 by rpki-client