$ rpki-client -vvf rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.mft File: 0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.mft (raw, json) Hash identifier: pQB6y38gfzq/1gDeydycuOQu4SkBRSgVBoextAGDVik= Subject key identifier: 49:D0:35:C0:33:F5:63:6A:D9:20:2D:DF:A1:FE:AD:0A:FA:2C:96:FA Authority key identifier: 0F:B4:24:B2:0D:6A:45:80:E6:D3:23:3F:CF:2E:B9:F2:BD:A9:9C:B0 Certificate issuer: /CN=0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0 Certificate serial: 4F03626E3F75740D59E47271640D9B80454EADE1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 15:07:32 +0000 Manifest this update: Tue 16 Jun 2026 15:02:32 +0000 Manifest next update: Wed 17 Jun 2026 16:51:32 +0000 Files and hashes: 1: 3130332e352e35312e302f32342d3234203d3e203538333831.roa (hash: jpiOTHzKh1vGnb3tSE/Xoje7GEL1N7x9x1Df56pKagM=) 2: 3136332e35332e3139342e302f32342d3234203d3e203538333831.roa (hash: aop1U/z5XKpBzcRvoj7W7+/ffJTbEvTMlvj03extEio=) 3: 3136332e35332e3139332e302f32342d3234203d3e203538333831.roa (hash: 5tf246IHwaj7s4oEu9nu0sb2z4yR2BLV01+7PT3/O1c=) 4: 3130332e32302e39312e302f32342d3234203d3e203538333831.roa (hash: F62HpzCPf0jVzJzqHRtqYgkpCr6Z0Ln+rY5et4Po02Y=) 5: 3130332e32302e39302e302f32332d3234203d3e203538333831.roa (hash: t0sQe3wy1nx7fCaoG1vw4eb+2MVxEa2LAolsSj9bAGg=) 6: 3130332e32302e39302e302f32342d3234203d3e203538333831.roa (hash: j/oR6MYId1xXKHb1Z5SsBRuqUKKVLnH73F7eTR7zcCg=) 7: 0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl (hash: uEDLBWfw6xpTyGiX/pUuUhtyq8SdMBJtd4DoR96oezk=) 8: 3136332e35332e3139322e302f32342d3234203d3e203538333831.roa (hash: fb53zmVp3ZEKD6KlMvVv2uQVwzv7wo/XFESLY4RW+fc=) 9: 3130332e352e35302e302f32342d3234203d3e203538333831.roa (hash: p4ukH1H84E2OXHZ0f+4rfYiVhbuRJ3ak7nrQukeOEIw=) 10: 3136332e35332e3139322e302f32322d3234203d3e203538333831.roa (hash: dDbCFuKbC0+1oibgHS1pBLUQZLf12v2I7Ivqihl/WFA=) 11: 3130332e352e35302e302f32332d3234203d3e203538333831.roa (hash: iKmDknm+sz9G+4ieO2jOHSbGQz1z9iCG43k/bYAHB3k=) 12: 3136332e35332e3139352e302f32342d3234203d3e203538333831.roa (hash: zvwgezfW86SlRC31YjwJ71lKNs9pTZisRey08uUZDrw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 16:51:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:03:62:6e:3f:75:74:0d:59:e4:72:71:64:0d:9b:80:45:4e:ad:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0 Validity Not Before: Jun 16 15:02:32 2026 GMT Not After : Jun 17 16:51:32 2026 GMT Subject: CN=49D035C033F5636AD9202DDFA1FEAD0AFA2C96FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9c:74:e4:67:7f:f4:9a:68:e8:c3:c1:6d:4d: ca:4c:27:36:c1:f2:ca:43:0a:ac:64:7b:8b:e3:78: 2c:22:a6:20:62:83:08:74:e0:37:b9:9c:59:db:8f: d5:20:7c:fd:69:25:bc:09:6b:0e:63:8a:93:de:ef: 91:2e:8d:a4:1a:78:d0:3f:32:94:f8:03:04:5d:e9: 00:73:00:37:65:23:c1:31:12:f2:e2:91:14:d2:e0: cb:3a:f7:46:46:b7:a7:34:39:1a:fa:80:c5:bc:89: 44:39:78:da:43:4b:ed:9f:99:07:5d:66:1a:0a:b5: dd:9f:e0:f0:73:be:a1:dd:ec:f6:fe:ed:72:7e:7a: 84:57:a4:44:d5:a2:10:26:ae:01:e2:16:3e:3b:2a: b5:ae:c8:21:30:1f:09:0e:2f:e9:96:fe:a3:5a:c7: 67:30:cc:fe:8b:4e:ab:c0:e3:92:fc:2c:07:a3:a5: 63:cd:f5:72:e4:e5:cb:7d:bb:95:17:51:c6:36:66: 7c:42:5d:42:67:aa:08:4e:68:3e:2b:6d:eb:75:45: 16:4d:64:b4:42:a4:a3:11:5e:cb:48:9e:5a:9b:d7: 86:7c:54:56:37:8c:53:f1:9f:0a:0b:d3:b9:0c:cf: 28:c0:f0:63:88:57:6d:b0:9e:44:e0:c8:b7:56:f0: 18:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D0:35:C0:33:F5:63:6A:D9:20:2D:DF:A1:FE:AD:0A:FA:2C:96:FA X509v3 Authority Key Identifier: keyid:0F:B4:24:B2:0D:6A:45:80:E6:D3:23:3F:CF:2E:B9:F2:BD:A9:9C:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/338d2755-380d-477e-bf25-0af29026bd70/0/0FB424B20D6A4580E6D3233FCF2EB9F2BDA99CB0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:96:4e:f5:93:b2:f0:f6:5e:23:c3:36:af:9e:38:96:d7:c9: b2:0f:76:41:6d:83:4d:d9:9b:91:1d:34:97:29:69:2d:9b:4d: aa:25:d9:62:06:73:74:ea:dc:64:92:3e:88:c7:6a:50:13:14: 44:3c:59:7c:3f:e3:df:1d:37:df:74:22:e8:a4:de:75:41:78: 2a:4e:66:90:03:d2:38:a4:90:58:67:89:c3:a9:9e:7d:57:37: db:47:7e:9d:49:92:3a:f7:3e:20:16:91:05:c3:76:d7:b2:d4: d0:45:c9:7e:ca:f7:cc:84:a9:a9:66:85:92:a5:f0:bd:4b:49: 57:51:53:d3:5a:60:9a:01:76:9b:a4:bb:11:93:88:ba:6e:8f: 4a:78:07:74:5d:37:aa:6a:fe:f6:a8:89:69:87:71:ee:78:41: bb:4c:6c:c5:5e:ce:4d:b3:26:af:6e:8c:2d:a5:39:64:b1:17: 23:25:d9:b9:11:4b:5d:28:dc:06:75:87:2b:9d:60:97:09:c5: 6c:1c:a8:aa:b3:cf:75:b1:21:b2:81:8b:e1:86:d5:42:93:d4: 93:ff:c0:37:70:bf:a6:23:ad:26:1d:5a:28:a4:25:19:db:b1: f6:57:b3:07:bb:d8:79:dc:7b:d8:52:ce:26:65:85:74:7c:c0: da:70:bc:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTwNibj91dA1Z5HJxZA2bgEVOreEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEZCNDI0QjIwRDZBNDU4MEU2RDMyMzNGQ0YyRUI5RjJC REE5OUNCMDAeFw0yNjA2MTYxNTAyMzJaFw0yNjA2MTcxNjUxMzJaMDMxMTAvBgNV BAMTKDQ5RDAzNUMwMzNGNTYzNkFEOTIwMkRERkExRkVBRDBBRkEyQzk2RkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8nHTkZ3/0mmjow8FtTcpMJzbB 8spDCqxke4vjeCwipiBigwh04De5nFnbj9UgfP1pJbwJaw5jipPe75EujaQaeNA/ MpT4AwRd6QBzADdlI8ExEvLikRTS4Ms690ZGt6c0ORr6gMW8iUQ5eNpDS+2fmQdd ZhoKtd2f4PBzvqHd7Pb+7XJ+eoRXpETVohAmrgHiFj47KrWuyCEwHwkOL+mW/qNa x2cwzP6LTqvA45L8LAejpWPN9XLk5ct9u5UXUcY2ZnxCXUJnqghOaD4rbet1RRZN ZLRCpKMRXstInlqb14Z8VFY3jFPxnwoL07kMzyjA8GOIV22wnkTgyLdW8BihAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSdA1wDP1Y2rZIC3fof6tCvoslvowHwYDVR0j BBgwFoAUD7Qksg1qRYDm0yM/zy658r2pnLAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzM4ZDI3NTUtMzgwZC00NzdlLWJmMjUtMGFmMjkwMjZiZDcwLzAvMEZCNDI0QjIw RDZBNDU4MEU2RDMyMzNGQ0YyRUI5RjJCREE5OUNCMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRkI0MjRCMjBENkE0NTgwRTZEMzIzM0ZDRjJFQjlGMkJEQTk5 Q0IwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzM4ZDI3NTUtMzgwZC00NzdlLWJm MjUtMGFmMjkwMjZiZDcwLzAvMEZCNDI0QjIwRDZBNDU4MEU2RDMyMzNGQ0YyRUI5 RjJCREE5OUNCMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI+WTvWTsvD2XiPDNq+eOJbXybIPdkFtg03Z m5EdNJcpaS2bTaol2WIGc3Tq3GSSPojHalATFEQ8WXw/498dN990Iuik3nVBeCpO ZpAD0jikkFhnicOpnn1XN9tHfp1Jkjr3PiAWkQXDdtey1NBFyX7K98yEqalmhZKl 8L1LSVdRU9NaYJoBdpukuxGTiLpuj0p4B3RdN6pq/vaoiWmHce54QbtMbMVezk2z Jq9ujC2lOWSxFyMl2bkRS10o3AZ1hyudYJcJxWwcqKqzz3WxIbKBi+GG1UKT1JP/ wDdwv6YjrSYdWiikJRnbsfZXswe72Hnce9hSziZlhXR8wNpwvCE= -----END CERTIFICATE-----Generated at Wed Jun 17 09:20:41 2026 by rpki-client