$ rpki-client -vvf rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.mft File: 0171EAA218774432ABC9A9D090D868F4943C2BC9.mft (raw, json) Hash identifier: ZoyywSXmLcjnOFM5tILR0wkYeI3REY/jZ2+xArfDlo4= Subject key identifier: 9B:84:6A:14:79:81:E7:75:5D:A3:48:CF:7A:90:1D:9D:06:4F:02:96 Authority key identifier: 01:71:EA:A2:18:77:44:32:AB:C9:A9:D0:90:D8:68:F4:94:3C:2B:C9 Certificate issuer: /CN=0171EAA218774432ABC9A9D090D868F4943C2BC9 Certificate serial: 4D0F3C9F0DCBDE2DCA460134CC21B44CF52E94BF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0171EAA218774432ABC9A9D090D868F4943C2BC9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.mft Manifest number: 3E Signing time: Tue 16 Jun 2026 17:55:54 +0000 Manifest this update: Tue 16 Jun 2026 17:50:54 +0000 Manifest next update: Wed 17 Jun 2026 20:12:54 +0000 Files and hashes: 1: 0171EAA218774432ABC9A9D090D868F4943C2BC9.crl (hash: TLoj7mKeZ1sCGC+MfO8FNzDYOWI0NgvZHU/Nk16hdvM=) 2: 3230332e3134352e36322e302f32332d3234203d3e203436303233.roa (hash: bfwByw1OryUOPM+r8Xth/6t7HmBI225IaP1YDRFG3v0=) 3: 3230332e3134352e36322e302f32342d3234203d3e203436303233.roa (hash: kr2x2jAHoOVd23uTDgYpT8+IZPKj2iayb++8bFwe1Jc=) 4: 3230332e3134352e36332e302f32342d3234203d3e203436303233.roa (hash: uz7vD6uKih8Tb7MYai/UMVuRJwMkfdUo7tpBij+DNyE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.crl rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0171EAA218774432ABC9A9D090D868F4943C2BC9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 20:12:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:0f:3c:9f:0d:cb:de:2d:ca:46:01:34:cc:21:b4:4c:f5:2e:94:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0171EAA218774432ABC9A9D090D868F4943C2BC9 Validity Not Before: Jun 16 17:50:54 2026 GMT Not After : Jun 17 20:12:54 2026 GMT Subject: CN=9B846A147981E7755DA348CF7A901D9D064F0296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0f:7d:eb:5a:9e:39:fd:06:03:c5:19:9d:17: d7:39:1d:85:3a:b4:2a:e3:bf:3e:5e:82:6e:c8:d0: fc:2a:68:92:0e:07:2f:d2:33:e2:5a:63:8e:00:06: 69:13:82:bf:d9:4d:e7:9f:90:6f:1d:ae:7e:92:21: 5b:cf:1a:74:36:f9:ee:41:70:57:46:4a:d9:97:29: ff:99:0a:57:3e:1d:11:6b:8c:ce:6c:b2:b4:b3:e6: 99:2a:50:fd:4a:ac:f1:f3:5f:85:c6:b8:76:0a:59: 30:db:8b:38:b4:8b:77:a8:a5:84:25:29:1c:96:ba: 91:47:09:35:4a:70:6e:ff:b4:94:86:a6:54:06:c6: b4:49:8c:ab:66:4d:04:3b:4c:50:b2:7f:51:69:05: c2:2b:b4:ee:cc:5f:b0:75:c6:85:e1:5a:a2:a6:5d: 6a:fb:ec:6d:8b:65:8b:a8:b3:46:e1:0b:03:46:31: 55:af:b5:26:b5:83:6c:08:54:eb:b0:71:b4:9d:49: 99:18:94:3f:36:8e:13:bd:b3:3e:e2:46:8c:d1:40: 29:a9:ac:6a:52:ff:bd:94:1a:a2:76:98:99:1b:3a: aa:c7:d5:b9:5a:18:02:27:14:25:fc:60:43:da:41: 1f:c6:40:83:19:13:4e:0e:c4:5b:02:60:d0:3f:42: a4:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:84:6A:14:79:81:E7:75:5D:A3:48:CF:7A:90:1D:9D:06:4F:02:96 X509v3 Authority Key Identifier: keyid:01:71:EA:A2:18:77:44:32:AB:C9:A9:D0:90:D8:68:F4:94:3C:2B:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0171EAA218774432ABC9A9D090D868F4943C2BC9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/0171EAA218774432ABC9A9D090D868F4943C2BC9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:90:76:71:82:bf:f4:c6:64:da:55:81:6d:95:66:3c:a4:27: 5d:dd:3c:72:a4:e1:11:15:ea:25:f5:fe:ac:e4:ab:cf:a5:70: 85:6e:c2:5b:a6:a7:25:1d:0d:2e:12:3a:f0:d3:9d:aa:ab:42: 55:80:b3:83:ac:b9:24:0b:8f:d7:63:ba:1c:a7:eb:e1:cd:ce: d3:ac:10:76:bb:c0:ef:1f:e5:ce:64:d2:f5:a0:82:b7:1a:c1: b2:4a:f7:d3:8d:f8:18:41:87:4e:4b:2b:37:30:94:ba:b3:a9: 5e:db:88:1e:e3:ff:be:9b:b7:d1:25:4e:e8:b5:f1:8c:b5:46: 32:d8:a0:d3:66:4d:50:a1:91:cb:e0:b7:55:01:2b:68:b9:49: 52:ea:84:0c:87:2f:93:78:b9:4a:f0:c3:56:40:21:35:64:cf: 84:ad:07:13:f1:3f:b7:eb:c2:1b:3b:5f:15:64:93:b7:17:c0: 88:ca:9c:10:de:25:9d:8e:d2:45:a2:4e:c5:59:9e:ac:3a:ab: e3:18:b5:eb:1f:06:d6:c0:86:72:ec:64:f4:4f:21:60:f0:88: 2b:ea:96:cc:c4:84:a2:c8:60:cf:77:d0:88:51:36:48:19:92: 97:ba:5d:ec:07:36:b2:6d:6b:64:86:56:83:86:e6:4b:1b:02: 87:91:62:1d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTQ88nw3L3i3KRgE0zCG0TPUulL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDE3MUVBQTIxODc3NDQzMkFCQzlBOUQwOTBEODY4RjQ5 NDNDMkJDOTAeFw0yNjA2MTYxNzUwNTRaFw0yNjA2MTcyMDEyNTRaMDMxMTAvBgNV BAMTKDlCODQ2QTE0Nzk4MUU3NzU1REEzNDhDRjdBOTAxRDlEMDY0RjAyOTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9D33rWp45/QYDxRmdF9c5HYU6 tCrjvz5egm7I0PwqaJIOBy/SM+JaY44ABmkTgr/ZTeefkG8drn6SIVvPGnQ2+e5B cFdGStmXKf+ZClc+HRFrjM5ssrSz5pkqUP1KrPHzX4XGuHYKWTDbizi0i3eopYQl KRyWupFHCTVKcG7/tJSGplQGxrRJjKtmTQQ7TFCyf1FpBcIrtO7MX7B1xoXhWqKm XWr77G2LZYuos0bhCwNGMVWvtSa1g2wIVOuwcbSdSZkYlD82jhO9sz7iRozRQCmp rGpS/72UGqJ2mJkbOqrH1blaGAInFCX8YEPaQR/GQIMZE04OxFsCYNA/QqR3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUm4RqFHmB53Vdo0jPepAdnQZPApYwHwYDVR0j BBgwFoAUAXHqohh3RDKryanQkNho9JQ8K8kwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzNkZGE5MjMtZWEzNi00NTZiLWJhZmUtNDBlNmI2MmY1MGM1LzAvMDE3MUVBQTIx ODc3NDQzMkFCQzlBOUQwOTBEODY4RjQ5NDNDMkJDOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMTcxRUFBMjE4Nzc0NDMyQUJDOUE5RDA5MEQ4NjhGNDk0M0My QkM5LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzNkZGE5MjMtZWEzNi00NTZiLWJh ZmUtNDBlNmI2MmY1MGM1LzAvMDE3MUVBQTIxODc3NDQzMkFCQzlBOUQwOTBEODY4 RjQ5NDNDMkJDOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK6QdnGCv/TGZNpVgW2VZjykJ13dPHKk4REV 6iX1/qzkq8+lcIVuwlumpyUdDS4SOvDTnaqrQlWAs4OsuSQLj9djuhyn6+HNztOs EHa7wO8f5c5k0vWggrcawbJK99ON+BhBh05LKzcwlLqzqV7biB7j/76bt9ElTui1 8Yy1RjLYoNNmTVChkcvgt1UBK2i5SVLqhAyHL5N4uUrww1ZAITVkz4StBxPxP7fr whs7XxVkk7cXwIjKnBDeJZ2O0kWiTsVZnqw6q+MYtesfBtbAhnLsZPRPIWDwiCvq lszEhKLIYM930IhRNkgZkpe6XewHNrJta2SGVoOG5ksbAoeRYh0= -----END CERTIFICATE-----Generated at Wed Jun 17 10:42:02 2026 by rpki-client