$ rpki-client -vvf rpki-rsync.idnic.net/repo/372b8d28-ff7c-4692-9018-9755ba509168/0/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.mft File: 85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.mft (raw, json) Hash identifier: ZxEC0cvjnjintNe4BjenhwrgI/rulDqJcdoSEP761JY= Subject key identifier: 58:9F:A4:F2:9F:EB:CA:DC:E9:ED:4E:2B:6C:C4:88:BE:6D:2A:E6:6B Authority key identifier: 85:B9:A2:B4:A4:F3:73:9C:8F:C0:3E:51:02:5A:2B:68:BC:76:AB:F2 Certificate issuer: /CN=85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2 Certificate serial: 3122C6CA3847C6DA1FA050F0B53EBB8F26217EA9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/372b8d28-ff7c-4692-9018-9755ba509168/0/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.mft Manifest number: 3F Signing time: Tue 16 Jun 2026 19:42:59 +0000 Manifest this update: Tue 16 Jun 2026 19:37:59 +0000 Manifest next update: Wed 17 Jun 2026 19:52:59 +0000 Files and hashes: 1: 85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.crl (hash: 9AZ20LBCbOl4pgc4j+DnZgFIVgfmqOXk7njAk/IMSgc=) 2: 3130332e3130352e39322e302f32332d3234203d3e20313530393435.roa (hash: OmTMu2442b172ucsFf/mMUYIo/5ux22+t2Y1lTl29zM=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/372b8d28-ff7c-4692-9018-9755ba509168/0/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.crl rsync://rpki-rsync.idnic.net/repo/372b8d28-ff7c-4692-9018-9755ba509168/0/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 19:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:22:c6:ca:38:47:c6:da:1f:a0:50:f0:b5:3e:bb:8f:26:21:7e:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2 Validity Not Before: Jun 16 19:37:59 2026 GMT Not After : Jun 17 19:52:59 2026 GMT Subject: CN=589FA4F29FEBCADCE9ED4E2B6CC488BE6D2AE66B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:10:03:85:2d:42:c5:e5:0c:9f:c2:9d:47:e9: 9a:0c:19:20:4b:3e:ab:98:05:e3:1e:4c:e6:bd:22: ff:93:56:18:9e:78:91:d3:13:0b:88:99:9a:bc:02: d6:9f:c7:00:13:01:df:4c:65:29:95:e9:fc:ca:09: ad:b1:04:a9:15:21:65:fb:a6:6e:37:38:77:bd:34: 22:76:da:62:59:bc:f3:70:05:9a:79:61:03:ed:1d: f6:80:54:05:e3:92:62:ce:73:2a:ca:cb:1b:42:84: 05:9e:47:50:07:00:5f:02:87:ad:3e:e7:b6:c0:1b: 03:bc:2b:c1:2e:c2:ab:24:ee:8a:45:7d:90:e9:41: d6:d9:8b:9e:04:c1:03:f0:d0:7a:55:a2:c3:db:9e: 97:1e:0c:5a:6d:30:27:bd:69:7c:8e:b7:4b:d0:b9: e1:9f:74:2d:0d:e5:2d:5e:3d:b8:3a:0a:10:1e:43: 57:1c:91:de:7c:1a:2e:4c:c5:cf:c6:23:00:b0:8e: 44:3a:6e:bd:f0:4d:d0:c6:92:a5:4e:3b:bc:b3:93: 56:ab:3c:e4:6a:c5:a4:ac:cc:54:5c:9a:75:ba:44: 31:f7:e0:a9:d2:b0:71:4c:90:b6:5c:4b:cd:31:c2: a7:59:87:0e:a2:c4:6f:76:50:ad:35:75:a4:6b:96: 25:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:9F:A4:F2:9F:EB:CA:DC:E9:ED:4E:2B:6C:C4:88:BE:6D:2A:E6:6B X509v3 Authority Key Identifier: keyid:85:B9:A2:B4:A4:F3:73:9C:8F:C0:3E:51:02:5A:2B:68:BC:76:AB:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/372b8d28-ff7c-4692-9018-9755ba509168/0/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/372b8d28-ff7c-4692-9018-9755ba509168/0/85B9A2B4A4F3739C8FC03E51025A2B68BC76ABF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:b7:cb:7b:4b:bf:36:2c:18:4b:c2:ef:8b:38:54:86:f7:9f: 4b:9d:d5:17:3f:dd:91:53:1c:40:91:6a:4b:a7:ac:05:0d:cb: 8e:89:aa:e7:a5:5f:89:76:f6:55:2f:53:1b:e4:dd:99:d0:aa: 44:25:9d:df:ad:39:3a:e3:88:17:31:fd:60:97:47:6d:eb:bc: 84:77:9b:dc:d4:75:45:34:53:50:3d:e4:05:51:19:ac:bc:08: 0d:5b:cb:74:90:df:31:cf:72:52:37:90:d4:92:5e:a6:c9:02: 79:e0:8a:99:5d:03:b2:ca:3a:01:d4:d8:1b:b1:91:fb:19:ce: 68:2c:05:c4:02:57:d0:23:9f:2f:5a:d4:f4:d3:b0:ea:78:c0: 78:5a:a7:c3:05:a0:0e:81:ba:9c:0c:f9:77:23:88:15:ca:77: 04:ed:52:49:fe:68:89:a4:86:6d:11:c6:f8:96:e9:94:b5:88: f6:15:b2:df:e1:17:63:d6:b1:6f:c2:40:ea:c6:5f:b5:16:4d: fd:bf:ba:f2:7c:49:c1:1c:42:2a:62:ae:75:92:12:ec:88:a8: cf:4d:cc:d1:27:4a:5c:67:62:a0:b0:db:43:33:80:4d:1f:f9: 9b:c5:e2:b8:fc:9b:28:04:55:ce:35:3d:c0:d0:27:56:63:bc: 92:aa:6b:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMSLGyjhHxtofoFDwtT67jyYhfqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODVCOUEyQjRBNEYzNzM5QzhGQzAzRTUxMDI1QTJCNjhC Qzc2QUJGMjAeFw0yNjA2MTYxOTM3NTlaFw0yNjA2MTcxOTUyNTlaMDMxMTAvBgNV BAMTKDU4OUZBNEYyOUZFQkNBRENFOUVENEUyQjZDQzQ4OEJFNkQyQUU2NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvEAOFLULF5Qyfwp1H6ZoMGSBL PquYBeMeTOa9Iv+TVhieeJHTEwuImZq8AtafxwATAd9MZSmV6fzKCa2xBKkVIWX7 pm43OHe9NCJ22mJZvPNwBZp5YQPtHfaAVAXjkmLOcyrKyxtChAWeR1AHAF8Ch60+ 57bAGwO8K8Euwqsk7opFfZDpQdbZi54EwQPw0HpVosPbnpceDFptMCe9aXyOt0vQ ueGfdC0N5S1ePbg6ChAeQ1cckd58Gi5Mxc/GIwCwjkQ6br3wTdDGkqVOO7yzk1ar PORqxaSszFRcmnW6RDH34KnSsHFMkLZcS80xwqdZhw6ixG92UK01daRrliWFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWJ+k8p/rytzp7U4rbMSIvm0q5mswHwYDVR0j BBgwFoAUhbmitKTzc5yPwD5RAloraLx2q/IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzcyYjhkMjgtZmY3Yy00NjkyLTkwMTgtOTc1NWJhNTA5MTY4LzAvODVCOUEyQjRB NEYzNzM5QzhGQzAzRTUxMDI1QTJCNjhCQzc2QUJGMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NUI5QTJCNEE0RjM3MzlDOEZDMDNFNTEwMjVBMkI2OEJDNzZB QkYyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzcyYjhkMjgtZmY3Yy00NjkyLTkw MTgtOTc1NWJhNTA5MTY4LzAvODVCOUEyQjRBNEYzNzM5QzhGQzAzRTUxMDI1QTJC NjhCQzc2QUJGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADe3y3tLvzYsGEvC74s4VIb3n0ud1Rc/3ZFT HECRakunrAUNy46JquelX4l29lUvUxvk3ZnQqkQlnd+tOTrjiBcx/WCXR23rvIR3 m9zUdUU0U1A95AVRGay8CA1by3SQ3zHPclI3kNSSXqbJAnngipldA7LKOgHU2Bux kfsZzmgsBcQCV9Ajny9a1PTTsOp4wHhap8MFoA6BupwM+XcjiBXKdwTtUkn+aImk hm0RxviW6ZS1iPYVst/hF2PWsW/CQOrGX7UWTf2/uvJ8ScEcQipirnWSEuyIqM9N zNEnSlxnYqCw20MzgE0f+ZvF4rj8mygEVc41PcDQJ1ZjvJKqa5c= -----END CERTIFICATE-----Generated at Wed Jun 17 10:53:23 2026 by rpki-client