$ rpki-client -vvf rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.mft File: AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.mft (raw, json) Hash identifier: FT70jJzF6wJTOPaZKbuPlUaq8TwSI8qIYNkakg0hiOU= Subject key identifier: 96:9C:0F:A1:AF:16:21:95:4E:CF:DB:8A:35:EE:46:F6:24:FB:CA:2B Authority key identifier: AE:DD:C1:D3:A0:B2:36:A4:22:8B:8D:DF:48:0D:7D:B6:06:16:06:D3 Certificate issuer: /CN=AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3 Certificate serial: 2F0D2CB7573A6E0D70AF2F5DA4B61F1E6AD95B8E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 21:50:42 +0000 Manifest this update: Tue 16 Jun 2026 21:45:42 +0000 Manifest next update: Wed 17 Jun 2026 23:53:42 +0000 Files and hashes: 1: AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl (hash: hSgkucNqWJcjPe7rOZCo9o1G+oj4oDc8em0pMb6JLL4=) 2: 323430353a663234303a3a2f33322d3332203d3e20313430333834.roa (hash: j3CCIkkkxHu9Jvfxg5BBPTNs9de+9hMDr2iWt/LPgIg=) 3: 3130332e3134392e3233392e302f32342d3234203d3e20313430333834.roa (hash: fSBmaNekEw3OBHkti8Tium+Nxe4NKA+v+f93I6eiImM=) 4: 3130332e3134392e3233382e302f32332d3233203d3e20313430333834.roa (hash: AWpHjSJZSEnTAxNcOTOICGiGCdtga3pPphgmCcn8xjE=) 5: 3130332e3134392e3233382e302f32342d3234203d3e20313430333834.roa (hash: tj5GNswRthGD9Jerv3aI7edNXY0M4+btYrK4Cyrd4Ts=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 23:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:0d:2c:b7:57:3a:6e:0d:70:af:2f:5d:a4:b6:1f:1e:6a:d9:5b:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3 Validity Not Before: Jun 16 21:45:42 2026 GMT Not After : Jun 17 23:53:42 2026 GMT Subject: CN=969C0FA1AF1621954ECFDB8A35EE46F624FBCA2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:56:4d:e3:c9:f1:52:1d:f0:f0:fc:68:42:0e: 80:b7:50:7e:3d:3c:18:9e:d4:5c:f4:26:d0:1a:0b: 29:ce:4f:ec:8f:57:a9:91:97:7e:70:0f:52:69:3c: 7f:fb:1f:72:b8:4a:43:da:66:40:46:36:2b:bc:74: 0b:de:c1:65:6c:29:76:1f:da:1f:53:c3:e6:c7:44: 7d:8a:a0:0e:c9:73:d9:ce:54:5d:aa:62:5b:e8:f1: fe:04:4f:10:8c:8b:c5:a4:ff:26:46:98:28:f6:fe: 8c:c8:77:f6:3a:5f:b2:9e:62:f0:df:88:2e:04:67: a5:8b:06:79:ad:00:4d:3c:19:19:d8:05:a5:89:a2: 97:01:65:f1:68:61:30:eb:1a:a7:9e:94:4e:41:f6: 0f:75:af:7d:29:ab:d1:39:4d:e1:f8:36:2c:23:0c: a7:13:c8:66:9d:ca:85:01:1e:3c:8d:0e:64:bd:9a: 3f:d6:fb:6c:99:00:59:1e:ce:9c:11:22:92:38:1f: 89:3a:1f:00:27:08:7d:a2:65:2b:9c:22:f7:97:69: 63:41:34:31:fb:62:e4:49:de:7e:08:e1:c8:57:8b: 04:48:bb:f7:02:20:85:30:05:73:88:8a:15:31:52: fc:c8:ac:25:ed:e3:1b:e9:70:8d:53:2f:7f:de:7a: b7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9C:0F:A1:AF:16:21:95:4E:CF:DB:8A:35:EE:46:F6:24:FB:CA:2B X509v3 Authority Key Identifier: keyid:AE:DD:C1:D3:A0:B2:36:A4:22:8B:8D:DF:48:0D:7D:B6:06:16:06:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/40d34e77-6cf6-4187-9083-1c7a8819e965/0/AEDDC1D3A0B236A4228B8DDF480D7DB6061606D3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:13:44:15:e6:d9:ca:e6:ab:8a:48:37:b6:3b:7f:0a:28:a7: de:cc:2b:3a:5c:8e:11:c3:0c:1d:4f:8b:df:0d:00:4e:fa:0e: 62:ec:82:19:23:ce:28:f5:ef:fa:b7:cf:10:89:3f:0c:bd:ab: 78:5e:92:bd:d5:e7:de:f1:f6:63:c1:e6:b0:99:16:b5:46:99: d7:72:ea:71:a6:5b:71:54:ea:22:4e:66:71:c4:ed:f4:f5:ac: a2:3f:f0:ec:92:fa:b7:60:d0:89:bc:0f:c0:fc:06:4f:f6:6d: cc:36:1b:10:c2:7c:8a:ab:d5:f6:f6:24:37:a1:f0:dd:aa:b1: b1:c4:a4:64:27:04:ae:f1:ac:6b:e0:29:05:c0:c4:d2:60:60: 08:3e:d3:7a:2b:0a:00:34:22:ec:61:ad:b2:67:73:b7:4d:9d: 23:ff:c2:c6:e5:ac:06:c9:97:2a:fb:d6:11:5f:f9:fc:74:8a: 98:a1:cc:2b:9a:2a:ad:ab:a7:96:3d:92:e4:df:d7:92:39:18: c5:74:9b:5c:c5:87:4f:09:43:c6:42:dd:5e:ee:62:c3:1a:9c: 6a:e3:21:67:3c:42:f1:74:bd:cc:d1:9d:41:f5:58:a0:b9:f2: 84:5b:ee:87:32:37:35:53:e2:b6:29:10:95:e8:03:84:2a:66: 8c:08:68:5c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULw0st1c6bg1wry9dpLYfHmrZW44wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEREMxRDNBMEIyMzZBNDIyOEI4RERGNDgwRDdEQjYw NjE2MDZEMzAeFw0yNjA2MTYyMTQ1NDJaFw0yNjA2MTcyMzUzNDJaMDMxMTAvBgNV BAMTKDk2OUMwRkExQUYxNjIxOTU0RUNGREI4QTM1RUU0NkY2MjRGQkNBMkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Vk3jyfFSHfDw/GhCDoC3UH49 PBie1Fz0JtAaCynOT+yPV6mRl35wD1JpPH/7H3K4SkPaZkBGNiu8dAvewWVsKXYf 2h9Tw+bHRH2KoA7Jc9nOVF2qYlvo8f4ETxCMi8Wk/yZGmCj2/ozId/Y6X7KeYvDf iC4EZ6WLBnmtAE08GRnYBaWJopcBZfFoYTDrGqeelE5B9g91r30pq9E5TeH4Niwj DKcTyGadyoUBHjyNDmS9mj/W+2yZAFkezpwRIpI4H4k6HwAnCH2iZSucIveXaWNB NDH7YuRJ3n4I4chXiwRIu/cCIIUwBXOIihUxUvzIrCXt4xvpcI1TL3/eercNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlpwPoa8WIZVOz9uKNe5G9iT7yiswHwYDVR0j BBgwFoAUrt3B06CyNqQii43fSA19tgYWBtMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDBkMzRlNzctNmNmNi00MTg3LTkwODMtMWM3YTg4MTllOTY1LzAvQUVEREMxRDNB MEIyMzZBNDIyOEI4RERGNDgwRDdEQjYwNjE2MDZEMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRUREQzFEM0EwQjIzNkE0MjI4QjhEREY0ODBEN0RCNjA2MTYw NkQzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDBkMzRlNzctNmNmNi00MTg3LTkw ODMtMWM3YTg4MTllOTY1LzAvQUVEREMxRDNBMEIyMzZBNDIyOEI4RERGNDgwRDdE QjYwNjE2MDZEMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKETRBXm2crmq4pIN7Y7fwoop97MKzpcjhHD DB1Pi98NAE76DmLsghkjzij17/q3zxCJPwy9q3hekr3V597x9mPB5rCZFrVGmddy 6nGmW3FU6iJOZnHE7fT1rKI/8OyS+rdg0Im8D8D8Bk/2bcw2GxDCfIqr1fb2JDeh 8N2qsbHEpGQnBK7xrGvgKQXAxNJgYAg+03orCgA0IuxhrbJnc7dNnSP/wsblrAbJ lyr71hFf+fx0ipihzCuaKq2rp5Y9kuTf15I5GMV0m1zFh08JQ8ZC3V7uYsManGrj IWc8QvF0vczRnUH1WKC58oRb7ocyNzVT4rYpEJXoA4QqZowIaFw= -----END CERTIFICATE-----Generated at Wed Jun 17 09:20:42 2026 by rpki-client