$ rpki-client -vvf rpki-rsync.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/509D7A005D22B25F29771D4736A9F3273A87402B.mft File: 509D7A005D22B25F29771D4736A9F3273A87402B.mft (raw, json) Hash identifier: uel+gyDcuhQoc/5u8kQGax0XcrApxi/murThF6oLH3E= Subject key identifier: DD:11:6A:98:4D:A3:8D:F7:5F:E7:7D:C1:E5:F9:0F:1F:68:4A:D0:82 Authority key identifier: 50:9D:7A:00:5D:22:B2:5F:29:77:1D:47:36:A9:F3:27:3A:87:40:2B Certificate issuer: /CN=509D7A005D22B25F29771D4736A9F3273A87402B Certificate serial: 7BEF0B9505583BA957304E80D21BEB409436951B Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/509D7A005D22B25F29771D4736A9F3273A87402B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/509D7A005D22B25F29771D4736A9F3273A87402B.mft Manifest number: 3E Signing time: Wed 17 Jun 2026 02:30:46 +0000 Manifest this update: Wed 17 Jun 2026 02:25:46 +0000 Manifest next update: Thu 18 Jun 2026 06:09:46 +0000 Files and hashes: 1: 509D7A005D22B25F29771D4736A9F3273A87402B.crl (hash: 4WOFxGQ3KgJJ6Fulj0ecAF+tet7UVITFlZ85fglEwpw=) 2: 3130332e39372e372e302f32342d3234203d3e20313336313237.roa (hash: u9MbGwZTtdpRxvA0JKGeSH6mVkoh1gSizjeQTtefh6M=) 3: 3130332e39372e362e302f32342d3234203d3e20313336313237.roa (hash: RQSgO7tNppNvAC3aE8/fyIG2xxaOqC+3ztcNnXjPeng=) 4: 3130332e39372e342e302f32342d3234203d3e20313336313237.roa (hash: 3XT6Qf//u+3dqP7/6tKzMllxBOnpkDd6boyw9AssiHI=) 5: 3130332e39372e342e302f32322d3234203d3e20313336313237.roa (hash: JKx5cXFJ9JwbuaKvmzbMBf7ucrHYe7PUJvHjTqORfvc=) 6: 323430313a383034303a3a2f33322d3332203d3e20313336313237.roa (hash: Dj85ZEdEHR8+WCo+8/1VIzd5RABBzm91ckkaaPaldnM=) 7: 3130332e39372e352e302f32342d3234203d3e20313336313237.roa (hash: gia04ffSWp+0qNudeLLR7irdY7oXCN/dKfEZqry+RoQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/509D7A005D22B25F29771D4736A9F3273A87402B.crl rsync://rpki-rsync.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/509D7A005D22B25F29771D4736A9F3273A87402B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/509D7A005D22B25F29771D4736A9F3273A87402B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ef:0b:95:05:58:3b:a9:57:30:4e:80:d2:1b:eb:40:94:36:95:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=509D7A005D22B25F29771D4736A9F3273A87402B Validity Not Before: Jun 17 02:25:46 2026 GMT Not After : Jun 18 06:09:46 2026 GMT Subject: CN=DD116A984DA38DF75FE77DC1E5F90F1F684AD082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:56:d0:7f:bd:7c:4c:88:28:fb:d8:05:55:f2: 6b:89:3b:c0:52:09:f5:4e:5c:7a:50:69:cc:ae:a9: a3:fa:98:84:19:a4:34:9d:ef:47:c5:26:1d:43:55: 97:a0:83:42:b4:e2:16:fa:d2:77:0f:b0:0c:bd:05: 0c:de:33:98:f7:9d:d0:3f:9e:f3:d8:a3:3f:50:2d: e4:b0:33:af:05:6f:6f:51:fd:27:2e:35:4a:42:2c: cc:fc:2d:ef:9d:cf:32:f6:98:60:44:d4:c6:ab:bf: 3d:49:36:d2:4f:5a:12:25:c9:b4:07:e1:11:fc:b1: cb:01:b3:c1:d9:91:bf:a9:17:1d:4d:19:cf:b5:79: 32:1a:ae:be:72:c0:6f:38:4d:11:6b:c7:9d:0e:27: 4c:cc:0d:c9:80:c3:81:9a:1d:59:bb:e0:75:9c:71: 81:a5:27:de:7b:dc:80:b3:67:e3:e8:b2:c6:53:3d: f2:c1:a2:de:6a:42:75:26:7f:c0:81:e8:d4:2d:b8: e2:85:e4:68:a4:f6:73:c3:84:b7:5b:88:99:ac:c0: 36:65:3b:39:69:47:3d:eb:3a:5f:9a:6a:e2:60:a4: 3a:90:eb:a1:f7:ce:06:7f:52:9a:18:b5:05:be:48: e4:8e:23:92:0c:8d:a5:97:87:8d:07:2a:01:83:9e: f9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:11:6A:98:4D:A3:8D:F7:5F:E7:7D:C1:E5:F9:0F:1F:68:4A:D0:82 X509v3 Authority Key Identifier: keyid:50:9D:7A:00:5D:22:B2:5F:29:77:1D:47:36:A9:F3:27:3A:87:40:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/509D7A005D22B25F29771D4736A9F3273A87402B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/509D7A005D22B25F29771D4736A9F3273A87402B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/44b27303-9e3d-4d42-af25-6a0f11808f27/0/509D7A005D22B25F29771D4736A9F3273A87402B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:60:61:1f:ee:cd:4d:d0:81:1a:16:de:94:83:cc:0f:4b:60: 11:45:48:b2:20:af:49:45:91:c9:a6:e4:4c:64:43:5b:a4:54: 7c:cd:d9:99:fd:fa:df:a3:ab:ac:12:f3:7f:10:de:6a:0b:a0: 7a:39:21:d0:97:29:d6:95:ac:c1:1e:f3:46:88:49:7b:4f:2d: 32:61:c8:26:12:b9:d4:19:2a:12:15:f7:32:b0:43:bd:a5:a3: d5:02:d5:06:91:6e:c2:85:bb:0c:be:47:21:60:5c:4c:0c:a9: 24:24:19:14:92:1c:df:e5:0b:d1:7b:7e:f0:8a:5a:8f:8f:0a: ee:22:0c:95:3c:5c:97:a4:83:20:d3:3b:0e:95:c0:0b:18:e7: 9e:69:c7:78:9e:ff:bb:bb:30:48:5f:2f:22:a9:c0:f1:2b:39: 15:cc:88:83:4a:90:ee:69:a6:44:b9:8d:76:20:0b:07:bf:25: 04:d2:5f:1a:87:15:fa:0b:e9:7f:5b:9f:44:d5:d7:7f:fc:3e: cd:52:8f:cb:c7:3e:c6:b1:de:f3:c9:cf:74:a6:37:22:28:ab: e9:c8:09:b5:1e:12:e4:a8:52:93:0f:f8:9a:a5:92:7f:fd:07: 55:05:3f:53:60:2f:12:d6:a7:f6:cf:5d:8e:13:22:30:e4:57: b4:60:e7:09 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUe+8LlQVYO6lXME6A0hvrQJQ2lRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTA5RDdBMDA1RDIyQjI1RjI5NzcxRDQ3MzZBOUYzMjcz QTg3NDAyQjAeFw0yNjA2MTcwMjI1NDZaFw0yNjA2MTgwNjA5NDZaMDMxMTAvBgNV BAMTKEREMTE2QTk4NERBMzhERjc1RkU3N0RDMUU1RjkwRjFGNjg0QUQwODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgVtB/vXxMiCj72AVV8muJO8BS CfVOXHpQacyuqaP6mIQZpDSd70fFJh1DVZegg0K04hb60ncPsAy9BQzeM5j3ndA/ nvPYoz9QLeSwM68Fb29R/ScuNUpCLMz8Le+dzzL2mGBE1Marvz1JNtJPWhIlybQH 4RH8scsBs8HZkb+pFx1NGc+1eTIarr5ywG84TRFrx50OJ0zMDcmAw4GaHVm74HWc cYGlJ9573ICzZ+PossZTPfLBot5qQnUmf8CB6NQtuOKF5Gik9nPDhLdbiJmswDZl OzlpRz3rOl+aauJgpDqQ66H3zgZ/UpoYtQW+SOSOI5IMjaWXh40HKgGDnvlNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3RFqmE2jjfdf533B5fkPH2hK0IIwHwYDVR0j BBgwFoAUUJ16AF0isl8pdx1HNqnzJzqHQCswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDRiMjczMDMtOWUzZC00ZDQyLWFmMjUtNmEwZjExODA4ZjI3LzAvNTA5RDdBMDA1 RDIyQjI1RjI5NzcxRDQ3MzZBOUYzMjczQTg3NDAyQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81MDlEN0EwMDVEMjJCMjVGMjk3NzFENDczNkE5RjMyNzNBODc0 MDJCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDRiMjczMDMtOWUzZC00ZDQyLWFm MjUtNmEwZjExODA4ZjI3LzAvNTA5RDdBMDA1RDIyQjI1RjI5NzcxRDQ3MzZBOUYz MjczQTg3NDAyQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKdgYR/uzU3QgRoW3pSDzA9LYBFFSLIgr0lF kcmm5ExkQ1ukVHzN2Zn9+t+jq6wS838Q3moLoHo5IdCXKdaVrMEe80aISXtPLTJh yCYSudQZKhIV9zKwQ72lo9UC1QaRbsKFuwy+RyFgXEwMqSQkGRSSHN/lC9F7fvCK Wo+PCu4iDJU8XJekgyDTOw6VwAsY555px3ie/7u7MEhfLyKpwPErORXMiINKkO5p pkS5jXYgCwe/JQTSXxqHFfoL6X9bn0TV13/8Ps1Sj8vHPsax3vPJz3SmNyIoq+nI CbUeEuSoUpMP+Jqlkn/9B1UFP1NgLxLWp/bPXY4TIjDkV7Rg5wk= -----END CERTIFICATE-----Generated at Wed Jun 17 10:33:31 2026 by rpki-client