$ rpki-client -vvf rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft File: 853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft (raw, json) Hash identifier: aZN2+luuPzsYkKSfVBn6McTzacRDTh6YQ8kd5AffJt0= Subject key identifier: AE:53:AB:D5:9E:85:BE:34:34:81:02:FA:FD:B1:2F:7C:29:B8:40:CC Authority key identifier: 85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE Certificate issuer: /CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Certificate serial: 11A5A46977FE5D3246E418805585AD0E24A71438 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft Manifest number: 39 Signing time: Sat 13 Jun 2026 00:09:37 +0000 Manifest this update: Sat 13 Jun 2026 00:04:37 +0000 Manifest next update: Sun 14 Jun 2026 02:05:37 +0000 Files and hashes: 1: 3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa (hash: nJl837iJi/5SwBSDbdYVongO7p9uzBZcmTZb0XAZTJk=) 2: 323430333a653434303a3a2f33322d3332203d3e20313338303936.roa (hash: VwsatNn5AXuJ/LUW+n8JXwWEwiaViEVC741lbFCSMBE=) 3: 853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl (hash: HlqFCbEaMhHWMLkYfXt7tMzQ1O34DLK7o/76+/nmEFQ=) 4: 3130332e3132342e3139362e302f32342d3234203d3e20313338303936.roa (hash: fgQOQ1ZPs6+mRIJ9mhffQJjtFV+ZjnGnsOoWLbAN6Mo=) 5: 3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa (hash: fxSYsouQPJ65g7CwW1EnalKBkWjJiK50KJBFUAXhZzA=) 6: 3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa (hash: 07pLPD2WlKL+vB7ypQ2CjBacLrYgbCjaYdQZk1Lj438=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 02:05:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:a5:a4:69:77:fe:5d:32:46:e4:18:80:55:85:ad:0e:24:a7:14:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Validity Not Before: Jun 13 00:04:37 2026 GMT Not After : Jun 14 02:05:37 2026 GMT Subject: CN=AE53ABD59E85BE34348102FAFDB12F7C29B840CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d2:19:36:ac:56:08:ce:4a:fb:0e:6e:fe:73: 6f:62:b3:62:ae:75:e1:b6:29:d5:01:80:a3:6e:c2: 0c:23:5d:1a:b2:de:fb:b0:1f:f0:7e:b0:7a:fd:89: 8f:6e:86:2a:18:38:e8:c6:ff:90:f9:07:46:20:86: 1a:a0:5b:d9:5f:c3:1e:d0:e2:68:23:41:6a:ca:ed: d6:cf:94:5d:75:ad:02:d5:c9:ad:30:30:72:03:58: 64:33:95:b2:4c:1d:08:79:13:77:e6:0e:cc:31:e5: 59:60:62:52:eb:29:bc:db:9e:01:46:4b:6a:ba:24: e1:57:1b:3b:56:f7:18:f4:7a:93:cd:4a:a7:68:3b: 86:5c:13:c3:96:57:51:08:8f:fe:e4:7b:1b:e3:fb: cd:85:45:61:c7:c2:9e:01:8f:d7:d9:56:78:cf:51: b0:54:11:ff:54:bb:94:7e:49:29:04:a3:a5:2f:da: 12:f0:c6:45:8d:4b:a3:5d:e4:c4:dd:bf:65:4d:99: 41:c0:76:82:c7:78:84:30:89:e3:88:db:2c:2a:5a: ad:d6:a2:ed:c9:7e:4b:75:fc:67:6d:8b:17:ec:c6: d2:39:58:50:27:80:46:68:3c:16:bc:f5:0e:d7:19: 6e:21:17:1e:1d:2b:29:d9:8b:0c:c8:26:86:9c:5e: 20:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:53:AB:D5:9E:85:BE:34:34:81:02:FA:FD:B1:2F:7C:29:B8:40:CC X509v3 Authority Key Identifier: keyid:85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:28:43:64:2a:77:43:f7:94:11:f6:29:05:87:98:d4:a0:4c: 08:d1:15:84:ee:a4:c0:08:45:b1:8e:de:bf:e8:87:e8:5c:2b: c3:40:f2:b0:34:fe:a7:a6:90:af:00:b9:b8:db:46:03:cd:78: 11:bd:b0:53:f8:14:e2:8f:6d:8e:5c:a3:a0:0a:cb:a0:8e:94: 5b:43:4c:22:41:40:14:71:cd:8d:3b:9d:88:78:b8:67:33:63: 09:f6:f6:48:80:79:78:12:7e:47:4c:dd:ef:e1:f5:ab:86:01: 66:df:c1:09:ac:51:79:38:af:79:b0:98:53:24:52:de:89:f6: 8c:68:1c:82:b3:7f:10:b9:87:10:c9:48:98:0b:f7:44:d0:45: b2:b2:65:ca:fb:35:04:f3:80:9a:41:86:22:6f:bb:f7:3a:2b: ce:8c:14:06:c7:63:b2:7d:ad:7f:c3:ec:e8:fb:42:1e:50:63: 51:d6:a5:9b:de:3b:22:28:0b:b4:4b:22:94:c8:f3:87:d7:21: 76:82:4d:85:4b:cd:57:a3:a5:41:70:96:e3:5e:df:32:75:db: 80:7c:7a:a3:47:4e:95:b7:59:79:5e:c1:df:a5:f4:cf:22:f9: 55:bf:fd:9b:8d:22:af:af:33:be:e6:19:cf:9c:82:98:73:fd: 98:f0:89:9c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEaWkaXf+XTJG5BiAVYWtDiSnFDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZGNkQy RDdDMDhCRTAeFw0yNjA2MTMwMDA0MzdaFw0yNjA2MTQwMjA1MzdaMDMxMTAvBgNV BAMTKEFFNTNBQkQ1OUU4NUJFMzQzNDgxMDJGQUZEQjEyRjdDMjlCODQwQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM0hk2rFYIzkr7Dm7+c29is2Ku deG2KdUBgKNuwgwjXRqy3vuwH/B+sHr9iY9uhioYOOjG/5D5B0YghhqgW9lfwx7Q 4mgjQWrK7dbPlF11rQLVya0wMHIDWGQzlbJMHQh5E3fmDswx5VlgYlLrKbzbngFG S2q6JOFXGztW9xj0epPNSqdoO4ZcE8OWV1EIj/7kexvj+82FRWHHwp4Bj9fZVnjP UbBUEf9Uu5R+SSkEo6Uv2hLwxkWNS6Nd5MTdv2VNmUHAdoLHeIQwieOI2ywqWq3W ou3Jfkt1/GdtixfsxtI5WFAngEZoPBa89Q7XGW4hFx4dKynZiwzIJoacXiAfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrlOr1Z6FvjQ0gQL6/bEvfCm4QMwwHwYDVR0j BBgwFoAUhT7derPvmhOgd58mEnhvbS18CL4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDVkZmY5YjMtOTA0MS00ZGQ2LWI3YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FC M0VGOUExM0EwNzc5RjI2MTI3ODZGNkQyRDdDMDhCRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTNFREQ3QUIzRUY5QTEzQTA3NzlGMjYxMjc4NkY2RDJEN0Mw OEJFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDVkZmY5YjMtOTA0MS00ZGQ2LWI3 YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZG NkQyRDdDMDhCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABwoQ2Qqd0P3lBH2KQWHmNSgTAjRFYTupMAI RbGO3r/oh+hcK8NA8rA0/qemkK8AubjbRgPNeBG9sFP4FOKPbY5co6AKy6COlFtD TCJBQBRxzY07nYh4uGczYwn29kiAeXgSfkdM3e/h9auGAWbfwQmsUXk4r3mwmFMk Ut6J9oxoHIKzfxC5hxDJSJgL90TQRbKyZcr7NQTzgJpBhiJvu/c6K86MFAbHY7J9 rX/D7Oj7Qh5QY1HWpZveOyIoC7RLIpTI84fXIXaCTYVLzVejpUFwluNe3zJ124B8 eqNHTpW3WXlewd+l9M8i+VW//ZuNIq+vM77mGc+cgphz/ZjwiZw= -----END CERTIFICATE-----Generated at Sat Jun 13 14:45:18 2026 by rpki-client