$ rpki-client -vvf rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft File: DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft (raw, json) Hash identifier: i/Aa2hYdLMizwCmoiDngTg5xIXQ1AD3tTOmiai09Rvo= Subject key identifier: 6F:4A:48:46:22:D1:45:21:2E:F1:A0:27:35:77:4E:D1:25:ED:C9:87 Authority key identifier: DF:23:04:42:9B:18:F8:08:9F:AE:1F:C9:38:67:4F:36:A0:FD:77:B2 Certificate issuer: /CN=DF2304429B18F8089FAE1FC938674F36A0FD77B2 Certificate serial: 04AAC778513F9CDC9D76D2293DAF37DCF3EF07BD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 22:06:00 +0000 Manifest this update: Tue 16 Jun 2026 22:01:00 +0000 Manifest next update: Wed 17 Jun 2026 22:36:00 +0000 Files and hashes: 1: DF2304429B18F8089FAE1FC938674F36A0FD77B2.crl (hash: o2K4MMRIfoesgpTPAvqnyhk7cO/eccV8UqQf9nAPRdE=) 2: 3135372e31352e36372e302f32342d3234203d3e20313532333737.roa (hash: CpW+8vhTW86R4U0S/gqyxxfPZJCtlWIdT+jTSx+66zc=) 3: 3135372e31352e36362e302f32332d3233203d3e20313532333737.roa (hash: N6yMW5HjzqSkSXTxh8LYBYq0zgZeaS0wE1WlogwqRwM=) 4: 3135372e31352e36362e302f32342d3234203d3e20313532333737.roa (hash: ftQeDYyrz6hB+RbX5fKWVbWWuQdAQyxBYb3VQF1+q6g=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.crl rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 22:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:aa:c7:78:51:3f:9c:dc:9d:76:d2:29:3d:af:37:dc:f3:ef:07:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF2304429B18F8089FAE1FC938674F36A0FD77B2 Validity Not Before: Jun 16 22:01:00 2026 GMT Not After : Jun 17 22:36:00 2026 GMT Subject: CN=6F4A484622D145212EF1A02735774ED125EDC987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cd:1b:eb:a5:51:e7:0e:5f:c9:73:d2:b5:cb: 75:ab:56:19:7f:6d:b9:de:51:a3:d6:1f:ea:11:24: 18:3c:46:6f:95:42:1f:7b:6c:15:54:fc:93:79:f7: 6b:e3:d3:ed:ae:32:e6:69:0c:8a:3f:68:b9:bd:02: 3b:ff:25:0e:f0:97:e7:c5:9b:e1:6e:2c:cb:19:67: d2:90:af:02:a8:25:90:21:5f:80:72:46:1b:b0:88: 4e:c1:cd:03:fd:97:f2:0f:b9:bc:e4:85:62:f1:f7: bd:d3:d2:ff:ef:28:e2:18:b5:8f:74:e0:bb:ef:2f: 9b:17:71:2a:5a:e8:7b:4f:8d:4a:a8:22:bd:66:c5: b5:67:dd:98:bd:b6:fd:e6:8d:8a:91:ee:d0:bf:6e: 95:31:1a:a1:76:54:5d:ba:4e:eb:02:fb:eb:ad:2f: c3:a2:b3:93:13:d3:81:fa:dc:77:0d:d7:2e:0f:8f: 4d:72:e9:d7:a5:34:b3:1c:67:5f:9d:0d:fe:35:9b: 80:1b:d4:32:7f:0a:42:dc:f9:7f:0a:62:9c:f9:8f: 10:d6:ab:f6:f0:d8:ca:8e:39:18:66:cb:9b:08:18: 83:89:d2:ca:cc:5e:ad:1b:d8:ee:21:ab:30:4c:f5: f1:a9:44:3f:48:e7:db:55:45:34:a4:32:69:ee:89: d2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:4A:48:46:22:D1:45:21:2E:F1:A0:27:35:77:4E:D1:25:ED:C9:87 X509v3 Authority Key Identifier: keyid:DF:23:04:42:9B:18:F8:08:9F:AE:1F:C9:38:67:4F:36:A0:FD:77:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:23:94:a6:2f:95:da:99:7c:62:ca:b9:9b:a8:3c:1a:b3:b6: 02:a4:7a:ef:ce:19:00:88:41:19:b3:a7:7a:a7:33:35:7a:11: 32:e2:b6:13:15:90:87:ed:c6:3f:ef:1e:62:7a:61:40:82:5c: 17:dc:06:66:35:1d:d3:13:b8:16:34:d5:37:2f:a2:4e:c4:98: 95:e7:26:52:a5:fe:c6:58:5e:41:8d:7f:b6:30:8d:7f:e7:c1: 96:f1:58:db:c0:ec:ee:cb:8b:5f:cf:3e:22:fa:e5:c5:ac:f4: 34:bb:86:90:78:1f:5f:07:0c:9b:2c:36:c4:4c:82:e2:b6:4f: 49:52:c7:45:6d:63:80:73:76:d5:af:12:f7:85:a0:a9:71:f4: 8c:7c:c0:27:c0:2b:9c:df:57:93:06:ee:ef:59:c8:0a:02:e5: a2:32:d2:fe:33:cc:43:29:15:5e:98:ff:ce:f9:a7:bc:a4:87: 72:f6:bc:fa:6c:04:74:52:92:4e:55:d8:10:7b:69:16:bb:37: f8:cc:f3:e3:00:49:e2:2b:b9:fe:8c:39:3c:d8:bf:da:1c:b5: bb:a2:38:48:85:53:15:5a:65:c1:51:b9:4d:cc:d8:57:ae:26: a6:f2:66:8f:50:8f:db:44:64:fa:23:de:0b:b2:46:5a:3b:7e: 8e:5b:10:7c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBKrHeFE/nNyddtIpPa833PPvB70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYyMzA0NDI5QjE4RjgwODlGQUUxRkM5Mzg2NzRGMzZB MEZENzdCMjAeFw0yNjA2MTYyMjAxMDBaFw0yNjA2MTcyMjM2MDBaMDMxMTAvBgNV BAMTKDZGNEE0ODQ2MjJEMTQ1MjEyRUYxQTAyNzM1Nzc0RUQxMjVFREM5ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyzRvrpVHnDl/Jc9K1y3WrVhl/ bbneUaPWH+oRJBg8Rm+VQh97bBVU/JN592vj0+2uMuZpDIo/aLm9Ajv/JQ7wl+fF m+FuLMsZZ9KQrwKoJZAhX4ByRhuwiE7BzQP9l/IPubzkhWLx973T0v/vKOIYtY90 4LvvL5sXcSpa6HtPjUqoIr1mxbVn3Zi9tv3mjYqR7tC/bpUxGqF2VF26TusC++ut L8Ois5MT04H63HcN1y4Pj01y6delNLMcZ1+dDf41m4Ab1DJ/CkLc+X8KYpz5jxDW q/bw2MqOORhmy5sIGIOJ0srMXq0b2O4hqzBM9fGpRD9I59tVRTSkMmnuidJ3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUb0pIRiLRRSEu8aAnNXdO0SXtyYcwHwYDVR0j BBgwFoAU3yMEQpsY+Aifrh/JOGdPNqD9d7IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDg0ZTg3OWYtM2E1Ni00ZDhkLTgzZTgtMGU5Y2M2NTc3MGVhLzAvREYyMzA0NDI5 QjE4RjgwODlGQUUxRkM5Mzg2NzRGMzZBMEZENzdCMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9ERjIzMDQ0MjlCMThGODA4OUZBRTFGQzkzODY3NEYzNkEwRkQ3 N0IyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDg0ZTg3OWYtM2E1Ni00ZDhkLTgz ZTgtMGU5Y2M2NTc3MGVhLzAvREYyMzA0NDI5QjE4RjgwODlGQUUxRkM5Mzg2NzRG MzZBMEZENzdCMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABUjlKYvldqZfGLKuZuoPBqztgKkeu/OGQCI QRmzp3qnMzV6ETLithMVkIftxj/vHmJ6YUCCXBfcBmY1HdMTuBY01Tcvok7EmJXn JlKl/sZYXkGNf7YwjX/nwZbxWNvA7O7Li1/PPiL65cWs9DS7hpB4H18HDJssNsRM guK2T0lSx0VtY4BzdtWvEveFoKlx9Ix8wCfAK5zfV5MG7u9ZyAoC5aIy0v4zzEMp FV6Y/875p7ykh3L2vPpsBHRSkk5V2BB7aRa7N/jM8+MASeIruf6MOTzYv9octbui OEiFUxVaZcFRuU3M2FeuJqbyZo9Qj9tEZPoj3guyRlo7fo5bEHw= -----END CERTIFICATE-----Generated at Wed Jun 17 11:12:12 2026 by rpki-client