$ rpki-client -vvf rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft File: A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft (raw, json) Hash identifier: 0P8jg0hkID85eRGNP1HWVCeZOOgyNPPVm1IebKyq2H8= Subject key identifier: F3:2B:3D:4E:B4:E7:2F:D1:F2:53:9F:FD:3E:82:44:2B:FD:56:01:E8 Authority key identifier: A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 Certificate issuer: /CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Certificate serial: 1D31FD7CE85840C212A2556AC03E8A4660FFBE6F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft Manifest number: 39 Signing time: Sat 13 Jun 2026 10:42:26 +0000 Manifest this update: Sat 13 Jun 2026 10:37:26 +0000 Manifest next update: Sun 14 Jun 2026 12:33:26 +0000 Files and hashes: 1: 34352e36342e39382e302f32342d3234203d3e203538343737.roa (hash: /BLy7k3doovw3jQVTXaYTnBas7DL4Zfrgn7U9J4fWVA=) 2: A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl (hash: Lqi6HlmWSOywMHzqFLdHevx7KxdTkDiXveW474AAv7o=) 3: 3130332e32382e3134382e302f32342d3234203d3e203538343737.roa (hash: xw+egA02OX5uOYAGnedHg8tG8xIxYeukOfUcUDfNNIQ=) 4: 34352e36342e39372e302f32342d3234203d3e20313335333630.roa (hash: eVL30F9FmWg9xfcbeGTmvP0LqqOdBiZkfgWJnF3c51k=) 5: 3130332e33312e3235312e302f32342d3234203d3e203538343737.roa (hash: nNs3zCmZDfGYSq9FVm5Dz3ukk7qRss0F7cyqFrIdiUs=) 6: 34352e36342e39392e302f32342d3234203d3e203538343737.roa (hash: dyN12mfoRjXFlNHqIFEChK7+mIsDEFYombQgQudcekM=) 7: 3130332e32382e3134392e302f32342d3234203d3e203538343737.roa (hash: qDJ/c5qWojiJYfc9eIqgLudqj78rlDzX+1L2SPWNYTQ=) 8: 3130332e33312e3235302e302f32342d3234203d3e203538343737.roa (hash: 2ZuwNGg62iU8raGM9TYM3A0jrh0UG5HDKyy6dwXOLS0=) 9: 34352e36342e39362e302f32342d3234203d3e203538343737.roa (hash: 5ev3rc/Wu45AIU9QKYFuF4qHEkUSlKkTnsZ3JdywnVM=) 10: 323030313a6466303a3237333a3a2f34382d3438203d3e203538343737.roa (hash: +zXAXB63RMz7uGSWbbDCPnLGVqN8tZG7EPNtc0tQGQw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:31:fd:7c:e8:58:40:c2:12:a2:55:6a:c0:3e:8a:46:60:ff:be:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A08BAF2D88514EC041A87F092E6B6A521F3349F3 Validity Not Before: Jun 13 10:37:26 2026 GMT Not After : Jun 14 12:33:26 2026 GMT Subject: CN=F32B3D4EB4E72FD1F2539FFD3E82442BFD5601E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0d:d0:31:6e:99:07:84:d0:4d:66:4e:d3:84: 61:18:52:83:02:fa:5c:6f:4a:e1:e8:9e:97:76:e6: 81:0d:03:1a:38:9d:76:3f:89:d9:c7:3f:f7:e5:5b: 05:bc:f4:74:71:9b:cc:d0:d9:87:3a:4a:e9:c3:76: 11:83:4a:19:d9:ad:b2:a3:9c:06:44:dd:bb:94:15: 02:be:72:16:75:14:01:2c:6c:78:1e:05:c3:75:6f: cf:5f:d3:aa:a3:82:2c:e2:ef:f2:62:fe:94:e6:75: d6:0a:94:ec:54:e9:ba:83:3b:fe:f1:24:2e:db:16: 5e:8f:e7:d2:29:5e:99:5f:d2:61:65:65:bd:ea:0d: 5d:b5:6b:09:67:d8:c4:7e:ce:ad:4b:59:29:3e:fd: f7:51:1f:a6:5c:83:c7:18:ec:f4:4b:35:c4:4e:a9: 35:7c:7a:9a:20:17:e2:d2:9e:0d:89:a5:64:9b:2b: f6:4b:ce:c9:8a:b2:bb:5c:9b:85:15:36:4f:f7:11: 21:ac:d8:50:ef:e4:52:62:81:cb:ff:9a:27:a4:51: 07:de:3d:9b:ca:38:7d:5c:66:05:62:6a:9e:ec:c1: ce:53:56:cb:96:77:68:a2:eb:70:28:3d:65:d0:33: e1:2c:91:ee:ea:48:6b:88:f4:38:cb:be:ee:54:18: ce:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:2B:3D:4E:B4:E7:2F:D1:F2:53:9F:FD:3E:82:44:2B:FD:56:01:E8 X509v3 Authority Key Identifier: keyid:A0:8B:AF:2D:88:51:4E:C0:41:A8:7F:09:2E:6B:6A:52:1F:33:49:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A08BAF2D88514EC041A87F092E6B6A521F3349F3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/A08BAF2D88514EC041A87F092E6B6A521F3349F3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:d0:f0:80:e8:6a:00:b0:33:93:7c:8b:49:33:c4:c4:85:aa: 21:c8:21:c7:e3:0a:26:8c:e8:ef:3c:82:f2:72:8a:40:c2:79: c6:46:2b:79:b9:eb:97:61:45:9e:52:cf:b1:06:d6:cc:c4:2b: f1:16:21:ec:cd:86:1d:dc:ca:c1:45:3b:80:88:f3:76:9a:7c: 3a:48:47:db:d8:a5:58:43:54:b8:65:08:54:14:4c:46:38:15: ab:e4:4f:55:7d:b8:6e:b7:53:c5:cd:b4:12:e9:b4:4d:fa:a5: 15:52:1c:71:8c:25:a6:65:eb:bf:0d:70:15:da:02:eb:a5:11: a0:f4:3a:69:45:ac:75:02:07:17:6d:51:e9:b9:57:75:b7:c3: e3:36:da:18:02:87:cf:60:0c:7e:8c:f0:24:9b:f3:f0:59:4a: 2a:b1:84:e1:38:af:33:12:ac:fd:09:4c:6b:52:84:37:0c:c6: 14:43:46:8d:89:65:2b:f2:3d:46:d4:64:22:a1:bd:bb:a9:0d: ae:93:2c:fd:1a:e1:9a:72:6c:91:69:40:4a:45:c7:1e:23:2b: 38:b9:f4:b6:dd:97:36:a6:de:54:10:55:b6:f2:81:b5:41:a5: 51:ec:62:25:a9:d2:53:c6:bd:b1:1f:df:e6:ff:49:20:13:ed: 30:81:92:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHTH9fOhYQMISolVqwD6KRmD/vm8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIx RjMzNDlGMzAeFw0yNjA2MTMxMDM3MjZaFw0yNjA2MTQxMjMzMjZaMDMxMTAvBgNV BAMTKEYzMkIzRDRFQjRFNzJGRDFGMjUzOUZGRDNFODI0NDJCRkQ1NjAxRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvDdAxbpkHhNBNZk7ThGEYUoMC +lxvSuHonpd25oENAxo4nXY/idnHP/flWwW89HRxm8zQ2Yc6SunDdhGDShnZrbKj nAZE3buUFQK+chZ1FAEsbHgeBcN1b89f06qjgizi7/Ji/pTmddYKlOxU6bqDO/7x JC7bFl6P59IpXplf0mFlZb3qDV21awln2MR+zq1LWSk+/fdRH6Zcg8cY7PRLNcRO qTV8epogF+LSng2JpWSbK/ZLzsmKsrtcm4UVNk/3ESGs2FDv5FJigcv/miekUQfe PZvKOH1cZgViap7swc5TVsuWd2ii63AoPWXQM+Eske7qSGuI9DjLvu5UGM5fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8ys9TrTnL9HyU5/9PoJEK/1WAegwHwYDVR0j BBgwFoAUoIuvLYhRTsBBqH8JLmtqUh8zSfMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGJjNmFhMDMtMWI0ZC00MzhlLWE5ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4 ODUxNEVDMDQxQTg3RjA5MkU2QjZBNTIxRjMzNDlGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDhCQUYyRDg4NTE0RUMwNDFBODdGMDkyRTZCNkE1MjFGMzM0 OUYzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGJjNmFhMDMtMWI0ZC00MzhlLWE5 ZjMtZWZlYWFlNmIwOTIxLzAvQTA4QkFGMkQ4ODUxNEVDMDQxQTg3RjA5MkU2QjZB NTIxRjMzNDlGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKbQ8IDoagCwM5N8i0kzxMSFqiHIIcfjCiaM 6O88gvJyikDCecZGK3m565dhRZ5Sz7EG1szEK/EWIezNhh3cysFFO4CI83aafDpI R9vYpVhDVLhlCFQUTEY4FavkT1V9uG63U8XNtBLptE36pRVSHHGMJaZl678NcBXa AuulEaD0OmlFrHUCBxdtUem5V3W3w+M22hgCh89gDH6M8CSb8/BZSiqxhOE4rzMS rP0JTGtShDcMxhRDRo2JZSvyPUbUZCKhvbupDa6TLP0a4ZpybJFpQEpFxx4jKzi5 9Lbdlzam3lQQVbbygbVBpVHsYiWp0lPGvbEf3+b/SSAT7TCBkkM= -----END CERTIFICATE-----Generated at Sat Jun 13 22:39:11 2026 by rpki-client