$ rpki-client -vvf rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.mft File: B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.mft (raw, json) Hash identifier: at7CcvtqCq+5wD1jtZOfy5xVAvWdOi1uw9u7/zXm+to= Subject key identifier: 17:71:B2:0D:63:9A:5E:AD:5B:6A:65:5D:16:AA:E7:77:97:14:C6:9D Authority key identifier: B1:68:CF:A3:79:F4:EA:CD:15:DB:0E:F7:6C:EB:C5:80:AC:1F:BF:6E Certificate issuer: /CN=B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E Certificate serial: 5D38598D9E245B723FD34C62D9CB6235CCD4EED2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.mft Manifest number: 3A Signing time: Sat 13 Jun 2026 22:56:56 +0000 Manifest this update: Sat 13 Jun 2026 22:51:56 +0000 Manifest next update: Mon 15 Jun 2026 02:06:56 +0000 Files and hashes: 1: B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.crl (hash: 8rNlZuizhjySkAYMprx7GPfy0Z5v3COLdM6PFgLGaYA=) 2: 3130332e3135342e3233312e302f32342d3234203d3e20313336313231.roa (hash: GMFkIV2sJittLK9WJRbpUUZTvqKbZ67tY6581Ugt0f0=) 3: 3130332e3135342e3233302e302f32332d3233203d3e20313336313231.roa (hash: dKZb6aaVbPeaaWDRCiGgkOh/h5qEP/6edHL6dbBuTxw=) 4: 323430363a356463303a3a2f33322d3332203d3e20313336313231.roa (hash: dOi5t8zi5JAQodBD98mcsNs1h4au7JIDI+EvfriW4vk=) 5: 3130332e3135342e3233302e302f32342d3234203d3e20313336313231.roa (hash: q3EmEpNbHapfK5Arcd9ZblsuZXEZdJPpzKqJnzLo0DY=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.crl rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Jun 2026 02:06:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:38:59:8d:9e:24:5b:72:3f:d3:4c:62:d9:cb:62:35:cc:d4:ee:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E Validity Not Before: Jun 13 22:51:56 2026 GMT Not After : Jun 15 02:06:56 2026 GMT Subject: CN=1771B20D639A5EAD5B6A655D16AAE7779714C69D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:43:7f:0a:2d:19:23:86:29:dc:10:f2:23:87: 54:de:48:a8:1e:bd:d8:8c:94:20:57:ab:e1:d7:a8: 70:f8:37:8e:eb:30:d0:9d:91:cf:89:79:f2:dc:aa: 85:dc:64:b6:5d:a5:e3:df:32:6a:27:06:ad:25:0d: d0:bd:56:7f:19:c8:53:b9:cf:f2:68:67:64:84:9a: 3f:81:66:30:c4:21:15:5b:79:91:42:ab:fb:66:82: db:ad:0c:72:c7:c2:f6:7e:1c:55:ac:6b:e6:ac:92: 0f:52:7b:3e:ee:14:02:88:91:e7:a8:23:a8:56:29: f2:cc:b7:ce:cd:6d:49:28:08:09:c1:e5:4b:9e:59: ea:2e:e2:ad:5a:40:23:d4:7f:3b:39:68:b6:a4:6c: 35:06:a5:c3:e8:15:1b:38:c4:4e:53:80:79:ce:c3: 77:6c:b7:c6:d6:60:aa:12:61:7b:fb:93:06:96:12: ea:83:71:51:be:fc:a8:c4:98:30:a8:34:69:94:64: e1:ee:93:01:87:0f:31:ff:8c:0a:3b:35:0b:88:32: 45:50:0c:02:55:5c:9a:73:46:f8:0f:66:4c:35:45: d1:d2:98:92:44:74:92:a7:cc:c3:bf:56:6c:b9:cc: 73:56:d6:0d:f9:49:42:56:6f:e6:bb:5b:12:02:86: 1d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:71:B2:0D:63:9A:5E:AD:5B:6A:65:5D:16:AA:E7:77:97:14:C6:9D X509v3 Authority Key Identifier: keyid:B1:68:CF:A3:79:F4:EA:CD:15:DB:0E:F7:6C:EB:C5:80:AC:1F:BF:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/52127feb-9615-4c58-a3bb-eef7b7a6547e/0/B168CFA379F4EACD15DB0EF76CEBC580AC1FBF6E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:39:f4:f9:30:1e:87:5d:2e:79:a5:6c:4e:57:72:b2:b1:1a: d9:8c:8b:a5:4a:71:a3:e8:6f:2d:6b:3b:3d:93:ab:5b:ad:f0: 56:75:cc:43:c5:de:67:3a:cb:df:f4:88:af:0b:29:98:84:8b: dd:58:12:14:53:5b:c5:ad:f1:3e:0c:cd:a5:08:be:c1:c5:ae: 36:ca:8c:78:04:a0:e8:77:98:2e:14:d6:e4:ba:8b:33:23:d1: 8f:5d:e0:f1:06:f4:78:70:b1:81:a9:51:0b:d1:81:1a:99:c4: ea:47:5e:7c:64:8a:29:92:14:50:92:07:42:9b:57:ba:1d:4f: 95:ff:17:80:59:3b:dc:8d:bd:7a:4e:04:c0:c0:70:52:39:88: 76:75:1e:2b:c3:a7:18:32:8b:14:3f:e1:c7:f6:75:1d:48:c8: 95:47:b8:64:6a:7c:3e:9e:40:db:25:b1:16:59:ca:be:b8:75: d7:72:dd:56:40:76:bb:b4:ea:d9:4c:bf:9f:17:c9:aa:80:37: ad:d9:32:3a:87:fb:30:be:ad:5c:f3:33:6e:52:d7:d1:69:14: 32:2a:76:21:4d:6d:cd:ee:7e:f3:f2:20:61:c7:4e:8c:a1:07: ea:b3:e2:a3:85:d6:d7:01:10:85:5c:9a:d7:0c:4f:e8:fa:2e: fc:84:84:77 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXThZjZ4kW3I/00xi2ctiNczU7tIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjE2OENGQTM3OUY0RUFDRDE1REIwRUY3NkNFQkM1ODBB QzFGQkY2RTAeFw0yNjA2MTMyMjUxNTZaFw0yNjA2MTUwMjA2NTZaMDMxMTAvBgNV BAMTKDE3NzFCMjBENjM5QTVFQUQ1QjZBNjU1RDE2QUFFNzc3OTcxNEM2OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwQ38KLRkjhincEPIjh1TeSKge vdiMlCBXq+HXqHD4N47rMNCdkc+JefLcqoXcZLZdpePfMmonBq0lDdC9Vn8ZyFO5 z/JoZ2SEmj+BZjDEIRVbeZFCq/tmgtutDHLHwvZ+HFWsa+askg9Sez7uFAKIkeeo I6hWKfLMt87NbUkoCAnB5UueWeou4q1aQCPUfzs5aLakbDUGpcPoFRs4xE5TgHnO w3dst8bWYKoSYXv7kwaWEuqDcVG+/KjEmDCoNGmUZOHukwGHDzH/jAo7NQuIMkVQ DAJVXJpzRvgPZkw1RdHSmJJEdJKnzMO/Vmy5zHNW1g35SUJWb+a7WxIChh2BAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUF3GyDWOaXq1bamVdFqrnd5cUxp0wHwYDVR0j BBgwFoAUsWjPo3n06s0V2w73bOvFgKwfv24wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTIxMjdmZWItOTYxNS00YzU4LWEzYmItZWVmN2I3YTY1NDdlLzAvQjE2OENGQTM3 OUY0RUFDRDE1REIwRUY3NkNFQkM1ODBBQzFGQkY2RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMTY4Q0ZBMzc5RjRFQUNEMTVEQjBFRjc2Q0VCQzU4MEFDMUZC RjZFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNTIxMjdmZWItOTYxNS00YzU4LWEz YmItZWVmN2I3YTY1NDdlLzAvQjE2OENGQTM3OUY0RUFDRDE1REIwRUY3NkNFQkM1 ODBBQzFGQkY2RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABw59PkwHoddLnmlbE5XcrKxGtmMi6VKcaPo by1rOz2Tq1ut8FZ1zEPF3mc6y9/0iK8LKZiEi91YEhRTW8Wt8T4MzaUIvsHFrjbK jHgEoOh3mC4U1uS6izMj0Y9d4PEG9HhwsYGpUQvRgRqZxOpHXnxkiimSFFCSB0Kb V7odT5X/F4BZO9yNvXpOBMDAcFI5iHZ1HivDpxgyixQ/4cf2dR1IyJVHuGRqfD6e QNslsRZZyr64dddy3VZAdru06tlMv58XyaqAN63ZMjqH+zC+rVzzM25S19FpFDIq diFNbc3ufvPyIGHHToyhB+qz4qOF1tcBEIVcmtcMT+j6LvyEhHc= -----END CERTIFICATE-----Generated at Sun Jun 14 09:22:04 2026 by rpki-client