$ rpki-client -vvf rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.mft File: 866437E32B464B1B5AC613B7B05DF39BA8B220F2.mft (raw, json) Hash identifier: L/T+iXemvkt0OaoYpC+EMxIT2hMt0ttiututjlI0lYI= Subject key identifier: 3B:DF:E8:1B:9C:3C:16:A0:60:3F:5F:5E:2C:6F:93:AE:A8:65:CB:A2 Authority key identifier: 86:64:37:E3:2B:46:4B:1B:5A:C6:13:B7:B0:5D:F3:9B:A8:B2:20:F2 Certificate issuer: /CN=866437E32B464B1B5AC613B7B05DF39BA8B220F2 Certificate serial: 672C443B45386881DA434022FF0CD5B26B6F456C Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.mft Manifest number: 38 Signing time: Fri 12 Jun 2026 18:32:53 +0000 Manifest this update: Fri 12 Jun 2026 18:27:53 +0000 Manifest next update: Sat 13 Jun 2026 19:37:53 +0000 Files and hashes: 1: 866437E32B464B1B5AC613B7B05DF39BA8B220F2.crl (hash: pC6sy4c8b+eH+lhWGQ0coZAGPrIeYqHgdqynn7mG1N0=) 2: 3136302e32322e37322e302f32342d3234203d3e20313532383033.roa (hash: mw+kJTa3z1YCgtqDlv4vZF49RM+szfoPadKH4QNVzN8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.crl rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 19:37:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:2c:44:3b:45:38:68:81:da:43:40:22:ff:0c:d5:b2:6b:6f:45:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=866437E32B464B1B5AC613B7B05DF39BA8B220F2 Validity Not Before: Jun 12 18:27:53 2026 GMT Not After : Jun 13 19:37:53 2026 GMT Subject: CN=3BDFE81B9C3C16A0603F5F5E2C6F93AEA865CBA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:cf:b0:d3:28:bf:d1:8a:d3:14:ef:c7:88:6f: 6a:06:19:74:96:72:8b:a1:e4:8a:c2:06:21:3d:bc: 74:4a:a6:d3:7d:e4:3f:d9:e7:8a:51:26:5b:ee:f1: 1b:ee:49:b3:1b:4a:63:1e:4a:9a:01:68:ed:70:76: 75:21:0d:85:bf:02:e8:c4:4f:af:7d:f7:34:1e:8b: b9:37:ab:ed:ad:ce:86:d0:6f:c5:2f:ee:32:31:de: 40:55:e0:1f:74:26:dd:98:12:50:b3:13:dc:18:ca: 11:79:64:04:3d:c7:42:af:a6:e8:b4:8d:07:70:7f: cc:28:a7:00:77:05:cf:e8:b8:8e:07:55:d2:b4:d0: bd:cd:4d:f1:0b:a9:7d:01:f3:ff:96:9d:25:08:12: 0f:6a:1b:f7:27:bd:11:bb:60:1a:99:1e:0a:11:0f: a0:93:15:e8:f9:5c:25:06:ad:8f:cd:5d:dd:1d:8d: c8:4c:b9:19:e7:7a:84:e7:1a:f2:dd:eb:12:59:62: 4a:12:2b:65:ca:05:97:57:31:4f:fc:0b:74:ec:b0: 03:27:22:5a:b2:e5:ef:64:2f:f0:6e:63:ea:e4:e8: 93:02:46:e8:8b:00:9e:74:0c:49:28:64:69:50:0a: fd:0e:78:62:20:37:00:08:ca:9f:91:59:f5:41:ba: dc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:DF:E8:1B:9C:3C:16:A0:60:3F:5F:5E:2C:6F:93:AE:A8:65:CB:A2 X509v3 Authority Key Identifier: keyid:86:64:37:E3:2B:46:4B:1B:5A:C6:13:B7:B0:5D:F3:9B:A8:B2:20:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/72f260ce-23f5-4095-82db-ef7114e471b2/0/866437E32B464B1B5AC613B7B05DF39BA8B220F2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:3b:50:01:b0:2c:18:91:cd:80:83:f6:4d:78:27:b7:f3:7e: ed:1e:cf:51:68:00:99:7a:8f:3d:6b:eb:6f:ad:2d:e6:b6:2a: 68:c6:f5:43:89:e8:0f:0a:4b:cc:2a:b8:2d:a5:20:31:63:4c: 10:43:b2:90:5c:0d:c1:6b:43:fb:b4:b7:cb:29:29:64:c7:c5: 1d:eb:da:99:5f:87:c4:da:7f:f3:f8:9f:8a:8d:7f:6a:43:50: fd:5d:ce:ab:e5:2e:87:61:35:4c:ab:88:ed:32:5d:0f:5b:ac: a8:09:70:0a:8b:8d:d6:8a:46:1c:7b:d6:ba:6f:0b:f9:83:7c: 88:7e:40:c5:c8:66:43:35:85:43:79:47:6c:56:b5:3d:ac:2e: be:05:11:02:88:c9:5b:3f:38:ca:6d:27:10:64:ce:b3:5a:78: b1:72:46:04:d2:ed:9c:60:29:bc:02:49:d6:1f:81:9e:70:36: 54:c2:17:58:59:6f:48:6e:7a:f5:bc:f5:62:93:0e:6a:f3:11: d6:4d:bf:41:c2:f1:fd:8c:ff:f8:09:c1:5d:5d:d3:5e:1e:aa: a7:35:3c:8a:4c:56:c1:21:db:33:ca:c8:25:a4:34:f5:89:a3: b1:d2:95:52:df:05:8c:1b:82:bf:1c:fb:2e:dc:e6:02:6f:63: 81:2e:4d:4d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZyxEO0U4aIHaQ0Ai/wzVsmtvRWwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY2NDM3RTMyQjQ2NEIxQjVBQzYxM0I3QjA1REYzOUJB OEIyMjBGMjAeFw0yNjA2MTIxODI3NTNaFw0yNjA2MTMxOTM3NTNaMDMxMTAvBgNV BAMTKDNCREZFODFCOUMzQzE2QTA2MDNGNUY1RTJDNkY5M0FFQTg2NUNCQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmz7DTKL/RitMU78eIb2oGGXSW couh5IrCBiE9vHRKptN95D/Z54pRJlvu8RvuSbMbSmMeSpoBaO1wdnUhDYW/AujE T6999zQei7k3q+2tzobQb8Uv7jIx3kBV4B90Jt2YElCzE9wYyhF5ZAQ9x0Kvpui0 jQdwf8wopwB3Bc/ouI4HVdK00L3NTfELqX0B8/+WnSUIEg9qG/cnvRG7YBqZHgoR D6CTFej5XCUGrY/NXd0djchMuRnneoTnGvLd6xJZYkoSK2XKBZdXMU/8C3TssAMn Ilqy5e9kL/BuY+rk6JMCRuiLAJ50DEkoZGlQCv0OeGIgNwAIyp+RWfVButzNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUO9/oG5w8FqBgP19eLG+Trqhly6IwHwYDVR0j BBgwFoAUhmQ34ytGSxtaxhO3sF3zm6iyIPIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzJmMjYwY2UtMjNmNS00MDk1LTgyZGItZWY3MTE0ZTQ3MWIyLzAvODY2NDM3RTMy QjQ2NEIxQjVBQzYxM0I3QjA1REYzOUJBOEIyMjBGMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC84NjY0MzdFMzJCNDY0QjFCNUFDNjEzQjdCMDVERjM5QkE4QjIy MEYyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzJmMjYwY2UtMjNmNS00MDk1LTgy ZGItZWY3MTE0ZTQ3MWIyLzAvODY2NDM3RTMyQjQ2NEIxQjVBQzYxM0I3QjA1REYz OUJBOEIyMjBGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFM7UAGwLBiRzYCD9k14J7fzfu0ez1FoAJl6 jz1r62+tLea2KmjG9UOJ6A8KS8wquC2lIDFjTBBDspBcDcFrQ/u0t8spKWTHxR3r 2plfh8Taf/P4n4qNf2pDUP1dzqvlLodhNUyriO0yXQ9brKgJcAqLjdaKRhx71rpv C/mDfIh+QMXIZkM1hUN5R2xWtT2sLr4FEQKIyVs/OMptJxBkzrNaeLFyRgTS7Zxg KbwCSdYfgZ5wNlTCF1hZb0huevW89WKTDmrzEdZNv0HC8f2M//gJwV1d014eqqc1 PIpMVsEh2zPKyCWkNPWJo7HSlVLfBYwbgr8c+y7c5gJvY4EuTU0= -----END CERTIFICATE-----Generated at Sat Jun 13 13:24:43 2026 by rpki-client