$ rpki-client -vvf rpki-rsync.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/20960DA2C8391ACA821C6A472677485F6C49F24B.mft File: 20960DA2C8391ACA821C6A472677485F6C49F24B.mft (raw, json) Hash identifier: mjENit+lSiiv4ajr8u6N5qq9RhaCXou9iHlPVolAMaA= Subject key identifier: 62:7D:97:A6:47:D8:16:EF:E4:90:33:50:8D:C8:F5:10:F2:5E:87:12 Authority key identifier: 20:96:0D:A2:C8:39:1A:CA:82:1C:6A:47:26:77:48:5F:6C:49:F2:4B Certificate issuer: /CN=20960DA2C8391ACA821C6A472677485F6C49F24B Certificate serial: 35D03FBD8633D4D58227737AD9569CBFA76D2C5D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20960DA2C8391ACA821C6A472677485F6C49F24B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/20960DA2C8391ACA821C6A472677485F6C49F24B.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 17:40:34 +0000 Manifest this update: Tue 16 Jun 2026 17:35:34 +0000 Manifest next update: Wed 17 Jun 2026 20:24:34 +0000 Files and hashes: 1: 20960DA2C8391ACA821C6A472677485F6C49F24B.crl (hash: mMTY7NjfG4wS4KyynJVkN64gkNmeoTBmvnSvYOu8bjs=) 2: 3130332e3136332e3233302e302f32342d3234203d3e20313431393037.roa (hash: BBNbTC9A/ey6lEFNc8kxgn9TphXMnw9EZaQ5gSseJDo=) 3: 3130332e3136332e3233302e302f32332d3233203d3e20313431393037.roa (hash: qvATYP4H/eMNe5opq2LHxYvNPQ/hG8JcWnqWytUagjE=) 4: 3130332e3136332e3233312e302f32342d3234203d3e20313431393037.roa (hash: DMAkYGbCY1WEwHU0IOjQhVEMGtSyZ2MqAap0CYYpSAU=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/20960DA2C8391ACA821C6A472677485F6C49F24B.crl rsync://rpki-rsync.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/20960DA2C8391ACA821C6A472677485F6C49F24B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20960DA2C8391ACA821C6A472677485F6C49F24B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 20:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d0:3f:bd:86:33:d4:d5:82:27:73:7a:d9:56:9c:bf:a7:6d:2c:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20960DA2C8391ACA821C6A472677485F6C49F24B Validity Not Before: Jun 16 17:35:34 2026 GMT Not After : Jun 17 20:24:34 2026 GMT Subject: CN=627D97A647D816EFE49033508DC8F510F25E8712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:15:aa:a6:ca:1a:b2:99:9a:36:8c:b4:c0:de: 95:0f:02:cf:74:4d:d9:13:4e:0a:57:1f:ce:1a:9f: 1e:c3:73:2b:f4:e0:5c:ef:d3:b4:00:26:52:c4:49: c5:1c:2a:66:1b:63:13:f9:4d:73:f5:a7:02:14:5c: 05:12:58:b5:7c:d4:ec:48:5d:28:7c:75:19:a4:45: c1:85:64:eb:0a:74:a6:d9:b2:96:c5:9c:77:a3:b8: f7:dd:4b:d4:b0:97:a3:a4:7b:b3:0d:3d:0f:5c:92: 5d:84:c5:c8:70:37:91:fc:66:f3:f7:ad:91:41:67: 0d:f6:c1:39:40:9d:d6:ab:68:dd:19:05:b6:13:f7: 38:69:7f:2e:6e:ea:de:37:72:0a:79:b7:66:f7:e4: 1c:85:3a:cd:67:02:e9:2d:47:46:90:8d:b7:e0:6f: c6:d6:a3:cc:45:c1:c4:96:a6:e3:ad:b6:a9:82:30: 41:59:7f:7c:eb:28:5a:b4:14:b2:56:7e:10:74:05: c4:75:07:01:83:51:0b:8f:df:01:66:81:96:5f:b4: 58:c0:1a:99:62:43:01:b8:00:7d:aa:60:e0:89:79: 29:ab:a8:68:03:0c:87:2c:02:84:05:8f:7e:89:ff: fa:1b:38:28:f5:6b:06:3f:63:d2:a2:1a:8b:f3:86: 37:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:7D:97:A6:47:D8:16:EF:E4:90:33:50:8D:C8:F5:10:F2:5E:87:12 X509v3 Authority Key Identifier: keyid:20:96:0D:A2:C8:39:1A:CA:82:1C:6A:47:26:77:48:5F:6C:49:F2:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/20960DA2C8391ACA821C6A472677485F6C49F24B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/20960DA2C8391ACA821C6A472677485F6C49F24B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7d035b3b-e6c5-47f8-99b4-1cb0326edae5/0/20960DA2C8391ACA821C6A472677485F6C49F24B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:18:c1:3d:7f:6b:63:c5:42:52:f4:dc:5f:51:e9:9f:6b:a0: b9:60:3d:ac:22:40:0b:95:29:4a:86:c2:15:54:2f:0b:f5:1d: 77:90:86:ab:a4:99:d1:7b:b1:be:84:5a:9c:c1:3a:11:dd:59: 6f:31:90:e4:0b:89:7e:47:95:e1:eb:53:c0:56:df:d6:23:f3: 0e:ce:e5:04:c4:03:44:5a:d3:fa:aa:48:69:0c:79:39:c5:ef: 67:1b:78:ac:95:3d:68:0e:51:7c:bc:a8:ef:bf:d5:f7:ea:37: e0:3a:8e:75:df:85:42:4a:c2:70:66:e5:3a:a6:57:e5:5c:27: 60:8e:aa:a0:43:33:48:54:19:b6:84:ca:6f:64:4d:c2:53:d3: 31:1d:49:f9:35:45:6c:e0:dc:a7:dc:6c:01:a8:ec:60:63:0c: 24:73:17:37:4a:a1:4c:c7:21:ee:0b:24:f7:95:f1:e2:e7:95: cb:9d:c2:f6:ab:f2:32:a0:cf:c4:92:a5:de:4e:03:72:0c:6a: ef:f7:fe:ed:21:5f:32:5b:0b:a7:9f:10:c9:38:5e:67:f3:f9: c6:29:02:66:ce:4c:79:7b:87:51:f6:18:80:24:52:c0:c6:79: d6:3f:9c:0e:e0:bf:a1:a1:8c:c3:55:7e:d3:b2:5f:4d:13:dc: 4f:38:0b:95 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNdA/vYYz1NWCJ3N62Vacv6dtLF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA5NjBEQTJDODM5MUFDQTgyMUM2QTQ3MjY3NzQ4NUY2 QzQ5RjI0QjAeFw0yNjA2MTYxNzM1MzRaFw0yNjA2MTcyMDI0MzRaMDMxMTAvBgNV BAMTKDYyN0Q5N0E2NDdEODE2RUZFNDkwMzM1MDhEQzhGNTEwRjI1RTg3MTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+FaqmyhqymZo2jLTA3pUPAs90 TdkTTgpXH84anx7Dcyv04Fzv07QAJlLEScUcKmYbYxP5TXP1pwIUXAUSWLV81OxI XSh8dRmkRcGFZOsKdKbZspbFnHejuPfdS9Swl6Oke7MNPQ9ckl2ExchwN5H8ZvP3 rZFBZw32wTlAndaraN0ZBbYT9zhpfy5u6t43cgp5t2b35ByFOs1nAuktR0aQjbfg b8bWo8xFwcSWpuOttqmCMEFZf3zrKFq0FLJWfhB0BcR1BwGDUQuP3wFmgZZftFjA GpliQwG4AH2qYOCJeSmrqGgDDIcsAoQFj36J//obOCj1awY/Y9KiGovzhjchAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYn2XpkfYFu/kkDNQjcj1EPJehxIwHwYDVR0j BBgwFoAUIJYNosg5GsqCHGpHJndIX2xJ8kswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2QwMzViM2ItZTZjNS00N2Y4LTk5YjQtMWNiMDMyNmVkYWU1LzAvMjA5NjBEQTJD ODM5MUFDQTgyMUM2QTQ3MjY3NzQ4NUY2QzQ5RjI0Qi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDk2MERBMkM4MzkxQUNBODIxQzZBNDcyNjc3NDg1RjZDNDlG MjRCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vN2QwMzViM2ItZTZjNS00N2Y4LTk5 YjQtMWNiMDMyNmVkYWU1LzAvMjA5NjBEQTJDODM5MUFDQTgyMUM2QTQ3MjY3NzQ4 NUY2QzQ5RjI0Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAMYwT1/a2PFQlL03F9R6Z9roLlgPawiQAuV KUqGwhVULwv1HXeQhqukmdF7sb6EWpzBOhHdWW8xkOQLiX5HleHrU8BW39Yj8w7O 5QTEA0Ra0/qqSGkMeTnF72cbeKyVPWgOUXy8qO+/1ffqN+A6jnXfhUJKwnBm5Tqm V+VcJ2COqqBDM0hUGbaEym9kTcJT0zEdSfk1RWzg3KfcbAGo7GBjDCRzFzdKoUzH Ie4LJPeV8eLnlcudwvar8jKgz8SSpd5OA3IMau/3/u0hXzJbC6efEMk4Xmfz+cYp AmbOTHl7h1H2GIAkUsDGedY/nA7gv6GhjMNVftOyX00T3E84C5U= -----END CERTIFICATE-----Generated at Wed Jun 17 11:30:20 2026 by rpki-client