$ rpki-client -vvf rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.mft File: 897D06B789644C150E8DD42A6444FA986BC2AC88.mft (raw, json) Hash identifier: 3/o41IpN+6g538ZfKJjCVYiZao4A0os9UFJFd0wF2CU= Subject key identifier: 50:42:59:2D:38:35:73:A6:F9:34:90:D2:C6:65:77:60:4D:E4:B8:AC Authority key identifier: 89:7D:06:B7:89:64:4C:15:0E:8D:D4:2A:64:44:FA:98:6B:C2:AC:88 Certificate issuer: /CN=897D06B789644C150E8DD42A6444FA986BC2AC88 Certificate serial: 2BC70BA4086FFE6EC1F33A9CA8FF2FBA36256C9E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/897D06B789644C150E8DD42A6444FA986BC2AC88.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 14:11:30 +0000 Manifest this update: Tue 16 Jun 2026 14:06:30 +0000 Manifest next update: Wed 17 Jun 2026 17:38:30 +0000 Files and hashes: 1: AS59281.roa (hash: 4dojGotTg4XtSOrmn0m37E03swYPUund5r2u/43L0Tk=) 2: AS137379.roa (hash: uOKVwnbjEKvQQu3GpqQitsImdD31T7I1wvjuQaj60E4=) 3: AS38511.roa (hash: MQULASbpzPhK61AYOrMtA1VlNSGR/Dmdf/Dbp4ysCgw=) 4: 897D06B789644C150E8DD42A6444FA986BC2AC88.crl (hash: gjoPlNT8t5EpN6CHI6BtlUPzVa5wMlYRfhpcP3Iigco=) 5: AS137342.roa (hash: 3a1GFE6f7rqH+5UhR19t6dUD2RouZAG66CTRDxkyxsE=) 6: AS56242.roa (hash: PH73/Mwd0ezI5Lh6gWvx2syTenpLgj0vaA5Ja+Af/LU=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.crl rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/897D06B789644C150E8DD42A6444FA986BC2AC88.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 17:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c7:0b:a4:08:6f:fe:6e:c1:f3:3a:9c:a8:ff:2f:ba:36:25:6c:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=897D06B789644C150E8DD42A6444FA986BC2AC88 Validity Not Before: Jun 16 14:06:30 2026 GMT Not After : Jun 17 17:38:30 2026 GMT Subject: CN=5042592D383573A6F93490D2C66577604DE4B8AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:36:73:34:8e:a2:12:16:a7:ea:be:be:e6:4e: 71:36:7d:b7:38:3f:23:40:52:3f:a7:d1:01:2c:33: 4b:4d:fb:68:9a:69:3e:0b:73:6a:8c:ed:cc:90:e3: 96:07:13:bb:6c:12:1e:cb:29:5d:26:5e:b1:f9:e5: cc:74:e1:dc:d7:ce:75:d9:64:bc:ba:0a:c2:e0:1f: ea:11:c8:60:0f:33:62:26:67:14:16:75:46:dd:a3: 8b:2c:b5:6a:d3:da:58:1d:00:84:91:2b:01:12:d8: 99:04:d4:dc:c1:c7:42:ce:9e:77:d0:a1:d5:d5:12: fe:4a:12:f5:4f:e0:5b:21:19:65:bd:04:b2:ac:74: 03:35:63:a1:a6:5b:46:c4:e3:c8:4f:ef:31:19:ba: c7:e7:e1:ff:b5:e5:7a:2b:2b:f5:61:71:94:c9:ca: ac:c5:0f:51:35:a9:4b:49:73:6b:77:46:1f:d7:5c: 7b:21:6f:5e:93:7a:b0:7a:61:b9:11:62:05:e8:c3: a4:73:10:86:f3:ee:5c:eb:59:90:4a:8f:10:2f:b1: 4a:81:31:7b:d7:35:1e:84:11:a2:f5:f7:91:16:4b: 0f:e6:60:17:97:75:99:9b:5a:ac:54:8c:d7:dc:fe: 1e:ef:15:18:67:ff:e6:c9:31:e4:75:08:70:c0:dd: ac:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:42:59:2D:38:35:73:A6:F9:34:90:D2:C6:65:77:60:4D:E4:B8:AC X509v3 Authority Key Identifier: keyid:89:7D:06:B7:89:64:4C:15:0E:8D:D4:2A:64:44:FA:98:6B:C2:AC:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/897D06B789644C150E8DD42A6444FA986BC2AC88.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/897D06B789644C150E8DD42A6444FA986BC2AC88.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:3f:e5:60:df:9d:6b:f3:fc:d2:98:7f:5e:f2:99:56:2e:a9: ac:a2:07:64:c7:15:68:e3:47:c5:47:f8:6e:41:62:01:47:0d: 29:59:bf:40:6e:2c:cd:64:81:0e:30:9f:fa:5b:aa:21:df:c6: 50:9d:9a:6a:25:c8:28:c5:2c:85:2d:00:4c:1a:9d:3b:d2:04: 07:52:cb:20:fb:dc:17:57:9b:fc:6b:67:a1:02:21:44:a5:a5: 94:76:5b:33:e4:a4:96:70:55:27:17:d6:90:aa:b1:ee:62:bd: 6e:43:48:46:59:8c:ee:3d:d5:17:dd:ef:74:8f:81:aa:a8:66: ef:aa:45:80:8e:8b:1d:54:88:18:10:5d:fa:c4:de:51:e7:e6: 8d:d0:fa:a7:f9:d7:84:9b:d5:17:0f:1c:3a:03:f1:a9:93:94: b7:76:9f:b4:f9:28:df:40:99:f9:0c:7c:83:f7:66:6a:93:24: bf:3e:d4:14:09:b7:af:f9:b1:36:2e:b9:94:52:c9:09:ca:df: 8d:82:9b:cd:ad:c9:e6:b5:90:c8:f2:ee:9f:b4:c8:1b:47:54: 2f:62:ce:62:5d:8d:dc:8d:f6:91:c5:6b:5a:bd:bc:04:b5:78: af:04:31:c0:b6:a7:b1:76:45:b9:77:75:f0:ea:fb:ae:6b:51: c0:74:d3:21 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUK8cLpAhv/m7B8zqcqP8vujYlbJ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk3RDA2Qjc4OTY0NEMxNTBFOERENDJBNjQ0NEZBOTg2 QkMyQUM4ODAeFw0yNjA2MTYxNDA2MzBaFw0yNjA2MTcxNzM4MzBaMDMxMTAvBgNV BAMTKDUwNDI1OTJEMzgzNTczQTZGOTM0OTBEMkM2NjU3NzYwNERFNEI4QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1NnM0jqISFqfqvr7mTnE2fbc4 PyNAUj+n0QEsM0tN+2iaaT4Lc2qM7cyQ45YHE7tsEh7LKV0mXrH55cx04dzXznXZ ZLy6CsLgH+oRyGAPM2ImZxQWdUbdo4sstWrT2lgdAISRKwES2JkE1NzBx0LOnnfQ odXVEv5KEvVP4FshGWW9BLKsdAM1Y6GmW0bE48hP7zEZusfn4f+15XorK/VhcZTJ yqzFD1E1qUtJc2t3Rh/XXHshb16TerB6YbkRYgXow6RzEIbz7lzrWZBKjxAvsUqB MXvXNR6EEaL195EWSw/mYBeXdZmbWqxUjNfc/h7vFRhn/+bJMeR1CHDA3ayRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUEJZLTg1c6b5NJDSxmV3YE3kuKwwHwYDVR0j BBgwFoAUiX0Gt4lkTBUOjdQqZET6mGvCrIgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODhmMjkxNWQtMThjOS00ZTAzLWJiZmItMjA3NGM1OTgwODk4LzAvODk3RDA2Qjc4 OTY0NEMxNTBFOERENDJBNjQ0NEZBOTg2QkMyQUM4OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84OTdEMDZCNzg5NjQ0QzE1MEU4REQ0MkE2NDQ0RkE5ODZCQzJB Qzg4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vODhmMjkxNWQtMThjOS00ZTAzLWJi ZmItMjA3NGM1OTgwODk4LzAvODk3RDA2Qjc4OTY0NEMxNTBFOERENDJBNjQ0NEZB OTg2QkMyQUM4OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGg/5WDfnWvz/NKYf17ymVYuqayiB2THFWjj R8VH+G5BYgFHDSlZv0BuLM1kgQ4wn/pbqiHfxlCdmmolyCjFLIUtAEwanTvSBAdS yyD73BdXm/xrZ6ECIUSlpZR2WzPkpJZwVScX1pCqse5ivW5DSEZZjO491Rfd73SP gaqoZu+qRYCOix1UiBgQXfrE3lHn5o3Q+qf514Sb1RcPHDoD8amTlLd2n7T5KN9A mfkMfIP3ZmqTJL8+1BQJt6/5sTYuuZRSyQnK342Cm82tyea1kMjy7p+0yBtHVC9i zmJdjdyN9pHFa1q9vAS1eK8EMcC2p7F2Rbl3dfDq+65rUcB00yE= -----END CERTIFICATE-----Generated at Wed Jun 17 11:13:03 2026 by rpki-client