$ rpki-client -vvf rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft File: 85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft (raw, json) Hash identifier: qvYQdl0whQL2iVViR9S7uo7vkkX1ZGabzxHKbiRafIA= Subject key identifier: 2F:D5:9E:A2:61:64:7C:BE:F8:13:BB:FD:45:8B:E0:DD:58:1D:6D:9E Authority key identifier: 85:67:2F:F4:60:7E:3A:FD:9C:AC:D9:7C:84:E0:F2:47:A8:9F:C3:C7 Certificate issuer: /CN=85672FF4607E3AFD9CACD97C84E0F247A89FC3C7 Certificate serial: 07D60B79D2BD348B08955ABAAAEC94EA399519AE Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 18:31:30 +0000 Manifest this update: Tue 16 Jun 2026 18:26:30 +0000 Manifest next update: Wed 17 Jun 2026 20:26:30 +0000 Files and hashes: 1: 3130332e3131322e3232382e302f32332d3234203d3e20313336313136.roa (hash: yAzMQkLI2YElNnNv3RsEoxmgF9F1Ze8FCH2iEusLcbI=) 2: 3130332e39332e3135382e302f32332d3234203d3e20313336313136.roa (hash: SMyShINBZJhBLQDbVGEzp9/aVi59DehpgguYlaDtpEI=) 3: 85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.crl (hash: 3kmpSEiqyl8AOjd5vAP9TZl5T+Jywm1jUEnprWH6nFE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.crl rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 20:26:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d6:0b:79:d2:bd:34:8b:08:95:5a:ba:aa:ec:94:ea:39:95:19:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85672FF4607E3AFD9CACD97C84E0F247A89FC3C7 Validity Not Before: Jun 16 18:26:30 2026 GMT Not After : Jun 17 20:26:30 2026 GMT Subject: CN=2FD59EA261647CBEF813BBFD458BE0DD581D6D9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cb:ae:6e:ce:ac:16:be:f2:50:69:79:0b:6e: 1a:fe:57:f7:02:1f:8d:36:c2:60:f8:a6:16:36:53: 5a:f1:03:52:d9:20:21:54:08:26:fc:6c:9a:0c:5f: 90:aa:39:e4:32:7b:d4:97:4f:6c:3e:94:4b:66:29: dd:54:08:f1:5c:11:08:ff:bd:bb:a7:fe:09:06:c6: c2:ee:08:41:49:4c:17:e8:ab:a3:32:25:48:58:10: 96:c3:c5:57:db:a2:57:1c:6c:69:41:56:1b:9d:f1: 29:c4:4d:38:b9:75:f3:dd:b4:e0:1c:a3:66:77:0c: 5c:6c:e6:2e:66:38:25:c2:e5:25:88:4f:d7:68:0c: 1a:a3:96:77:a0:41:27:e9:62:45:ac:33:34:d3:ce: f3:bc:b1:94:73:18:b6:a1:27:3b:86:60:42:d9:87: f2:85:65:8f:d2:78:d4:b9:28:42:8b:e7:91:88:51: b8:cd:1b:65:3c:7a:82:c1:d4:50:09:95:7c:ac:d8: 97:0b:a0:bd:69:81:de:71:02:d9:97:99:a0:ce:19: 29:1a:26:d1:40:5c:54:df:9e:76:7e:e7:77:95:e3: 51:94:a3:4a:8c:1e:4c:ae:e6:b1:f0:d0:aa:e4:66: 49:b1:2e:11:ff:b4:db:fa:7d:f0:59:eb:df:ec:15: 91:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:D5:9E:A2:61:64:7C:BE:F8:13:BB:FD:45:8B:E0:DD:58:1D:6D:9E X509v3 Authority Key Identifier: keyid:85:67:2F:F4:60:7E:3A:FD:9C:AC:D9:7C:84:E0:F2:47:A8:9F:C3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9b6ae2a2-d93f-49ca-ba4b-171ff8d1e57f/0/85672FF4607E3AFD9CACD97C84E0F247A89FC3C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:54:18:d4:fc:ec:33:14:69:0d:38:03:d1:4c:4d:31:a6:93: 6b:3e:bd:85:46:1c:e8:8a:e3:61:22:5b:5a:b0:66:a7:f9:5d: 84:b4:81:5d:09:98:44:2e:ac:6e:b3:25:0b:ec:66:1f:42:8c: ba:76:52:83:18:ff:c0:90:94:e4:b0:49:ee:b7:ec:d9:36:8e: 55:75:44:98:1e:be:49:fc:3f:b5:2a:65:8c:05:80:8d:aa:06: eb:52:e4:2e:44:06:d9:0b:0f:e2:36:f3:cb:9b:62:f2:32:13: 3e:4f:dc:7c:ba:e6:b7:7f:c2:f5:41:c7:0c:17:79:6e:9f:07: ed:7b:50:f1:53:6b:e7:83:13:03:e1:da:02:06:9b:68:7a:a4: c9:1b:3e:f5:c6:cc:37:51:da:49:53:0b:3e:73:f3:ae:42:a4: fa:1d:8b:ec:2a:aa:c1:3d:54:ad:7b:02:5a:13:02:20:50:29: 2c:32:2a:6d:18:27:26:81:73:04:5c:aa:76:f2:81:40:7c:89: 60:4c:b0:4a:2d:3b:66:ec:f9:00:6f:8a:ed:df:1a:2d:f6:8e: ff:c6:ca:71:a5:aa:f3:7e:cc:9e:c4:ab:47:c1:c2:25:a2:cf: 9d:de:8c:0c:d4:b9:f0:aa:6a:70:3d:66:6b:54:90:80:c2:e9: 58:fe:01:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUB9YLedK9NIsIlVq6quyU6jmVGa4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU2NzJGRjQ2MDdFM0FGRDlDQUNEOTdDODRFMEYyNDdB ODlGQzNDNzAeFw0yNjA2MTYxODI2MzBaFw0yNjA2MTcyMDI2MzBaMDMxMTAvBgNV BAMTKDJGRDU5RUEyNjE2NDdDQkVGODEzQkJGRDQ1OEJFMERENTgxRDZEOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuy65uzqwWvvJQaXkLbhr+V/cC H402wmD4phY2U1rxA1LZICFUCCb8bJoMX5CqOeQye9SXT2w+lEtmKd1UCPFcEQj/ vbun/gkGxsLuCEFJTBfoq6MyJUhYEJbDxVfbolccbGlBVhud8SnETTi5dfPdtOAc o2Z3DFxs5i5mOCXC5SWIT9doDBqjlnegQSfpYkWsMzTTzvO8sZRzGLahJzuGYELZ h/KFZY/SeNS5KEKL55GIUbjNG2U8eoLB1FAJlXys2JcLoL1pgd5xAtmXmaDOGSka JtFAXFTfnnZ+53eV41GUo0qMHkyu5rHw0KrkZkmxLhH/tNv6ffBZ69/sFZEVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUL9WeomFkfL74E7v9RYvg3VgdbZ4wHwYDVR0j BBgwFoAUhWcv9GB+Ov2crNl8hODyR6ifw8cwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OWI2YWUyYTItZDkzZi00OWNhLWJhNGItMTcxZmY4ZDFlNTdmLzAvODU2NzJGRjQ2 MDdFM0FGRDlDQUNEOTdDODRFMEYyNDdBODlGQzNDNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTY3MkZGNDYwN0UzQUZEOUNBQ0Q5N0M4NEUwRjI0N0E4OUZD M0M3LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOWI2YWUyYTItZDkzZi00OWNhLWJh NGItMTcxZmY4ZDFlNTdmLzAvODU2NzJGRjQ2MDdFM0FGRDlDQUNEOTdDODRFMEYy NDdBODlGQzNDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACtUGNT87DMUaQ04A9FMTTGmk2s+vYVGHOiK 42EiW1qwZqf5XYS0gV0JmEQurG6zJQvsZh9CjLp2UoMY/8CQlOSwSe637Nk2jlV1 RJgevkn8P7UqZYwFgI2qButS5C5EBtkLD+I288ubYvIyEz5P3Hy65rd/wvVBxwwX eW6fB+17UPFTa+eDEwPh2gIGm2h6pMkbPvXGzDdR2klTCz5z865CpPodi+wqqsE9 VK17AloTAiBQKSwyKm0YJyaBcwRcqnbygUB8iWBMsEotO2bs+QBviu3fGi32jv/G ynGlqvN+zJ7Eq0fBwiWiz53ejAzUufCqanA9ZmtUkIDC6Vj+Ae0= -----END CERTIFICATE-----Generated at Wed Jun 17 09:20:28 2026 by rpki-client