$ rpki-client -vvf rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.mft File: CA270F1FD051B3CD65DB930972A99335C45615EC.mft (raw, json) Hash identifier: GchTCm5Kw/XDYlXi6t+jXkWmjIr8wr762S5hEh1eNWY= Subject key identifier: C5:E7:BB:3F:EC:B5:6E:C5:2C:40:32:6F:29:C5:D0:66:DE:FC:8D:A6 Authority key identifier: CA:27:0F:1F:D0:51:B3:CD:65:DB:93:09:72:A9:93:35:C4:56:15:EC Certificate issuer: /CN=CA270F1FD051B3CD65DB930972A99335C45615EC Certificate serial: 28A8D2B94495261C9C0FFF5243F568B739E70054 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA270F1FD051B3CD65DB930972A99335C45615EC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 16:19:00 +0000 Manifest this update: Tue 16 Jun 2026 16:14:00 +0000 Manifest next update: Wed 17 Jun 2026 16:41:00 +0000 Files and hashes: 1: CA270F1FD051B3CD65DB930972A99335C45615EC.crl (hash: L01sKDTj6e71FMBTihIYqXUHyfhp0inAcYp03nGJWM8=) 2: 3130332e3136322e3135312e302f32342d3234203d3e20313431363536.roa (hash: UuwOEqaAvPthTROezeYmcp8tB98baeryTixXf6GL8Aw=) 3: 3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa (hash: NkKjSf90ElcdssnMG0/v4I3k9N6YTsqapPAgxV9RP+E=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.crl rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA270F1FD051B3CD65DB930972A99335C45615EC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 16:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:a8:d2:b9:44:95:26:1c:9c:0f:ff:52:43:f5:68:b7:39:e7:00:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA270F1FD051B3CD65DB930972A99335C45615EC Validity Not Before: Jun 16 16:14:00 2026 GMT Not After : Jun 17 16:41:00 2026 GMT Subject: CN=C5E7BB3FECB56EC52C40326F29C5D066DEFC8DA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:be:39:a4:7a:2f:ae:68:b6:56:27:93:64:67: 51:fd:88:4b:c1:63:c7:4e:38:46:c1:47:8f:08:bf: 76:be:58:8a:22:d5:f4:86:53:5a:c7:38:fa:34:e6: c5:33:59:93:b3:a0:86:fe:da:bd:8b:2a:54:ae:4c: a9:2f:f7:ec:84:8f:f1:05:37:cf:c0:47:68:36:b9: cb:44:3a:e8:3d:fc:42:2b:c7:29:96:cf:ea:d5:59: 7d:f8:00:fe:63:d5:d8:e6:0d:f6:1b:fc:c4:c0:eb: 16:e9:81:97:b0:d9:3d:ee:aa:f5:0e:25:83:be:e3: b8:12:e7:a5:96:84:ae:20:9d:a4:83:8e:e0:c1:49: b5:03:18:ec:e8:e1:36:c6:8d:23:bc:ec:ed:3b:7f: b0:9a:e7:3f:71:b8:c1:2a:9f:69:28:5c:cb:8c:a3: 22:68:81:6c:bb:cd:1e:ba:90:57:d4:e7:4d:b7:42: 92:7a:8a:92:a6:f7:19:34:ed:41:92:55:ac:e7:a1: 7f:cb:04:be:f8:79:04:f9:27:e3:63:ec:ea:f5:bb: f2:7d:b4:ea:87:c8:17:35:19:c7:cd:7e:68:1c:2c: c2:e7:b6:d4:4c:3b:30:68:a2:13:84:5e:c5:39:24: e3:79:1a:9d:f9:bc:31:81:59:7e:b3:d2:1b:b7:31: ca:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E7:BB:3F:EC:B5:6E:C5:2C:40:32:6F:29:C5:D0:66:DE:FC:8D:A6 X509v3 Authority Key Identifier: keyid:CA:27:0F:1F:D0:51:B3:CD:65:DB:93:09:72:A9:93:35:C4:56:15:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA270F1FD051B3CD65DB930972A99335C45615EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:61:b5:5b:be:23:ca:e3:2e:20:78:f0:8f:69:f9:a0:90:3a: ce:d0:a4:b9:d0:e3:13:83:9e:7f:26:28:07:5a:c4:35:44:15: 81:0b:77:a0:37:4d:9a:bc:b1:1b:0f:c2:0f:55:2a:54:7c:ef: c4:37:4a:65:b1:1e:c8:05:72:73:2b:9f:34:52:23:43:91:36: 7f:35:b2:ae:87:ac:52:89:98:f8:f9:a0:fe:9b:2b:0a:d9:0a: a2:94:a4:78:cf:63:e5:20:08:8c:a7:da:84:e4:d9:d5:29:ac: 00:75:ab:ac:0e:8b:b1:14:21:20:36:40:cc:54:6c:2b:86:e2: 53:04:db:a0:72:e3:c9:71:c2:93:d3:c2:69:9a:9c:a7:74:e0: af:53:18:03:bb:8e:f2:d4:7d:c8:2c:26:e9:94:37:91:43:7e: c4:53:ef:67:3f:1d:cb:2e:13:0e:be:65:7a:f8:b9:fc:7d:11: a6:1e:62:7b:05:6c:09:54:fd:7a:66:7c:9b:69:6f:17:07:b2: 6b:8e:36:2d:85:be:a6:40:ef:d6:29:70:80:60:f6:21:64:8c: bb:c3:29:cb:45:8d:d9:49:b3:a2:f7:bf:0b:aa:c9:de:0f:12: 6e:15:e6:39:92:81:42:51:84:07:0f:41:2a:66:1e:d8:36:56: 4d:9e:65:c2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKKjSuUSVJhycD/9SQ/VotznnAFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EyNzBGMUZEMDUxQjNDRDY1REI5MzA5NzJBOTkzMzVD NDU2MTVFQzAeFw0yNjA2MTYxNjE0MDBaFw0yNjA2MTcxNjQxMDBaMDMxMTAvBgNV BAMTKEM1RTdCQjNGRUNCNTZFQzUyQzQwMzI2RjI5QzVEMDY2REVGQzhEQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+vjmkei+uaLZWJ5NkZ1H9iEvB Y8dOOEbBR48Iv3a+WIoi1fSGU1rHOPo05sUzWZOzoIb+2r2LKlSuTKkv9+yEj/EF N8/AR2g2uctEOug9/EIrxymWz+rVWX34AP5j1djmDfYb/MTA6xbpgZew2T3uqvUO JYO+47gS56WWhK4gnaSDjuDBSbUDGOzo4TbGjSO87O07f7Ca5z9xuMEqn2koXMuM oyJogWy7zR66kFfU5023QpJ6ipKm9xk07UGSVaznoX/LBL74eQT5J+Nj7Or1u/J9 tOqHyBc1GcfNfmgcLMLnttRMOzBoohOEXsU5JON5Gp35vDGBWX6z0hu3McoTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxee7P+y1bsUsQDJvKcXQZt78jaYwHwYDVR0j BBgwFoAUyicPH9BRs81l25MJcqmTNcRWFewwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVkOWVhMjAtMzQzZC00YWNiLTk1ODEtODFmOWQ3ZWE5MmZlLzAvQ0EyNzBGMUZE MDUxQjNDRDY1REI5MzA5NzJBOTkzMzVDNDU2MTVFQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTI3MEYxRkQwNTFCM0NENjVEQjkzMDk3MkE5OTMzNUM0NTYx NUVDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWVkOWVhMjAtMzQzZC00YWNiLTk1 ODEtODFmOWQ3ZWE5MmZlLzAvQ0EyNzBGMUZEMDUxQjNDRDY1REI5MzA5NzJBOTkz MzVDNDU2MTVFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALhhtVu+I8rjLiB48I9p+aCQOs7QpLnQ4xOD nn8mKAdaxDVEFYELd6A3TZq8sRsPwg9VKlR878Q3SmWxHsgFcnMrnzRSI0ORNn81 sq6HrFKJmPj5oP6bKwrZCqKUpHjPY+UgCIyn2oTk2dUprAB1q6wOi7EUISA2QMxU bCuG4lME26By48lxwpPTwmmanKd04K9TGAO7jvLUfcgsJumUN5FDfsRT72c/Hcsu Ew6+ZXr4ufx9EaYeYnsFbAlU/XpmfJtpbxcHsmuONi2FvqZA79YpcIBg9iFkjLvD KctFjdlJs6L3vwuqyd4PEm4V5jmSgUJRhAcPQSpmHtg2Vk2eZcI= -----END CERTIFICATE-----Generated at Wed Jun 17 09:20:23 2026 by rpki-client