$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft File: AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft (raw, json) Hash identifier: QP4HDtdJlcWLteNX/PcQRuMIdbtL+JIU6YQxzUJ/cA8= Subject key identifier: 05:03:BA:55:C1:6E:7B:E0:52:D7:7E:63:46:7C:BB:39:76:7D:CF:5C Authority key identifier: AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA Certificate issuer: /CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Certificate serial: 5530183C60B23B9371C129A9875F88147BDE44C0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft Manifest number: 39 Signing time: Sat 13 Jun 2026 17:15:26 +0000 Manifest this update: Sat 13 Jun 2026 17:10:26 +0000 Manifest next update: Sun 14 Jun 2026 17:15:26 +0000 Files and hashes: 1: 3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa (hash: etrhCGlRM8YYOHb6oshuOaV8mvXHwHvEf9qlp95P9kg=) 2: 3130332e3138342e31392e302f32342d3234203d3e203438343635.roa (hash: jT66ugDcwrPPZn+FW9LcATaa7pa94IbpNMskVZmpYyA=) 3: 3130332e3138342e31382e302f32342d3234203d3e203438343635.roa (hash: AMN816Na79PG9Dr8taQyQqg9+CtJXIVEVEtntXynyXw=) 4: 3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa (hash: tpylCt5CgrBx6WkyqQ/Q0MxG2lKbEyC1EbhCs0e+Yuo=) 5: AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl (hash: /YCBNM9p+t6VSybDW5XYtsCmuOEQaX+dtiJWkPT05TA=) 6: 3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa (hash: IKu3DMB2Lrk9WDHkDL4CNW43tnQhk2oAbk+rhH/oyA8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:30:18:3c:60:b2:3b:93:71:c1:29:a9:87:5f:88:14:7b:de:44:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Validity Not Before: Jun 13 17:10:26 2026 GMT Not After : Jun 14 17:15:26 2026 GMT Subject: CN=0503BA55C16E7BE052D77E63467CBB39767DCF5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9a:58:b2:a9:44:77:7b:c6:a1:43:cf:c8:28: bc:d2:15:43:c5:d1:d1:00:08:06:1f:d5:90:cc:0f: 51:89:32:f3:7f:12:ae:2a:71:7d:f6:a9:8c:70:35: d9:52:99:76:7b:0c:15:f9:d9:67:93:cc:9a:03:da: a8:0b:74:74:ae:5e:69:ea:55:17:b8:57:4a:a2:8c: bb:4f:ce:95:d2:2e:2c:2d:2b:8d:3b:80:75:57:f0: b2:88:35:ca:cc:f4:68:c4:cb:26:fc:4c:f1:63:8a: 22:4f:ab:be:8d:74:c8:31:66:9f:bc:5d:67:05:42: b6:58:65:3c:66:5d:19:ab:c7:54:0b:73:24:97:76: 94:48:f0:6b:2c:06:d6:65:55:5a:70:32:f4:6f:e5: 68:e6:94:ce:f0:e0:a3:3a:06:36:9d:e0:53:d8:c1: 62:a0:ae:35:b9:15:d7:b7:d2:8e:6b:42:05:96:0a: b1:07:e0:38:17:30:57:47:59:7f:8c:b5:7a:fa:ea: 31:15:83:b6:4e:69:31:4f:b1:7e:1e:be:60:74:d0: 62:a8:6d:70:49:46:a1:4d:9e:41:43:8f:1c:78:39: 41:12:16:c6:6c:a0:8e:9a:8d:45:51:e9:6f:22:d0: 64:a0:2f:34:02:18:9b:75:95:0c:46:19:e2:b5:5b: c1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:03:BA:55:C1:6E:7B:E0:52:D7:7E:63:46:7C:BB:39:76:7D:CF:5C X509v3 Authority Key Identifier: keyid:AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:44:4c:27:63:ef:3e:9b:84:37:db:ce:b1:28:bd:7e:b9:46: b6:52:95:73:7f:b1:1f:89:7a:ac:40:9e:f4:85:f9:79:22:4c: 99:4c:0c:a0:62:28:0c:f8:c1:ad:de:be:c7:6d:ea:c8:36:79: ec:d7:37:32:a2:55:2d:a1:d7:91:fd:73:95:70:7a:52:70:2c: 30:73:dd:c5:3e:e6:a4:a0:51:e8:54:29:b9:c1:f4:48:c3:1a: ea:34:b7:77:87:55:48:8d:ff:95:e3:0a:41:08:11:3c:12:e1: 92:70:ad:ac:62:29:20:e0:77:f7:44:d2:4c:ea:0d:2c:a4:4c: c3:c7:d1:8c:62:88:0d:e3:ac:5a:19:d5:3b:28:8e:fd:73:ec: 0a:f2:9f:84:2b:e2:31:78:40:aa:f8:bf:1a:a2:f3:81:ed:cc: 23:70:ee:67:c2:45:9f:3c:89:ed:d8:0f:f9:8d:77:df:4e:e3: 7e:9a:7c:49:35:eb:61:e6:db:88:cf:de:1f:a8:e4:91:5e:f4: 5b:3c:76:a0:09:2b:a3:0c:a2:d6:33:78:a0:a1:9b:a5:62:be: df:e8:dc:f6:33:73:6d:50:2e:cd:28:ec:39:36:40:27:3c:5d: a2:20:d4:05:56:1d:c6:f1:aa:41:01:fd:cb:a5:68:b0:be:8f: 40:09:51:4f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVTAYPGCyO5NxwSmph1+IFHveRMAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDNDOEYx RTYwRDFDQTAeFw0yNjA2MTMxNzEwMjZaFw0yNjA2MTQxNzE1MjZaMDMxMTAvBgNV BAMTKDA1MDNCQTU1QzE2RTdCRTA1MkQ3N0U2MzQ2N0NCQjM5NzY3RENGNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBmliyqUR3e8ahQ8/IKLzSFUPF 0dEACAYf1ZDMD1GJMvN/Eq4qcX32qYxwNdlSmXZ7DBX52WeTzJoD2qgLdHSuXmnq VRe4V0qijLtPzpXSLiwtK407gHVX8LKINcrM9GjEyyb8TPFjiiJPq76NdMgxZp+8 XWcFQrZYZTxmXRmrx1QLcySXdpRI8GssBtZlVVpwMvRv5WjmlM7w4KM6Bjad4FPY wWKgrjW5Fde30o5rQgWWCrEH4DgXMFdHWX+MtXr66jEVg7ZOaTFPsX4evmB00GKo bXBJRqFNnkFDjxx4OUESFsZsoI6ajUVR6W8i0GSgLzQCGJt1lQxGGeK1W8EPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBQO6VcFue+BS135jRny7OXZ9z1wwHwYDVR0j BBgwFoAUrCPdqiyJ38Q/DRIDMc08jx5g0cowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBkOTE0ZWYtMGIxZi00OTBiLTgwOGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEy Qzg5REZDNDNGMEQxMjAzMzFDRDNDOEYxRTYwRDFDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzIzRERBQTJDODlERkM0M0YwRDEyMDMzMUNEM0M4RjFFNjBE MUNBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjBkOTE0ZWYtMGIxZi00OTBiLTgw OGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDND OEYxRTYwRDFDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI9ETCdj7z6bhDfbzrEovX65RrZSlXN/sR+J eqxAnvSF+XkiTJlMDKBiKAz4wa3evsdt6sg2eezXNzKiVS2h15H9c5VwelJwLDBz 3cU+5qSgUehUKbnB9EjDGuo0t3eHVUiN/5XjCkEIETwS4ZJwraxiKSDgd/dE0kzq DSykTMPH0YxiiA3jrFoZ1Tsojv1z7Aryn4Qr4jF4QKr4vxqi84HtzCNw7mfCRZ88 ie3YD/mNd99O436afEk162Hm24jP3h+o5JFe9Fs8dqAJK6MMotYzeKChm6Vivt/o 3PYzc21QLs0o7Dk2QCc8XaIg1AVWHcbxqkEB/culaLC+j0AJUU8= -----END CERTIFICATE-----Generated at Sun Jun 14 00:58:44 2026 by rpki-client