$ rpki-client -vvf rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.mft File: CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.mft (raw, json) Hash identifier: c97/ze1nQGjXQWuwMxlQ5cNz7Y7mR1+C+p1OUwl1D+8= Subject key identifier: 70:63:E4:91:6C:E3:C0:CE:B6:4C:91:67:D8:DC:C7:DF:B4:B1:32:00 Authority key identifier: CF:67:7D:C4:A0:E9:F5:2E:45:8D:7F:78:6C:11:00:4C:BC:C0:6B:E6 Certificate issuer: /CN=CF677DC4A0E9F52E458D7F786C11004CBCC06BE6 Certificate serial: 5F148C719C6A58FA6F031923ED72327607AEB2F9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.mft Manifest number: 3E Signing time: Tue 16 Jun 2026 22:56:54 +0000 Manifest this update: Tue 16 Jun 2026 22:51:54 +0000 Manifest next update: Thu 18 Jun 2026 02:13:54 +0000 Files and hashes: 1: 3230332e3230312e35302e302f32332d3234203d3e203138313033.roa (hash: hnbLn0WCQW7tjxDDomIPOhXC1r7ltYUmnmJCJUDX+Hs=) 2: 323430313a316230303a3a2f33322d3438203d3e203138313033.roa (hash: LF0MrR9BI6ohPR99FqHdVyHSCGgsD/4Honm25vFKTtU=) 3: 34332e3234382e32342e302f32322d3234203d3e203138313033.roa (hash: 9zWseK0VGBFjDjSukC7sEdd2KVTBNcjvlH0F1oisM48=) 4: 3130332e31302e39362e302f32322d3234203d3e203138313033.roa (hash: h+jOCf2n8qXpyofV0yrwta8TGMspkZPZ+KTwYTU4B7c=) 5: CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.crl (hash: kVp31pyCyIqxWicGN1P0Hy/e1R9jBM7wGpf2PZ0sm+0=) 6: 3130332e32332e3234302e302f32322d3234203d3e203138313033.roa (hash: CIu+a1x1Ob4TtttYENYOSXpa0Xw1+bkYfz/RVtE/6mo=) 7: 3230332e3132382e36342e302f31392d3234203d3e203138313033.roa (hash: eBoaZqyr6WlSbN/AJF6RgzCQyG+1zBmzaFfb/7fN5dY=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.crl rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 02:13:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:14:8c:71:9c:6a:58:fa:6f:03:19:23:ed:72:32:76:07:ae:b2:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CF677DC4A0E9F52E458D7F786C11004CBCC06BE6 Validity Not Before: Jun 16 22:51:54 2026 GMT Not After : Jun 18 02:13:54 2026 GMT Subject: CN=7063E4916CE3C0CEB64C9167D8DCC7DFB4B13200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3f:4c:ab:6b:ec:6a:7d:5d:48:aa:16:75:0f: 17:b1:bd:d8:5e:e4:15:c6:ea:50:e0:7c:ea:63:6d: 51:86:c3:b0:73:b5:19:83:1c:25:52:94:79:1e:49: f9:40:ff:4f:6e:b8:f6:98:c2:6c:e1:f5:ae:60:c2: a3:dc:1f:99:af:35:12:98:d8:31:8b:7d:ed:50:6a: ea:cf:1f:75:12:f8:cd:4b:55:59:2c:b6:82:09:2f: 21:2a:f6:33:33:f1:a6:22:43:8a:bc:6c:67:80:56: 2c:78:22:28:dc:b3:a0:63:1b:2f:30:c5:87:da:b9: c0:9c:24:0b:88:cb:95:e3:b1:3b:68:10:58:6b:e3: 01:3d:5a:13:5f:22:05:b1:f4:6c:1b:15:b4:06:a4: 8a:b9:29:56:c6:7a:5f:16:46:b8:c6:a7:75:76:1f: 71:4f:36:2f:fb:25:8f:ce:91:d9:f0:40:14:4b:4d: 00:61:a5:94:e1:db:af:aa:a2:0c:cc:5b:d2:a8:b8: 35:bd:1e:c1:7e:73:6a:19:0e:bd:0f:bf:8f:23:11: 7f:c3:c3:e8:be:52:62:54:05:8d:27:3b:ed:0a:53: fb:87:90:ed:a5:d6:e0:02:55:06:a4:de:38:78:77: aa:8e:13:8d:c9:eb:6d:fa:ab:f0:41:0d:60:a6:87: 97:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:63:E4:91:6C:E3:C0:CE:B6:4C:91:67:D8:DC:C7:DF:B4:B1:32:00 X509v3 Authority Key Identifier: keyid:CF:67:7D:C4:A0:E9:F5:2E:45:8D:7F:78:6C:11:00:4C:BC:C0:6B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b199c1af-d9c7-4ffd-ba03-a3e1cdd8aee0/0/CF677DC4A0E9F52E458D7F786C11004CBCC06BE6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:a9:f9:be:67:0f:22:bf:97:11:4f:96:29:6c:88:85:0f:db: 1b:7b:7c:d0:50:52:9f:e0:50:20:59:8b:43:09:eb:a4:c2:9f: 3c:43:01:7b:07:57:30:db:58:b0:61:f3:cb:f1:ce:38:ad:e9: 92:94:69:14:2e:8d:92:c5:12:7f:13:50:bf:13:bf:24:da:bd: fd:7a:32:1e:fb:41:2d:b5:bf:0d:60:4e:db:87:17:71:33:bf: 19:6a:e0:c4:96:77:f0:89:24:14:48:df:95:9d:a1:ca:15:0e: a9:05:5f:45:2b:a4:c7:2b:51:ff:68:96:90:8d:ab:24:d6:65: 8e:8b:e5:62:af:9e:7b:e4:58:ee:c5:d8:d4:e0:0e:06:0f:6a: fb:d7:95:b6:40:fd:d0:5a:f2:59:a1:61:aa:3e:fb:66:ff:b2: 84:74:fe:be:ab:80:8d:4c:df:3b:9d:9b:34:24:35:21:39:b6: ec:7d:9d:57:4b:8d:f6:d3:a8:06:48:e4:55:e9:74:e2:c8:d2: ea:7d:34:56:03:6c:57:7f:b7:f7:0a:a3:42:59:6f:fa:46:2c: 42:63:1f:59:ea:24:c6:dc:40:b3:6a:32:7e:c7:8f:45:68:5f: b7:74:17:31:51:4c:3b:0b:f3:1d:71:ae:09:7e:ab:ed:10:23: 34:d3:e5:1d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXxSMcZxqWPpvAxkj7XIydgeusvkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0Y2NzdEQzRBMEU5RjUyRTQ1OEQ3Rjc4NkMxMTAwNENC Q0MwNkJFNjAeFw0yNjA2MTYyMjUxNTRaFw0yNjA2MTgwMjEzNTRaMDMxMTAvBgNV BAMTKDcwNjNFNDkxNkNFM0MwQ0VCNjRDOTE2N0Q4RENDN0RGQjRCMTMyMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDP0yra+xqfV1IqhZ1Dxexvdhe 5BXG6lDgfOpjbVGGw7BztRmDHCVSlHkeSflA/09uuPaYwmzh9a5gwqPcH5mvNRKY 2DGLfe1QaurPH3US+M1LVVkstoIJLyEq9jMz8aYiQ4q8bGeAVix4Iijcs6BjGy8w xYfaucCcJAuIy5XjsTtoEFhr4wE9WhNfIgWx9GwbFbQGpIq5KVbGel8WRrjGp3V2 H3FPNi/7JY/OkdnwQBRLTQBhpZTh26+qogzMW9KouDW9HsF+c2oZDr0Pv48jEX/D w+i+UmJUBY0nO+0KU/uHkO2l1uACVQak3jh4d6qOE43J6236q/BBDWCmh5chAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcGPkkWzjwM62TJFn2NzH37SxMgAwHwYDVR0j BBgwFoAUz2d9xKDp9S5FjX94bBEATLzAa+YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjE5OWMxYWYtZDljNy00ZmZkLWJhMDMtYTNlMWNkZDhhZWUwLzAvQ0Y2NzdEQzRB MEU5RjUyRTQ1OEQ3Rjc4NkMxMTAwNENCQ0MwNkJFNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRjY3N0RDNEEwRTlGNTJFNDU4RDdGNzg2QzExMDA0Q0JDQzA2 QkU2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjE5OWMxYWYtZDljNy00ZmZkLWJh MDMtYTNlMWNkZDhhZWUwLzAvQ0Y2NzdEQzRBMEU5RjUyRTQ1OEQ3Rjc4NkMxMTAw NENCQ0MwNkJFNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACGp+b5nDyK/lxFPlilsiIUP2xt7fNBQUp/g UCBZi0MJ66TCnzxDAXsHVzDbWLBh88vxzjit6ZKUaRQujZLFEn8TUL8TvyTavf16 Mh77QS21vw1gTtuHF3Ezvxlq4MSWd/CJJBRI35WdocoVDqkFX0UrpMcrUf9olpCN qyTWZY6L5WKvnnvkWO7F2NTgDgYPavvXlbZA/dBa8lmhYao++2b/soR0/r6rgI1M 3zudmzQkNSE5tux9nVdLjfbTqAZI5FXpdOLI0up9NFYDbFd/t/cKo0JZb/pGLEJj H1nqJMbcQLNqMn7Hj0VoX7d0FzFRTDsL8x1xrgl+q+0QIzTT5R0= -----END CERTIFICATE-----Generated at Wed Jun 17 11:12:15 2026 by rpki-client