$ rpki-client -vvf rpki-rsync.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.mft File: 028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.mft (raw, json) Hash identifier: KHTfggiNGsms3LyevUSIwHeKclzsMQpaxaFmey+627c= Subject key identifier: 78:E1:67:A0:CE:E4:21:0A:99:1B:A9:5D:43:1A:52:C8:25:D2:EC:CE Authority key identifier: 02:8B:72:89:8E:0B:AB:CF:34:70:C7:E8:9E:C6:E1:F9:C2:44:2A:D9 Certificate issuer: /CN=028B72898E0BABCF3470C7E89EC6E1F9C2442AD9 Certificate serial: 08A64336FEBD78BE6B30DAF33D030BC2A18A7A87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.mft Manifest number: 3E Signing time: Tue 16 Jun 2026 21:35:18 +0000 Manifest this update: Tue 16 Jun 2026 21:30:18 +0000 Manifest next update: Wed 17 Jun 2026 23:20:18 +0000 Files and hashes: 1: 3130332e3134372e3134342e302f32332d3234203d3e203137373639.roa (hash: BUSB0kLsC7pjKXi5bhLXUPIzYoFZsUEccBkiDUzp6D8=) 2: 028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.crl (hash: /ktHTuZgInH9iaSDfRPQucOpu0IAk3P5EskczhT2G/4=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.crl rsync://rpki-rsync.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 23:20:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:a6:43:36:fe:bd:78:be:6b:30:da:f3:3d:03:0b:c2:a1:8a:7a:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028B72898E0BABCF3470C7E89EC6E1F9C2442AD9 Validity Not Before: Jun 16 21:30:18 2026 GMT Not After : Jun 17 23:20:18 2026 GMT Subject: CN=78E167A0CEE4210A991BA95D431A52C825D2ECCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c0:26:92:d6:99:b5:03:d0:71:11:66:a8:18: 5d:bf:6d:76:91:8a:0e:b4:82:bc:7d:0d:b5:08:7b: a4:70:5c:42:93:66:1b:28:4d:59:8f:94:b8:17:1b: 44:3f:fc:e0:ec:9f:f3:8a:7d:27:fb:a2:6a:a6:3c: 7d:51:84:7a:2c:af:37:49:09:38:97:b7:4d:71:12: 54:6f:a4:5a:67:8b:f9:11:d9:33:55:80:24:ca:d0: 70:1a:1b:d8:e5:9e:b8:47:9d:3a:34:e5:02:b1:d7: 00:ab:07:03:96:60:5d:9d:2b:26:03:38:b4:e4:fc: d8:94:75:a4:5d:89:a8:3b:b8:d7:64:16:22:2c:1a: 77:ee:01:2d:17:06:22:38:7b:25:a4:db:f0:2a:98: 29:82:7c:61:d7:a4:16:1c:ff:9e:07:4d:e5:6d:1b: 9f:7d:6c:d1:69:5e:fd:15:2b:d5:55:5f:1c:72:59: fa:11:6f:47:46:9c:05:87:8c:61:43:ce:3f:8f:6a: 27:a4:c0:38:b8:ce:12:37:bf:53:57:0a:85:3b:8f: 2a:25:0c:cd:c7:ae:f7:d7:b5:8e:7c:ac:12:f4:e8: 0a:f7:dd:bc:dd:cf:98:5c:fa:1c:91:c4:9a:d2:7b: c4:60:04:79:f8:0c:1b:eb:3d:74:5a:ec:c5:fa:c2: 4c:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:E1:67:A0:CE:E4:21:0A:99:1B:A9:5D:43:1A:52:C8:25:D2:EC:CE X509v3 Authority Key Identifier: keyid:02:8B:72:89:8E:0B:AB:CF:34:70:C7:E8:9E:C6:E1:F9:C2:44:2A:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/c85cbd95-574f-405b-8bde-0ddb9c9bddba/0/028B72898E0BABCF3470C7E89EC6E1F9C2442AD9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:5d:9b:88:90:a9:e0:06:82:34:ee:27:4e:a4:26:0b:ec:75: e1:6f:01:cb:f8:3f:5a:bf:38:c4:21:cf:f5:15:17:40:82:53: 04:64:6b:d8:18:de:fa:98:4f:ba:b0:ad:24:85:12:6d:86:cf: fa:5d:47:2e:a3:73:bf:5b:5d:a8:f8:30:43:b9:91:63:f7:9f: 7a:4c:54:e8:53:d5:5c:92:1c:b9:7d:11:05:e1:1f:91:d3:10: 8c:d7:f6:5f:5c:a0:93:ab:37:a2:66:59:16:be:16:92:85:1f: 1f:eb:d4:1d:d0:e4:94:60:fa:77:5f:0a:c0:81:85:6f:ab:11: 2b:4c:02:18:1c:64:79:28:0f:06:1f:b2:8a:f6:d0:96:cb:38: 52:a2:5f:95:ec:3a:aa:8a:65:ea:e4:50:4b:27:7b:73:26:ec: c9:13:3d:67:3f:80:18:f9:c1:5b:3f:bd:6c:cd:9a:58:93:37: 05:22:4c:24:93:50:89:9d:fd:20:15:07:04:67:09:a4:bf:cf: 98:53:4e:9a:4c:a7:7e:b8:f1:2c:71:7b:4c:72:1b:59:0f:41: bf:d4:f4:65:0b:22:b8:75:ca:e7:7c:b0:ba:69:ed:74:fb:6a: 10:cc:c9:ed:a0:04:6e:46:e7:f8:34:e5:2b:99:49:a6:83:ad: 1d:12:43:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCKZDNv69eL5rMNrzPQMLwqGKeocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI4QjcyODk4RTBCQUJDRjM0NzBDN0U4OUVDNkUxRjlD MjQ0MkFEOTAeFw0yNjA2MTYyMTMwMThaFw0yNjA2MTcyMzIwMThaMDMxMTAvBgNV BAMTKDc4RTE2N0EwQ0VFNDIxMEE5OTFCQTk1RDQzMUE1MkM4MjVEMkVDQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBwCaS1pm1A9BxEWaoGF2/bXaR ig60grx9DbUIe6RwXEKTZhsoTVmPlLgXG0Q//ODsn/OKfSf7omqmPH1RhHosrzdJ CTiXt01xElRvpFpni/kR2TNVgCTK0HAaG9jlnrhHnTo05QKx1wCrBwOWYF2dKyYD OLTk/NiUdaRdiag7uNdkFiIsGnfuAS0XBiI4eyWk2/AqmCmCfGHXpBYc/54HTeVt G599bNFpXv0VK9VVXxxyWfoRb0dGnAWHjGFDzj+PaiekwDi4zhI3v1NXCoU7jyol DM3HrvfXtY58rBL06Ar33bzdz5hc+hyRxJrSe8RgBHn4DBvrPXRa7MX6wkw7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeOFnoM7kIQqZG6ldQxpSyCXS7M4wHwYDVR0j BBgwFoAUAotyiY4Lq880cMfonsbh+cJEKtkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Yzg1Y2JkOTUtNTc0Zi00MDViLThiZGUtMGRkYjljOWJkZGJhLzAvMDI4QjcyODk4 RTBCQUJDRjM0NzBDN0U4OUVDNkUxRjlDMjQ0MkFEOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjhCNzI4OThFMEJBQkNGMzQ3MEM3RTg5RUM2RTFGOUMyNDQy QUQ5LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYzg1Y2JkOTUtNTc0Zi00MDViLThi ZGUtMGRkYjljOWJkZGJhLzAvMDI4QjcyODk4RTBCQUJDRjM0NzBDN0U4OUVDNkUx RjlDMjQ0MkFEOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABddm4iQqeAGgjTuJ06kJgvsdeFvAcv4P1q/ OMQhz/UVF0CCUwRka9gY3vqYT7qwrSSFEm2Gz/pdRy6jc79bXaj4MEO5kWP3n3pM VOhT1VySHLl9EQXhH5HTEIzX9l9coJOrN6JmWRa+FpKFHx/r1B3Q5JRg+ndfCsCB hW+rEStMAhgcZHkoDwYfsor20JbLOFKiX5XsOqqKZerkUEsne3Mm7MkTPWc/gBj5 wVs/vWzNmliTNwUiTCSTUImd/SAVBwRnCaS/z5hTTppMp3648Sxxe0xyG1kPQb/U 9GULIrh1yud8sLpp7XT7ahDMye2gBG5G5/g05SuZSaaDrR0SQ8c= -----END CERTIFICATE-----Generated at Wed Jun 17 13:15:16 2026 by rpki-client