$ rpki-client -vvf rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.mft File: 28051FF190AD60F286AE69A5C2C2A75002CD5C22.mft (raw, json) Hash identifier: XU6Q3w1Hz4/q9wRtKmx8bA0oqzAwK1vWNJs/cG85X4Q= Subject key identifier: 6F:4F:70:A6:F6:33:C5:36:99:C3:1C:0B:CF:FF:F4:3D:01:49:8E:D3 Authority key identifier: 28:05:1F:F1:90:AD:60:F2:86:AE:69:A5:C2:C2:A7:50:02:CD:5C:22 Certificate issuer: /CN=28051FF190AD60F286AE69A5C2C2A75002CD5C22 Certificate serial: 0C09BE475D8BFEA7DA5B7D18FBEDC454CFEDA4AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 12:44:50 +0000 Manifest this update: Tue 16 Jun 2026 12:39:50 +0000 Manifest next update: Wed 17 Jun 2026 15:55:50 +0000 Files and hashes: 1: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (hash: DX9De2RZ1fwPjXYRliJoG3vcnnWQkcrXmm5lY0DlQ8c=) 2: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (hash: cqIEZQxU+EZc9SYrpFqE5pS8nDzAxvnkTbzbHwD4B2w=) 3: 3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa (hash: QbxtuI4YaAQndGClm2TbpKVghRM330ZkzNpAWirg1ig=) 4: 28051FF190AD60F286AE69A5C2C2A75002CD5C22.crl (hash: 2I5NwLn157z+KpFjJdn92Hz1HAwSlXEWGaiG1WpLWnc=) 5: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (hash: 3yzCp4wkI3KfVYe4A0JZd3yJ1CphXPMHC1KQXGZTn24=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.crl rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 15:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:09:be:47:5d:8b:fe:a7:da:5b:7d:18:fb:ed:c4:54:cf:ed:a4:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28051FF190AD60F286AE69A5C2C2A75002CD5C22 Validity Not Before: Jun 16 12:39:50 2026 GMT Not After : Jun 17 15:55:50 2026 GMT Subject: CN=6F4F70A6F633C53699C31C0BCFFFF43D01498ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:dc:10:af:9c:9f:47:58:7b:45:44:35:84:9f: 03:60:cc:5f:6f:a4:5b:7c:82:ca:87:42:a7:fd:a6: b9:8f:4c:49:4a:32:c7:8f:61:70:40:6f:b9:37:c5: b5:07:fd:5b:ac:2b:77:7b:c1:a8:2a:61:13:ff:47: b1:f7:81:54:e0:eb:f3:ca:2c:07:f4:87:92:8d:fa: 62:4d:87:6d:09:52:eb:29:16:b2:70:1b:a7:81:a9: 68:e4:71:cd:44:bf:28:88:c5:51:b9:83:1d:c0:e2: 59:cb:32:06:cd:40:92:fc:29:56:99:36:87:bd:4d: 39:71:3e:7c:0a:1c:9c:00:7e:ce:e6:c9:cd:7e:50: 7d:14:00:3a:b7:53:02:cd:40:99:d8:89:57:7e:40: 93:28:c8:dc:c3:c4:d2:d3:85:5b:43:31:fa:e0:9e: 8d:f3:33:52:44:97:cd:29:74:ab:64:7e:2f:c8:5c: f9:68:c3:15:9f:16:ff:c8:a0:70:ae:2e:4f:01:bc: f8:b3:1f:1b:a2:83:ab:ae:67:9e:0c:e4:1d:97:60: 15:6a:d9:5a:6d:d8:46:6b:44:c8:c2:e6:5a:71:64: f8:d2:37:ad:36:99:63:ef:68:86:11:21:5b:00:33: 11:93:75:39:71:f0:3c:a3:9e:22:13:c3:15:c6:bc: d3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:4F:70:A6:F6:33:C5:36:99:C3:1C:0B:CF:FF:F4:3D:01:49:8E:D3 X509v3 Authority Key Identifier: keyid:28:05:1F:F1:90:AD:60:F2:86:AE:69:A5:C2:C2:A7:50:02:CD:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/28051FF190AD60F286AE69A5C2C2A75002CD5C22.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/28051FF190AD60F286AE69A5C2C2A75002CD5C22.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:c8:ee:f8:2c:00:7c:d5:8d:a0:c2:42:1c:62:6c:5d:4f:fb: 95:d4:59:58:23:cf:f8:e5:b7:7c:0e:b3:a9:db:0f:5d:32:f8: de:2f:0f:30:e6:ea:2d:47:23:1f:13:ea:d6:55:da:b4:ce:88: 09:a0:02:eb:01:db:b5:fa:bf:52:f2:06:a5:14:b9:56:03:8c: 0f:c9:69:15:77:22:ea:02:cf:ab:1c:3f:1a:b5:7f:33:11:02: 81:7e:bc:48:eb:ad:90:fb:fe:02:f7:57:99:98:13:42:62:ba: a7:e5:d5:04:58:11:bd:22:8b:ba:27:fc:a9:38:ee:4e:86:1c: 10:b5:b8:87:c9:52:8a:2e:de:a6:7f:82:5e:c9:b4:84:63:3b: c7:f2:51:ed:fd:02:62:87:23:f8:e0:08:2d:e0:8f:ea:b3:de: 70:03:b4:13:7c:68:3d:95:25:d6:21:99:fa:ae:bb:41:12:94: 97:c3:ab:4d:f8:aa:cb:b1:73:ae:62:8d:77:6e:e3:99:e5:d2: 73:6e:3d:b5:5a:10:d8:48:89:47:02:a6:51:96:d4:c0:b3:e7: da:0b:9a:8a:94:95:35:5c:f3:38:7a:c6:5c:76:06:c1:40:b8: 5d:e3:38:1a:6a:dc:26:b8:3f:86:d9:b6:8e:1a:6b:ff:e5:53: c0:88:2e:1b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDAm+R12L/qfaW30Y++3EVM/tpK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgwNTFGRjE5MEFENjBGMjg2QUU2OUE1QzJDMkE3NTAw MkNENUMyMjAeFw0yNjA2MTYxMjM5NTBaFw0yNjA2MTcxNTU1NTBaMDMxMTAvBgNV BAMTKDZGNEY3MEE2RjYzM0M1MzY5OUMzMUMwQkNGRkZGNDNEMDE0OThFRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCa3BCvnJ9HWHtFRDWEnwNgzF9v pFt8gsqHQqf9prmPTElKMsePYXBAb7k3xbUH/VusK3d7wagqYRP/R7H3gVTg6/PK LAf0h5KN+mJNh20JUuspFrJwG6eBqWjkcc1EvyiIxVG5gx3A4lnLMgbNQJL8KVaZ Noe9TTlxPnwKHJwAfs7myc1+UH0UADq3UwLNQJnYiVd+QJMoyNzDxNLThVtDMfrg no3zM1JEl80pdKtkfi/IXPlowxWfFv/IoHCuLk8BvPizHxuig6uuZ54M5B2XYBVq 2Vpt2EZrRMjC5lpxZPjSN602mWPvaIYRIVsAMxGTdTlx8DyjniITwxXGvNP/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUb09wpvYzxTaZwxwLz//0PQFJjtMwHwYDVR0j BBgwFoAUKAUf8ZCtYPKGrmmlwsKnUALNXCIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDZjOGIzYTktNGVmZi00NjBkLWIwMWQtNmJhNWQ5OWRhZGI5LzAvMjgwNTFGRjE5 MEFENjBGMjg2QUU2OUE1QzJDMkE3NTAwMkNENUMyMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yODA1MUZGMTkwQUQ2MEYyODZBRTY5QTVDMkMyQTc1MDAyQ0Q1 QzIyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDZjOGIzYTktNGVmZi00NjBkLWIw MWQtNmJhNWQ5OWRhZGI5LzAvMjgwNTFGRjE5MEFENjBGMjg2QUU2OUE1QzJDMkE3 NTAwMkNENUMyMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAILI7vgsAHzVjaDCQhxibF1P+5XUWVgjz/jl t3wOs6nbD10y+N4vDzDm6i1HIx8T6tZV2rTOiAmgAusB27X6v1LyBqUUuVYDjA/J aRV3IuoCz6scPxq1fzMRAoF+vEjrrZD7/gL3V5mYE0Jiuqfl1QRYEb0ii7on/Kk4 7k6GHBC1uIfJUoou3qZ/gl7JtIRjO8fyUe39AmKHI/jgCC3gj+qz3nADtBN8aD2V JdYhmfquu0ESlJfDq034qsuxc65ijXdu45nl0nNuPbVaENhIiUcCplGW1MCz59oL moqUlTVc8zh6xlx2BsFAuF3jOBpq3Ca4P4bZto4aa//lU8CILhs= -----END CERTIFICATE-----Generated at Wed Jun 17 09:20:14 2026 by rpki-client