$ rpki-client -vvf rpki-rsync.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/5BD70FF0C393471CFAF795433474B327BD4832F9.mft File: 5BD70FF0C393471CFAF795433474B327BD4832F9.mft (raw, json) Hash identifier: SIhZQ1QX4DdsVJxEkGibgJ5nXdBBngTUNkA4aFs8Rk0= Subject key identifier: F7:EF:23:85:83:49:B6:C1:22:7D:89:9A:84:5F:FC:F1:60:DE:D5:AC Authority key identifier: 5B:D7:0F:F0:C3:93:47:1C:FA:F7:95:43:34:74:B3:27:BD:48:32:F9 Certificate issuer: /CN=5BD70FF0C393471CFAF795433474B327BD4832F9 Certificate serial: 1AA6A9FE0282CF5DA0175C5F22270197EA3C9411 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5BD70FF0C393471CFAF795433474B327BD4832F9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/5BD70FF0C393471CFAF795433474B327BD4832F9.mft Manifest number: 39 Signing time: Sat 13 Jun 2026 14:27:06 +0000 Manifest this update: Sat 13 Jun 2026 14:22:06 +0000 Manifest next update: Sun 14 Jun 2026 15:18:06 +0000 Files and hashes: 1: 3130332e3130352e3139352e302f32342d3234203d3e20313336383738.roa (hash: kDdkImc9WCIWpXnaeyzXyBkOibkDgoSjiG8qhXynUZA=) 2: 3130332e3130352e3139332e302f32342d3234203d3e20313337333136.roa (hash: bBQLsVkx2CpNTLhQIb39ezRJZR+3VFuLJFWKGpnOARA=) 3: 3130332e3130352e3139322e302f32342d3234203d3e20313336383738.roa (hash: tdzqlaQf0fF4d+ZUvSQhNIWl0HYGOdoxh6aHUWDnZjg=) 4: 5BD70FF0C393471CFAF795433474B327BD4832F9.crl (hash: x+0nIj0YEOzzfWnywvj0/8CIuOiPdXBB2ytcNUan6sQ=) 5: 3130332e3130352e3139342e302f32342d3234203d3e20313336383738.roa (hash: VRIdIq5putn/ECgQ5btezrubt1dqb54ZcZ8apLF1yIY=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/5BD70FF0C393471CFAF795433474B327BD4832F9.crl rsync://rpki-rsync.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/5BD70FF0C393471CFAF795433474B327BD4832F9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5BD70FF0C393471CFAF795433474B327BD4832F9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 12:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a6:a9:fe:02:82:cf:5d:a0:17:5c:5f:22:27:01:97:ea:3c:94:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD70FF0C393471CFAF795433474B327BD4832F9 Validity Not Before: Jun 13 14:22:06 2026 GMT Not After : Jun 14 15:18:06 2026 GMT Subject: CN=F7EF23858349B6C1227D899A845FFCF160DED5AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:df:47:b9:5e:8b:13:7c:f7:e4:16:98:ab:60: 1d:bb:6a:e5:f1:8c:4d:83:69:e1:e4:a4:14:03:f6: e0:8f:73:91:2d:b1:f1:b1:99:de:6f:76:97:46:b0: 95:d8:c3:11:1c:fe:39:a9:46:04:dc:5c:c5:57:3a: 12:0b:27:18:7c:7a:3b:db:06:df:f3:31:c9:ea:f6: 05:ba:d6:c2:30:19:a5:df:88:a2:53:69:59:ce:2f: 04:d2:29:e0:77:de:ff:f2:60:39:de:6d:d7:a1:fc: 6e:23:ee:2d:06:d4:7e:6d:3a:90:8f:cd:67:10:13: 2c:98:5d:ef:7a:64:0e:bd:ca:5d:0c:2b:43:92:7c: 96:7e:73:57:f3:90:ea:cc:3d:10:a7:fd:88:e1:80: bf:a2:d6:23:b4:da:cb:45:25:20:3f:45:6c:72:07: b4:b1:1f:33:df:62:fe:9c:9f:8c:98:32:11:cf:1d: 82:39:9e:69:2c:e6:fe:19:b2:bc:50:06:40:e1:5d: 47:d0:1a:dd:d7:25:85:8a:18:4b:a1:f5:9b:a0:17: 00:ca:95:3c:db:12:0b:b1:1a:d7:8a:a6:86:76:cc: e3:a6:00:5b:e7:9d:64:38:ae:71:cd:b1:f6:ad:dc: 69:d0:89:63:d7:8e:60:d0:0a:b6:4f:9e:50:33:f2: 78:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:EF:23:85:83:49:B6:C1:22:7D:89:9A:84:5F:FC:F1:60:DE:D5:AC X509v3 Authority Key Identifier: keyid:5B:D7:0F:F0:C3:93:47:1C:FA:F7:95:43:34:74:B3:27:BD:48:32:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/5BD70FF0C393471CFAF795433474B327BD4832F9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/5BD70FF0C393471CFAF795433474B327BD4832F9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d924fa9a-e5f3-4265-9e1d-84e4535961d0/0/5BD70FF0C393471CFAF795433474B327BD4832F9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:ee:0f:45:07:e2:29:93:cf:ce:79:fd:7c:d7:e0:cd:0c:8a: 99:4b:7c:9b:e8:58:df:9b:f6:53:96:3e:75:df:b2:37:a2:df: 95:6c:02:2e:d7:51:3b:55:70:be:f4:b7:fc:e5:6a:0a:77:14: 01:de:c9:24:ff:ac:0a:b7:d3:1b:f1:6f:54:e3:0b:d7:07:a4: 36:f6:f7:fc:04:dd:d9:71:d9:84:a2:08:2f:0a:6d:ec:15:15: c7:5e:36:12:6b:81:b4:32:f8:6a:f0:8b:93:96:07:01:2b:c5: 9b:4b:38:aa:80:6b:00:be:a8:28:53:eb:b8:6e:0a:5c:5e:7a: ad:d7:62:4f:ff:bc:53:d0:a8:b6:fe:4a:07:e8:c3:08:fd:e6: f5:ef:1a:e3:87:58:27:1d:61:c1:ae:4d:82:2e:7b:84:fa:1c: 37:2e:8b:7c:58:4b:c1:a9:a7:a1:f2:5b:02:dc:a1:09:2a:1f: c9:c1:b7:3f:5c:83:bd:01:92:52:53:96:e5:10:2a:e3:a4:e7: 4d:4f:93:c3:34:59:6b:72:c1:4c:9f:0a:aa:21:b4:bd:d8:be: d6:a3:d3:3e:31:4d:41:1d:1d:27:8a:54:f2:84:b2:0c:fe:c1: 10:c8:10:f7:9b:15:da:d2:3f:dd:be:2d:49:1b:36:a5:79:08: f0:fb:81:d0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGqap/gKCz12gF1xfIicBl+o8lBEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJENzBGRjBDMzkzNDcxQ0ZBRjc5NTQzMzQ3NEIzMjdC RDQ4MzJGOTAeFw0yNjA2MTMxNDIyMDZaFw0yNjA2MTQxNTE4MDZaMDMxMTAvBgNV BAMTKEY3RUYyMzg1ODM0OUI2QzEyMjdEODk5QTg0NUZGQ0YxNjBERUQ1QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo30e5XosTfPfkFpirYB27auXx jE2DaeHkpBQD9uCPc5EtsfGxmd5vdpdGsJXYwxEc/jmpRgTcXMVXOhILJxh8ejvb Bt/zMcnq9gW61sIwGaXfiKJTaVnOLwTSKeB33v/yYDnebdeh/G4j7i0G1H5tOpCP zWcQEyyYXe96ZA69yl0MK0OSfJZ+c1fzkOrMPRCn/YjhgL+i1iO02stFJSA/RWxy B7SxHzPfYv6cn4yYMhHPHYI5nmks5v4ZsrxQBkDhXUfQGt3XJYWKGEuh9ZugFwDK lTzbEguxGteKpoZ2zOOmAFvnnWQ4rnHNsfat3GnQiWPXjmDQCrZPnlAz8nhzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9+8jhYNJtsEifYmahF/88WDe1awwHwYDVR0j BBgwFoAUW9cP8MOTRxz695VDNHSzJ71IMvkwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDkyNGZhOWEtZTVmMy00MjY1LTllMWQtODRlNDUzNTk2MWQwLzAvNUJENzBGRjBD MzkzNDcxQ0ZBRjc5NTQzMzQ3NEIzMjdCRDQ4MzJGOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS81QkQ3MEZGMEMzOTM0NzFDRkFGNzk1NDMzNDc0QjMyN0JENDgz MkY5LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDkyNGZhOWEtZTVmMy00MjY1LTll MWQtODRlNDUzNTk2MWQwLzAvNUJENzBGRjBDMzkzNDcxQ0ZBRjc5NTQzMzQ3NEIz MjdCRDQ4MzJGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGPuD0UH4imTz855/XzX4M0MiplLfJvoWN+b 9lOWPnXfsjei35VsAi7XUTtVcL70t/zlagp3FAHeyST/rAq30xvxb1TjC9cHpDb2 9/wE3dlx2YSiCC8KbewVFcdeNhJrgbQy+Grwi5OWBwErxZtLOKqAawC+qChT67hu Clxeeq3XYk//vFPQqLb+Sgfowwj95vXvGuOHWCcdYcGuTYIue4T6HDcui3xYS8Gp p6HyWwLcoQkqH8nBtz9cg70BklJTluUQKuOk501Pk8M0WWtywUyfCqohtL3Yvtaj 0z4xTUEdHSeKVPKEsgz+wRDIEPebFdrSP92+LUkbNqV5CPD7gdA= -----END CERTIFICATE-----Generated at Sun Jun 14 04:10:37 2026 by rpki-client