$ rpki-client -vvf rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.mft File: A041DA85A835517127145910FB36AAA5B7CA41F2.mft (raw, json) Hash identifier: gNGXUdq2pfOJbzN0CP1EACDL4TidWsbSRaLKxGV+/BE= Subject key identifier: 7D:F5:C2:B6:1A:03:C1:1D:7A:7F:AE:BC:38:57:C1:95:20:76:AC:EF Authority key identifier: A0:41:DA:85:A8:35:51:71:27:14:59:10:FB:36:AA:A5:B7:CA:41:F2 Certificate issuer: /CN=A041DA85A835517127145910FB36AAA5B7CA41F2 Certificate serial: 40774021A7D98EB5B21C000DFFF2C1E4519ED1A0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A041DA85A835517127145910FB36AAA5B7CA41F2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.mft Manifest number: 3E Signing time: Tue 16 Jun 2026 20:39:10 +0000 Manifest this update: Tue 16 Jun 2026 20:34:10 +0000 Manifest next update: Wed 17 Jun 2026 22:13:10 +0000 Files and hashes: 1: 3136302e32322e3139372e302f32342d3234203d3e20313532383232.roa (hash: cvKGIujNKpn8r6a8rprf+PEz/toRdewoQzshB4q6X84=) 2: 3136302e32322e3139362e302f32342d3234203d3e20313532383232.roa (hash: tY2P809Veb9qnVz+b5sj5T6oUhcFMFNmQj4vHbtiv9U=) 3: A041DA85A835517127145910FB36AAA5B7CA41F2.crl (hash: wKZFrm5SNldZDlI2fU3xyRd43o/TszsfMms27LbEl8Y=) 4: 3136302e32322e3139362e302f32332d3233203d3e20313532383232.roa (hash: vmjqWZXe1WAW716qvYHn6H4tiVZPN9hJplwpeaEOs+c=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.crl rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A041DA85A835517127145910FB36AAA5B7CA41F2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 22:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:77:40:21:a7:d9:8e:b5:b2:1c:00:0d:ff:f2:c1:e4:51:9e:d1:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A041DA85A835517127145910FB36AAA5B7CA41F2 Validity Not Before: Jun 16 20:34:10 2026 GMT Not After : Jun 17 22:13:10 2026 GMT Subject: CN=7DF5C2B61A03C11D7A7FAEBC3857C1952076ACEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4d:ad:de:3e:76:6c:93:6d:f6:2e:eb:84:72: 56:17:b5:26:df:2c:3c:b5:ab:33:60:67:37:ca:16: ed:5b:72:91:55:41:86:ab:23:34:c4:2f:e7:3a:e0: 06:02:68:7e:18:97:f1:25:5b:39:5f:e1:f3:3f:88: c2:84:04:ee:79:ae:4c:6f:c9:89:e7:fb:1b:92:d8: 94:3e:0f:71:a8:c3:1a:4a:56:a8:c0:09:b1:bb:de: a8:77:7c:61:91:98:be:12:f3:11:ff:ad:f0:a3:4e: 2b:df:4d:5e:eb:d3:7d:0b:d5:c4:e5:52:26:77:f4: e3:1e:35:bd:b9:86:3f:10:78:5b:b2:91:06:6e:ae: f7:61:4b:43:ff:31:d5:e5:07:24:c4:73:f5:ac:1c: 4b:5d:c5:0d:4f:22:d6:30:5e:01:5e:3b:aa:49:ec: 2b:ad:68:bd:ae:91:8c:e7:01:7d:2e:c7:ba:f7:3b: 99:fe:39:f0:77:0d:8b:0b:19:86:c4:7c:64:e2:0d: b3:91:1f:6a:00:fc:ee:00:a4:2e:9c:85:9a:06:4a: e5:20:b1:ae:4e:ed:5a:a0:d4:7d:4c:53:45:ad:ce: fa:f2:c8:f4:55:7a:23:95:37:1d:75:1a:38:cc:1e: 6f:16:3e:bb:0d:a3:f6:09:6a:00:20:fa:10:24:e9: 3d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:F5:C2:B6:1A:03:C1:1D:7A:7F:AE:BC:38:57:C1:95:20:76:AC:EF X509v3 Authority Key Identifier: keyid:A0:41:DA:85:A8:35:51:71:27:14:59:10:FB:36:AA:A5:B7:CA:41:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/A041DA85A835517127145910FB36AAA5B7CA41F2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/df1a0df6-1d3a-4bcc-b3d1-64695f87e37f/0/A041DA85A835517127145910FB36AAA5B7CA41F2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:04:14:d1:0c:85:69:c0:05:9d:a1:41:fc:f7:13:49:6c:ad: 64:3a:a8:dd:64:ea:80:7f:27:b1:db:c9:5d:06:f8:28:71:6c: 4e:72:cb:65:12:b6:0e:37:2c:5d:9c:be:ef:d4:52:60:6d:52: a3:d2:6d:82:d1:83:14:ee:45:37:15:66:57:12:21:94:1a:93: 16:ee:69:c9:fe:59:f1:12:80:53:96:42:2f:2e:f1:da:6f:6e: 62:28:3e:30:a1:3a:fc:d6:89:09:c9:37:6d:d7:ad:3a:48:93: 26:ea:05:29:62:e6:48:d8:f4:c1:cc:7b:d2:8c:1c:d1:07:6e: 83:a4:bf:a3:66:9e:f6:68:a2:ce:1e:04:bf:2d:0c:44:3b:58: e0:86:32:56:38:5b:b8:d4:58:12:52:fa:ae:4f:67:b0:e1:2f: 40:1d:bb:b9:54:31:3b:aa:b5:fc:c3:5f:12:72:22:ef:80:a6: 4e:8c:4a:b0:95:9b:aa:6a:3b:99:87:9c:e9:a0:d7:53:89:3b: b9:5c:e5:d6:42:8b:97:fd:9d:bc:a8:66:15:0d:37:8d:b8:06: 7a:4a:ef:72:44:08:82:e3:59:b3:eb:cd:9c:08:5f:61:0a:02: f1:e5:22:ad:8d:81:db:5a:17:a7:b9:95:02:58:47:df:c7:7a: 12:c1:18:82 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQHdAIafZjrWyHAAN//LB5FGe0aAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA0MURBODVBODM1NTE3MTI3MTQ1OTEwRkIzNkFBQTVC N0NBNDFGMjAeFw0yNjA2MTYyMDM0MTBaFw0yNjA2MTcyMjEzMTBaMDMxMTAvBgNV BAMTKDdERjVDMkI2MUEwM0MxMUQ3QTdGQUVCQzM4NTdDMTk1MjA3NkFDRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Ta3ePnZsk232LuuEclYXtSbf LDy1qzNgZzfKFu1bcpFVQYarIzTEL+c64AYCaH4Yl/ElWzlf4fM/iMKEBO55rkxv yYnn+xuS2JQ+D3GowxpKVqjACbG73qh3fGGRmL4S8xH/rfCjTivfTV7r030L1cTl UiZ39OMeNb25hj8QeFuykQZurvdhS0P/MdXlByTEc/WsHEtdxQ1PItYwXgFeO6pJ 7CutaL2ukYznAX0ux7r3O5n+OfB3DYsLGYbEfGTiDbORH2oA/O4ApC6chZoGSuUg sa5O7Vqg1H1MU0WtzvryyPRVeiOVNx11GjjMHm8WPrsNo/YJagAg+hAk6T1dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUffXCthoDwR16f668OFfBlSB2rO8wHwYDVR0j BBgwFoAUoEHahag1UXEnFFkQ+zaqpbfKQfIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGYxYTBkZjYtMWQzYS00YmNjLWIzZDEtNjQ2OTVmODdlMzdmLzAvQTA0MURBODVB ODM1NTE3MTI3MTQ1OTEwRkIzNkFBQTVCN0NBNDFGMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9BMDQxREE4NUE4MzU1MTcxMjcxNDU5MTBGQjM2QUFBNUI3Q0E0 MUYyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZGYxYTBkZjYtMWQzYS00YmNjLWIz ZDEtNjQ2OTVmODdlMzdmLzAvQTA0MURBODVBODM1NTE3MTI3MTQ1OTEwRkIzNkFB QTVCN0NBNDFGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI4EFNEMhWnABZ2hQfz3E0lsrWQ6qN1k6oB/ J7HbyV0G+ChxbE5yy2UStg43LF2cvu/UUmBtUqPSbYLRgxTuRTcVZlcSIZQakxbu acn+WfESgFOWQi8u8dpvbmIoPjChOvzWiQnJN23XrTpIkybqBSli5kjY9MHMe9KM HNEHboOkv6NmnvZoos4eBL8tDEQ7WOCGMlY4W7jUWBJS+q5PZ7DhL0Adu7lUMTuq tfzDXxJyIu+Apk6MSrCVm6pqO5mHnOmg11OJO7lc5dZCi5f9nbyoZhUNN424BnpK 73JECILjWbPrzZwIX2EKAvHlIq2NgdtaF6e5lQJYR9/HehLBGII= -----END CERTIFICATE-----Generated at Wed Jun 17 09:43:35 2026 by rpki-client