$ rpki-client -vvf rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft File: 662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft (raw, json) Hash identifier: KCH+pYsFk7e48mMNhx2nYc+6Dz+bp+RO0CLc1wPOFfs= Subject key identifier: 4E:53:F4:BE:1D:68:2E:1F:32:A0:3F:8A:57:A4:69:01:03:A2:CD:51 Authority key identifier: 66:2A:1D:1F:0B:83:DC:EA:C7:3D:97:35:14:97:9A:17:03:FA:9E:28 Certificate issuer: /CN=662A1D1F0B83DCEAC73D973514979A1703FA9E28 Certificate serial: 4F63CB8DDF267AD2B8563603D0EFFBDDD3174DC6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft Manifest number: 39 Signing time: Sat 13 Jun 2026 05:30:36 +0000 Manifest this update: Sat 13 Jun 2026 05:25:36 +0000 Manifest next update: Sun 14 Jun 2026 06:57:36 +0000 Files and hashes: 1: 662A1D1F0B83DCEAC73D973514979A1703FA9E28.crl (hash: pVQOCDNt0MuNJgd/mB/Nd7SYMkZKOi3KXaOeibpCQuQ=) 2: 3230322e3135332e3232342e302f31392d3234203d3e2039333430.roa (hash: thp9e79q4pO0KAuvlYoAaJIJd+/sNGpgdctK2HpTH70=) 3: 3230322e3135392e302e302f31382d3234203d3e2039333430.roa (hash: IfGffrMHINPuRfD4RL+78GjC4IFDiYDYpPLVDptGnC4=) 4: 3230322e35332e3232342e302f31392d3234203d3e2039333430.roa (hash: PJEb98fYS4vg3BBgZ6XrL5za6qVUTLmXWj6MOSgyH3k=) 5: 3230322e3135392e35302e302f32332d3234203d3e203435373239.roa (hash: 0DjkrTA9ouNvrCsdojisPz41tYiFCwdDrjUDolphH5E=) 6: 3230322e3135392e39362e302f31392d3234203d3e2039333430.roa (hash: wQj10i6uxR8PMgl15oZaZmKj6Dkq8me1CXWhGz38VZw=) 7: 3131372e35342e302e302f31362d3234203d3e2039333430.roa (hash: NybJNfrfr/FQtxQSfpzK5NCbywm4KAHMLV7iC5XOQDQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.crl rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 06:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:63:cb:8d:df:26:7a:d2:b8:56:36:03:d0:ef:fb:dd:d3:17:4d:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=662A1D1F0B83DCEAC73D973514979A1703FA9E28 Validity Not Before: Jun 13 05:25:36 2026 GMT Not After : Jun 14 06:57:36 2026 GMT Subject: CN=4E53F4BE1D682E1F32A03F8A57A4690103A2CD51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5d:bf:a0:c5:de:6d:ba:d0:16:76:53:f8:90: 1a:39:41:83:11:55:16:92:86:77:ec:9c:bd:9c:84: 23:84:cf:d7:26:18:ca:06:35:8f:34:26:2d:b5:3a: 1b:2f:33:fa:e9:af:e1:53:c4:b4:d8:39:4a:a1:64: 99:cd:bb:9c:b7:a4:92:d5:ce:c6:e1:95:4b:68:d4: 79:f0:e2:59:ff:87:ae:2e:c4:5e:79:7e:15:c6:6c: be:fe:8f:8a:e9:25:67:0c:58:cb:20:09:9d:3b:e2: 07:33:26:9f:1d:0e:24:33:70:ca:51:80:f4:e0:a5: 4b:d1:ad:49:e7:87:17:cc:06:43:c8:8f:1d:3e:51: bb:0b:60:ef:ba:c7:a7:23:07:f1:63:85:5a:5b:f4: bb:ed:62:38:40:fe:7b:12:5a:8c:ac:c0:45:bf:78: 14:41:27:e6:0a:1e:c5:39:dc:f1:df:9f:b2:81:6a: 0c:be:a2:51:5f:b9:81:d1:30:ea:b7:e5:97:0f:8c: 15:b0:1e:c8:03:df:28:46:6e:2d:d8:17:40:14:55: 64:dd:7c:7f:68:f8:78:47:72:10:77:ff:5c:ba:4f: 97:3e:d3:12:d4:37:74:ae:a5:23:60:ba:fd:59:c7: 63:4a:b8:14:2d:45:33:9d:10:0f:b3:85:b5:11:46: d2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:53:F4:BE:1D:68:2E:1F:32:A0:3F:8A:57:A4:69:01:03:A2:CD:51 X509v3 Authority Key Identifier: keyid:66:2A:1D:1F:0B:83:DC:EA:C7:3D:97:35:14:97:9A:17:03:FA:9E:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:23:59:a0:19:85:b3:96:91:0b:b5:2f:3d:d6:14:83:d3:87: 65:11:74:5a:8f:91:89:79:f1:27:5a:38:4d:75:0d:8a:c8:2f: 11:fd:2e:a0:28:ad:9c:9b:c0:af:7c:fa:05:1b:ca:69:ca:7b: c5:a1:36:0c:0e:6b:dc:f5:94:2a:6d:e0:28:69:1a:ab:fe:55: 62:ac:ac:c3:b2:23:26:7f:f1:40:0f:be:63:fe:7c:aa:52:1f: d5:bb:d7:20:23:bb:e0:00:ff:39:f8:3d:e9:75:a1:b0:c4:b6: c2:05:39:ce:38:8d:06:2f:23:7f:8f:54:77:b1:e8:d1:d4:eb: f9:50:44:6f:7d:ec:26:17:32:be:06:0e:f5:47:b9:d9:e2:93: 87:30:63:ec:92:11:16:e1:a4:4f:66:bd:91:c6:85:62:b4:a8: 05:6c:0d:7b:ad:62:7b:b6:e4:34:81:52:21:35:d6:c4:53:95: 76:69:67:4c:d8:de:19:2e:bc:34:48:30:5e:d0:a8:02:24:5b: f6:4a:4d:1c:50:a9:0c:88:b7:ae:4b:fd:10:24:27:4e:1e:37: 1f:a2:49:cd:68:f4:ce:ea:7d:7d:2d:67:d6:68:45:e7:8b:ad: 48:f4:e5:dd:d7:ef:9b:51:c7:44:1f:d7:39:4c:48:41:b2:dc: 1b:6b:3d:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT2PLjd8metK4VjYD0O/73dMXTcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjYyQTFEMUYwQjgzRENFQUM3M0Q5NzM1MTQ5NzlBMTcw M0ZBOUUyODAeFw0yNjA2MTMwNTI1MzZaFw0yNjA2MTQwNjU3MzZaMDMxMTAvBgNV BAMTKDRFNTNGNEJFMUQ2ODJFMUYzMkEwM0Y4QTU3QTQ2OTAxMDNBMkNENTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoXb+gxd5tutAWdlP4kBo5QYMR VRaShnfsnL2chCOEz9cmGMoGNY80Ji21OhsvM/rpr+FTxLTYOUqhZJnNu5y3pJLV zsbhlUto1Hnw4ln/h64uxF55fhXGbL7+j4rpJWcMWMsgCZ074gczJp8dDiQzcMpR gPTgpUvRrUnnhxfMBkPIjx0+UbsLYO+6x6cjB/FjhVpb9LvtYjhA/nsSWoyswEW/ eBRBJ+YKHsU53PHfn7KBagy+olFfuYHRMOq35ZcPjBWwHsgD3yhGbi3YF0AUVWTd fH9o+HhHchB3/1y6T5c+0xLUN3SupSNguv1Zx2NKuBQtRTOdEA+zhbURRtLvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTlP0vh1oLh8yoD+KV6RpAQOizVEwHwYDVR0j BBgwFoAUZiodHwuD3OrHPZc1FJeaFwP6nigwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTViMWU1N2UtYTBmMS00NjdmLWE0NmYtNTVhMzE1N2IwZDY1LzAvNjYyQTFEMUYw QjgzRENFQUM3M0Q5NzM1MTQ5NzlBMTcwM0ZBOUUyOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NjJBMUQxRjBCODNEQ0VBQzczRDk3MzUxNDk3OUExNzAzRkE5 RTI4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZTViMWU1N2UtYTBmMS00NjdmLWE0 NmYtNTVhMzE1N2IwZDY1LzAvNjYyQTFEMUYwQjgzRENFQUM3M0Q5NzM1MTQ5NzlB MTcwM0ZBOUUyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIMjWaAZhbOWkQu1Lz3WFIPTh2URdFqPkYl5 8SdaOE11DYrILxH9LqAorZybwK98+gUbymnKe8WhNgwOa9z1lCpt4ChpGqv+VWKs rMOyIyZ/8UAPvmP+fKpSH9W71yAju+AA/zn4Pel1obDEtsIFOc44jQYvI3+PVHex 6NHU6/lQRG997CYXMr4GDvVHudnik4cwY+ySERbhpE9mvZHGhWK0qAVsDXutYnu2 5DSBUiE11sRTlXZpZ0zY3hkuvDRIMF7QqAIkW/ZKTRxQqQyIt65L/RAkJ04eNx+i Sc1o9M7qfX0tZ9ZoReeLrUj05d3X75tRx0Qf1zlMSEGy3BtrPf0= -----END CERTIFICATE-----Generated at Sat Jun 13 17:39:06 2026 by rpki-client