$ rpki-client -vvf rpki-rsync.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.mft File: 09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.mft (raw, json) Hash identifier: LxQ8WoFnt+nz6p9im9YilsSW7lZ9+q3YWnalA1vyH+U= Subject key identifier: 1D:DE:C5:97:2A:7E:2D:21:AA:41:81:88:A5:32:47:1E:C3:FD:2A:19 Authority key identifier: 09:C4:BA:8A:F7:41:A5:1F:DD:8C:55:09:17:C9:6D:39:5C:BE:0F:FD Certificate issuer: /CN=09C4BA8AF741A51FDD8C550917C96D395CBE0FFD Certificate serial: 58956DD1D874B2AC7377F2FA8729D7F709CFA115 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.mft Manifest number: 2B Signing time: Wed 03 Jun 2026 01:06:05 +0000 Manifest this update: Wed 03 Jun 2026 01:01:05 +0000 Manifest next update: Thu 04 Jun 2026 03:23:05 +0000 Files and hashes: 1: 3131332e32302e3133362e302f32312d3234203d3e203435373136.roa (hash: 9Dp0sbY0tRdXCsPfX1Bi/rh765yhn92aMlIVBuucvDU=) 2: 09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.crl (hash: Lq1zO6pniL8kUitBCyyofvqet9WKk14By343gtXKEbc=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.crl rsync://rpki-rsync.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 03:23:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:95:6d:d1:d8:74:b2:ac:73:77:f2:fa:87:29:d7:f7:09:cf:a1:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09C4BA8AF741A51FDD8C550917C96D395CBE0FFD Validity Not Before: Jun 3 01:01:05 2026 GMT Not After : Jun 4 03:23:05 2026 GMT Subject: CN=1DDEC5972A7E2D21AA418188A532471EC3FD2A19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:bf:38:c4:5b:ad:8b:bd:73:37:a5:bf:0b:82: 7e:0d:e5:82:4c:f9:cd:24:5d:6c:2b:1a:38:3a:76: 8f:38:1e:6c:98:ba:e7:95:51:c1:9b:bf:a1:cc:fa: 04:f3:d9:ec:0c:35:d8:d1:b9:31:b4:21:e7:13:c8: 4e:d3:00:ad:f6:c0:61:50:11:70:99:f2:7e:ae:e1: a7:4c:37:dc:80:ba:10:f9:d2:4b:83:1e:93:75:5a: c9:50:af:72:f0:d6:4f:97:2a:9a:00:9c:de:14:a2: ca:60:89:20:95:0e:fe:cd:35:7f:7c:8d:cc:da:8c: f4:8a:19:7f:4a:f8:c8:54:14:f7:d8:01:3c:f3:97: 7e:1d:ab:93:4e:13:56:c4:9a:a0:f0:d9:6f:71:16: f9:01:be:d1:62:0b:32:1a:b8:24:55:98:a5:23:bd: 1b:fb:f1:98:09:87:df:59:1e:f8:cf:0b:4e:d5:92: 65:08:1c:fe:f6:78:cb:6d:06:08:5b:04:80:06:64: 57:35:fa:7d:b6:6e:c2:e9:e5:56:3a:0e:18:98:ec: 67:71:3d:12:83:c7:f8:2d:b9:b4:2b:c6:ce:da:84: 9d:f5:08:3d:d9:64:0b:87:00:b6:3c:af:02:aa:05: 40:25:48:8c:c6:6f:73:70:70:de:bb:da:3c:58:a1: 01:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:DE:C5:97:2A:7E:2D:21:AA:41:81:88:A5:32:47:1E:C3:FD:2A:19 X509v3 Authority Key Identifier: keyid:09:C4:BA:8A:F7:41:A5:1F:DD:8C:55:09:17:C9:6D:39:5C:BE:0F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/59af00ec-d083-4a9f-821f-7da18f815417/0/09C4BA8AF741A51FDD8C550917C96D395CBE0FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:b6:36:e4:3e:18:6e:73:65:2a:ad:86:25:0e:68:bd:48:74: 20:b7:e9:84:81:29:65:ba:94:e5:13:a0:bb:84:f5:4a:0e:c3: 9a:35:56:93:c5:e3:59:47:3b:8c:7a:2c:68:d1:02:24:a9:d5: a4:e3:4c:86:a1:e3:b4:1d:ba:8f:6f:b2:d9:24:2c:92:86:eb: e2:7d:33:fe:2e:c3:8a:73:f0:99:11:cd:b4:03:0b:55:e1:09: ef:22:b5:28:f8:64:73:5b:f8:be:7f:e7:63:f4:d9:94:32:28: c5:21:cd:3c:45:19:80:4a:5e:cb:39:4d:8b:aa:92:da:1c:ce: 25:1b:8a:5d:8d:98:d4:55:3d:70:44:79:f2:67:b7:1a:02:ab: 03:af:9b:65:3c:65:b7:4f:79:e4:0b:e2:09:72:ac:93:47:bc: 40:31:e9:f3:be:6c:21:54:99:5c:01:b5:30:24:f3:45:30:55: 45:b8:63:b3:c4:be:83:9b:8f:28:a3:41:57:98:4b:85:e4:0b: a6:7e:56:01:85:8b:f1:8e:a3:b4:a8:eb:29:d0:d8:3b:b4:7c: 13:b8:2d:13:ee:45:c2:c4:9e:56:9d:72:dd:da:4e:1f:95:80: a8:aa:e2:7b:64:56:bb:a9:fe:77:7c:6d:02:a0:4e:eb:30:7f: 84:3a:8a:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWJVt0dh0sqxzd/L6hynX9wnPoRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDlDNEJBOEFGNzQxQTUxRkREOEM1NTA5MTdDOTZEMzk1 Q0JFMEZGRDAeFw0yNjA2MDMwMTAxMDVaFw0yNjA2MDQwMzIzMDVaMDMxMTAvBgNV BAMTKDFEREVDNTk3MkE3RTJEMjFBQTQxODE4OEE1MzI0NzFFQzNGRDJBMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWvzjEW62LvXM3pb8Lgn4N5YJM +c0kXWwrGjg6do84HmyYuueVUcGbv6HM+gTz2ewMNdjRuTG0IecTyE7TAK32wGFQ EXCZ8n6u4adMN9yAuhD50kuDHpN1WslQr3Lw1k+XKpoAnN4UospgiSCVDv7NNX98 jczajPSKGX9K+MhUFPfYATzzl34dq5NOE1bEmqDw2W9xFvkBvtFiCzIauCRVmKUj vRv78ZgJh99ZHvjPC07VkmUIHP72eMttBghbBIAGZFc1+n22bsLp5VY6DhiY7Gdx PRKDx/gtubQrxs7ahJ31CD3ZZAuHALY8rwKqBUAlSIzGb3NwcN672jxYoQHNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHd7Flyp+LSGqQYGIpTJHHsP9KhkwHwYDVR0j BBgwFoAUCcS6ivdBpR/djFUJF8ltOVy+D/0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTlhZjAwZWMtZDA4My00YTlmLTgyMWYtN2RhMThmODE1NDE3LzAvMDlDNEJBOEFG NzQxQTUxRkREOEM1NTA5MTdDOTZEMzk1Q0JFMEZGRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wOUM0QkE4QUY3NDFBNTFGREQ4QzU1MDkxN0M5NkQzOTVDQkUw RkZELmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNTlhZjAwZWMtZDA4My00YTlmLTgy MWYtN2RhMThmODE1NDE3LzAvMDlDNEJBOEFGNzQxQTUxRkREOEM1NTA5MTdDOTZE Mzk1Q0JFMEZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADy2NuQ+GG5zZSqthiUOaL1IdCC36YSBKWW6 lOUToLuE9UoOw5o1VpPF41lHO4x6LGjRAiSp1aTjTIah47Qduo9vstkkLJKG6+J9 M/4uw4pz8JkRzbQDC1XhCe8itSj4ZHNb+L5/52P02ZQyKMUhzTxFGYBKXss5TYuq ktocziUbil2NmNRVPXBEefJntxoCqwOvm2U8ZbdPeeQL4glyrJNHvEAx6fO+bCFU mVwBtTAk80UwVUW4Y7PEvoObjyijQVeYS4XkC6Z+VgGFi/GOo7So6ynQ2Du0fBO4 LRPuRcLEnladct3aTh+VgKiq4ntkVrup/nd8bQKgTuswf4Q6ir8= -----END CERTIFICATE-----Generated at Wed Jun 3 04:15:25 2026 by rpki-client