$ rpki-client -vvf rpki-rsync.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/86E48412E2794F23453AA6C42466D4F6BB140BF3.mft File: 86E48412E2794F23453AA6C42466D4F6BB140BF3.mft (raw, json) Hash identifier: 6gHFVZDs3RNw/aaZw83UBBMvWnz8oWPrbgTtQ+FyhQg= Subject key identifier: A4:42:A3:C4:BF:3D:E7:08:EF:4E:D8:DB:7E:1E:3F:A3:DA:2D:4B:75 Authority key identifier: 86:E4:84:12:E2:79:4F:23:45:3A:A6:C4:24:66:D4:F6:BB:14:0B:F3 Certificate issuer: /CN=86E48412E2794F23453AA6C42466D4F6BB140BF3 Certificate serial: 3BC9E707801385F0FE524C0389B32F0E5DE65924 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/86E48412E2794F23453AA6C42466D4F6BB140BF3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/86E48412E2794F23453AA6C42466D4F6BB140BF3.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 15:23:37 +0000 Manifest this update: Tue 02 Jun 2026 15:18:37 +0000 Manifest next update: Wed 03 Jun 2026 16:58:37 +0000 Files and hashes: 1: 86E48412E2794F23453AA6C42466D4F6BB140BF3.crl (hash: U8xFUbaj41TC9vUz5zTI3k/Rte95CD2Gjt13oUjTtX0=) 2: 3130332e312e35302e302f32332d3233203d3e20313432333532.roa (hash: WkCdOFNVSI5rk7RbyP6H8qiF2D1vxHG5abEVefnC5z0=) 3: 3130332e312e35312e302f32342d3234203d3e20313432333532.roa (hash: h4rEvajucquztFw9Gur1NLOrixjikXkabRvpRGsZe/g=) 4: 3130332e312e35302e302f32342d3234203d3e20313432333532.roa (hash: CQAOmVL0BeVkZhMKlloB0D2ChI2dfaXB8o923+9beY0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/86E48412E2794F23453AA6C42466D4F6BB140BF3.crl rsync://rpki-rsync.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/86E48412E2794F23453AA6C42466D4F6BB140BF3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/86E48412E2794F23453AA6C42466D4F6BB140BF3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 16:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c9:e7:07:80:13:85:f0:fe:52:4c:03:89:b3:2f:0e:5d:e6:59:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86E48412E2794F23453AA6C42466D4F6BB140BF3 Validity Not Before: Jun 2 15:18:37 2026 GMT Not After : Jun 3 16:58:37 2026 GMT Subject: CN=A442A3C4BF3DE708EF4ED8DB7E1E3FA3DA2D4B75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b8:33:32:2c:99:28:2f:72:e7:75:92:47:12: 6d:d5:4e:e8:72:e3:c4:6c:1b:bc:e5:d3:15:9f:e6: da:a5:e3:f0:1b:ae:55:93:a7:e1:fb:f3:d8:4d:5f: 32:98:e2:da:12:81:26:f5:28:06:e5:b3:c7:76:27: b0:4e:af:bf:ed:e8:9e:4c:c9:38:70:fc:a6:d6:23: f1:bc:9d:f8:0a:02:3b:96:1b:e9:40:76:21:df:1c: b0:d4:b9:ac:6a:b9:bd:f5:f6:78:9a:7e:b3:d3:2f: 42:00:46:8e:9b:33:c1:55:69:2c:c1:a8:1a:9e:1f: 66:7f:ed:a0:03:df:fb:3c:13:74:fc:51:8f:a9:2f: 86:ec:d1:0a:c2:7d:75:a0:0b:6f:ec:27:d9:91:cc: 3a:59:7b:61:e9:f2:df:1b:82:5e:94:b2:17:99:ec: f5:0e:4e:b6:5a:f5:3e:90:eb:54:f4:52:4e:41:83: e8:51:4e:14:05:a3:aa:60:51:4d:a0:0a:5f:24:77: f9:09:3e:a4:79:65:fe:ac:96:c8:b8:94:82:ca:bb: a7:d5:ea:28:2d:40:a3:dd:c2:50:63:73:61:57:b9: 5d:65:e3:8d:33:a2:fc:36:3b:13:56:97:68:81:e7: 2d:70:40:c9:61:a4:4d:29:76:87:c3:f3:fa:05:2d: 59:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:42:A3:C4:BF:3D:E7:08:EF:4E:D8:DB:7E:1E:3F:A3:DA:2D:4B:75 X509v3 Authority Key Identifier: keyid:86:E4:84:12:E2:79:4F:23:45:3A:A6:C4:24:66:D4:F6:BB:14:0B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/86E48412E2794F23453AA6C42466D4F6BB140BF3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/86E48412E2794F23453AA6C42466D4F6BB140BF3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b652bf9c-634b-40b9-ac0c-a87b47d59f91/0/86E48412E2794F23453AA6C42466D4F6BB140BF3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:01:fe:21:0a:c9:16:a5:57:dc:c1:8a:4d:c6:38:dd:64:44: 2f:6f:08:12:28:cc:9d:95:f4:b6:f9:44:42:da:7e:3a:5a:b3: f6:be:e8:f0:64:39:4b:62:b7:81:6e:15:a5:f7:7f:0d:f8:e0: ac:67:77:59:83:ad:6b:49:cf:ab:50:71:24:2d:51:4d:40:6f: 09:5c:32:c9:da:ad:aa:6e:88:78:9a:45:64:75:54:5d:ec:61: a0:2c:e5:9f:9b:c0:fb:ff:21:7e:a8:86:81:71:9c:59:fa:e8: 20:59:6f:77:a1:bf:44:5b:86:fd:c0:9e:05:6d:92:b1:b5:f7: 05:99:8d:56:b9:5a:93:12:83:96:06:b8:0e:05:15:22:9f:b3: c4:a8:a5:02:04:e6:0c:ce:ed:3f:f6:32:3d:cc:f4:80:58:70: 10:0f:6b:e3:d8:f8:db:7c:09:2d:d7:7c:02:dd:bf:45:db:88: 57:8c:29:21:41:0d:bf:6e:75:ec:13:83:94:a8:5d:bc:14:30: d1:cf:1b:b5:9d:40:c2:bb:f1:51:dc:d3:08:1d:90:ef:a4:20: 69:5d:83:39:12:9b:f7:00:4a:5b:3b:50:85:e9:e5:3e:58:25: 31:01:b9:4e:95:1f:b7:d4:23:f6:61:81:24:06:15:3d:14:22: 88:ec:44:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO8nnB4AThfD+UkwDibMvDl3mWSQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZFNDg0MTJFMjc5NEYyMzQ1M0FBNkM0MjQ2NkQ0RjZC QjE0MEJGMzAeFw0yNjA2MDIxNTE4MzdaFw0yNjA2MDMxNjU4MzdaMDMxMTAvBgNV BAMTKEE0NDJBM0M0QkYzREU3MDhFRjRFRDhEQjdFMUUzRkEzREEyRDRCNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkuDMyLJkoL3LndZJHEm3VTuhy 48RsG7zl0xWf5tql4/AbrlWTp+H789hNXzKY4toSgSb1KAbls8d2J7BOr7/t6J5M yThw/KbWI/G8nfgKAjuWG+lAdiHfHLDUuaxqub319niafrPTL0IARo6bM8FVaSzB qBqeH2Z/7aAD3/s8E3T8UY+pL4bs0QrCfXWgC2/sJ9mRzDpZe2Hp8t8bgl6UsheZ 7PUOTrZa9T6Q61T0Uk5Bg+hRThQFo6pgUU2gCl8kd/kJPqR5Zf6slsi4lILKu6fV 6igtQKPdwlBjc2FXuV1l440zovw2OxNWl2iB5y1wQMlhpE0pdofD8/oFLVkVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpEKjxL895wjvTtjbfh4/o9otS3UwHwYDVR0j BBgwFoAUhuSEEuJ5TyNFOqbEJGbU9rsUC/MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjY1MmJmOWMtNjM0Yi00MGI5LWFjMGMtYTg3YjQ3ZDU5ZjkxLzAvODZFNDg0MTJF Mjc5NEYyMzQ1M0FBNkM0MjQ2NkQ0RjZCQjE0MEJGMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NkU0ODQxMkUyNzk0RjIzNDUzQUE2QzQyNDY2RDRGNkJCMTQw QkYzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjY1MmJmOWMtNjM0Yi00MGI5LWFj MGMtYTg3YjQ3ZDU5ZjkxLzAvODZFNDg0MTJFMjc5NEYyMzQ1M0FBNkM0MjQ2NkQ0 RjZCQjE0MEJGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJQB/iEKyRalV9zBik3GON1kRC9vCBIozJ2V 9Lb5RELafjpas/a+6PBkOUtit4FuFaX3fw344Kxnd1mDrWtJz6tQcSQtUU1Abwlc MsnarapuiHiaRWR1VF3sYaAs5Z+bwPv/IX6ohoFxnFn66CBZb3ehv0Rbhv3AngVt krG19wWZjVa5WpMSg5YGuA4FFSKfs8SopQIE5gzO7T/2Mj3M9IBYcBAPa+PY+Nt8 CS3XfALdv0XbiFeMKSFBDb9udewTg5SoXbwUMNHPG7WdQMK78VHc0wgdkO+kIGld gzkSm/cASls7UIXp5T5YJTEBuU6VH7fUI/ZhgSQGFT0UIojsRLc= -----END CERTIFICATE-----Generated at Wed Jun 3 04:23:44 2026 by rpki-client