$ rpki-client -vvf rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft File: 039655B785EC7CB007D8EC3057559737EDFECF68.mft (raw, json) Hash identifier: m8lla7nR2+WHL3e7PQsTYidWvegP2MEZJ38/gPXClSk= Subject key identifier: 16:DE:E3:64:7F:78:BF:FC:B3:9F:0C:59:3F:57:0B:13:D5:1E:55:8A Authority key identifier: 03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 Certificate issuer: /CN=039655B785EC7CB007D8EC3057559737EDFECF68 Certificate serial: 35E67352E6E26B3A204ACD57D8B7598E6327A194 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 22:12:42 +0000 Manifest this update: Tue 02 Jun 2026 22:07:42 +0000 Manifest next update: Thu 04 Jun 2026 00:04:42 +0000 Files and hashes: 1: 3130332e34312e3230362e302f32342d3234203d3e203538333937.roa (hash: ODnRKml3wmOVpjtW+xC+dZC5mmMJA71SJG7/VtBibyg=) 2: 3131372e35332e3134392e302f32342d3234203d3e203538333937.roa (hash: YWldloNKuf6nODMaL6FjFspEktId/aPkL38Pfe/uoXQ=) 3: 3130332e34312e3230352e302f32342d3234203d3e203538333937.roa (hash: fDqmdlGGzbZKwo2TG5DvyQfQjo71DsLK4B+BzK5Vb+Q=) 4: 3131372e35332e3134382e302f32342d3234203d3e203538333937.roa (hash: C5UaoWndqT8fkT/kUA+ky572u7b6+Zi84mEQVPG7UEk=) 5: 039655B785EC7CB007D8EC3057559737EDFECF68.crl (hash: 2S8wJXVRSYnUbh5u+GObmmOk13xNLHiibjHyk2st6WI=) 6: 3130332e34312e3230372e302f32342d3234203d3e203538333937.roa (hash: eQfKLmnoRcKmmSMjm7w1dd94t1neaLfEfU1VX6jNzeU=) 7: 3130332e34312e3230342e302f32342d3234203d3e203538333937.roa (hash: 7J+fQcGnrWcJgu4AWb0Pueoldil+uuzO3rZSOi/YFCY=) 8: 3131372e35332e3135312e302f32342d3234203d3e203538333937.roa (hash: wuckQGhSeNjfJUeUi1bzWu9XgRdVcXHbLO7uAW4Bwoo=) 9: 3131372e35332e3135302e302f32342d3234203d3e203538333937.roa (hash: Mw5Rq159HgAFkzwo+iOGAJH0lBRwzFfI8gCzOg4CwLQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:e6:73:52:e6:e2:6b:3a:20:4a:cd:57:d8:b7:59:8e:63:27:a1:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=039655B785EC7CB007D8EC3057559737EDFECF68 Validity Not Before: Jun 2 22:07:42 2026 GMT Not After : Jun 4 00:04:42 2026 GMT Subject: CN=16DEE3647F78BFFCB39F0C593F570B13D51E558A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:55:8a:09:06:f9:19:66:bc:46:3e:67:59: 65:92:12:df:90:ee:23:4b:07:0f:d7:cf:5e:3d:19: 4c:b5:36:17:90:23:f4:9a:71:76:e6:c6:22:a5:4b: b8:a5:b8:b9:35:39:8a:8e:69:5e:ef:dd:4a:81:0a: 7a:50:b3:0c:b6:f4:74:b0:21:be:2b:bd:ef:36:ab: e6:bf:f9:78:7b:86:99:9f:ab:64:1c:fc:f7:d7:1b: 6b:b0:23:56:5b:cf:6b:f7:0f:35:2d:c9:ab:d9:ca: e4:77:dc:8d:6d:2f:4d:2c:8f:08:fd:da:15:1c:f6: 9e:7c:ad:30:a0:86:dd:5b:f6:70:df:fd:b5:61:e9: e2:f7:18:71:63:cb:6c:d8:20:ad:a3:72:6d:ce:dd: 72:2d:96:af:ea:7f:f0:f1:77:a1:e0:37:6c:5e:5f: 2f:12:37:d2:41:e8:dc:f2:32:06:dd:bf:36:e3:43: 1b:59:4b:34:24:1d:7b:9a:84:90:1b:b1:70:2b:25: 0b:ec:ce:29:18:3b:d9:ce:86:0f:4a:25:fd:c6:b9: 66:33:0c:04:8e:6e:87:0e:2c:34:12:1a:3c:fa:65: 04:3b:e5:cc:42:ef:f6:30:6f:f5:cd:e1:5f:32:ce: 33:e6:ba:87:e5:3c:99:67:4f:4c:5f:93:64:37:08: 22:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DE:E3:64:7F:78:BF:FC:B3:9F:0C:59:3F:57:0B:13:D5:1E:55:8A X509v3 Authority Key Identifier: keyid:03:96:55:B7:85:EC:7C:B0:07:D8:EC:30:57:55:97:37:ED:FE:CF:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/039655B785EC7CB007D8EC3057559737EDFECF68.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/db8ba45e-f5da-4581-bfe5-c1616c30efab/0/039655B785EC7CB007D8EC3057559737EDFECF68.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:0a:2d:97:bb:9e:90:e5:96:1e:91:f9:1a:d4:48:1b:71:92: ae:d1:eb:eb:0d:75:91:8a:12:76:04:23:59:c8:99:16:43:db: 11:77:fd:38:a1:a4:c6:df:6b:59:3d:e1:c9:bb:95:94:be:e1: 1c:76:7d:e4:b9:a4:f3:f3:07:37:23:bc:fb:cb:b8:66:df:5b: df:b9:95:c7:8d:cd:c1:17:50:7a:71:fc:5e:c4:3d:e4:9e:77: 9e:f1:1d:d4:4f:06:da:a7:77:60:e2:de:68:bf:ff:78:63:58: dd:ec:75:85:6f:f6:04:1c:7a:ab:77:62:cb:41:ad:08:75:45: ba:1b:4c:9a:dc:48:18:be:10:3d:46:6a:aa:39:78:f7:f5:11: ba:e2:fd:50:ee:f8:c8:83:cb:3a:4b:2e:d8:49:84:2a:e3:a0: 0d:21:42:76:b0:3b:26:fe:77:60:66:0d:fa:35:2f:89:2d:e4: 05:0f:61:40:5a:83:e0:ba:e7:21:b9:58:a0:59:ba:01:37:0c: 54:24:33:1d:0d:4d:3d:ac:7c:43:4a:89:ad:31:02:b0:72:40: d1:bd:97:ab:2f:b6:84:60:5b:c3:2d:e0:b2:35:47:24:2f:44: 7c:03:e5:c1:3b:e1:6f:84:c9:0d:1e:ee:cd:b2:1a:00:85:af: 0b:bc:48:c5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNeZzUubiazogSs1X2LdZjmMnoZQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDM5NjU1Qjc4NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdF REZFQ0Y2ODAeFw0yNjA2MDIyMjA3NDJaFw0yNjA2MDQwMDA0NDJaMDMxMTAvBgNV BAMTKDE2REVFMzY0N0Y3OEJGRkNCMzlGMEM1OTNGNTcwQjEzRDUxRTU1OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/f1WKCQb5GWa8Rj5nWWWSEt+Q 7iNLBw/Xz149GUy1NheQI/SacXbmxiKlS7iluLk1OYqOaV7v3UqBCnpQswy29HSw Ib4rve82q+a/+Xh7hpmfq2Qc/PfXG2uwI1Zbz2v3DzUtyavZyuR33I1tL00sjwj9 2hUc9p58rTCght1b9nDf/bVh6eL3GHFjy2zYIK2jcm3O3XItlq/qf/Dxd6HgN2xe Xy8SN9JB6NzyMgbdvzbjQxtZSzQkHXuahJAbsXArJQvszikYO9nOhg9KJf3GuWYz DASObocOLDQSGjz6ZQQ75cxC7/Ywb/XN4V8yzjPmuoflPJlnT0xfk2Q3CCJrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFt7jZH94v/yznwxZP1cLE9UeVYowHwYDVR0j BBgwFoAUA5ZVt4XsfLAH2OwwV1WXN+3+z2gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGI4YmE0NWUtZjVkYS00NTgxLWJmZTUtYzE2MTZjMzBlZmFiLzAvMDM5NjU1Qjc4 NUVDN0NCMDA3RDhFQzMwNTc1NTk3MzdFREZFQ0Y2OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMzk2NTVCNzg1RUM3Q0IwMDdEOEVDMzA1NzU1OTczN0VERkVD RjY4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZGI4YmE0NWUtZjVkYS00NTgxLWJm ZTUtYzE2MTZjMzBlZmFiLzAvMDM5NjU1Qjc4NUVDN0NCMDA3RDhFQzMwNTc1NTk3 MzdFREZFQ0Y2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADMKLZe7npDllh6R+RrUSBtxkq7R6+sNdZGK EnYEI1nImRZD2xF3/TihpMbfa1k94cm7lZS+4Rx2feS5pPPzBzcjvPvLuGbfW9+5 lceNzcEXUHpx/F7EPeSed57xHdRPBtqnd2Di3mi//3hjWN3sdYVv9gQceqt3YstB rQh1RbobTJrcSBi+ED1Gaqo5ePf1Ebri/VDu+MiDyzpLLthJhCrjoA0hQnawOyb+ d2BmDfo1L4kt5AUPYUBag+C65yG5WKBZugE3DFQkMx0NTT2sfENKia0xArByQNG9 l6svtoRgW8Mt4LI1RyQvRHwD5cE74W+EyQ0e7s2yGgCFrwu8SMU= -----END CERTIFICATE-----Generated at Wed Jun 3 03:46:34 2026 by rpki-client