$ rpki-client -vvf rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft File: 5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft (raw, json) Hash identifier: WCEYCLvd5RB02NxQQVXaYvAsXQjaaP8xbhC+j0zsDaI= Subject key identifier: E2:D8:7F:E9:8D:52:2E:A8:A5:D2:53:7D:78:44:51:C8:5A:C3:BC:D3 Authority key identifier: 5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 Certificate issuer: /CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Certificate serial: 04312FD8CCFDBCBD4DED27C3D05DE5541CF164AC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft Manifest number: 41 Signing time: Thu 18 Jun 2026 12:57:37 +0000 Manifest this update: Thu 18 Jun 2026 12:52:37 +0000 Manifest next update: Fri 19 Jun 2026 15:38:37 +0000 Files and hashes: 1: 5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl (hash: CFmo7SIu8uBZ3dNklaoeHgZVKOeIlhOBkPjZxm4hKqk=) 2: 3135372e32302e3233392e302f32342d3234203d3e20313532343239.roa (hash: lTUq2TXc5o2FAnT0cBjbniSYESMJX3Ig96J0JouvM0I=) 3: 3135372e32302e3233382e302f32342d3234203d3e20313532343239.roa (hash: Fy9HvcnOOuartl2MyrCM5SQFmtu1CV6p6EtA15KIkk0=) 4: 3135372e32302e3233382e302f32332d3233203d3e20313532343239.roa (hash: j3/lM2rV4nx+Cn6dsqDo2ERknLnpkGf86BWvcy+vYVs=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 08:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:31:2f:d8:cc:fd:bc:bd:4d:ed:27:c3:d0:5d:e5:54:1c:f1:64:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2 Validity Not Before: Jun 18 12:52:37 2026 GMT Not After : Jun 19 15:38:37 2026 GMT Subject: CN=E2D87FE98D522EA8A5D2537D784451C85AC3BCD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:46:58:6d:b5:4e:57:36:b4:db:43:a9:ba:21: fd:5b:91:7e:07:9b:04:db:bf:0c:54:6f:35:b5:a3: 05:f0:7d:86:72:8c:04:91:d9:b5:41:bc:8a:73:cb: 0f:96:2a:a1:a8:95:09:ce:82:48:6c:e8:b7:b9:0c: 60:26:8d:6e:77:7c:a5:5b:07:72:4f:11:42:6e:27: 76:07:99:8d:d5:be:00:57:92:55:0d:91:36:0f:d5: af:a6:25:ea:aa:20:69:de:72:9a:10:29:4b:b9:0f: 5e:30:36:a5:db:84:68:86:bc:29:db:55:ef:95:53: 05:fb:b6:f0:99:89:aa:e1:89:1c:c0:5b:6f:38:a2: db:2f:61:bf:5b:1c:aa:5b:b4:fe:a2:21:8f:02:e4: d9:ee:26:84:4e:2f:eb:93:90:16:9b:28:b5:d5:22: 65:26:d1:2c:4c:ec:46:cf:64:1f:21:c0:66:b1:93: 15:d3:11:b0:6b:b8:d4:89:c5:ae:dd:5a:72:01:10: 11:99:71:9d:4b:24:19:a1:16:89:41:f8:70:98:0c: f5:75:c1:e0:1e:43:67:65:8e:41:e9:df:b7:df:ad: 9f:b9:81:55:2e:8a:1a:0d:47:b2:e6:c2:61:31:7a: 28:50:2d:ca:36:14:89:85:43:8d:a5:32:61:b4:4c: e2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D8:7F:E9:8D:52:2E:A8:A5:D2:53:7D:78:44:51:C8:5A:C3:BC:D3 X509v3 Authority Key Identifier: keyid:5A:FE:24:D2:3E:36:25:48:4D:7D:9B:3E:BA:00:25:AA:9C:0E:EE:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/18d1c449-978c-4845-b823-b5925a905427/0/5AFE24D23E3625484D7D9B3EBA0025AA9C0EEEA2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:7b:01:39:0d:5a:3d:ec:5d:76:e5:12:7a:8c:d2:be:e5:e6: a8:23:dd:ec:1c:11:eb:de:aa:c7:7f:49:bc:d4:6f:65:1b:93: 51:42:4f:96:6d:34:2e:2a:49:2e:b0:61:73:a8:0f:1a:a7:e8: 97:8f:c2:fe:94:01:46:cb:1b:c6:cd:55:e8:a0:61:99:87:f5: bc:c8:74:56:4e:29:9e:3c:90:4c:73:86:6a:5d:03:14:e5:89: e7:95:00:3b:47:8d:ec:74:6d:51:11:77:9e:b6:ee:61:0c:9e: 06:d8:d3:e3:7e:0d:28:e4:53:e9:01:23:8f:70:ce:19:9e:6e: 8e:f7:b7:9e:c0:bc:a3:21:b4:33:c0:da:7e:8e:65:00:7d:c3: d7:be:c1:43:82:96:61:c2:6f:05:85:5d:d5:4b:3d:4f:5a:db: 01:b4:ec:ea:fd:36:6a:fa:39:5f:f3:4c:1d:a4:3a:df:83:4c: 18:ea:72:b6:4a:6f:c2:49:40:fb:c3:b9:e0:09:21:1f:d9:f5: f3:ac:60:5f:a0:10:ad:ba:6e:dd:b4:3b:2e:b1:1f:c3:aa:74: 76:87:b5:2b:db:a1:92:0a:2a:84:3b:70:b7:ba:ba:0a:47:36: 19:54:1f:6b:24:d5:58:39:20:2e:fe:b4:33:a6:a1:79:df:8d: 7d:d6:d2:d5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBDEv2Mz9vL1N7SfD0F3lVBzxZKwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUFGRTI0RDIzRTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5 QzBFRUVBMjAeFw0yNjA2MTgxMjUyMzdaFw0yNjA2MTkxNTM4MzdaMDMxMTAvBgNV BAMTKEUyRDg3RkU5OEQ1MjJFQThBNUQyNTM3RDc4NDQ1MUM4NUFDM0JDRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+RlhttU5XNrTbQ6m6If1bkX4H mwTbvwxUbzW1owXwfYZyjASR2bVBvIpzyw+WKqGolQnOgkhs6Le5DGAmjW53fKVb B3JPEUJuJ3YHmY3VvgBXklUNkTYP1a+mJeqqIGnecpoQKUu5D14wNqXbhGiGvCnb Ve+VUwX7tvCZiarhiRzAW284otsvYb9bHKpbtP6iIY8C5NnuJoROL+uTkBabKLXV ImUm0SxM7EbPZB8hwGaxkxXTEbBruNSJxa7dWnIBEBGZcZ1LJBmhFolB+HCYDPV1 weAeQ2dljkHp37ffrZ+5gVUuihoNR7LmwmExeihQLco2FImFQ42lMmG0TOIdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4th/6Y1SLqil0lN9eERRyFrDvNMwHwYDVR0j BBgwFoAUWv4k0j42JUhNfZs+ugAlqpwO7qIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MThkMWM0NDktOTc4Yy00ODQ1LWI4MjMtYjU5MjVhOTA1NDI3LzAvNUFGRTI0RDIz RTM2MjU0ODREN0Q5QjNFQkEwMDI1QUE5QzBFRUVBMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC81QUZFMjREMjNFMzYyNTQ4NEQ3RDlCM0VCQTAwMjVBQTlDMEVF RUEyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMThkMWM0NDktOTc4Yy00ODQ1LWI4 MjMtYjU5MjVhOTA1NDI3LzAvNUFGRTI0RDIzRTM2MjU0ODREN0Q5QjNFQkEwMDI1 QUE5QzBFRUVBMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIR7ATkNWj3sXXblEnqM0r7l5qgj3ewcEeve qsd/SbzUb2Ubk1FCT5ZtNC4qSS6wYXOoDxqn6JePwv6UAUbLG8bNVeigYZmH9bzI dFZOKZ48kExzhmpdAxTlieeVADtHjex0bVERd5627mEMngbY0+N+DSjkU+kBI49w zhmebo73t57AvKMhtDPA2n6OZQB9w9e+wUOClmHCbwWFXdVLPU9a2wG07Or9Nmr6 OV/zTB2kOt+DTBjqcrZKb8JJQPvDueAJIR/Z9fOsYF+gEK26bt20Oy6xH8OqdHaH tSvboZIKKoQ7cLe6ugpHNhlUH2sk1Vg5IC7+tDOmoXnfjX3W0tU= -----END CERTIFICATE-----Generated at Thu Jun 18 17:15:58 2026 by rpki-client