$ rpki-client -vvf rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft File: BFD6A628A7E3273D48388984344C37C51116C61B.mft (raw, json) Hash identifier: gIn00OEosW16HVCa/Z2lhkx3OtOYkuN/YrvuO8UNH/A= Subject key identifier: 25:6C:64:DF:F5:10:4A:9E:02:C6:10:10:B8:19:1F:17:D4:49:A7:A2 Authority key identifier: BF:D6:A6:28:A7:E3:27:3D:48:38:89:84:34:4C:37:C5:11:16:C6:1B Certificate issuer: /CN=BFD6A628A7E3273D48388984344C37C51116C61B Certificate serial: 59AB37F64E6B0F6729AFF9CA3DB2E0193F872D4A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft Manifest number: 40 Signing time: Thu 18 Jun 2026 01:13:22 +0000 Manifest this update: Thu 18 Jun 2026 01:08:22 +0000 Manifest next update: Fri 19 Jun 2026 01:43:22 +0000 Files and hashes: 1: 3136302e3138372e3135302e302f32332d3234203d3e20313533313237.roa (hash: MOL2ae8rUjuxcgs3avsNvyuD8S+QfiOggevD7CfKMcE=) 2: BFD6A628A7E3273D48388984344C37C51116C61B.crl (hash: U9mqaR3E1ueudJyhietYvI9g7QjyY474VwmqFwR92Yo=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.crl rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 01:43:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ab:37:f6:4e:6b:0f:67:29:af:f9:ca:3d:b2:e0:19:3f:87:2d:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFD6A628A7E3273D48388984344C37C51116C61B Validity Not Before: Jun 18 01:08:22 2026 GMT Not After : Jun 19 01:43:22 2026 GMT Subject: CN=256C64DFF5104A9E02C61010B8191F17D449A7A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b6:bc:54:89:9c:4c:df:fc:32:0b:1e:db:bd: ef:99:c0:7e:7d:7d:9f:bf:72:b0:13:a8:57:01:03: b2:11:0d:f3:05:f9:40:a5:2c:47:74:9a:25:32:cf: 82:a8:7e:4c:d9:fb:e0:69:4a:c9:9e:61:2f:6b:15: 9e:f3:6d:7a:b9:53:f1:75:e2:33:c9:e0:53:a3:9b: fa:76:92:cd:94:a1:4d:60:56:dc:92:eb:c8:4d:fe: 28:f7:ad:39:51:35:bd:4a:28:9d:1e:62:96:09:53: cf:98:c7:50:07:4e:62:ad:7b:5f:ff:21:45:6e:ca: 46:11:75:43:0e:9b:1d:fa:1f:0e:59:62:fc:b7:51: 9d:d0:dd:5f:c4:60:04:e3:77:2f:62:98:f4:ee:0b: 58:03:79:4c:58:f2:18:2b:5a:33:e0:26:68:f1:d0: da:f4:01:16:b5:2a:3a:55:8e:a5:3b:91:ad:93:33: da:62:af:b7:c5:e3:e6:6e:cf:71:86:a4:42:53:02: 67:f8:39:af:78:22:bc:56:3e:e0:fa:c6:03:9a:8f: 8a:4e:1b:0d:d9:be:c6:34:d6:0b:e6:32:8f:a1:8f: 9a:7a:ea:f4:06:c6:d0:e4:98:71:db:7d:bf:be:b4: dc:a8:1c:2d:44:ad:b6:e3:2d:c8:c6:14:63:9f:05: 0c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:6C:64:DF:F5:10:4A:9E:02:C6:10:10:B8:19:1F:17:D4:49:A7:A2 X509v3 Authority Key Identifier: keyid:BF:D6:A6:28:A7:E3:27:3D:48:38:89:84:34:4C:37:C5:11:16:C6:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/BFD6A628A7E3273D48388984344C37C51116C61B.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/21d97b40-c031-4e5b-9b42-d2ae1c9cf987/0/BFD6A628A7E3273D48388984344C37C51116C61B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:e8:1d:63:3e:cd:5f:08:2c:04:cf:ca:89:a6:c0:0e:34:d3: 88:73:2e:a8:c2:e2:34:c9:ba:1d:54:83:cf:95:44:63:66:b2: fd:d9:25:ab:d9:6a:74:48:7c:aa:b9:17:31:64:c2:5b:11:1b: cf:47:11:85:01:41:95:d4:6a:ae:57:5c:85:9b:63:30:0c:5d: 77:ca:d8:5e:2e:cf:9f:ba:ad:75:f0:3b:4b:d7:eb:02:8e:ce: 01:84:cb:f2:2c:f4:19:52:cb:a8:4c:a7:36:fe:e4:4d:3e:94: a0:dc:08:52:db:94:c4:38:8b:4d:05:19:15:c8:ce:3b:fe:38: 7f:61:8f:61:d1:0d:0b:1f:75:de:19:3c:0d:d1:83:6a:f7:59: 1b:06:35:2d:4c:71:8d:5f:cb:f7:4d:c9:1a:a6:74:b2:f4:27: 77:80:fa:f7:dd:c1:4f:e2:48:96:2e:4b:82:f8:62:67:3b:2a: 33:c7:7b:38:a7:a5:25:4a:67:3d:7f:28:46:14:fc:d1:bb:e2: cf:e0:29:07:93:c1:7d:df:25:d8:9f:6c:a9:5e:cd:c1:85:cd: b3:cc:48:c4:8d:d6:1f:69:4c:ee:1d:7d:dc:9b:9b:f2:b0:9e: e3:42:b5:c0:b4:55:56:10:ae:b5:fc:87:ee:31:f7:fe:a0:af: e1:b6:5e:4f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWas39k5rD2cpr/nKPbLgGT+HLUowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZENkE2MjhBN0UzMjczRDQ4Mzg4OTg0MzQ0QzM3QzUx MTE2QzYxQjAeFw0yNjA2MTgwMTA4MjJaFw0yNjA2MTkwMTQzMjJaMDMxMTAvBgNV BAMTKDI1NkM2NERGRjUxMDRBOUUwMkM2MTAxMEI4MTkxRjE3RDQ0OUE3QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7trxUiZxM3/wyCx7bve+ZwH59 fZ+/crATqFcBA7IRDfMF+UClLEd0miUyz4KofkzZ++BpSsmeYS9rFZ7zbXq5U/F1 4jPJ4FOjm/p2ks2UoU1gVtyS68hN/ij3rTlRNb1KKJ0eYpYJU8+Yx1AHTmKte1// IUVuykYRdUMOmx36Hw5ZYvy3UZ3Q3V/EYATjdy9imPTuC1gDeUxY8hgrWjPgJmjx 0Nr0ARa1KjpVjqU7ka2TM9pir7fF4+Zuz3GGpEJTAmf4Oa94IrxWPuD6xgOaj4pO Gw3ZvsY01gvmMo+hj5p66vQGxtDkmHHbfb++tNyoHC1ErbbjLcjGFGOfBQyXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJWxk3/UQSp4CxhAQuBkfF9RJp6IwHwYDVR0j BBgwFoAUv9amKKfjJz1IOImENEw3xREWxhswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjFkOTdiNDAtYzAzMS00ZTViLTliNDItZDJhZTFjOWNmOTg3LzAvQkZENkE2MjhB N0UzMjczRDQ4Mzg4OTg0MzQ0QzM3QzUxMTE2QzYxQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9CRkQ2QTYyOEE3RTMyNzNENDgzODg5ODQzNDRDMzdDNTExMTZD NjFCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjFkOTdiNDAtYzAzMS00ZTViLTli NDItZDJhZTFjOWNmOTg3LzAvQkZENkE2MjhBN0UzMjczRDQ4Mzg4OTg0MzQ0QzM3 QzUxMTE2QzYxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJfoHWM+zV8ILATPyommwA4004hzLqjC4jTJ uh1Ug8+VRGNmsv3ZJavZanRIfKq5FzFkwlsRG89HEYUBQZXUaq5XXIWbYzAMXXfK 2F4uz5+6rXXwO0vX6wKOzgGEy/Is9BlSy6hMpzb+5E0+lKDcCFLblMQ4i00FGRXI zjv+OH9hj2HRDQsfdd4ZPA3Rg2r3WRsGNS1McY1fy/dNyRqmdLL0J3eA+vfdwU/i SJYuS4L4Ymc7KjPHezinpSVKZz1/KEYU/NG74s/gKQeTwX3fJdifbKlezcGFzbPM SMSN1h9pTO4dfdybm/KwnuNCtcC0VVYQrrX8h+4x9/6gr+G2Xk8= -----END CERTIFICATE-----Generated at Thu Jun 18 17:13:26 2026 by rpki-client