$ rpki-client -vvf rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft File: 629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft (raw, json) Hash identifier: bNYuOnb8Z983KpYxuyfzuPF58QqdpKR5aVDxKExjSFU= Subject key identifier: DF:A3:CF:2E:AD:04:60:DB:EA:45:90:9D:B9:6A:9C:53:CF:EA:97:3E Authority key identifier: 62:9E:74:A6:0B:52:AC:9F:C2:F7:A1:11:A6:83:76:BB:57:C1:CA:BD Certificate issuer: /CN=629E74A60B52AC9FC2F7A111A68376BB57C1CABD Certificate serial: 0A4E7072609BC844414F15DC4FF3BF5E9105ECCC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft Manifest number: 41 Signing time: Fri 19 Jun 2026 13:32:17 +0000 Manifest this update: Fri 19 Jun 2026 13:27:17 +0000 Manifest next update: Sat 20 Jun 2026 17:31:17 +0000 Files and hashes: 1: 629E74A60B52AC9FC2F7A111A68376BB57C1CABD.crl (hash: 3WrV9k0R4V2K2LrcLxIZSyP8nBQGPUIV8c+5RlDnGjo=) 2: 3130332e3130302e3234362e302f32342d3234203d3e20313336383432.roa (hash: nOhj/KbLK8tB+8fzk/fF8cT34h0xCczJl9qDSLUlcwg=) 3: 3130332e3130302e3234372e302f32342d3234203d3e20313336383432.roa (hash: QzM90YWTXns1ydz40IJ13wxTQ2LuYS2Sj6cuHqSNNQs=) 4: 323430353a6263303a3a2f33332d3438203d3e20313336383432.roa (hash: CVrUJTlhlyjQcXWYw9mEs6T2cItEcY6BENuMI3nROC0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.crl rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 17:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4e:70:72:60:9b:c8:44:41:4f:15:dc:4f:f3:bf:5e:91:05:ec:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=629E74A60B52AC9FC2F7A111A68376BB57C1CABD Validity Not Before: Jun 19 13:27:17 2026 GMT Not After : Jun 20 17:31:17 2026 GMT Subject: CN=DFA3CF2EAD0460DBEA45909DB96A9C53CFEA973E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5f:51:13:c0:aa:e0:78:b1:3b:a1:cc:3b:82: 84:fa:7a:28:f6:ec:00:7b:e2:87:79:b5:5e:29:5f: 83:71:4b:04:c0:ae:17:11:f0:15:a4:d6:b4:c3:1b: 12:5b:a6:48:1f:f3:a5:4c:03:3d:44:c4:78:f6:23: 50:9f:11:da:24:95:4d:e5:fd:c1:47:b2:d5:0e:03: f8:12:d3:e5:df:46:b1:92:45:6f:50:7a:ab:e2:7e: d1:05:d8:02:32:18:1b:5a:9e:29:b8:ff:df:26:25: 1e:41:03:ea:3f:fc:4f:90:ff:fe:24:0a:d6:e3:18: 6c:78:31:24:a4:9b:39:e0:f5:c0:bc:84:5d:2b:c3: f4:c2:3f:66:d3:09:c8:05:5c:17:f1:70:bc:d4:a1: 6d:0f:ce:7a:05:71:e4:ff:72:d4:ee:e9:ca:5f:71: 32:42:f7:25:ef:6b:dd:c2:5b:23:ba:40:77:52:bd: ff:48:ff:68:4f:f6:03:34:4b:5e:d0:72:8c:06:58: 39:58:6e:12:46:77:35:6b:6e:de:99:f3:c1:b0:92: 95:3d:46:f7:98:80:34:7a:f5:91:a3:fa:43:56:8a: b9:40:65:a3:9b:48:8a:d2:0d:98:93:bb:12:0e:2c: df:65:87:af:b0:e9:05:ab:7f:d1:62:36:31:30:fa: d6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:A3:CF:2E:AD:04:60:DB:EA:45:90:9D:B9:6A:9C:53:CF:EA:97:3E X509v3 Authority Key Identifier: keyid:62:9E:74:A6:0B:52:AC:9F:C2:F7:A1:11:A6:83:76:BB:57:C1:CA:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2a97bcf4-e1aa-47d6-bde6-2e667b9d6134/0/629E74A60B52AC9FC2F7A111A68376BB57C1CABD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:22:64:6c:3d:08:68:c7:cf:09:9c:0e:e3:b9:fc:8f:25:ea: 5c:85:8a:e4:7e:e7:61:8a:4f:1d:f2:c1:dc:1c:93:91:c2:6f: f6:85:2c:58:31:17:ba:f5:f9:38:0c:34:c3:d9:ce:60:38:30: a9:a6:d7:4c:42:ac:1a:e3:7b:97:ce:9d:a3:f8:c5:5f:29:02: e1:12:38:3e:d5:dd:69:11:ad:21:3f:e2:f7:e4:fd:0e:3d:9b: 9e:f9:d3:e7:70:b7:60:bf:cc:dc:c1:7d:45:ee:9a:28:ed:a4: 48:94:b6:ca:21:f0:9b:1a:8f:c6:75:13:a9:fc:93:ff:5d:14: 8a:76:e9:9e:c1:11:a3:f0:72:b0:04:fe:7b:06:a1:b2:7d:99: 8c:67:0c:e7:dd:6b:d2:a8:e5:ae:e0:94:33:bc:0e:c5:26:d8: 2d:8c:f3:8f:90:95:71:51:ae:71:78:54:1e:22:c1:5d:4d:87: 3f:1c:70:e7:d0:dc:59:0a:12:8a:e5:34:bb:8f:c0:99:d9:a7: e6:3f:77:06:90:e8:99:54:59:67:3f:b4:3b:84:94:8a:8d:02: b2:0f:fe:cf:56:f6:5b:b4:ee:8b:c6:dc:1d:b2:81:64:7a:59: c0:d2:a9:a3:a5:93:aa:84:fd:86:1f:bf:4d:94:31:0a:ce:93: 4b:e8:e5:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCk5wcmCbyERBTxXcT/O/XpEF7MwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjI5RTc0QTYwQjUyQUM5RkMyRjdBMTExQTY4Mzc2QkI1 N0MxQ0FCRDAeFw0yNjA2MTkxMzI3MTdaFw0yNjA2MjAxNzMxMTdaMDMxMTAvBgNV BAMTKERGQTNDRjJFQUQwNDYwREJFQTQ1OTA5REI5NkE5QzUzQ0ZFQTk3M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpX1ETwKrgeLE7ocw7goT6eij2 7AB74od5tV4pX4NxSwTArhcR8BWk1rTDGxJbpkgf86VMAz1ExHj2I1CfEdoklU3l /cFHstUOA/gS0+XfRrGSRW9QeqviftEF2AIyGBtanim4/98mJR5BA+o//E+Q//4k CtbjGGx4MSSkmzng9cC8hF0rw/TCP2bTCcgFXBfxcLzUoW0PznoFceT/ctTu6cpf cTJC9yXva93CWyO6QHdSvf9I/2hP9gM0S17QcowGWDlYbhJGdzVrbt6Z88GwkpU9 RveYgDR69ZGj+kNWirlAZaObSIrSDZiTuxIOLN9lh6+w6QWrf9FiNjEw+tYvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU36PPLq0EYNvqRZCduWqcU8/qlz4wHwYDVR0j BBgwFoAUYp50pgtSrJ/C96ERpoN2u1fByr0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmE5N2JjZjQtZTFhYS00N2Q2LWJkZTYtMmU2NjdiOWQ2MTM0LzAvNjI5RTc0QTYw QjUyQUM5RkMyRjdBMTExQTY4Mzc2QkI1N0MxQ0FCRC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82MjlFNzRBNjBCNTJBQzlGQzJGN0ExMTFBNjgzNzZCQjU3QzFD QUJELmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmE5N2JjZjQtZTFhYS00N2Q2LWJk ZTYtMmU2NjdiOWQ2MTM0LzAvNjI5RTc0QTYwQjUyQUM5RkMyRjdBMTExQTY4Mzc2 QkI1N0MxQ0FCRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACUiZGw9CGjHzwmcDuO5/I8l6lyFiuR+52GK Tx3ywdwck5HCb/aFLFgxF7r1+TgMNMPZzmA4MKmm10xCrBrje5fOnaP4xV8pAuES OD7V3WkRrSE/4vfk/Q49m5750+dwt2C/zNzBfUXumijtpEiUtsoh8Jsaj8Z1E6n8 k/9dFIp26Z7BEaPwcrAE/nsGobJ9mYxnDOfda9Ko5a7glDO8DsUm2C2M84+QlXFR rnF4VB4iwV1Nhz8ccOfQ3FkKEorlNLuPwJnZp+Y/dwaQ6JlUWWc/tDuElIqNArIP /s9W9lu07ovG3B2ygWR6WcDSqaOlk6qE/YYfv02UMQrOk0vo5bw= -----END CERTIFICATE-----Generated at Sat Jun 20 09:32:58 2026 by rpki-client