$ rpki-client -vvf rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.mft File: BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.mft (raw, json) Hash identifier: rhybBFicafbw4bMb68kTnDqIRhrmrtRIi8bBdJtMab8= Subject key identifier: BD:B4:C3:60:38:CB:AD:66:AA:0F:A7:AE:4B:3B:96:E3:2C:68:4B:7A Authority key identifier: BA:5A:38:A4:D0:FB:8A:AA:8D:D1:8E:1F:B3:9A:43:14:2B:DF:3C:67 Certificate issuer: /CN=BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67 Certificate serial: 0DBA9E200E31694622C08BCCCEEB714B5938A302 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.mft Manifest number: 42 Signing time: Sat 20 Jun 2026 03:13:40 +0000 Manifest this update: Sat 20 Jun 2026 03:08:40 +0000 Manifest next update: Sun 21 Jun 2026 05:17:40 +0000 Files and hashes: 1: 3130332e3131322e3136322e302f32332d3234203d3e20313337333331.roa (hash: +/Z+l46w62+euzVttfTbUpjA36xrgfvJsPvniMmOZIM=) 2: BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.crl (hash: Qsm7gVP9ThQR8BAbHrs5UlQxmPANEwHWD5YDj44fQ8c=) 3: 323030313a6466343a623130303a3a2f34382d3438203d3e20313337333331.roa (hash: 6KPoXiqtvd9nuyAco4ru4jZgNuQNFI930Qn7LAylJPg=) 4: 3130332e3133332e3232322e302f32332d3234203d3e20313337333331.roa (hash: 34SELdnrb0ReXu8mxgFx5LIh/fNfXuwnNwVvGgL+Ivc=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.crl rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 05:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:ba:9e:20:0e:31:69:46:22:c0:8b:cc:ce:eb:71:4b:59:38:a3:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67 Validity Not Before: Jun 20 03:08:40 2026 GMT Not After : Jun 21 05:17:40 2026 GMT Subject: CN=BDB4C36038CBAD66AA0FA7AE4B3B96E32C684B7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cb:80:d8:f0:a2:48:5c:cd:28:8e:a3:6c:b6: f2:13:cb:b5:36:25:e8:e4:ed:5d:8f:3d:5a:8a:e6: cb:8f:dd:1e:8a:da:c9:a5:82:26:4a:bb:60:52:2c: 28:76:00:25:b8:11:e6:ec:59:6c:f8:e8:11:b5:01: 28:75:95:59:b3:f3:20:1e:37:0b:6a:07:70:0c:bb: 60:90:e0:7b:05:fe:28:7f:f6:3b:82:cd:46:03:93: 64:1b:55:2f:40:dc:35:61:e5:49:f8:a1:34:d8:b6: 38:32:d1:a1:72:f2:e0:32:2f:85:3d:f5:08:a3:6f: cb:7f:0f:0c:67:59:6b:84:52:36:0d:95:39:00:69: 48:06:29:3d:12:63:e8:a1:d1:3f:69:76:44:3d:15: c8:0c:47:33:81:d8:47:94:c2:e6:a8:25:b5:d7:ae: 86:cd:5e:8e:cd:b7:22:01:bb:47:b0:5e:8d:f0:ac: 6e:59:98:fd:d9:36:86:bc:8c:17:08:dc:9e:24:a6: 4c:8b:a4:a1:d7:f6:e0:f5:21:58:cd:75:4e:26:17: d2:b3:e8:67:1f:da:6a:72:46:85:8e:8f:ff:0e:42: 7c:77:54:43:5d:ff:ac:30:d0:a2:c2:95:9e:94:40: e2:d6:15:4c:25:69:b2:db:59:1b:e5:f1:a2:9e:e3: 98:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B4:C3:60:38:CB:AD:66:AA:0F:A7:AE:4B:3B:96:E3:2C:68:4B:7A X509v3 Authority Key Identifier: keyid:BA:5A:38:A4:D0:FB:8A:AA:8D:D1:8E:1F:B3:9A:43:14:2B:DF:3C:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/BA5A38A4D0FB8AAA8DD18E1FB39A43142BDF3C67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:01:f4:68:03:5d:b7:93:12:d3:a9:85:66:e3:6d:04:79:1d: 0a:47:c4:66:ff:ea:69:e1:17:bf:d4:58:0d:6e:e1:0a:9f:e1: 31:db:9f:de:c3:cc:22:a4:d9:b6:99:c5:a9:e4:f3:4e:7c:9b: 50:fc:af:1a:9e:4c:25:15:7b:e9:ae:18:d9:b6:95:0a:0a:f7: 29:de:5d:f7:7a:8f:e2:11:1c:32:f0:16:83:bf:52:ff:76:f8: db:8f:9e:cd:5d:79:96:42:75:f3:78:e8:ad:01:84:c0:19:b5: 6d:46:94:df:e0:e9:0c:58:11:fa:6f:4e:ad:c8:88:da:16:ee: 72:ed:64:28:3e:6e:57:8d:5c:c3:5b:4c:71:4e:aa:85:ad:69: 0e:f9:76:33:45:60:f4:5d:63:f5:e2:d5:69:e7:fb:f6:29:7e: 7c:56:97:35:0e:d0:8e:cb:2f:f8:63:31:7a:a7:08:df:93:4c: a5:be:2f:d3:9c:12:1a:bb:41:1b:82:13:d4:99:a0:c9:85:d8: bf:6c:fe:dd:62:43:a8:2d:b1:85:ce:00:21:f7:60:71:34:62: fb:72:32:ab:e4:f9:20:1f:6a:27:9e:00:f0:37:1b:a3:34:44: 47:d3:74:c0:f5:63:62:3b:0b:28:0d:fe:89:66:58:27:db:c3: a1:27:7e:1f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDbqeIA4xaUYiwIvMzutxS1k4owIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE1QTM4QTREMEZCOEFBQThERDE4RTFGQjM5QTQzMTQy QkRGM0M2NzAeFw0yNjA2MjAwMzA4NDBaFw0yNjA2MjEwNTE3NDBaMDMxMTAvBgNV BAMTKEJEQjRDMzYwMzhDQkFENjZBQTBGQTdBRTRCM0I5NkUzMkM2ODRCN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWy4DY8KJIXM0ojqNstvITy7U2 Jejk7V2PPVqK5suP3R6K2smlgiZKu2BSLCh2ACW4EebsWWz46BG1ASh1lVmz8yAe NwtqB3AMu2CQ4HsF/ih/9juCzUYDk2QbVS9A3DVh5Un4oTTYtjgy0aFy8uAyL4U9 9Qijb8t/DwxnWWuEUjYNlTkAaUgGKT0SY+ih0T9pdkQ9FcgMRzOB2EeUwuaoJbXX robNXo7NtyIBu0ewXo3wrG5ZmP3ZNoa8jBcI3J4kpkyLpKHX9uD1IVjNdU4mF9Kz 6Gcf2mpyRoWOj/8OQnx3VENd/6ww0KLClZ6UQOLWFUwlabLbWRvl8aKe45hDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvbTDYDjLrWaqD6euSzuW4yxoS3owHwYDVR0j BBgwFoAUulo4pND7iqqN0Y4fs5pDFCvfPGcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmZkODBkOTYtZWYxYi00NGIyLTkwM2EtN2Y2ZGE5NDFhODM2LzAvQkE1QTM4QTRE MEZCOEFBQThERDE4RTFGQjM5QTQzMTQyQkRGM0M2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQTVBMzhBNEQwRkI4QUFBOEREMThFMUZCMzlBNDMxNDJCREYz QzY3LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmZkODBkOTYtZWYxYi00NGIyLTkw M2EtN2Y2ZGE5NDFhODM2LzAvQkE1QTM4QTREMEZCOEFBQThERDE4RTFGQjM5QTQz MTQyQkRGM0M2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALIB9GgDXbeTEtOphWbjbQR5HQpHxGb/6mnh F7/UWA1u4Qqf4THbn97DzCKk2baZxank8058m1D8rxqeTCUVe+muGNm2lQoK9yne Xfd6j+IRHDLwFoO/Uv92+NuPns1deZZCdfN46K0BhMAZtW1GlN/g6QxYEfpvTq3I iNoW7nLtZCg+bleNXMNbTHFOqoWtaQ75djNFYPRdY/Xi1Wnn+/YpfnxWlzUO0I7L L/hjMXqnCN+TTKW+L9OcEhq7QRuCE9SZoMmF2L9s/t1iQ6gtsYXOACH3YHE0Yvty Mqvk+SAfaieeAPA3G6M0REfTdMD1Y2I7CygN/olmWCfbw6Enfh8= -----END CERTIFICATE-----Generated at Sat Jun 20 15:42:55 2026 by rpki-client