$ rpki-client -vvf rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft File: 684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft (raw, json) Hash identifier: U4B9EJfumulxjqmqvke1GQibrP9NwRYuK/kSYl/pEJY= Subject key identifier: 92:95:B7:84:C7:B5:54:EF:B5:90:26:2A:AF:99:02:81:D6:76:4D:42 Authority key identifier: 68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 Certificate issuer: /CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Certificate serial: 0A3664A1E12843E71D94D732627FFC132725C4B9 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft Manifest number: 3F Signing time: Wed 17 Jun 2026 17:54:30 +0000 Manifest this update: Wed 17 Jun 2026 17:49:30 +0000 Manifest next update: Thu 18 Jun 2026 20:21:30 +0000 Files and hashes: 1: 3132322e3132382e31392e302f32342d3234203d3e203436303435.roa (hash: f90muGwEvtJshM8UMxgg/nx9xD7G/jpJOwdYaZZH2XQ=) 2: 3132322e3132382e31362e302f32342d3234203d3e203531323032.roa (hash: Bv30QUp2YXB4ZkzrwlFua6Ycz6SNktruBYqYMaGWd0g=) 3: 3132322e3132382e32322e302f32342d3234203d3e203436303435.roa (hash: sGqaucoiUMSpvJe6Y7d7aRIvCySU6Gl0kNce7gLs15k=) 4: 3132322e3132382e31362e302f32342d3234203d3e20323632393239.roa (hash: UaISP/uY7XkkGaHXlOEwAwG75CPuMEMHw61HTW14NUQ=) 5: 3132322e3132382e32312e302f32342d3234203d3e203436303435.roa (hash: gPkV1b2SmorRDQ1yqKufZI+SOzHwtp71j+eQg1Bwiak=) 6: 684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl (hash: uXudzIqcLv9xPUaEK6hRAWrfO2RwltgBxxfCTG7E5OU=) 7: 3132322e3132382e32322e302f32342d3234203d3e20323032363733.roa (hash: OBUrmS2no0yMHmoVDSN7g30tMnwj1huZn97XU2ZYw1k=) 8: 3132322e3132382e32312e302f32342d3234203d3e203531323032.roa (hash: qBUfAntsq3Gd1hTTTeKJeQxEEitXpMPHd1jbETTGZrw=) 9: 3132322e3132382e32302e302f32342d3234203d3e203436303435.roa (hash: XU6dF5kwf5bWTJ1/a8IF9/Fb9ws8DLxf9mFKHwzpv/s=) 10: 3132322e3132382e31372e302f32342d3234203d3e203436303435.roa (hash: f4Rl+nEgaWKSfHvI6SarQnjAj9HfH/JElIfFiaKpdS0=) 11: 3132322e3132382e32312e302f32342d3234203d3e20323632393239.roa (hash: jgtxGKm3LP85gwx19iWA4QGiKmWy0ishwiJxJ2igqrE=) 12: 3132322e3132382e31382e302f32342d3234203d3e203436303435.roa (hash: gwwfNJ3TqgMMt80Y8lGgjD5cKLvhjKTSdlvsB5BPRvM=) 13: 3132322e3132382e31362e302f32342d3234203d3e203436303435.roa (hash: 0/QfoiXNfL7+6Rn9uHai+/eg6bnR/TAMxEM4trzBDyY=) 14: 3132322e3132382e32332e302f32342d3234203d3e203436303435.roa (hash: KEJHq843nvxE3v+1uF2PUpxNf5dPeN2bB+G+EF1vi9s=) 15: 3132322e3132382e31362e302f32312d3231203d3e203436303435.roa (hash: QjIsYLAQdXRD6h2SZxXBE1ZfdVE4XjnDSV8HWQWoECg=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 20:21:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:36:64:a1:e1:28:43:e7:1d:94:d7:32:62:7f:fc:13:27:25:c4:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=684DE34A64F3AFED44A02385FCB35882FB2E6AA5 Validity Not Before: Jun 17 17:49:30 2026 GMT Not After : Jun 18 20:21:30 2026 GMT Subject: CN=9295B784C7B554EFB590262AAF990281D6764D42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:20:d0:03:42:5d:33:92:8e:7e:db:4b:7c:2a: c7:a7:e4:cd:a4:07:4f:72:78:c5:c3:a0:09:1d:3b: f6:4b:25:97:cf:a6:ed:d7:c2:1d:a3:5b:e6:da:fd: 78:64:ab:68:fd:68:ba:51:4d:77:6e:b0:9a:b4:3a: 59:21:78:66:b7:ef:19:42:54:b9:b4:3d:58:98:3e: c0:4c:ab:ec:bf:1a:3b:d6:d1:5f:72:fa:01:2a:00: 83:28:7a:8a:d3:55:6e:c1:d4:38:d3:a2:de:67:24: 23:6e:89:eb:c6:68:40:a7:ae:16:9e:55:42:98:70: b3:53:df:71:9c:f8:0a:72:f4:0c:31:d2:05:fc:79: d4:09:6e:90:09:dc:dd:3d:8a:6f:50:23:21:50:99: cc:dd:39:8c:b1:0e:80:f4:8a:99:3b:df:59:14:64: 16:80:e2:15:9f:cc:65:b1:ff:a2:fa:26:8f:79:85: c6:27:04:3c:f7:c1:39:8f:2d:25:62:99:95:1b:d1: 18:ec:bc:22:9c:96:17:4e:1b:59:39:50:0f:70:bb: 9f:7d:ea:6c:3a:eb:9f:e2:43:c4:75:b6:52:f0:04: de:4b:bb:02:a0:82:c7:c5:ca:df:a9:46:13:be:13: c2:3d:0e:17:90:72:4e:aa:6d:2a:c2:ca:f8:95:61: d5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:95:B7:84:C7:B5:54:EF:B5:90:26:2A:AF:99:02:81:D6:76:4D:42 X509v3 Authority Key Identifier: keyid:68:4D:E3:4A:64:F3:AF:ED:44:A0:23:85:FC:B3:58:82:FB:2E:6A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3853f228-37f2-47d9-b9fe-476bade13393/0/684DE34A64F3AFED44A02385FCB35882FB2E6AA5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:55:00:b8:ce:17:2a:c0:43:a0:42:b3:6e:e8:78:76:87:64: ea:af:49:00:d0:6e:9c:b3:75:d8:1a:2b:62:cb:3a:25:21:37: ab:d4:9f:e9:da:cf:5c:d5:55:1a:f2:c9:e7:9b:9e:d2:7c:dd: 47:6f:5c:ff:40:37:88:2b:da:56:4e:5d:fa:a1:5e:29:2a:2c: bb:05:86:5b:fb:bf:90:6f:9e:80:42:eb:97:22:55:c7:47:75: a3:5f:22:8a:2a:dd:b3:42:b5:7c:e1:c8:70:80:b3:21:0b:d8: 4a:d2:06:d7:18:ee:f7:f7:4e:d1:0a:0a:0a:fa:41:08:74:69: 98:54:98:6e:13:95:98:08:d7:66:0d:94:4e:12:8a:4e:46:f8: d0:a6:f4:54:67:f1:84:eb:b0:5e:54:46:9d:f9:10:b4:2d:18: ab:d3:c9:79:a7:fe:27:f5:f8:a1:35:67:0b:68:07:db:1c:1e: 86:2c:7a:9a:ba:50:b1:7a:94:6c:e5:2a:cf:9f:da:8c:cc:28: e8:82:c2:68:8d:22:21:f1:c6:8f:b7:cc:26:8b:4a:f6:91:0f: 10:a9:f1:b5:a9:df:b0:93:bc:40:d0:d1:e9:61:1c:ea:a9:d5: 44:8f:b3:df:85:2c:e9:96:22:b7:9f:f1:0d:ea:54:22:85:2c: c3:91:3a:f8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCjZkoeEoQ+cdlNcyYn/8EyclxLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjg0REUzNEE2NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJG QjJFNkFBNTAeFw0yNjA2MTcxNzQ5MzBaFw0yNjA2MTgyMDIxMzBaMDMxMTAvBgNV BAMTKDkyOTVCNzg0QzdCNTU0RUZCNTkwMjYyQUFGOTkwMjgxRDY3NjRENDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPINADQl0zko5+20t8Ksen5M2k B09yeMXDoAkdO/ZLJZfPpu3Xwh2jW+ba/Xhkq2j9aLpRTXdusJq0OlkheGa37xlC VLm0PViYPsBMq+y/GjvW0V9y+gEqAIMoeorTVW7B1DjTot5nJCNuievGaECnrhae VUKYcLNT33Gc+Apy9Awx0gX8edQJbpAJ3N09im9QIyFQmczdOYyxDoD0ipk731kU ZBaA4hWfzGWx/6L6Jo95hcYnBDz3wTmPLSVimZUb0RjsvCKclhdOG1k5UA9wu599 6mw665/iQ8R1tlLwBN5LuwKggsfFyt+pRhO+E8I9DheQck6qbSrCyviVYdUJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkpW3hMe1VO+1kCYqr5kCgdZ2TUIwHwYDVR0j BBgwFoAUaE3jSmTzr+1EoCOF/LNYgvsuaqUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Mzg1M2YyMjgtMzdmMi00N2Q5LWI5ZmUtNDc2YmFkZTEzMzkzLzAvNjg0REUzNEE2 NEYzQUZFRDQ0QTAyMzg1RkNCMzU4ODJGQjJFNkFBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82ODRERTM0QTY0RjNBRkVENDRBMDIzODVGQ0IzNTg4MkZCMkU2 QUE1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzg1M2YyMjgtMzdmMi00N2Q5LWI5 ZmUtNDc2YmFkZTEzMzkzLzAvNjg0REUzNEE2NEYzQUZFRDQ0QTAyMzg1RkNCMzU4 ODJGQjJFNkFBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHVVALjOFyrAQ6BCs27oeHaHZOqvSQDQbpyz ddgaK2LLOiUhN6vUn+naz1zVVRryyeebntJ83UdvXP9AN4gr2lZOXfqhXikqLLsF hlv7v5BvnoBC65ciVcdHdaNfIooq3bNCtXzhyHCAsyEL2ErSBtcY7vf3TtEKCgr6 QQh0aZhUmG4TlZgI12YNlE4Sik5G+NCm9FRn8YTrsF5URp35ELQtGKvTyXmn/if1 +KE1ZwtoB9scHoYsepq6ULF6lGzlKs+f2ozMKOiCwmiNIiHxxo+3zCaLSvaRDxCp 8bWp37CTvEDQ0elhHOqp1USPs9+FLOmWIref8Q3qVCKFLMOROvg= -----END CERTIFICATE-----Generated at Thu Jun 18 07:08:07 2026 by rpki-client