$ rpki-client -vvf rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft File: 853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft (raw, json) Hash identifier: KauJ80Hleifg4yMAilXPaX/THbyPN8Jb2mKjjLvtYhs= Subject key identifier: 3A:66:D1:F6:98:21:5E:68:E2:78:09:70:33:E0:9B:A6:05:A2:29:43 Authority key identifier: 85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE Certificate issuer: /CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Certificate serial: 67ABD0A35AB911019594E643B1A312EA1781E83E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft Manifest number: 42 Signing time: Fri 19 Jun 2026 16:30:40 +0000 Manifest this update: Fri 19 Jun 2026 16:25:40 +0000 Manifest next update: Sat 20 Jun 2026 20:19:40 +0000 Files and hashes: 1: 3130332e3132342e3139392e302f32342d3234203d3e20313338303936.roa (hash: fxSYsouQPJ65g7CwW1EnalKBkWjJiK50KJBFUAXhZzA=) 2: 3130332e3132342e3139362e302f32342d3234203d3e20313338303936.roa (hash: fgQOQ1ZPs6+mRIJ9mhffQJjtFV+ZjnGnsOoWLbAN6Mo=) 3: 323430333a653434303a3a2f33322d3332203d3e20313338303936.roa (hash: VwsatNn5AXuJ/LUW+n8JXwWEwiaViEVC741lbFCSMBE=) 4: 3130332e3132342e3139372e302f32342d3234203d3e20313338303936.roa (hash: nJl837iJi/5SwBSDbdYVongO7p9uzBZcmTZb0XAZTJk=) 5: 853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl (hash: I4stKyoh7AtMfVoUEB2sEyOu5Cvvffuk9rMfvHTqaXY=) 6: 3130332e3132342e3139382e302f32342d3234203d3e20313338303936.roa (hash: 07pLPD2WlKL+vB7ypQ2CjBacLrYgbCjaYdQZk1Lj438=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 20:19:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ab:d0:a3:5a:b9:11:01:95:94:e6:43:b1:a3:12:ea:17:81:e8:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE Validity Not Before: Jun 19 16:25:40 2026 GMT Not After : Jun 20 20:19:40 2026 GMT Subject: CN=3A66D1F698215E68E278097033E09BA605A22943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:70:fd:fa:2c:e6:66:64:e4:d7:bf:10:be:61: db:20:0e:42:ba:07:2e:9e:70:4e:49:7f:8c:8e:26: 8e:76:27:16:90:74:1e:52:c2:4f:94:4a:52:72:41: 71:1e:06:d6:e0:d2:e0:6e:7a:b5:86:c6:96:8f:27: 9a:1b:0c:52:db:d1:01:67:06:7f:7f:a4:fd:1b:a8: 32:98:e1:1f:e8:67:35:30:20:ee:3b:01:eb:53:4a: 23:bf:13:0d:3e:72:17:23:8a:a5:f1:e9:f5:30:aa: 70:aa:d5:c3:cf:81:f4:da:c4:ba:16:1a:20:52:f5: 54:a5:db:9e:69:10:20:5c:07:d8:70:bd:09:68:bb: b3:47:7c:54:93:68:3d:a8:b6:93:f7:3d:57:fd:e5: 47:78:44:63:e4:d7:45:e3:c4:e4:77:8d:b8:ca:95: e6:a1:fc:54:f7:ac:06:9f:5f:95:b5:a1:d1:7b:87: 9d:92:b5:c0:8d:cd:09:36:a2:68:8a:0b:59:35:ec: 4d:f7:7e:4e:86:4f:be:0f:41:99:6e:0b:63:77:ef: 72:ab:ef:91:d6:60:c6:4a:1d:25:0b:12:5a:78:07: 70:06:5f:37:c1:58:a0:b7:b0:49:47:ab:b8:ed:5a: d8:28:8b:a4:84:08:58:15:c7:00:d1:6c:48:a6:2e: 96:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:66:D1:F6:98:21:5E:68:E2:78:09:70:33:E0:9B:A6:05:A2:29:43 X509v3 Authority Key Identifier: keyid:85:3E:DD:7A:B3:EF:9A:13:A0:77:9F:26:12:78:6F:6D:2D:7C:08:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/45dff9b3-9041-4dd6-b7ab-02060d65d09a/0/853EDD7AB3EF9A13A0779F2612786F6D2D7C08BE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:b4:62:9d:d4:6f:c1:4c:c9:b2:7d:2d:f5:97:3b:8d:53:62: 21:6b:dc:b7:2f:fd:36:bf:1e:ca:6c:54:a9:3b:72:99:cc:63: 3b:b7:b1:94:2a:88:f3:00:eb:44:c8:1f:b4:93:60:0d:b5:5b: fb:d2:13:51:0a:f6:f3:6d:a9:c2:6d:6f:ff:fd:e1:a6:fa:f7: 2e:ef:99:e7:62:17:5e:2f:5d:ea:f4:cc:ab:14:5d:9e:f5:08: b7:00:e1:17:06:57:5f:f1:1a:9e:d8:a4:f7:86:93:df:24:fa: f5:80:46:58:57:d8:53:05:88:aa:3d:9b:b5:7d:b1:90:aa:bd: 5b:52:3e:6d:f3:8b:8b:52:89:c3:4a:18:09:a5:8a:58:80:74: 1b:3a:ce:9c:99:85:0d:81:7b:6c:7c:69:30:3c:b0:bb:b1:ee: 94:0d:67:63:65:82:e8:a8:f4:71:04:89:42:76:46:bd:a1:fc: e8:0c:e1:a2:84:1c:df:37:87:96:09:65:01:17:11:eb:e6:4b: c8:07:db:14:42:5f:ad:c1:72:3a:04:30:fb:28:ba:59:64:a4: 28:df:af:ea:24:f0:fa:32:0d:8c:7d:62:f9:99:59:02:b9:4d: eb:c3:38:bc:61:64:b3:8d:d0:7d:73:0e:78:d2:e8:0d:d7:ad: 32:bc:2e:42 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZ6vQo1q5EQGVlOZDsaMS6heB6D4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZGNkQy RDdDMDhCRTAeFw0yNjA2MTkxNjI1NDBaFw0yNjA2MjAyMDE5NDBaMDMxMTAvBgNV BAMTKDNBNjZEMUY2OTgyMTVFNjhFMjc4MDk3MDMzRTA5QkE2MDVBMjI5NDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIcP36LOZmZOTXvxC+YdsgDkK6 By6ecE5Jf4yOJo52JxaQdB5Swk+USlJyQXEeBtbg0uBuerWGxpaPJ5obDFLb0QFn Bn9/pP0bqDKY4R/oZzUwIO47AetTSiO/Ew0+chcjiqXx6fUwqnCq1cPPgfTaxLoW GiBS9VSl255pECBcB9hwvQlou7NHfFSTaD2otpP3PVf95Ud4RGPk10XjxOR3jbjK leah/FT3rAafX5W1odF7h52StcCNzQk2omiKC1k17E33fk6GT74PQZluC2N373Kr 75HWYMZKHSULElp4B3AGXzfBWKC3sElHq7jtWtgoi6SECFgVxwDRbEimLpZBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOmbR9pghXmjieAlwM+CbpgWiKUMwHwYDVR0j BBgwFoAUhT7derPvmhOgd58mEnhvbS18CL4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDVkZmY5YjMtOTA0MS00ZGQ2LWI3YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FC M0VGOUExM0EwNzc5RjI2MTI3ODZGNkQyRDdDMDhCRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84NTNFREQ3QUIzRUY5QTEzQTA3NzlGMjYxMjc4NkY2RDJEN0Mw OEJFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDVkZmY5YjMtOTA0MS00ZGQ2LWI3 YWItMDIwNjBkNjVkMDlhLzAvODUzRUREN0FCM0VGOUExM0EwNzc5RjI2MTI3ODZG NkQyRDdDMDhCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEC0Yp3Ub8FMybJ9LfWXO41TYiFr3Lcv/Ta/ HspsVKk7cpnMYzu3sZQqiPMA60TIH7STYA21W/vSE1EK9vNtqcJtb//94ab69y7v mediF14vXer0zKsUXZ71CLcA4RcGV1/xGp7YpPeGk98k+vWARlhX2FMFiKo9m7V9 sZCqvVtSPm3zi4tSicNKGAmliliAdBs6zpyZhQ2Be2x8aTA8sLux7pQNZ2Nlguio 9HEEiUJ2Rr2h/OgM4aKEHN83h5YJZQEXEevmS8gH2xRCX63BcjoEMPsoullkpCjf r+ok8PoyDYx9YvmZWQK5TevDOLxhZLON0H1zDnjS6A3XrTK8LkI= -----END CERTIFICATE-----Generated at Sat Jun 20 09:18:19 2026 by rpki-client