$ rpki-client -vvf rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft File: DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft (raw, json) Hash identifier: PXJYZ73hWAUTe/JqOzhZLHVa0Z+PJmMTeD+gDD97L2Y= Subject key identifier: 27:A8:16:3B:89:DC:54:32:67:20:1A:01:47:23:95:2A:92:38:DC:FD Authority key identifier: DF:23:04:42:9B:18:F8:08:9F:AE:1F:C9:38:67:4F:36:A0:FD:77:B2 Certificate issuer: /CN=DF2304429B18F8089FAE1FC938674F36A0FD77B2 Certificate serial: 0C92E8B33D773A77AF8308C218C4A1092A66D9D2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft Manifest number: 3F Signing time: Thu 18 Jun 2026 09:49:04 +0000 Manifest this update: Thu 18 Jun 2026 09:44:04 +0000 Manifest next update: Fri 19 Jun 2026 12:43:04 +0000 Files and hashes: 1: 3135372e31352e36362e302f32332d3233203d3e20313532333737.roa (hash: N6yMW5HjzqSkSXTxh8LYBYq0zgZeaS0wE1WlogwqRwM=) 2: 3135372e31352e36372e302f32342d3234203d3e20313532333737.roa (hash: CpW+8vhTW86R4U0S/gqyxxfPZJCtlWIdT+jTSx+66zc=) 3: DF2304429B18F8089FAE1FC938674F36A0FD77B2.crl (hash: yDmuCkmlP9UzzYBu4ZGGoXflx6A0MbDze/lfGbK2zMc=) 4: 3135372e31352e36362e302f32342d3234203d3e20313532333737.roa (hash: ftQeDYyrz6hB+RbX5fKWVbWWuQdAQyxBYb3VQF1+q6g=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.crl rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 08:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:92:e8:b3:3d:77:3a:77:af:83:08:c2:18:c4:a1:09:2a:66:d9:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF2304429B18F8089FAE1FC938674F36A0FD77B2 Validity Not Before: Jun 18 09:44:04 2026 GMT Not After : Jun 19 12:43:04 2026 GMT Subject: CN=27A8163B89DC543267201A014723952A9238DCFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:80:4f:e3:2e:70:d5:3b:8a:d4:6e:d2:69:b1: 7e:3f:0a:f1:ce:a5:07:3d:4e:5b:c8:c8:37:e4:7c: 0f:0b:12:a3:0b:fa:69:6b:ef:f3:5b:f5:8d:b8:f7: f6:f9:bb:fc:fb:da:de:99:de:8f:4a:be:78:0e:d3: d2:ea:07:b7:9a:24:28:2a:ba:28:c5:a8:f4:82:df: 6e:f0:b3:f8:f4:e6:e0:16:e7:ce:b0:e0:45:69:74: 08:8b:51:c6:9d:fe:e2:ff:2f:7d:08:b7:87:0d:90: 53:f3:f5:ed:c9:f0:1b:db:b9:cc:f1:a7:f7:46:cb: d6:70:73:a7:2c:c3:a9:eb:23:11:69:74:0c:87:a5: b4:cd:c3:9b:86:8e:74:b9:aa:00:3e:ed:36:3b:d3: 4d:f5:95:9a:74:5d:48:ef:8f:c5:19:a5:76:27:0f: 57:d7:87:a9:b4:50:d5:ec:c8:7f:16:11:e4:44:be: 41:95:9a:a2:4b:78:66:8b:54:e6:f0:6b:77:36:1b: 62:29:3e:7b:52:73:3b:fd:0e:db:84:65:5b:90:c3: ce:5f:b2:d0:89:8d:97:36:b1:d9:f1:0a:ca:da:11: dc:9e:09:b6:08:42:d7:1d:c2:94:12:a4:da:92:a5: e7:7e:77:b8:09:1b:f5:3f:0f:16:ed:09:9e:5b:cd: 4f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:A8:16:3B:89:DC:54:32:67:20:1A:01:47:23:95:2A:92:38:DC:FD X509v3 Authority Key Identifier: keyid:DF:23:04:42:9B:18:F8:08:9F:AE:1F:C9:38:67:4F:36:A0:FD:77:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/484e879f-3a56-4d8d-83e8-0e9cc65770ea/0/DF2304429B18F8089FAE1FC938674F36A0FD77B2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:c8:10:2b:f9:77:62:13:e3:15:e0:3a:98:84:f9:89:d0:de: 38:1f:ad:3c:72:9a:25:87:0d:34:aa:0b:be:6f:9c:3f:5f:19: 6a:b4:7e:e9:11:40:d6:b7:56:ef:4b:b8:13:30:63:32:63:9f: b5:2a:0e:5f:4f:e4:17:4e:d5:c8:bb:6d:f8:00:e9:a7:fb:1a: 45:ba:21:18:21:dc:75:20:35:cc:b3:00:66:5a:3e:8b:09:51: 35:4d:32:4a:0a:71:26:7d:7d:d6:ae:57:4b:ac:41:72:19:b1: 66:c1:31:60:2a:28:f9:2a:4c:72:6e:d9:34:6e:85:73:0c:80: e9:14:a2:ce:36:37:be:29:84:64:37:5f:ed:6f:f1:1f:07:db: 64:a8:ec:94:ff:0c:4a:19:e4:56:eb:f2:0c:28:9b:f9:51:a1: ef:ce:38:9a:a3:7a:3f:80:b8:ff:30:c8:fa:51:7c:40:ef:49: 3d:46:3d:b2:7f:e5:89:b8:e1:7f:d9:63:f0:a6:bb:62:b2:c5: f6:b6:a4:10:ba:59:14:2a:74:62:d6:bc:35:57:f0:02:4b:ee: 0d:cd:f7:97:d7:d8:ff:5d:c3:6c:dc:8e:ca:0b:90:5f:d2:2a: 7d:5f:e2:c8:25:64:a9:e6:82:1a:f9:51:15:5f:65:5e:77:ed: 51:1d:4b:d2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDJLosz13OnevgwjCGMShCSpm2dIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYyMzA0NDI5QjE4RjgwODlGQUUxRkM5Mzg2NzRGMzZB MEZENzdCMjAeFw0yNjA2MTgwOTQ0MDRaFw0yNjA2MTkxMjQzMDRaMDMxMTAvBgNV BAMTKDI3QTgxNjNCODlEQzU0MzI2NzIwMUEwMTQ3MjM5NTJBOTIzOERDRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDogE/jLnDVO4rUbtJpsX4/CvHO pQc9TlvIyDfkfA8LEqML+mlr7/Nb9Y249/b5u/z72t6Z3o9KvngO09LqB7eaJCgq uijFqPSC327ws/j05uAW586w4EVpdAiLUcad/uL/L30It4cNkFPz9e3J8Bvbuczx p/dGy9Zwc6csw6nrIxFpdAyHpbTNw5uGjnS5qgA+7TY70031lZp0XUjvj8UZpXYn D1fXh6m0UNXsyH8WEeREvkGVmqJLeGaLVObwa3c2G2IpPntSczv9DtuEZVuQw85f stCJjZc2sdnxCsraEdyeCbYIQtcdwpQSpNqSped+d7gJG/U/DxbtCZ5bzU/XAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJ6gWO4ncVDJnIBoBRyOVKpI43P0wHwYDVR0j BBgwFoAU3yMEQpsY+Aifrh/JOGdPNqD9d7IwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDg0ZTg3OWYtM2E1Ni00ZDhkLTgzZTgtMGU5Y2M2NTc3MGVhLzAvREYyMzA0NDI5 QjE4RjgwODlGQUUxRkM5Mzg2NzRGMzZBMEZENzdCMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC9ERjIzMDQ0MjlCMThGODA4OUZBRTFGQzkzODY3NEYzNkEwRkQ3 N0IyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDg0ZTg3OWYtM2E1Ni00ZDhkLTgz ZTgtMGU5Y2M2NTc3MGVhLzAvREYyMzA0NDI5QjE4RjgwODlGQUUxRkM5Mzg2NzRG MzZBMEZENzdCMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABzIECv5d2IT4xXgOpiE+YnQ3jgfrTxymiWH DTSqC75vnD9fGWq0fukRQNa3Vu9LuBMwYzJjn7UqDl9P5BdO1ci7bfgA6af7GkW6 IRgh3HUgNcyzAGZaPosJUTVNMkoKcSZ9fdauV0usQXIZsWbBMWAqKPkqTHJu2TRu hXMMgOkUos42N74phGQ3X+1v8R8H22So7JT/DEoZ5Fbr8gwom/lRoe/OOJqjej+A uP8wyPpRfEDvST1GPbJ/5Ym44X/ZY/Cmu2Kyxfa2pBC6WRQqdGLWvDVX8AJL7g3N 95fX2P9dw2zcjsoLkF/SKn1f4sglZKnmghr5URVfZV537VEdS9I= -----END CERTIFICATE-----Generated at Thu Jun 18 17:12:25 2026 by rpki-client