$ rpki-client -vvf rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.mft File: 20B75971A03105CC77AE06D20D23D95EBAFC11D2.mft (raw, json) Hash identifier: XjI7xP+u7QLGv+0zScxIkCjIaLRYX+YS2n6WZn9Yv7I= Subject key identifier: 58:76:5B:BC:B4:BF:4E:83:15:67:86:DD:90:07:B2:2B:37:62:7E:58 Authority key identifier: 20:B7:59:71:A0:31:05:CC:77:AE:06:D2:0D:23:D9:5E:BA:FC:11:D2 Certificate issuer: /CN=20B75971A03105CC77AE06D20D23D95EBAFC11D2 Certificate serial: 41261281BBB1CA349D7ECDDBE662451797C628D5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.mft Manifest number: 40 Signing time: Thu 18 Jun 2026 09:38:56 +0000 Manifest this update: Thu 18 Jun 2026 09:33:56 +0000 Manifest next update: Fri 19 Jun 2026 13:17:56 +0000 Files and hashes: 1: 20B75971A03105CC77AE06D20D23D95EBAFC11D2.crl (hash: 3zT8y4JXGG0ZAICM0ubqwV+U+kBwonpqUxGshnMEfO4=) 2: 3136302e31392e38342e302f32332d3233203d3e20313532373534.roa (hash: PZ7lOFKqUMwR2D2Tglk0+36W1k5KKwpsrA3YAIXAdvU=) 3: 3136302e31392e38352e302f32342d3234203d3e20313532373534.roa (hash: eJHqr/PQWEMxhCbNd/8TrNdKcDlxuebXQ2+zU3UL/Ys=) 4: 3136302e31392e38342e302f32342d3234203d3e20313532373534.roa (hash: EoJCqqilpIYvbJ/RnVfwHNYiOZPcKV9S7o08S4nSo30=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.crl rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 08:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:26:12:81:bb:b1:ca:34:9d:7e:cd:db:e6:62:45:17:97:c6:28:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B75971A03105CC77AE06D20D23D95EBAFC11D2 Validity Not Before: Jun 18 09:33:56 2026 GMT Not After : Jun 19 13:17:56 2026 GMT Subject: CN=58765BBCB4BF4E83156786DD9007B22B37627E58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:33:52:3f:ee:38:2b:fe:e3:33:08:07:94:10: f3:42:7c:53:b7:cc:3b:e5:73:40:df:0d:ca:49:0b: 7a:8f:b0:de:74:97:17:f3:75:ad:c1:44:a1:aa:91: b3:d9:45:1a:c0:dc:74:ff:80:27:27:e6:e7:77:10: 79:1b:35:67:30:c8:fd:32:d1:0b:49:de:1a:30:87: 52:fe:8c:49:af:c0:54:29:61:4f:0c:5d:95:fe:09: d1:9e:63:6e:38:ca:eb:e8:ec:65:d4:b8:94:f8:89: a0:f2:87:54:eb:b3:b5:45:0c:66:bb:db:0a:d3:54: fe:a5:25:2f:c0:c0:94:81:de:0b:63:17:66:fb:f3: 14:bc:17:b3:bd:99:fd:96:0c:a6:3c:bd:df:ee:5f: 5e:58:7c:31:2d:2f:95:7b:83:b8:62:bc:01:97:b7: f7:d9:c1:82:84:af:5d:16:83:c2:f5:66:43:0f:6f: 9a:2b:a7:8f:28:48:45:10:86:66:d3:7f:8a:37:00: e8:88:16:c8:09:09:d3:ef:04:aa:2e:b1:0a:22:b4: 36:62:c7:f4:a9:04:14:7a:3c:d5:4f:17:87:28:15: c4:e9:ee:4b:e1:5d:10:30:43:8d:01:3e:20:71:fc: f0:a5:f3:41:dc:db:82:c5:30:e6:3c:f0:71:8a:e0: 4e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:76:5B:BC:B4:BF:4E:83:15:67:86:DD:90:07:B2:2B:37:62:7E:58 X509v3 Authority Key Identifier: keyid:20:B7:59:71:A0:31:05:CC:77:AE:06:D2:0D:23:D9:5E:BA:FC:11:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4e374d48-5a70-4c7f-bdfd-d8052ebaf0ab/0/20B75971A03105CC77AE06D20D23D95EBAFC11D2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:64:fb:58:e0:49:e7:db:6d:7d:49:5c:67:82:e2:64:50:0f: 85:bb:ab:fe:2e:f7:a2:a2:07:e8:5e:18:bd:31:3b:85:93:2d: b7:6c:fe:69:9c:4d:69:91:86:64:58:e7:e5:27:05:ed:d1:db: 3d:d1:8c:e4:18:dc:ca:d1:f3:16:81:1a:d4:51:25:41:83:07: b1:b7:ab:e9:da:28:43:c6:72:9c:9d:e2:6a:da:67:0c:fe:d7: 41:9d:5e:b8:81:53:be:63:67:68:51:c5:d3:78:78:9f:ce:23: f6:5c:c5:9d:5e:d2:6a:33:58:b5:23:0d:c4:66:3d:d0:f7:10: a3:b7:20:88:0b:6b:70:b3:8d:7d:67:e3:13:42:2c:c2:fc:98: 40:b9:b4:80:ff:21:04:e1:ae:06:94:6a:e7:3e:3f:29:99:97: 53:0c:b0:66:b0:66:11:85:87:be:c1:2c:70:c8:23:d8:7a:18: c2:9b:18:69:75:e9:8e:f5:a3:fb:f6:49:b4:71:41:bb:46:12: 88:8e:30:05:98:45:71:c7:34:f9:5b:00:90:c3:7f:0e:25:95: e3:98:5b:9b:66:6c:68:7b:0f:54:e2:14:08:86:a7:87:ad:4f: d8:c9:c0:15:26:7a:7e:34:6b:61:67:c5:fd:73:fb:d2:73:51: 53:68:ee:c9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQSYSgbuxyjSdfs3b5mJFF5fGKNUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCNzU5NzFBMDMxMDVDQzc3QUUwNkQyMEQyM0Q5NUVC QUZDMTFEMjAeFw0yNjA2MTgwOTMzNTZaFw0yNjA2MTkxMzE3NTZaMDMxMTAvBgNV BAMTKDU4NzY1QkJDQjRCRjRFODMxNTY3ODZERDkwMDdCMjJCMzc2MjdFNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoM1I/7jgr/uMzCAeUEPNCfFO3 zDvlc0DfDcpJC3qPsN50lxfzda3BRKGqkbPZRRrA3HT/gCcn5ud3EHkbNWcwyP0y 0QtJ3howh1L+jEmvwFQpYU8MXZX+CdGeY244yuvo7GXUuJT4iaDyh1Trs7VFDGa7 2wrTVP6lJS/AwJSB3gtjF2b78xS8F7O9mf2WDKY8vd/uX15YfDEtL5V7g7hivAGX t/fZwYKEr10Wg8L1ZkMPb5orp48oSEUQhmbTf4o3AOiIFsgJCdPvBKousQoitDZi x/SpBBR6PNVPF4coFcTp7kvhXRAwQ40BPiBx/PCl80Hc24LFMOY88HGK4E6pAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWHZbvLS/ToMVZ4bdkAeyKzdiflgwHwYDVR0j BBgwFoAUILdZcaAxBcx3rgbSDSPZXrr8EdIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGUzNzRkNDgtNWE3MC00YzdmLWJkZmQtZDgwNTJlYmFmMGFiLzAvMjBCNzU5NzFB MDMxMDVDQzc3QUUwNkQyMEQyM0Q5NUVCQUZDMTFEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yMEI3NTk3MUEwMzEwNUNDNzdBRTA2RDIwRDIzRDk1RUJBRkMx MUQyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGUzNzRkNDgtNWE3MC00YzdmLWJk ZmQtZDgwNTJlYmFmMGFiLzAvMjBCNzU5NzFBMDMxMDVDQzc3QUUwNkQyMEQyM0Q5 NUVCQUZDMTFEMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHVk+1jgSefbbX1JXGeC4mRQD4W7q/4u96Ki B+heGL0xO4WTLbds/mmcTWmRhmRY5+UnBe3R2z3RjOQY3MrR8xaBGtRRJUGDB7G3 q+naKEPGcpyd4mraZwz+10GdXriBU75jZ2hRxdN4eJ/OI/ZcxZ1e0mozWLUjDcRm PdD3EKO3IIgLa3CzjX1n4xNCLML8mEC5tID/IQThrgaUauc+PymZl1MMsGawZhGF h77BLHDII9h6GMKbGGl16Y71o/v2SbRxQbtGEoiOMAWYRXHHNPlbAJDDfw4lleOY W5tmbGh7D1TiFAiGp4etT9jJwBUmen40a2Fnxf1z+9JzUVNo7sk= -----END CERTIFICATE-----Generated at Thu Jun 18 17:11:16 2026 by rpki-client