$ rpki-client -vvf rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft File: 8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft (raw, json) Hash identifier: E4ruNICewTBov+zY2g9JtqxJlKcoJzSEwPT6JjdJb48= Subject key identifier: 65:A2:A1:20:B6:1E:14:B3:D8:F0:DA:F4:6D:96:D7:8F:FC:55:46:04 Authority key identifier: 8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 Certificate issuer: /CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Certificate serial: 5C88D03308E49640D3560EEA3790BAC9DE0D7504 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft Manifest number: 42 Signing time: Fri 19 Jun 2026 16:15:20 +0000 Manifest this update: Fri 19 Jun 2026 16:10:20 +0000 Manifest next update: Sat 20 Jun 2026 19:38:20 +0000 Files and hashes: 1: 3130332e3138362e3139352e302f32342d3234203d3e203438343635.roa (hash: r7dovsQ2SZSV7IfPAfAuGK0MlNXhEY5b9y9M8jygZbk=) 2: 8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl (hash: mqmPC2OowIJUbL7pksn34llLVZDBQmJoCI8B/V1henU=) 3: 3130332e3138362e3139342e302f32332d3233203d3e20313439373132.roa (hash: vEKBFb87szZHK58hOoWh27DXWyqF6KjiEygYywKcCcA=) 4: 3130332e3138362e3139342e302f32342d3234203d3e203438343635.roa (hash: 3gBu5z4wg47/tNqaD7YsE1EFFZZ6JYTR0325QFX63A0=) 5: 3130332e3138362e3139342e302f32342d3234203d3e20313439373132.roa (hash: FAM0vFS+CEP/k4I2FWb6JASyBXq3gfqT8CiCE9WHTo0=) 6: 3130332e3138362e3139342e302f32332d3234203d3e20313439373132.roa (hash: nhCth3GuuL56/ZX/YpeRjeCAIHYgJ/lFofg+gthNMoU=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 19:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:88:d0:33:08:e4:96:40:d3:56:0e:ea:37:90:ba:c9:de:0d:75:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E7D29B8B2E6F2F09B507FC36B3173162A4316E9 Validity Not Before: Jun 19 16:10:20 2026 GMT Not After : Jun 20 19:38:20 2026 GMT Subject: CN=65A2A120B61E14B3D8F0DAF46D96D78FFC554604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ae:7a:e2:e9:a2:b1:4f:13:43:4c:5d:68:ba: f8:8f:29:bf:54:18:54:1d:fb:91:af:0a:0d:5c:ef: bc:a4:4f:32:3c:ca:52:bf:5b:32:e3:eb:5d:2b:2c: 24:cd:f6:ba:e8:de:5f:39:8d:83:f4:7b:94:e5:e0: f4:ab:6a:c6:13:6d:f6:bd:e0:03:50:da:c4:26:06: 61:b0:7c:d1:ea:e0:f3:35:94:6b:43:4e:52:6e:2a: 2c:dd:04:c6:8f:34:d0:4d:9e:e6:cf:38:f3:cc:e1: ad:99:d0:00:5d:14:99:90:97:2a:bc:29:eb:65:aa: 05:4f:a5:94:4f:99:c0:dc:cc:05:87:d1:6e:6b:07: 6c:1d:9d:d9:e1:69:57:b0:16:cb:db:4e:ae:7e:5b: 42:2b:88:1c:d3:15:cb:5e:86:08:75:db:58:d7:1d: 71:80:58:cb:b3:d9:0d:3e:69:94:bc:65:2d:83:b1: 21:b4:7d:11:9e:64:90:66:30:2b:01:29:5c:e6:4e: e7:55:2d:69:82:19:06:b2:b4:a1:39:47:7c:f8:4a: a9:09:f4:38:93:4b:99:85:c1:26:f5:58:a7:2f:06: 1f:45:02:6a:3b:f0:6c:33:07:75:af:de:cb:c7:97: e2:97:fd:e0:57:c6:63:e3:01:48:d6:32:17:bc:73: 28:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:A2:A1:20:B6:1E:14:B3:D8:F0:DA:F4:6D:96:D7:8F:FC:55:46:04 X509v3 Authority Key Identifier: keyid:8E:7D:29:B8:B2:E6:F2:F0:9B:50:7F:C3:6B:31:73:16:2A:43:16:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5252ead3-dc8f-4d86-afcf-a140e5b87532/0/8E7D29B8B2E6F2F09B507FC36B3173162A4316E9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:93:a7:27:2e:c4:07:b1:a9:22:ad:21:23:ac:f0:e2:8f:a4: 47:6f:c8:eb:29:0f:85:b3:00:43:4b:14:e6:0c:13:3c:d8:0f: 04:e1:20:f0:42:5e:5a:2c:1a:c4:59:96:83:bd:ea:04:9c:1b: 5b:df:5d:1f:15:34:60:e0:e6:52:78:63:fb:f7:6c:fb:b9:9b: 4d:2a:f7:10:32:0e:b6:da:04:7f:40:6d:24:29:49:c4:fd:50: 88:0c:69:fb:95:6d:3c:0b:eb:65:ae:61:e4:ea:dd:b4:2b:6d: aa:84:f4:78:bb:86:80:44:8c:49:75:42:81:ca:d8:d2:4b:33: 02:7c:95:dd:51:e4:29:90:b5:99:ee:ca:10:a9:2a:2a:99:82: 9e:b2:8d:15:73:2b:7d:4d:be:d6:53:e9:49:8e:a0:2b:d2:84: 18:5c:4c:31:d0:42:57:7d:c2:72:e4:34:8d:66:81:80:62:f1: 83:a2:ff:dc:e1:47:03:b8:5f:94:45:ac:11:fd:19:f7:75:7f: 16:f9:54:af:73:d9:5b:9b:e1:ae:d5:f0:c0:e8:1e:49:52:81: f3:3f:c9:37:70:13:89:e7:70:3b:f7:cd:32:17:95:cc:6d:99: f2:fb:46:ff:10:be:16:fa:13:f1:cb:80:10:1f:80:04:3c:51: 8f:89:99:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXIjQMwjklkDTVg7qN5C6yd4NdQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU3RDI5QjhCMkU2RjJGMDlCNTA3RkMzNkIzMTczMTYy QTQzMTZFOTAeFw0yNjA2MTkxNjEwMjBaFw0yNjA2MjAxOTM4MjBaMDMxMTAvBgNV BAMTKDY1QTJBMTIwQjYxRTE0QjNEOEYwREFGNDZEOTZENzhGRkM1NTQ2MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1rnri6aKxTxNDTF1ouviPKb9U GFQd+5GvCg1c77ykTzI8ylK/WzLj610rLCTN9rro3l85jYP0e5Tl4PSrasYTbfa9 4ANQ2sQmBmGwfNHq4PM1lGtDTlJuKizdBMaPNNBNnubPOPPM4a2Z0ABdFJmQlyq8 KetlqgVPpZRPmcDczAWH0W5rB2wdndnhaVewFsvbTq5+W0IriBzTFctehgh121jX HXGAWMuz2Q0+aZS8ZS2DsSG0fRGeZJBmMCsBKVzmTudVLWmCGQaytKE5R3z4SqkJ 9DiTS5mFwSb1WKcvBh9FAmo78GwzB3Wv3svHl+KX/eBXxmPjAUjWMhe8cygxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZaKhILYeFLPY8Nr0bZbXj/xVRgQwHwYDVR0j BBgwFoAUjn0puLLm8vCbUH/DazFzFipDFukwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTI1MmVhZDMtZGM4Zi00ZDg2LWFmY2YtYTE0MGU1Yjg3NTMyLzAvOEU3RDI5QjhC MkU2RjJGMDlCNTA3RkMzNkIzMTczMTYyQTQzMTZFOS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84RTdEMjlCOEIyRTZGMkYwOUI1MDdGQzM2QjMxNzMxNjJBNDMx NkU5LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNTI1MmVhZDMtZGM4Zi00ZDg2LWFm Y2YtYTE0MGU1Yjg3NTMyLzAvOEU3RDI5QjhCMkU2RjJGMDlCNTA3RkMzNkIzMTcz MTYyQTQzMTZFOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE+TpycuxAexqSKtISOs8OKPpEdvyOspD4Wz AENLFOYMEzzYDwThIPBCXlosGsRZloO96gScG1vfXR8VNGDg5lJ4Y/v3bPu5m00q 9xAyDrbaBH9AbSQpScT9UIgMafuVbTwL62WuYeTq3bQrbaqE9Hi7hoBEjEl1QoHK 2NJLMwJ8ld1R5CmQtZnuyhCpKiqZgp6yjRVzK31NvtZT6UmOoCvShBhcTDHQQld9 wnLkNI1mgYBi8YOi/9zhRwO4X5RFrBH9Gfd1fxb5VK9z2Vub4a7V8MDoHklSgfM/ yTdwE4nncDv3zTIXlcxtmfL7Rv8Qvhb6E/HLgBAfgAQ8UY+JmZM= -----END CERTIFICATE-----Generated at Sat Jun 20 11:24:27 2026 by rpki-client