$ rpki-client -vvf rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft File: 202D68B92C393694107A2F9B59DF1822383F0A40.mft (raw, json) Hash identifier: H0WAHsLG5jEZ80SihsUFGlCrzDH97hQBuT5GJgFvKaQ= Subject key identifier: EC:C7:7E:AA:70:85:A9:13:57:83:79:8A:B8:C6:E9:27:D6:32:6A:20 Authority key identifier: 20:2D:68:B9:2C:39:36:94:10:7A:2F:9B:59:DF:18:22:38:3F:0A:40 Certificate issuer: /CN=202D68B92C393694107A2F9B59DF1822383F0A40 Certificate serial: 45DE654CF7A40DB13C5D3B91ED770D7A48CE4EAF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft Manifest number: 42 Signing time: Sat 20 Jun 2026 06:58:04 +0000 Manifest this update: Sat 20 Jun 2026 06:53:04 +0000 Manifest next update: Sun 21 Jun 2026 09:28:04 +0000 Files and hashes: 1: 3130332e3232302e34352e302f32342d3234203d3e203438343635.roa (hash: s1JJ4qxqnX+/x2wRLTL/vn6XvEiBu3g0RUuaHJFKCfY=) 2: 202D68B92C393694107A2F9B59DF1822383F0A40.crl (hash: 8OXaWGsR9sQBfv3lJvzekU3EGaKU1As1eg7CeWoYjSs=) 3: 3130332e3232302e34342e302f32342d3234203d3e20313530313939.roa (hash: JJn7HIlfA2u7cKl1pj836AvFJgvd06b+L9BxXbXGPiQ=) 4: 3130332e3232302e34352e302f32342d3234203d3e20313530313939.roa (hash: sVkX/3BAqlUnIX3vPMQ13bPbeRbhUsec2KXwzV7qXyg=) 5: 3130332e3232302e34342e302f32342d3234203d3e203438343635.roa (hash: 59w4gZXVO0UF24xOSJ6tHWLfwtyek7qt4pTN2C7JT58=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.crl rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 09:28:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:de:65:4c:f7:a4:0d:b1:3c:5d:3b:91:ed:77:0d:7a:48:ce:4e:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202D68B92C393694107A2F9B59DF1822383F0A40 Validity Not Before: Jun 20 06:53:04 2026 GMT Not After : Jun 21 09:28:04 2026 GMT Subject: CN=ECC77EAA7085A9135783798AB8C6E927D6326A20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b9:27:73:d8:bf:60:9b:16:fb:89:8d:0b:2d: 84:af:2a:15:cb:5a:11:ed:92:a1:92:2f:03:4a:c3: c6:a9:86:cf:04:ea:db:fd:1d:5b:4a:8d:df:ff:07: a3:f1:e3:76:58:41:dc:6a:2f:2d:3d:28:b4:0e:58: ae:bd:52:8a:df:90:e3:f0:59:05:56:5f:61:46:7a: 54:78:14:33:b9:e5:df:19:56:e3:e7:f3:c6:e5:91: 9b:4a:a4:82:d1:a9:82:b8:6f:d7:69:88:4c:4c:8f: ab:40:96:e5:9e:97:9f:f2:c6:4d:2a:cc:03:d6:93: 65:f0:2d:51:78:5a:a3:91:5d:09:b0:71:5a:39:1e: 03:4e:2b:d3:b2:e8:2f:99:d9:64:0d:60:6c:76:9a: 5f:46:4a:2f:6b:17:fc:ef:f2:2b:0d:95:42:b2:7c: 58:02:25:a3:46:2f:c8:aa:b8:87:c9:a9:93:a8:db: 65:24:f2:e4:e5:fc:d6:65:20:06:e0:76:e5:56:52: e4:b9:62:48:fe:3f:70:f1:9d:ac:c8:31:af:d2:ed: 5c:ae:1a:df:df:e7:ca:38:0b:e3:88:e8:7c:69:6e: 63:9c:b8:45:fb:a3:6a:64:be:50:3f:ec:04:ac:51: 3d:e5:97:c5:44:1e:5f:84:ae:a7:3d:10:b2:f8:21: a1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:C7:7E:AA:70:85:A9:13:57:83:79:8A:B8:C6:E9:27:D6:32:6A:20 X509v3 Authority Key Identifier: keyid:20:2D:68:B9:2C:39:36:94:10:7A:2F:9B:59:DF:18:22:38:3F:0A:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202D68B92C393694107A2F9B59DF1822383F0A40.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/65729291-a1a7-4b19-93f6-1d84574a67ae/0/202D68B92C393694107A2F9B59DF1822383F0A40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:eb:ed:7d:74:c7:6a:bf:3d:c1:97:24:b3:bd:d0:c4:68:1f: 2f:76:4e:11:d0:dc:e1:aa:17:42:dc:2b:00:82:4d:84:4b:9f: c3:cd:84:1a:99:c9:4c:00:a6:18:13:ba:9b:59:75:70:f6:54: 10:fa:24:57:54:4a:cb:1c:ea:63:61:f0:b2:60:d8:ab:73:fa: b6:7b:ff:bd:38:bf:d7:8f:0d:4f:5e:5d:92:1e:c7:25:83:1a: 94:e4:93:2a:b9:7e:84:96:ca:ba:75:32:01:aa:27:db:2f:5b: 4b:a8:18:05:28:4b:87:5e:89:10:46:6a:6f:b9:f7:13:e5:d7: 6b:d5:27:a5:b8:3b:34:f0:bc:0b:51:cf:59:fe:f0:da:d0:3e: ae:f6:bd:0f:42:a3:ca:d8:8c:ad:ef:36:6b:2c:a8:b8:b8:1e: 82:e6:83:2c:24:1d:50:dc:70:67:f9:1e:7e:14:e4:95:fd:d3: c5:b0:44:4b:d2:39:f7:b9:c3:f5:89:12:a7:97:7d:9a:78:35: ec:bd:57:2d:43:13:e2:32:61:d7:16:81:66:1f:2a:06:51:61: ec:7e:69:57:51:a5:dc:2b:6d:e0:01:b7:82:a2:42:5f:af:6d: 96:18:42:1c:66:d9:b2:a6:09:56:07:16:bf:80:e3:1a:c9:4e: a9:df:f8:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURd5lTPekDbE8XTuR7XcNekjOTq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyRDY4QjkyQzM5MzY5NDEwN0EyRjlCNTlERjE4MjIz ODNGMEE0MDAeFw0yNjA2MjAwNjUzMDRaFw0yNjA2MjEwOTI4MDRaMDMxMTAvBgNV BAMTKEVDQzc3RUFBNzA4NUE5MTM1NzgzNzk4QUI4QzZFOTI3RDYzMjZBMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsuSdz2L9gmxb7iY0LLYSvKhXL WhHtkqGSLwNKw8aphs8E6tv9HVtKjd//B6Px43ZYQdxqLy09KLQOWK69UorfkOPw WQVWX2FGelR4FDO55d8ZVuPn88blkZtKpILRqYK4b9dpiExMj6tAluWel5/yxk0q zAPWk2XwLVF4WqORXQmwcVo5HgNOK9Oy6C+Z2WQNYGx2ml9GSi9rF/zv8isNlUKy fFgCJaNGL8iquIfJqZOo22Uk8uTl/NZlIAbgduVWUuS5Ykj+P3DxnazIMa/S7Vyu Gt/f58o4C+OI6HxpbmOcuEX7o2pkvlA/7ASsUT3ll8VEHl+Erqc9ELL4IaHLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7Md+qnCFqRNXg3mKuMbpJ9YyaiAwHwYDVR0j BBgwFoAUIC1ouSw5NpQQei+bWd8YIjg/CkAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjU3MjkyOTEtYTFhNy00YjE5LTkzZjYtMWQ4NDU3NGE2N2FlLzAvMjAyRDY4Qjky QzM5MzY5NDEwN0EyRjlCNTlERjE4MjIzODNGMEE0MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDJENjhCOTJDMzkzNjk0MTA3QTJGOUI1OURGMTgyMjM4M0Yw QTQwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjU3MjkyOTEtYTFhNy00YjE5LTkz ZjYtMWQ4NDU3NGE2N2FlLzAvMjAyRDY4QjkyQzM5MzY5NDEwN0EyRjlCNTlERjE4 MjIzODNGMEE0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI3r7X10x2q/PcGXJLO90MRoHy92ThHQ3OGq F0LcKwCCTYRLn8PNhBqZyUwAphgTuptZdXD2VBD6JFdUSssc6mNh8LJg2Ktz+rZ7 /704v9ePDU9eXZIexyWDGpTkkyq5foSWyrp1MgGqJ9svW0uoGAUoS4deiRBGam+5 9xPl12vVJ6W4OzTwvAtRz1n+8NrQPq72vQ9Co8rYjK3vNmssqLi4HoLmgywkHVDc cGf5Hn4U5JX908WwREvSOfe5w/WJEqeXfZp4Ney9Vy1DE+IyYdcWgWYfKgZRYex+ aVdRpdwrbeABt4KiQl+vbZYYQhxm2bKmCVYHFr+A4xrJTqnf+Bk= -----END CERTIFICATE-----Generated at Sat Jun 20 16:57:16 2026 by rpki-client