$ rpki-client -vvf rpki-rsync.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.mft File: 2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.mft (raw, json) Hash identifier: qxaHTD1rsFvmRa/YU/Q0pGbNWQus4kvOXLoVcs5JbN8= Subject key identifier: B8:02:EC:64:8A:82:5D:47:8C:BB:47:7A:6F:50:61:FC:F5:24:48:8C Authority key identifier: 2D:FC:5C:3D:38:82:FE:6E:7F:9A:9E:FE:2F:6B:96:55:5F:F5:2D:D7 Certificate issuer: /CN=2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7 Certificate serial: 778B3E65CACCA347652EC25B2411B1CCD4EAA6CA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.mft Manifest number: 40 Signing time: Thu 18 Jun 2026 06:30:03 +0000 Manifest this update: Thu 18 Jun 2026 06:25:03 +0000 Manifest next update: Fri 19 Jun 2026 08:58:03 +0000 Files and hashes: 1: 2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.crl (hash: RQy5lThA3SzFVT7YL6Yqp46BvAwCWI8Pscc6tmx2cCg=) 2: 3130332e3130312e3231382e302f32332d3234203d3e20313432333437.roa (hash: KyTDN/npdCxMnf6sB8d1UiCU7Ow9yE5T+dZIKGap4fI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.crl rsync://rpki-rsync.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 08:58:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:8b:3e:65:ca:cc:a3:47:65:2e:c2:5b:24:11:b1:cc:d4:ea:a6:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7 Validity Not Before: Jun 18 06:25:03 2026 GMT Not After : Jun 19 08:58:03 2026 GMT Subject: CN=B802EC648A825D478CBB477A6F5061FCF524488C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d6:e4:92:7a:4b:e1:20:5c:be:bc:77:5a:ad: 72:e3:67:49:39:cc:66:4e:80:c8:ce:d3:17:2c:7f: 55:6e:b3:b8:05:f3:84:7c:1f:fe:45:13:82:4a:8c: 60:12:b1:50:b6:0a:2c:21:c1:26:07:a9:6d:3d:ad: 10:47:f6:0f:c9:b9:ad:7b:7d:0b:c5:89:13:72:c4: 78:ce:be:c9:e5:cc:c2:9a:67:96:9e:1d:63:fa:b5: cc:cf:6f:f7:5f:07:17:f2:2a:c0:ad:53:34:0d:b7: 1c:7b:69:8b:6c:b2:66:eb:a3:75:8e:ce:79:6a:75: f6:9e:63:c9:22:49:2f:55:83:1b:aa:87:86:03:2a: 16:e4:40:10:be:ea:d6:55:c5:f8:34:45:c8:ee:35: 27:3f:6d:95:1d:73:22:e2:f1:fd:70:b7:e3:84:8f: 7d:ce:b3:d7:d6:4a:a3:43:49:c0:a9:14:38:24:d0: 18:a2:1c:19:27:d7:f0:86:e4:5c:d3:42:5a:6c:ec: 3e:36:f0:3c:f0:f8:d4:7a:33:41:f9:6b:9c:c6:8d: ac:9f:f6:6e:bb:53:72:ff:e3:13:47:34:88:e8:fe: 0b:ab:94:21:3b:c2:c6:f3:48:f9:a2:38:cc:37:f1: 6e:13:de:a5:47:59:63:33:d7:38:16:52:c2:fb:a6: a4:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:02:EC:64:8A:82:5D:47:8C:BB:47:7A:6F:50:61:FC:F5:24:48:8C X509v3 Authority Key Identifier: keyid:2D:FC:5C:3D:38:82:FE:6E:7F:9A:9E:FE:2F:6B:96:55:5F:F5:2D:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/6ef0013b-59a6-4733-89f8-28fa3d88579f/0/2DFC5C3D3882FE6E7F9A9EFE2F6B96555FF52DD7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:64:00:21:8a:08:fd:cf:92:29:4c:ef:c4:65:07:60:a3:9e: f0:51:ae:fd:b7:c9:93:15:01:12:b2:12:f8:0d:49:08:b7:7c: c4:ff:46:31:2e:77:0b:1b:08:65:35:fd:45:77:96:4b:ec:f1: db:b6:e1:7d:2c:50:26:6d:6a:7e:6e:de:77:12:4b:33:eb:bf: 04:3b:5c:25:8e:4c:94:42:d2:ea:a0:e0:a5:9c:25:57:d8:6c: a9:6d:55:75:bc:98:18:ac:6f:e7:e6:e6:1c:37:37:d3:76:9c: ec:65:b0:28:d7:00:c1:88:52:3f:1e:d3:29:4a:ad:67:dd:78: 02:78:7a:24:1d:39:00:91:91:47:8a:30:a0:41:82:be:6d:e5: 32:c9:d7:4f:de:b1:c8:35:4d:70:1e:f5:09:c0:75:88:76:2f: e9:d7:98:97:24:91:9d:07:d4:e6:58:9f:58:e1:4d:47:d7:3a: 91:56:df:ab:de:29:7e:3d:c5:7e:24:90:b1:00:32:9a:4b:15: 3a:a9:b4:e1:7e:12:32:f8:6d:e3:f7:cf:2d:02:66:4c:33:83: f4:5d:f2:cb:4d:d1:e1:f8:5b:3c:69:c2:06:2a:e5:23:88:ae: 8f:30:fb:e2:83:78:9a:5e:2d:c3:fb:b1:34:e2:5f:0d:63:3d: 44:34:14:58 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd4s+ZcrMo0dlLsJbJBGxzNTqpsowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkRGQzVDM0QzODgyRkU2RTdGOUE5RUZFMkY2Qjk2NTU1 RkY1MkRENzAeFw0yNjA2MTgwNjI1MDNaFw0yNjA2MTkwODU4MDNaMDMxMTAvBgNV BAMTKEI4MDJFQzY0OEE4MjVENDc4Q0JCNDc3QTZGNTA2MUZDRjUyNDQ4OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC81uSSekvhIFy+vHdarXLjZ0k5 zGZOgMjO0xcsf1Vus7gF84R8H/5FE4JKjGASsVC2CiwhwSYHqW09rRBH9g/Jua17 fQvFiRNyxHjOvsnlzMKaZ5aeHWP6tczPb/dfBxfyKsCtUzQNtxx7aYtssmbro3WO znlqdfaeY8kiSS9Vgxuqh4YDKhbkQBC+6tZVxfg0RcjuNSc/bZUdcyLi8f1wt+OE j33Os9fWSqNDScCpFDgk0BiiHBkn1/CG5FzTQlps7D428Dzw+NR6M0H5a5zGjayf 9m67U3L/4xNHNIjo/gurlCE7wsbzSPmiOMw38W4T3qVHWWMz1zgWUsL7pqRpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuALsZIqCXUeMu0d6b1Bh/PUkSIwwHwYDVR0j BBgwFoAULfxcPTiC/m5/mp7+L2uWVV/1LdcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NmVmMDAxM2ItNTlhNi00NzMzLTg5ZjgtMjhmYTNkODg1NzlmLzAvMkRGQzVDM0Qz ODgyRkU2RTdGOUE5RUZFMkY2Qjk2NTU1RkY1MkRENy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yREZDNUMzRDM4ODJGRTZFN0Y5QTlFRkUyRjZCOTY1NTVGRjUy REQ3LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNmVmMDAxM2ItNTlhNi00NzMzLTg5 ZjgtMjhmYTNkODg1NzlmLzAvMkRGQzVDM0QzODgyRkU2RTdGOUE5RUZFMkY2Qjk2 NTU1RkY1MkRENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABdkACGKCP3PkilM78RlB2CjnvBRrv23yZMV ARKyEvgNSQi3fMT/RjEudwsbCGU1/UV3lkvs8du24X0sUCZtan5u3ncSSzPrvwQ7 XCWOTJRC0uqg4KWcJVfYbKltVXW8mBisb+fm5hw3N9N2nOxlsCjXAMGIUj8e0ylK rWfdeAJ4eiQdOQCRkUeKMKBBgr5t5TLJ10/escg1TXAe9QnAdYh2L+nXmJckkZ0H 1OZYn1jhTUfXOpFW36veKX49xX4kkLEAMppLFTqptOF+EjL4beP3zy0CZkwzg/Rd 8stN0eH4WzxpwgYq5SOIro8w++KDeJpeLcP7sTTiXw1jPUQ0FFg= -----END CERTIFICATE-----Generated at Thu Jun 18 19:09:18 2026 by rpki-client