$ rpki-client -vvf rpki-rsync.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.mft File: 71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.mft (raw, json) Hash identifier: ocTWx80PPM3Nmur74BKPbF9ejygZvpRNMELhEcZ7opM= Subject key identifier: B7:46:D5:46:BC:94:F4:48:6F:D3:C0:E9:BA:52:1E:77:44:8D:E1:D3 Authority key identifier: 71:A4:5C:05:D7:D5:DF:9D:16:E9:C3:B0:60:75:35:DB:2B:90:6B:32 Certificate issuer: /CN=71A45C05D7D5DF9D16E9C3B0607535DB2B906B32 Certificate serial: 4EF0A9AACB696F35A8B70236EFC7ADBD52E99ED0 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.mft Manifest number: 40 Signing time: Thu 18 Jun 2026 08:58:00 +0000 Manifest this update: Thu 18 Jun 2026 08:53:00 +0000 Manifest next update: Fri 19 Jun 2026 09:44:00 +0000 Files and hashes: 1: 3130332e35362e39322e302f32342d3234203d3e203538343737.roa (hash: d1IJ4T81r3K/uk2231YZmItFa5G4LBBNAf/1wVmUa9c=) 2: 71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.crl (hash: wcBGupfd1+/gLScPauPJaNoxWygkiBfm+WB4ekLMQGw=) 3: 3130332e35362e39332e302f32342d3234203d3e203538343737.roa (hash: vqVbxn6Wjao5k2JYe2+RI+TcQAfRr5R7zs7bd5wdsLk=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.crl rsync://rpki-rsync.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 09:44:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:f0:a9:aa:cb:69:6f:35:a8:b7:02:36:ef:c7:ad:bd:52:e9:9e:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=71A45C05D7D5DF9D16E9C3B0607535DB2B906B32 Validity Not Before: Jun 18 08:53:00 2026 GMT Not After : Jun 19 09:44:00 2026 GMT Subject: CN=B746D546BC94F4486FD3C0E9BA521E77448DE1D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b6:5a:69:f0:00:df:4c:e8:27:33:62:21:da: e7:28:ad:c2:21:48:dd:96:1e:c3:e6:e8:de:1a:f0: 0b:50:54:33:33:c4:b2:49:cb:57:f9:1f:9a:45:00: 4a:a5:35:36:46:87:ba:45:0a:14:98:89:c2:ce:cc: fd:2c:f4:47:6c:0e:12:62:92:de:2b:9b:95:fc:26: 9b:bf:8b:f7:a1:33:77:99:da:83:2d:42:d1:4f:ca: f7:88:7a:04:75:c5:70:a0:bb:a7:af:55:f7:d4:9d: 60:70:a9:42:07:31:92:90:c4:e4:fd:7d:ba:bd:4e: ad:78:bc:4d:e9:84:03:6a:08:60:a7:d1:d7:a3:aa: cc:11:f4:29:a6:2a:1d:a7:e0:c5:fb:cb:7d:9d:7c: 1f:1e:aa:fd:df:8b:66:4e:f0:51:8b:16:e2:d9:fd: 40:b0:62:92:0c:ce:a9:82:3d:e9:22:b8:f3:22:0f: 68:68:9d:10:31:27:76:cd:d9:13:80:30:1c:12:d3: 1d:39:9d:f2:38:9f:7a:83:0f:b1:64:10:3b:ef:48: d8:aa:f4:2f:3a:2c:b5:83:d7:0b:94:a1:48:0a:d1: 0a:84:dd:c7:5f:98:60:7e:d5:93:65:e2:27:4a:b9: 0b:b6:ca:d1:99:fa:8c:3f:2e:57:63:92:e8:13:e7: 57:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:46:D5:46:BC:94:F4:48:6F:D3:C0:E9:BA:52:1E:77:44:8D:E1:D3 X509v3 Authority Key Identifier: keyid:71:A4:5C:05:D7:D5:DF:9D:16:E9:C3:B0:60:75:35:DB:2B:90:6B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/726cd26f-fbda-4cd8-a01c-b0155513015f/0/71A45C05D7D5DF9D16E9C3B0607535DB2B906B32.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:de:2a:97:fd:37:91:ce:b2:da:0c:64:1c:eb:46:47:95:69: 60:6a:58:1a:55:c5:f5:cd:24:02:61:eb:15:19:4f:9e:d3:4c: 6e:9c:33:dc:4a:db:7c:2c:88:0b:13:ea:7e:15:ee:4c:15:be: 99:06:43:6e:6f:aa:61:e7:b9:b2:64:18:6c:05:7f:f5:e8:a6: 97:95:90:2c:27:24:84:56:9c:ae:15:98:fa:a2:2d:a8:92:b1: 4b:38:b4:70:4c:30:2f:0c:ec:c0:20:85:40:6e:eb:a7:4c:a4: be:68:07:6e:73:6e:0f:50:45:28:16:e2:6b:05:1c:75:24:04: e8:57:d8:cb:de:50:d6:4c:a3:72:48:9c:a7:fe:32:28:8f:c6: d8:1f:47:d9:77:3e:ba:76:22:0d:d5:41:bd:89:92:69:36:24: 9e:f8:b0:9b:09:e2:21:b7:8a:ca:83:31:97:9e:89:83:df:00: 39:3f:da:69:2e:b1:e4:96:1d:58:68:3f:e7:f7:72:60:4e:58: 0d:99:98:7e:a9:3e:09:93:84:da:44:76:0e:16:9a:24:7e:06: 9e:9c:7b:04:f9:80:38:14:7e:3e:24:62:ca:47:38:65:78:1c: 54:ac:28:40:dd:55:06:56:fa:ce:3c:fc:a8:47:ab:6a:ac:32: 91:f0:ed:8c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTvCpqstpbzWotwI278etvVLpntAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzFBNDVDMDVEN0Q1REY5RDE2RTlDM0IwNjA3NTM1REIy QjkwNkIzMjAeFw0yNjA2MTgwODUzMDBaFw0yNjA2MTkwOTQ0MDBaMDMxMTAvBgNV BAMTKEI3NDZENTQ2QkM5NEY0NDg2RkQzQzBFOUJBNTIxRTc3NDQ4REUxRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFtlpp8ADfTOgnM2Ih2ucorcIh SN2WHsPm6N4a8AtQVDMzxLJJy1f5H5pFAEqlNTZGh7pFChSYicLOzP0s9EdsDhJi kt4rm5X8Jpu/i/ehM3eZ2oMtQtFPyveIegR1xXCgu6evVffUnWBwqUIHMZKQxOT9 fbq9Tq14vE3phANqCGCn0dejqswR9CmmKh2n4MX7y32dfB8eqv3fi2ZO8FGLFuLZ /UCwYpIMzqmCPekiuPMiD2honRAxJ3bN2ROAMBwS0x05nfI4n3qDD7FkEDvvSNiq 9C86LLWD1wuUoUgK0QqE3cdfmGB+1ZNl4idKuQu2ytGZ+ow/LldjkugT51dJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUt0bVRryU9Ehv08DpulIed0SN4dMwHwYDVR0j BBgwFoAUcaRcBdfV350W6cOwYHU12yuQazIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzI2Y2QyNmYtZmJkYS00Y2Q4LWEwMWMtYjAxNTU1MTMwMTVmLzAvNzFBNDVDMDVE N0Q1REY5RDE2RTlDM0IwNjA3NTM1REIyQjkwNkIzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83MUE0NUMwNUQ3RDVERjlEMTZFOUMzQjA2MDc1MzVEQjJCOTA2 QjMyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzI2Y2QyNmYtZmJkYS00Y2Q4LWEw MWMtYjAxNTU1MTMwMTVmLzAvNzFBNDVDMDVEN0Q1REY5RDE2RTlDM0IwNjA3NTM1 REIyQjkwNkIzMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABPeKpf9N5HOstoMZBzrRkeVaWBqWBpVxfXN JAJh6xUZT57TTG6cM9xK23wsiAsT6n4V7kwVvpkGQ25vqmHnubJkGGwFf/XoppeV kCwnJIRWnK4VmPqiLaiSsUs4tHBMMC8M7MAghUBu66dMpL5oB25zbg9QRSgW4msF HHUkBOhX2MveUNZMo3JInKf+MiiPxtgfR9l3Prp2Ig3VQb2Jkmk2JJ74sJsJ4iG3 isqDMZeeiYPfADk/2mkuseSWHVhoP+f3cmBOWA2ZmH6pPgmThNpEdg4WmiR+Bp6c ewT5gDgUfj4kYspHOGV4HFSsKEDdVQZW+s48/KhHq2qsMpHw7Yw= -----END CERTIFICATE-----Generated at Thu Jun 18 20:57:05 2026 by rpki-client