$ rpki-client -vvf rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.mft File: 3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.mft (raw, json) Hash identifier: XO7gv1T1drJslT+PckqHGpaMYPTl6wGFoGG6N9U/xbU= Subject key identifier: 55:23:C2:4A:D2:9C:12:39:C5:DB:23:47:C9:5E:29:1B:DB:42:E1:5B Authority key identifier: 3D:F4:C4:A2:6A:65:14:EF:33:7E:24:D3:AE:F2:28:F7:F9:A6:25:2C Certificate issuer: /CN=3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C Certificate serial: 32A7511FFE1741B88B02BF01FD15C07B23B3163F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.mft Manifest number: 40 Signing time: Fri 19 Jun 2026 16:40:51 +0000 Manifest this update: Fri 19 Jun 2026 16:35:51 +0000 Manifest next update: Sat 20 Jun 2026 20:15:51 +0000 Files and hashes: 1: 3130332e3134312e3234342e302f32342d3234203d3e20313339333635.roa (hash: uDDSqQJALKhSiJ8HMA/VUDQe5THFv4WrWGBluPCxcKI=) 2: 323030313a6466313a316438303a3a2f34382d3438203d3e20313339333635.roa (hash: 6kElF6lyRfaEOBJkx0qFZUv24i4o0ISe0pvRjTce7Do=) 3: 3130332e3134312e3234352e302f32342d3234203d3e20313339333635.roa (hash: 1EALwremo0OuX0UpvCbf2flDFJadlkhYoy6Ddmmbmd0=) 4: 3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.crl (hash: Yck2Fj5Vybr0cnLZNMGO2UUwVjrIXn7z27tTOuD7r14=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.crl rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 20:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:a7:51:1f:fe:17:41:b8:8b:02:bf:01:fd:15:c0:7b:23:b3:16:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C Validity Not Before: Jun 19 16:35:51 2026 GMT Not After : Jun 20 20:15:51 2026 GMT Subject: CN=5523C24AD29C1239C5DB2347C95E291BDB42E15B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cd:70:b1:20:18:a3:52:a4:f2:2c:7d:b6:16: 7c:7b:74:1b:be:80:8b:d9:48:03:7d:70:63:33:88: 07:70:d5:cd:fd:98:6f:cd:86:85:ee:04:55:ca:61: 73:0e:68:f2:4c:3d:16:31:5a:65:bc:d5:08:00:90: 33:e0:e8:8e:28:9f:1a:24:85:ab:cc:79:34:5b:b5: ed:17:f5:1d:fb:b8:e2:8c:b6:11:3f:e2:12:60:0c: 55:4c:f5:f8:bf:35:89:a2:53:15:ef:34:a6:2b:ec: 5f:85:63:d2:28:70:9a:7e:e0:21:97:95:5b:79:3e: b3:b4:91:e1:fc:d9:41:1f:a9:75:15:c6:ad:a9:2f: 16:18:5c:e3:96:3d:0c:88:93:7d:16:f6:6c:c0:ba: cc:cf:c0:f5:b4:19:62:a2:0f:f3:d2:98:5c:91:c9: fb:de:c8:54:57:f8:da:87:04:01:25:86:0f:50:8f: b8:b5:45:9d:8c:7d:9a:1d:df:9f:90:05:8a:60:d0: 8c:20:37:a4:d6:21:aa:a7:87:92:82:5c:ec:81:f4: 4d:fd:1b:6b:83:93:23:98:76:ff:98:5b:72:f8:5e: e7:29:b6:19:ad:12:ba:fd:36:86:d6:9a:fa:c3:9f: ff:8d:78:a7:e2:02:78:eb:fd:23:a1:41:3f:bc:95: ad:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:23:C2:4A:D2:9C:12:39:C5:DB:23:47:C9:5E:29:1B:DB:42:E1:5B X509v3 Authority Key Identifier: keyid:3D:F4:C4:A2:6A:65:14:EF:33:7E:24:D3:AE:F2:28:F7:F9:A6:25:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7bed83bd-8986-4429-a011-ac590724d586/0/3DF4C4A26A6514EF337E24D3AEF228F7F9A6252C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:91:ed:58:28:65:17:9c:7e:55:f7:26:55:58:4e:b6:50:6b: ac:b1:bf:97:0c:4a:e1:bb:81:e6:b3:fc:3e:3f:db:a2:5f:31: 52:d8:f6:58:a0:e2:cf:d3:ec:d1:67:6a:25:6c:1f:2b:21:f1: 49:1a:2a:5c:6e:f5:06:af:ef:4d:17:70:59:32:05:85:93:a3: cb:5b:81:d0:2b:94:96:77:6f:c1:4a:69:0f:07:e1:71:22:1e: 85:fd:37:eb:ff:03:38:45:d0:75:51:2e:b8:44:f5:08:f9:f8: 86:18:5c:d9:69:51:be:ab:fa:60:43:f3:f2:56:1b:3a:20:1f: 55:cb:98:3d:63:bf:1c:92:1d:b7:5b:3d:98:1e:c8:d0:21:30: 2b:91:55:37:2f:78:5c:6f:9f:bb:31:79:1a:ad:85:73:a2:bf: fb:43:6c:1e:b0:05:f7:f3:8d:d1:50:a3:73:0e:10:31:07:47: 05:88:59:6b:6f:b7:81:de:cb:78:2d:e3:5b:da:4d:72:e8:7f: 1f:c5:0b:c5:ac:eb:1f:1c:27:c7:8b:0b:8e:fa:90:3a:98:28: 29:b1:4f:ef:ca:14:73:73:f8:28:b3:50:e7:11:20:5a:cd:63: f5:80:58:f0:0e:82:f2:0f:07:f5:72:a3:36:a9:8d:65:70:c9: 88:81:b6:da -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMqdRH/4XQbiLAr8B/RXAeyOzFj8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0RGNEM0QTI2QTY1MTRFRjMzN0UyNEQzQUVGMjI4RjdG OUE2MjUyQzAeFw0yNjA2MTkxNjM1NTFaFw0yNjA2MjAyMDE1NTFaMDMxMTAvBgNV BAMTKDU1MjNDMjRBRDI5QzEyMzlDNURCMjM0N0M5NUUyOTFCREI0MkUxNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0zXCxIBijUqTyLH22Fnx7dBu+ gIvZSAN9cGMziAdw1c39mG/NhoXuBFXKYXMOaPJMPRYxWmW81QgAkDPg6I4onxok havMeTRbte0X9R37uOKMthE/4hJgDFVM9fi/NYmiUxXvNKYr7F+FY9IocJp+4CGX lVt5PrO0keH82UEfqXUVxq2pLxYYXOOWPQyIk30W9mzAuszPwPW0GWKiD/PSmFyR yfveyFRX+NqHBAElhg9Qj7i1RZ2MfZod35+QBYpg0IwgN6TWIaqnh5KCXOyB9E39 G2uDkyOYdv+YW3L4XucpthmtErr9NobWmvrDn/+NeKfiAnjr/SOhQT+8la3vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVSPCStKcEjnF2yNHyV4pG9tC4VswHwYDVR0j BBgwFoAUPfTEomplFO8zfiTTrvIo9/mmJSwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2JlZDgzYmQtODk4Ni00NDI5LWEwMTEtYWM1OTA3MjRkNTg2LzAvM0RGNEM0QTI2 QTY1MTRFRjMzN0UyNEQzQUVGMjI4RjdGOUE2MjUyQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zREY0QzRBMjZBNjUxNEVGMzM3RTI0RDNBRUYyMjhGN0Y5QTYy NTJDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vN2JlZDgzYmQtODk4Ni00NDI5LWEw MTEtYWM1OTA3MjRkNTg2LzAvM0RGNEM0QTI2QTY1MTRFRjMzN0UyNEQzQUVGMjI4 RjdGOUE2MjUyQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAqR7VgoZRecflX3JlVYTrZQa6yxv5cMSuG7 geaz/D4/26JfMVLY9lig4s/T7NFnaiVsHysh8UkaKlxu9Qav700XcFkyBYWTo8tb gdArlJZ3b8FKaQ8H4XEiHoX9N+v/AzhF0HVRLrhE9Qj5+IYYXNlpUb6r+mBD8/JW GzogH1XLmD1jvxySHbdbPZgeyNAhMCuRVTcveFxvn7sxeRqthXOiv/tDbB6wBffz jdFQo3MOEDEHRwWIWWtvt4Hey3gt41vaTXLofx/FC8Ws6x8cJ8eLC476kDqYKCmx T+/KFHNz+CizUOcRIFrNY/WAWPAOgvIPB/VyozapjWVwyYiBtto= -----END CERTIFICATE-----Generated at Sat Jun 20 09:01:00 2026 by rpki-client