$ rpki-client -vvf rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft File: 0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft (raw, json) Hash identifier: cGvaBcMtic4UKVBslGaWiChOaQwC2VTmNOTV/Ay194c= Subject key identifier: 84:5E:88:9B:07:DD:8C:AF:3B:2D:3F:E9:7E:66:3E:5C:34:9F:B8:0F Authority key identifier: 0F:20:B0:60:14:9D:BF:31:68:1B:43:21:BA:85:D6:7D:EF:E9:B5:A3 Certificate issuer: /CN=0F20B060149DBF31681B4321BA85D67DEFE9B5A3 Certificate serial: 5EB48C6CC1750A90A874F0497BF1AA4C57D0ACBD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft Manifest number: 3F Signing time: Thu 18 Jun 2026 06:50:33 +0000 Manifest this update: Thu 18 Jun 2026 06:45:33 +0000 Manifest next update: Fri 19 Jun 2026 10:11:33 +0000 Files and hashes: 1: 3130332e3136302e3138352e302f32342d3234203d3e20313339393532.roa (hash: 7c9GFWm6MdcJLg2P6c+DTGg5L9Fs6wlnaF02bkc0nhw=) 2: 0F20B060149DBF31681B4321BA85D67DEFE9B5A3.crl (hash: Flr6HiGcvsXm40NcaFokzjUvVQwm/nvT4Wt1f8zrdrc=) 3: 3130332e3136302e3138342e302f32342d3234203d3e20313339393532.roa (hash: k9hB5TmUACjkJxeE951FHmSf1SEQX33K8sTdpuXO8BI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.crl rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 10:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b4:8c:6c:c1:75:0a:90:a8:74:f0:49:7b:f1:aa:4c:57:d0:ac:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F20B060149DBF31681B4321BA85D67DEFE9B5A3 Validity Not Before: Jun 18 06:45:33 2026 GMT Not After : Jun 19 10:11:33 2026 GMT Subject: CN=845E889B07DD8CAF3B2D3FE97E663E5C349FB80F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:86:26:70:58:54:c3:40:f6:9e:ea:f7:11:42: 24:5d:ff:55:31:3c:5d:1f:9b:d6:fe:e4:b2:ad:e2: af:3e:80:43:9f:c5:38:d2:18:0d:dd:8d:40:e2:ff: c4:c1:c2:df:15:c8:16:bd:84:16:c8:08:bf:6c:b0: f1:65:a7:42:3b:66:ef:43:76:c8:4a:10:1f:72:14: 97:1c:62:37:c7:d9:47:2f:d7:03:ee:1d:bf:81:1a: 32:3e:ee:60:b8:2b:ad:c8:89:28:7c:0d:81:a9:5c: 71:60:61:41:9e:2c:d8:c1:48:34:bc:c4:2d:d0:3c: 87:e1:32:0e:b0:78:d4:3b:47:9d:10:11:f4:99:ae: 94:0d:13:6d:d8:ff:31:7b:e4:ba:ac:2c:e3:fd:86: 53:8b:a6:23:41:bf:64:f9:d2:44:8c:98:20:09:0a: a4:c7:2a:10:d5:b6:2e:1a:d0:2a:fa:4c:c4:02:e8: 4d:f2:5c:5e:f7:89:38:b3:95:db:ca:66:08:26:dc: 44:02:59:f0:ed:01:4b:af:f0:51:ef:dc:1b:3d:4d: b4:00:ef:0a:f7:4a:f6:2a:6d:5d:4a:b1:27:fb:1c: d2:f9:0f:fd:b5:97:2d:df:a6:10:b2:1b:ab:3d:a7: 2d:cb:53:20:c0:7d:96:3f:36:f7:94:db:c9:21:1b: 81:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5E:88:9B:07:DD:8C:AF:3B:2D:3F:E9:7E:66:3E:5C:34:9F:B8:0F X509v3 Authority Key Identifier: keyid:0F:20:B0:60:14:9D:BF:31:68:1B:43:21:BA:85:D6:7D:EF:E9:B5:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a682bca3-e858-4d52-b1a3-2f4bae47c9f2/0/0F20B060149DBF31681B4321BA85D67DEFE9B5A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:34:6a:4e:16:ec:59:32:47:be:ab:f6:9b:da:7c:10:09:6b: 84:cc:d8:c4:fe:88:70:09:17:a1:e3:8d:92:c6:86:8b:9d:1d: dd:ee:87:3b:ea:0d:d6:32:78:dd:f8:d7:91:3f:2d:07:4c:7c: f1:f5:8a:f8:f7:df:d7:a6:fd:c6:3b:ac:79:a9:bc:7e:f7:16: e9:5f:96:9c:c5:3e:a7:d0:b2:0d:48:0a:cd:f0:f9:31:b1:70: 42:c5:fd:31:e0:d9:fe:43:10:f3:8a:da:40:59:d7:56:49:68: 55:7e:69:5a:15:4f:87:63:54:b3:8c:a8:a8:bb:09:fb:27:41: 59:fd:fc:23:11:2e:0f:17:6f:71:96:58:e9:fe:f6:3c:e3:6a: d0:8a:fa:dd:bd:f0:10:91:3e:13:83:9d:b7:b9:d4:27:ac:b3: ac:a2:35:d3:db:d0:0e:21:b1:70:61:35:ff:58:52:d8:5b:5d: df:7d:26:cc:eb:f7:7d:1e:76:cd:8f:d4:80:4f:6d:0b:21:a7: 34:83:34:5f:0d:74:84:6a:eb:aa:36:30:1f:46:cd:dc:d2:af: 9f:e4:c4:b8:5f:94:41:03:12:91:a9:89:2a:38:ae:31:bf:14: bb:5a:ba:95:64:88:a5:fa:20:6d:9e:17:b8:d9:7c:a4:3a:00: 6b:98:36:67 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXrSMbMF1CpCodPBJe/GqTFfQrL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEYyMEIwNjAxNDlEQkYzMTY4MUI0MzIxQkE4NUQ2N0RF RkU5QjVBMzAeFw0yNjA2MTgwNjQ1MzNaFw0yNjA2MTkxMDExMzNaMDMxMTAvBgNV BAMTKDg0NUU4ODlCMDdERDhDQUYzQjJEM0ZFOTdFNjYzRTVDMzQ5RkI4MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7hiZwWFTDQPae6vcRQiRd/1Ux PF0fm9b+5LKt4q8+gEOfxTjSGA3djUDi/8TBwt8VyBa9hBbICL9ssPFlp0I7Zu9D dshKEB9yFJccYjfH2Ucv1wPuHb+BGjI+7mC4K63IiSh8DYGpXHFgYUGeLNjBSDS8 xC3QPIfhMg6weNQ7R50QEfSZrpQNE23Y/zF75LqsLOP9hlOLpiNBv2T50kSMmCAJ CqTHKhDVti4a0Cr6TMQC6E3yXF73iTizldvKZggm3EQCWfDtAUuv8FHv3Bs9TbQA 7wr3SvYqbV1KsSf7HNL5D/21ly3fphCyG6s9py3LUyDAfZY/NveU28khG4EpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhF6ImwfdjK87LT/pfmY+XDSfuA8wHwYDVR0j BBgwFoAUDyCwYBSdvzFoG0MhuoXWfe/ptaMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTY4MmJjYTMtZTg1OC00ZDUyLWIxYTMtMmY0YmFlNDdjOWYyLzAvMEYyMEIwNjAx NDlEQkYzMTY4MUI0MzIxQkE4NUQ2N0RFRkU5QjVBMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wRjIwQjA2MDE0OURCRjMxNjgxQjQzMjFCQTg1RDY3REVGRTlC NUEzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTY4MmJjYTMtZTg1OC00ZDUyLWIx YTMtMmY0YmFlNDdjOWYyLzAvMEYyMEIwNjAxNDlEQkYzMTY4MUI0MzIxQkE4NUQ2 N0RFRkU5QjVBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEo0ak4W7FkyR76r9pvafBAJa4TM2MT+iHAJ F6HjjZLGhoudHd3uhzvqDdYyeN3415E/LQdMfPH1ivj339em/cY7rHmpvH73Fulf lpzFPqfQsg1ICs3w+TGxcELF/THg2f5DEPOK2kBZ11ZJaFV+aVoVT4djVLOMqKi7 CfsnQVn9/CMRLg8Xb3GWWOn+9jzjatCK+t298BCRPhODnbe51Cess6yiNdPb0A4h sXBhNf9YUthbXd99Jszr930eds2P1IBPbQshpzSDNF8NdIRq66o2MB9GzdzSr5/k xLhflEEDEpGpiSo4rjG/FLtaupVkiKX6IG2eF7jZfKQ6AGuYNmc= -----END CERTIFICATE-----Generated at Thu Jun 18 19:03:02 2026 by rpki-client