$ rpki-client -vvf rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft File: AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft (raw, json) Hash identifier: uBD9rRWjyypybBEZW74vwBmme45FhthpKPGtzYNPhJM= Subject key identifier: 2E:70:7B:74:7D:BE:91:17:C9:8E:3D:90:C2:28:73:5C:71:30:BE:5C Authority key identifier: AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA Certificate issuer: /CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Certificate serial: 02B2A6B5E2AA14BE42B628302655C449CBFDC381 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft Manifest number: 41 Signing time: Fri 19 Jun 2026 18:53:42 +0000 Manifest this update: Fri 19 Jun 2026 18:48:42 +0000 Manifest next update: Sat 20 Jun 2026 20:45:42 +0000 Files and hashes: 1: 3130332e3138342e31382e302f32332d3233203d3e20313439363735.roa (hash: IKu3DMB2Lrk9WDHkDL4CNW43tnQhk2oAbk+rhH/oyA8=) 2: AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl (hash: axvV2OTHRAl42UFmsCR0YpkwMwb86OPMleph1w44vhM=) 3: 3130332e3138342e31382e302f32342d3234203d3e203438343635.roa (hash: AMN816Na79PG9Dr8taQyQqg9+CtJXIVEVEtntXynyXw=) 4: 3130332e3138342e31392e302f32342d3234203d3e203438343635.roa (hash: jT66ugDcwrPPZn+FW9LcATaa7pa94IbpNMskVZmpYyA=) 5: 3130332e3138342e31382e302f32342d3234203d3e20313439363735.roa (hash: etrhCGlRM8YYOHb6oshuOaV8mvXHwHvEf9qlp95P9kg=) 6: 3130332e3138342e31392e302f32342d3234203d3e20313439363735.roa (hash: tpylCt5CgrBx6WkyqQ/Q0MxG2lKbEyC1EbhCs0e+Yuo=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 20:45:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:b2:a6:b5:e2:aa:14:be:42:b6:28:30:26:55:c4:49:cb:fd:c3:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA Validity Not Before: Jun 19 18:48:42 2026 GMT Not After : Jun 20 20:45:42 2026 GMT Subject: CN=2E707B747DBE9117C98E3D90C228735C7130BE5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ab:ad:6c:c3:38:60:f3:a6:0a:73:6e:21:6a: e7:8c:15:89:d7:24:8e:14:32:7a:87:d9:d7:5e:e3: 51:0c:a4:e7:2d:78:66:04:2d:f5:cd:8b:ea:53:c3: 45:41:5b:c3:a9:ce:0c:54:e2:c9:bd:2b:f3:e0:a6: 6e:af:cd:35:f7:0e:74:39:f0:57:30:dc:5c:88:f3: 30:72:c2:15:8f:5a:2b:66:0f:7b:d6:ad:a1:5c:30: 35:8b:08:73:4b:d5:87:0d:8e:45:07:51:10:3e:83: be:f3:bb:a0:fa:a4:95:14:28:b7:d3:5d:70:16:0a: e1:5b:61:86:75:d4:b7:50:4e:e7:17:e1:b4:93:90: ac:4e:f2:22:6e:1b:fc:f2:f1:a3:1b:53:fb:fc:d4: ab:4f:59:de:a4:c2:fd:68:5b:15:72:d3:a1:ab:24: 6e:c5:01:df:a7:46:ab:23:47:6c:40:5a:67:41:c9: 63:a1:98:d6:af:b6:2d:2c:e7:74:5a:78:50:e5:e6: 62:1e:4a:df:30:31:d2:a6:4e:74:7f:c7:f5:7e:d8: 5d:4e:82:9c:4b:7c:b6:af:14:d0:ec:02:2b:10:f8: 46:e8:25:b1:ff:c1:dd:b4:96:92:31:d7:6d:7c:39: 04:42:57:25:b3:af:76:91:2b:33:3a:20:d3:fb:98: c8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:70:7B:74:7D:BE:91:17:C9:8E:3D:90:C2:28:73:5C:71:30:BE:5C X509v3 Authority Key Identifier: keyid:AC:23:DD:AA:2C:89:DF:C4:3F:0D:12:03:31:CD:3C:8F:1E:60:D1:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b0d914ef-0b1f-490b-808d-a27b83ff9a3e/0/AC23DDAA2C89DFC43F0D120331CD3C8F1E60D1CA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:af:f8:a6:4d:7c:ce:0b:6d:ca:ab:74:ab:2c:7f:e9:f7:38: 14:55:38:59:7a:9e:62:b2:06:3a:2b:f9:9b:41:6d:3d:e5:e5: ac:70:6f:77:d7:88:6b:1d:09:1d:b5:5a:96:19:94:1c:ac:50: 08:26:59:05:89:ab:72:bc:ee:a6:4a:52:a6:a1:7b:8b:53:ad: 82:31:69:cf:68:01:b9:c3:aa:b0:ea:90:e8:fb:77:30:89:3f: ba:5e:aa:4c:2f:db:ad:3e:f4:87:f4:f9:af:de:c5:5e:89:96: 41:22:ac:8a:30:e9:a2:32:b3:65:9d:dd:1b:58:43:b1:55:3d: 16:3a:40:f9:22:79:33:6d:a9:1b:46:8e:99:04:c4:92:a2:47: 65:27:ce:8b:90:d0:ad:d3:1a:e6:ec:68:78:00:4a:f4:ce:22: 32:9f:f2:a3:8f:2c:2c:4f:3e:18:e7:7d:ac:9c:7f:ec:8c:6f: 63:67:29:8a:eb:82:c5:32:de:a4:41:dc:76:b0:d1:03:0f:b1: 1e:47:8e:7b:8d:52:2a:ec:00:6f:b8:73:c2:f4:54:13:aa:fe: af:18:2e:29:d6:b0:60:bc:c0:9b:99:72:cb:0d:2f:e9:4c:eb: 2b:a2:49:ae:ba:62:9b:12:bc:0d:e8:a8:99:3f:6f:85:0f:d8: 7f:63:65:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUArKmteKqFL5CtigwJlXEScv9w4EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDNDOEYx RTYwRDFDQTAeFw0yNjA2MTkxODQ4NDJaFw0yNjA2MjAyMDQ1NDJaMDMxMTAvBgNV BAMTKDJFNzA3Qjc0N0RCRTkxMTdDOThFM0Q5MEMyMjg3MzVDNzEzMEJFNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8q61swzhg86YKc24haueMFYnX JI4UMnqH2dde41EMpOcteGYELfXNi+pTw0VBW8OpzgxU4sm9K/Pgpm6vzTX3DnQ5 8Fcw3FyI8zBywhWPWitmD3vWraFcMDWLCHNL1YcNjkUHURA+g77zu6D6pJUUKLfT XXAWCuFbYYZ11LdQTucX4bSTkKxO8iJuG/zy8aMbU/v81KtPWd6kwv1oWxVy06Gr JG7FAd+nRqsjR2xAWmdByWOhmNavti0s53RaeFDl5mIeSt8wMdKmTnR/x/V+2F1O gpxLfLavFNDsAisQ+EboJbH/wd20lpIx1218OQRCVyWzr3aRKzM6INP7mMh/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQULnB7dH2+kRfJjj2QwihzXHEwvlwwHwYDVR0j BBgwFoAUrCPdqiyJ38Q/DRIDMc08jx5g0cowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjBkOTE0ZWYtMGIxZi00OTBiLTgwOGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEy Qzg5REZDNDNGMEQxMjAzMzFDRDNDOEYxRTYwRDFDQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQzIzRERBQTJDODlERkM0M0YwRDEyMDMzMUNEM0M4RjFFNjBE MUNBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjBkOTE0ZWYtMGIxZi00OTBiLTgw OGQtYTI3YjgzZmY5YTNlLzAvQUMyM0REQUEyQzg5REZDNDNGMEQxMjAzMzFDRDND OEYxRTYwRDFDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGyv+KZNfM4LbcqrdKssf+n3OBRVOFl6nmKy Bjor+ZtBbT3l5axwb3fXiGsdCR21WpYZlBysUAgmWQWJq3K87qZKUqahe4tTrYIx ac9oAbnDqrDqkOj7dzCJP7peqkwv260+9If0+a/exV6JlkEirIow6aIys2Wd3RtY Q7FVPRY6QPkieTNtqRtGjpkExJKiR2UnzouQ0K3TGubsaHgASvTOIjKf8qOPLCxP Phjnfaycf+yMb2NnKYrrgsUy3qRB3Haw0QMPsR5HjnuNUirsAG+4c8L0VBOq/q8Y LinWsGC8wJuZcssNL+lM6yuiSa66YpsSvA3oqJk/b4UP2H9jZW8= -----END CERTIFICATE-----Generated at Sat Jun 20 11:24:20 2026 by rpki-client