$ rpki-client -vvf rpki-rsync.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.mft File: EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.mft (raw, json) Hash identifier: ps7LiIlLh1ZXSjZf9SM+/9qykmqVyBj4uhPFOku7Oc8= Subject key identifier: 04:5A:7A:18:3C:31:AF:FF:E0:A3:C0:FD:4E:6E:04:14:23:99:A4:40 Authority key identifier: EF:4A:2E:C5:53:79:CA:2F:E3:A7:D2:4D:D2:C2:85:E8:BF:3A:39:FC Certificate issuer: /CN=EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC Certificate serial: 5ABCB60D639F0873F801CBE0FB1043A59CBE95A4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.mft Manifest number: 40 Signing time: Thu 18 Jun 2026 08:22:23 +0000 Manifest this update: Thu 18 Jun 2026 08:17:23 +0000 Manifest next update: Fri 19 Jun 2026 08:37:23 +0000 Files and hashes: 1: EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.crl (hash: K2a1WqNIq5JdKKmEdgC3B55TeLtEvlLyJXxJLTGd/0E=) 2: 323030313a6466343a363463303a3a2f34382d3438203d3e20313533313430.roa (hash: WBFw33DVjLMzvjb9A+5nTenZ7QhkAKAHSXyABZyuBhE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.crl rsync://rpki-rsync.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 08:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:bc:b6:0d:63:9f:08:73:f8:01:cb:e0:fb:10:43:a5:9c:be:95:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC Validity Not Before: Jun 18 08:17:23 2026 GMT Not After : Jun 19 08:37:23 2026 GMT Subject: CN=045A7A183C31AFFFE0A3C0FD4E6E04142399A440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ff:0b:66:3d:38:df:5c:f4:8b:a6:d6:07:fb: 62:14:88:47:52:0b:44:13:f5:86:1b:47:ec:1c:59: 94:79:26:93:4c:e6:f4:81:22:03:d5:65:2a:a8:e1: 15:68:27:a8:96:5c:1a:96:05:62:ae:42:1c:69:c2: dd:cc:a7:a4:95:c2:e8:d3:ce:e5:b4:90:6e:fe:fd: 07:19:f8:29:6d:20:48:df:79:fd:8b:e5:05:bc:5e: cd:49:63:a8:ee:83:51:53:cb:56:09:33:b0:85:3a: 60:6c:20:7e:94:c2:92:03:4a:78:37:93:41:6b:89: 90:eb:7e:89:83:ab:22:de:4b:fa:98:ba:87:60:7a: 57:f9:3c:3d:7a:ed:19:2b:23:18:24:15:b8:36:fb: 43:f3:8a:bc:9a:91:99:21:5c:f3:07:6a:bd:14:77: e2:2d:5c:62:09:16:05:3f:6b:b3:9d:3c:1f:10:08: ed:20:1c:3d:91:7a:2b:57:3d:90:e3:be:ae:36:e6: cf:39:cf:07:1b:c1:ea:fc:d9:87:9c:de:ab:ab:87: ef:75:0f:bc:76:b6:62:10:13:3b:10:2a:04:0b:03: d9:33:1f:ee:2f:46:99:a7:3a:eb:a5:28:63:c3:0c: 18:e5:46:56:82:a1:e3:0e:eb:df:53:e8:ea:1a:52: 6f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:5A:7A:18:3C:31:AF:FF:E0:A3:C0:FD:4E:6E:04:14:23:99:A4:40 X509v3 Authority Key Identifier: keyid:EF:4A:2E:C5:53:79:CA:2F:E3:A7:D2:4D:D2:C2:85:E8:BF:3A:39:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/cafcbfbb-ba3f-4d53-a04f-14d6f4be0cb1/1/EF4A2EC55379CA2FE3A7D24DD2C285E8BF3A39FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:58:d2:a6:e7:d6:d9:3f:76:6f:44:42:bd:79:ae:88:d6:c3: 27:1a:09:c4:02:e5:0f:7d:04:43:8c:a0:e8:19:a3:66:69:f1: 15:fb:d6:26:45:62:f5:74:4d:54:82:9b:90:67:05:25:27:7e: c7:cc:3d:08:65:18:6b:57:12:11:ab:9b:e8:be:ef:f2:5d:9f: 5f:42:47:18:ee:84:4c:d7:45:cd:d3:5d:c8:dd:84:77:20:6f: 0e:b6:d4:59:78:5f:a0:08:7d:8d:dd:2b:eb:9a:b3:8a:0f:6c: 68:4c:70:38:51:d2:33:5f:d3:bd:5e:a1:b1:45:af:26:09:07: 10:d2:cb:c6:6b:d8:2e:db:dc:3d:43:25:23:9e:e5:46:e7:21: c9:7b:8f:2a:3e:3c:5e:53:fb:a2:63:d7:38:32:22:6a:fc:17: a7:d8:42:5a:c0:1a:a8:ed:5e:43:70:d5:e2:df:fb:9a:b6:07: 95:ea:e3:29:71:79:0a:da:62:7e:e3:cd:21:19:7c:c7:98:4d: a2:6c:61:1a:ac:4d:5b:b5:46:e7:8a:8f:23:dd:c3:9e:48:78: 6b:4e:ef:f2:f7:0d:18:e4:b9:22:e2:b7:3b:68:3a:8f:ff:49: 39:28:9d:c5:fa:14:19:ee:db:9b:95:16:a2:7e:28:a5:11:a0: 8a:e5:ae:ba -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWry2DWOfCHP4Acvg+xBDpZy+laQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRUY0QTJFQzU1Mzc5Q0EyRkUzQTdEMjRERDJDMjg1RThC RjNBMzlGQzAeFw0yNjA2MTgwODE3MjNaFw0yNjA2MTkwODM3MjNaMDMxMTAvBgNV BAMTKDA0NUE3QTE4M0MzMUFGRkZFMEEzQzBGRDRFNkUwNDE0MjM5OUE0NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCo/wtmPTjfXPSLptYH+2IUiEdS C0QT9YYbR+wcWZR5JpNM5vSBIgPVZSqo4RVoJ6iWXBqWBWKuQhxpwt3Mp6SVwujT zuW0kG7+/QcZ+CltIEjfef2L5QW8Xs1JY6jug1FTy1YJM7CFOmBsIH6UwpIDSng3 k0FriZDrfomDqyLeS/qYuodgelf5PD167RkrIxgkFbg2+0PziryakZkhXPMHar0U d+ItXGIJFgU/a7OdPB8QCO0gHD2ReitXPZDjvq425s85zwcbwer82Yec3qurh+91 D7x2tmIQEzsQKgQLA9kzH+4vRpmnOuulKGPDDBjlRlaCoeMO699T6OoaUm/bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBFp6GDwxr//go8D9Tm4EFCOZpEAwHwYDVR0j BBgwFoAU70ouxVN5yi/jp9JN0sKF6L86OfwwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Y2FmY2JmYmItYmEzZi00ZDUzLWEwNGYtMTRkNmY0YmUwY2IxLzEvRUY0QTJFQzU1 Mzc5Q0EyRkUzQTdEMjRERDJDMjg1RThCRjNBMzlGQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9FRjRBMkVDNTUzNzlDQTJGRTNBN0QyNEREMkMyODVFOEJGM0Ez OUZDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vY2FmY2JmYmItYmEzZi00ZDUzLWEw NGYtMTRkNmY0YmUwY2IxLzEvRUY0QTJFQzU1Mzc5Q0EyRkUzQTdEMjRERDJDMjg1 RThCRjNBMzlGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEtY0qbn1tk/dm9EQr15rojWwycaCcQC5Q99 BEOMoOgZo2Zp8RX71iZFYvV0TVSCm5BnBSUnfsfMPQhlGGtXEhGrm+i+7/Jdn19C RxjuhEzXRc3TXcjdhHcgbw621Fl4X6AIfY3dK+uas4oPbGhMcDhR0jNf071eobFF ryYJBxDSy8Zr2C7b3D1DJSOe5UbnIcl7jyo+PF5T+6Jj1zgyImr8F6fYQlrAGqjt XkNw1eLf+5q2B5Xq4ylxeQraYn7jzSEZfMeYTaJsYRqsTVu1RueKjyPdw55IeGtO 7/L3DRjkuSLitztoOo//STkoncX6FBnu25uVFqJ+KKURoIrlrro= -----END CERTIFICATE-----Generated at Thu Jun 18 19:02:38 2026 by rpki-client