$ rpki-client -vvf rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.mft File: 823E59BE50593557F29378EC4CAC8BDE16BF5074.mft (raw, json) Hash identifier: joVlnY/uy6B5YPPDxOrEaj1DK+Q63pbDyn48wzyKysE= Subject key identifier: C4:CE:EB:ED:6F:91:02:CA:09:F7:D8:F8:28:4A:E9:0E:57:C4:A7:78 Authority key identifier: 82:3E:59:BE:50:59:35:57:F2:93:78:EC:4C:AC:8B:DE:16:BF:50:74 Certificate issuer: /CN=823E59BE50593557F29378EC4CAC8BDE16BF5074 Certificate serial: 70B1C9551B335B7948045558664B2BB2F5060D48 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/823E59BE50593557F29378EC4CAC8BDE16BF5074.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.mft Manifest number: 42 Signing time: Sat 20 Jun 2026 01:11:11 +0000 Manifest this update: Sat 20 Jun 2026 01:06:11 +0000 Manifest next update: Sun 21 Jun 2026 01:28:11 +0000 Files and hashes: 1: 3130332e3139302e35302e302f32332d3233203d3e2039333431.roa (hash: 8cSHk4Qmt00Rlx//RoPVD8OhEt2winz9iHDLk522or4=) 2: 823E59BE50593557F29378EC4CAC8BDE16BF5074.crl (hash: 4xTHCSsCzU2Gva8Zs48j5UpOzdSk9zIIlk49BCaj6Ts=) 3: 3130332e3139302e35312e302f32342d3234203d3e2039333431.roa (hash: xnCevyudli2t9um2DVMk2wF4GvogAhTTvOVWqK7SaCE=) 4: 3130332e3139302e35302e302f32342d3234203d3e2039333431.roa (hash: dzAufJOseFap4DRjmnUOc2LvueVNrB6swsyJUi6b4Xw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.crl rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/823E59BE50593557F29378EC4CAC8BDE16BF5074.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 01:28:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:b1:c9:55:1b:33:5b:79:48:04:55:58:66:4b:2b:b2:f5:06:0d:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=823E59BE50593557F29378EC4CAC8BDE16BF5074 Validity Not Before: Jun 20 01:06:11 2026 GMT Not After : Jun 21 01:28:11 2026 GMT Subject: CN=C4CEEBED6F9102CA09F7D8F8284AE90E57C4A778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e6:c6:39:31:a8:0b:7a:ff:c3:16:3a:71:42: 47:0f:7c:b0:58:3e:13:57:d1:0e:bf:f8:c2:62:5b: c7:2d:1c:a7:b8:1b:69:6f:d2:95:85:c2:43:85:86: 26:6e:2f:7a:67:40:30:c5:dd:22:82:75:35:24:16: 54:18:8c:b7:ad:98:c2:a5:6b:d5:55:97:71:ac:20: c9:9c:df:96:a7:29:11:87:da:09:e0:70:97:07:0c: ae:fa:51:29:1a:31:58:08:b7:12:2e:cb:15:1e:7f: 15:fa:a5:bd:6a:87:16:69:26:48:5d:5b:30:1d:67: 7c:53:e3:07:de:b1:43:80:f5:f9:e1:02:d4:db:b5: 9d:aa:b9:72:0e:df:a0:94:dc:26:4e:e6:ec:1a:57: b8:cf:c0:1c:b2:bd:e8:4a:91:b0:2e:c2:4b:ea:e7: 16:01:a4:e4:cd:9d:19:04:1e:f4:9a:35:02:cd:ea: b4:e7:78:8d:ff:c4:4e:ef:24:69:7c:6f:23:56:36: 14:80:e8:5a:e0:4d:71:38:4e:03:29:3e:f0:eb:89: 5a:15:06:03:1a:d1:ee:81:1d:b4:62:94:cb:ab:47: 3e:28:c2:01:9b:db:e2:27:64:ce:2b:d8:ff:fd:d0: f2:78:f3:df:c9:33:21:ef:1f:08:07:5e:6a:39:75: 6c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:CE:EB:ED:6F:91:02:CA:09:F7:D8:F8:28:4A:E9:0E:57:C4:A7:78 X509v3 Authority Key Identifier: keyid:82:3E:59:BE:50:59:35:57:F2:93:78:EC:4C:AC:8B:DE:16:BF:50:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/823E59BE50593557F29378EC4CAC8BDE16BF5074.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f58383e2-206c-4b74-ba4a-cd8a4d7cd861/0/823E59BE50593557F29378EC4CAC8BDE16BF5074.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:ba:fd:32:2e:86:38:03:a7:b9:64:77:c3:aa:11:b2:2f:5d: 91:e7:a5:28:5e:b5:c6:2c:c6:a0:06:ea:12:84:2e:cc:7a:0e: 48:c1:f8:d0:b0:52:0e:bb:ee:32:ea:89:92:b2:33:d1:dd:67: 5d:60:41:a6:61:c7:83:6f:3b:16:8e:eb:7c:a9:15:1a:73:b9: e7:7c:19:cf:f1:28:e5:c8:49:fc:d8:09:98:44:29:58:b6:9b: 2d:4c:ca:b0:12:7c:e2:41:5a:a3:14:d7:9d:2b:6d:d5:b6:8f: 4f:7b:7d:f3:1f:9b:b8:7b:44:3f:e5:07:4e:4b:74:eb:7d:05: 69:74:1e:11:7e:7b:11:54:a7:e7:1f:36:1f:10:bb:41:e4:2d: 6b:9a:7a:f0:eb:41:a2:f0:84:0c:63:61:fc:ef:cf:91:a6:40: 3c:bc:76:46:94:29:92:7f:ec:12:f9:08:8c:f4:d8:8e:ae:d2: a3:2b:aa:cb:2a:15:d2:5c:bd:ed:e6:ab:61:c3:ae:5f:e4:e6: dd:4f:1a:0b:39:35:5e:b0:ea:c5:f3:56:32:80:b6:0c:a3:9b: 2d:bb:e4:d7:1e:c4:28:d4:e9:62:8a:a9:22:76:26:ba:34:f8: 85:20:77:67:9b:14:84:1a:83:ad:f2:fa:51:22:c7:f0:f4:fb: 79:44:63:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcLHJVRszW3lIBFVYZksrsvUGDUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIzRTU5QkU1MDU5MzU1N0YyOTM3OEVDNENBQzhCREUx NkJGNTA3NDAeFw0yNjA2MjAwMTA2MTFaFw0yNjA2MjEwMTI4MTFaMDMxMTAvBgNV BAMTKEM0Q0VFQkVENkY5MTAyQ0EwOUY3RDhGODI4NEFFOTBFNTdDNEE3NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr5sY5MagLev/DFjpxQkcPfLBY PhNX0Q6/+MJiW8ctHKe4G2lv0pWFwkOFhiZuL3pnQDDF3SKCdTUkFlQYjLetmMKl a9VVl3GsIMmc35anKRGH2gngcJcHDK76USkaMVgItxIuyxUefxX6pb1qhxZpJkhd WzAdZ3xT4wfesUOA9fnhAtTbtZ2quXIO36CU3CZO5uwaV7jPwByyvehKkbAuwkvq 5xYBpOTNnRkEHvSaNQLN6rTneI3/xE7vJGl8byNWNhSA6FrgTXE4TgMpPvDriVoV BgMa0e6BHbRilMurRz4owgGb2+InZM4r2P/90PJ489/JMyHvHwgHXmo5dWzxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxM7r7W+RAsoJ99j4KErpDlfEp3gwHwYDVR0j BBgwFoAUgj5ZvlBZNVfyk3jsTKyL3ha/UHQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjU4MzgzZTItMjA2Yy00Yjc0LWJhNGEtY2Q4YTRkN2NkODYxLzAvODIzRTU5QkU1 MDU5MzU1N0YyOTM3OEVDNENBQzhCREUxNkJGNTA3NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84MjNFNTlCRTUwNTkzNTU3RjI5Mzc4RUM0Q0FDOEJERTE2QkY1 MDc0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZjU4MzgzZTItMjA2Yy00Yjc0LWJh NGEtY2Q4YTRkN2NkODYxLzAvODIzRTU5QkU1MDU5MzU1N0YyOTM3OEVDNENBQzhC REUxNkJGNTA3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACa6/TIuhjgDp7lkd8OqEbIvXZHnpShetcYs xqAG6hKELsx6DkjB+NCwUg677jLqiZKyM9HdZ11gQaZhx4NvOxaO63ypFRpzued8 Gc/xKOXISfzYCZhEKVi2my1MyrASfOJBWqMU150rbdW2j097ffMfm7h7RD/lB05L dOt9BWl0HhF+exFUp+cfNh8Qu0HkLWuaevDrQaLwhAxjYfzvz5GmQDy8dkaUKZJ/ 7BL5CIz02I6u0qMrqssqFdJcve3mq2HDrl/k5t1PGgs5NV6w6sXzVjKAtgyjmy27 5NcexCjU6WKKqSJ2Jro0+IUgd2ebFIQag63y+lEix/D0+3lEY+c= -----END CERTIFICATE-----Generated at Sat Jun 20 11:24:56 2026 by rpki-client