$ rpki-client -vvf rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.mft File: BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.mft (raw, json) Hash identifier: jSrRGy9Z576B+jhwZkFcw1BuQd5SdCvl1x1rWXrMIJc= Subject key identifier: 1E:65:B8:8B:8B:5E:FD:43:32:D3:18:62:59:46:8B:6E:14:A6:32:34 Authority key identifier: BA:A4:29:4A:62:FF:BF:34:4C:A7:AF:61:DA:13:D0:99:4A:00:00:E3 Certificate issuer: /CN=BAA4294A62FFBF344CA7AF61DA13D0994A0000E3 Certificate serial: 52DE30BF1FCBD39B7621F7C6F2B1D3D95D7D0577 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.mft Manifest number: 41 Signing time: Sat 20 Jun 2026 01:46:53 +0000 Manifest this update: Sat 20 Jun 2026 01:41:53 +0000 Manifest next update: Sun 21 Jun 2026 03:08:53 +0000 Files and hashes: 1: 323030313a6466303a623238303a3a2f34382d3438203d3e20313338383733.roa (hash: Z144p4vK3Wc0Wvxj3ow3CyTWpjreny/dO0BWeCNgJ+I=) 2: 3130332e3134302e37382e302f32332d3234203d3e20313338383733.roa (hash: K6H7szwO6ti+xX+3grJSvrA81wCwhPJ39G60g97CTBE=) 3: 3130332e3134302e37392e302f32342d3234203d3e203438343635.roa (hash: oPvC3i/lrZuDzfOmiLwK2jYBsKG2L4fiPPqahjcNpFg=) 4: BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.crl (hash: 5Cbu+SsWkHbvBCz4C+OgcTj0fWWJRu1EKslIqxB2yHw=) 5: 3130332e3134302e37382e302f32342d3234203d3e203438343635.roa (hash: hoI4Z+yZlJFn+WHGYBiSiySAQlgqw69H0i3XEwm8T7w=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.crl rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 03:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:de:30:bf:1f:cb:d3:9b:76:21:f7:c6:f2:b1:d3:d9:5d:7d:05:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA4294A62FFBF344CA7AF61DA13D0994A0000E3 Validity Not Before: Jun 20 01:41:53 2026 GMT Not After : Jun 21 03:08:53 2026 GMT Subject: CN=1E65B88B8B5EFD4332D3186259468B6E14A63234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:65:63:45:fa:26:a8:23:bc:ec:2e:2f:b1:f6: e5:f3:b2:e8:b3:7e:a4:47:5b:bb:29:b4:0d:55:a4: bc:7b:0a:a1:a2:a6:6f:4e:f6:dd:d8:56:12:0e:af: df:8c:cf:26:35:1d:53:48:27:26:b0:f0:1f:07:90: df:37:fc:bd:d7:57:e5:b0:7e:65:6e:b3:d3:d4:73: 1f:b4:cc:ab:2f:81:64:8d:82:ff:c3:b2:03:20:49: 2d:dd:64:7b:3f:61:a3:b7:03:97:fe:fa:6f:97:c6: 0b:44:91:5e:cf:43:86:93:d4:25:9a:66:c7:2f:9c: b9:e8:c8:3e:60:2b:39:54:4a:b5:d8:f5:e5:43:9f: 00:e5:b3:8e:c5:03:83:c5:cd:bd:2b:36:e6:21:70: 0c:82:c9:ea:de:84:1e:c5:12:38:52:bb:d8:77:c4: 9f:8e:65:e8:a3:52:37:e3:03:bf:fc:20:7e:26:ef: 9d:88:18:56:e2:9d:4e:aa:3a:52:07:b3:2c:17:a2: b3:69:b2:65:3c:f9:29:ce:31:64:7c:30:c7:c0:81: 4f:8c:36:76:04:8f:7b:e5:1d:5d:e1:72:31:8d:f6: 5f:39:5b:09:fa:de:5f:83:c9:51:42:17:96:9f:b2: 4f:b4:d0:a0:42:99:da:a4:44:bf:21:f6:99:43:96: 78:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:65:B8:8B:8B:5E:FD:43:32:D3:18:62:59:46:8B:6E:14:A6:32:34 X509v3 Authority Key Identifier: keyid:BA:A4:29:4A:62:FF:BF:34:4C:A7:AF:61:DA:13:D0:99:4A:00:00:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/f73ab79d-00d5-49cb-ac10-3bd4f2386bc6/0/BAA4294A62FFBF344CA7AF61DA13D0994A0000E3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:0c:60:a6:72:f8:c3:d7:d5:93:47:c3:2e:0b:94:d7:59:2f: b7:e2:47:ca:49:e7:26:73:b3:70:cc:78:5f:e4:d5:78:3a:43: 66:06:24:dd:f1:af:8f:b0:61:4f:b9:dd:cb:b8:96:ce:48:09: d0:0f:eb:b0:7c:d1:b2:77:90:cc:0e:65:4d:f4:1b:1b:59:ef: 5c:3f:cc:11:27:51:76:4f:b8:d6:12:44:c9:fc:eb:bc:cf:8d: 2b:58:4d:4b:7c:b4:4f:c5:10:60:81:32:6b:3b:7f:93:1e:3c: d8:40:86:ea:d7:44:18:9e:41:e1:97:23:db:f7:2e:78:81:e7: 83:0b:df:25:a7:fb:d4:1e:b0:ec:b5:a4:67:dd:5b:cf:aa:29: b3:33:e0:f2:22:2f:d3:9a:e1:c6:09:bd:98:3c:43:98:de:2c: 07:ac:db:d2:52:65:f1:96:6e:96:89:4f:40:10:23:0f:c2:29: a0:16:aa:e9:80:a8:2b:22:05:4c:4a:bd:04:08:6c:c6:09:3c: da:38:6d:cc:a2:fd:ea:7d:e5:37:c3:73:f2:a7:dc:c6:d8:34: bb:25:85:8e:63:f2:9f:5b:3d:8d:25:50:f7:35:03:f9:06:d2: 4e:7f:c4:97:52:cc:bc:b4:8d:24:49:2c:05:e5:ed:2d:58:4e: ae:c4:aa:9d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUt4wvx/L05t2IffG8rHT2V19BXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBNDI5NEE2MkZGQkYzNDRDQTdBRjYxREExM0QwOTk0 QTAwMDBFMzAeFw0yNjA2MjAwMTQxNTNaFw0yNjA2MjEwMzA4NTNaMDMxMTAvBgNV BAMTKDFFNjVCODhCOEI1RUZENDMzMkQzMTg2MjU5NDY4QjZFMTRBNjMyMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMZWNF+iaoI7zsLi+x9uXzsuiz fqRHW7sptA1VpLx7CqGipm9O9t3YVhIOr9+MzyY1HVNIJyaw8B8HkN83/L3XV+Ww fmVus9PUcx+0zKsvgWSNgv/DsgMgSS3dZHs/YaO3A5f++m+XxgtEkV7PQ4aT1CWa ZscvnLnoyD5gKzlUSrXY9eVDnwDls47FA4PFzb0rNuYhcAyCyerehB7FEjhSu9h3 xJ+OZeijUjfjA7/8IH4m752IGFbinU6qOlIHsywXorNpsmU8+SnOMWR8MMfAgU+M NnYEj3vlHV3hcjGN9l85Wwn63l+DyVFCF5afsk+00KBCmdqkRL8h9plDlnjlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHmW4i4te/UMy0xhiWUaLbhSmMjQwHwYDVR0j BBgwFoAUuqQpSmL/vzRMp69h2hPQmUoAAOMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZjczYWI3OWQtMDBkNS00OWNiLWFjMTAtM2JkNGYyMzg2YmM2LzAvQkFBNDI5NEE2 MkZGQkYzNDRDQTdBRjYxREExM0QwOTk0QTAwMDBFMy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQUE0Mjk0QTYyRkZCRjM0NENBN0FGNjFEQTEzRDA5OTRBMDAw MEUzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZjczYWI3OWQtMDBkNS00OWNiLWFj MTAtM2JkNGYyMzg2YmM2LzAvQkFBNDI5NEE2MkZGQkYzNDRDQTdBRjYxREExM0Qw OTk0QTAwMDBFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEQMYKZy+MPX1ZNHwy4LlNdZL7fiR8pJ5yZz s3DMeF/k1Xg6Q2YGJN3xr4+wYU+53cu4ls5ICdAP67B80bJ3kMwOZU30GxtZ71w/ zBEnUXZPuNYSRMn867zPjStYTUt8tE/FEGCBMms7f5MePNhAhurXRBieQeGXI9v3 LniB54ML3yWn+9QesOy1pGfdW8+qKbMz4PIiL9Oa4cYJvZg8Q5jeLAes29JSZfGW bpaJT0AQIw/CKaAWqumAqCsiBUxKvQQIbMYJPNo4bcyi/ep95TfDc/Kn3MbYNLsl hY5j8p9bPY0lUPc1A/kG0k5/xJdSzLy0jSRJLAXl7S1YTq7Eqp0= -----END CERTIFICATE-----Generated at Sat Jun 20 15:47:25 2026 by rpki-client