$ rpki-client -vvf rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft File: AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft (raw, json) Hash identifier: mYzzr3ojDY/xC4iFYGhv9K+wbUpbaWrzKH4Bm3To43Y= Subject key identifier: 8F:39:EA:A0:A2:76:1F:82:7C:84:BC:9D:77:BB:CA:14:EA:BA:AA:83 Authority key identifier: AA:23:A6:85:C6:72:62:26:B6:31:C7:DF:6C:89:BB:44:13:F6:F3:B6 Certificate issuer: /CN=AA23A685C6726226B631C7DF6C89BB4413F6F3B6 Certificate serial: 65272E5D46818FDE16166FFD897EA8EB06FF2C0D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 06:22:53 +0000 Manifest this update: Tue 02 Jun 2026 06:17:53 +0000 Manifest next update: Wed 03 Jun 2026 10:03:53 +0000 Files and hashes: 1: AA23A685C6726226B631C7DF6C89BB4413F6F3B6.crl (hash: bvLCmRw5DCt31hPZiX0eZ5B2uLoEoyN5drbfNP51WCY=) 2: 3230332e3131342e3232362e302f32342d3234203d3e203435373033.roa (hash: RQ6zv/OcNcVun/cTLFBfmSLzfQJzMXKgcoU2+4K4YAw=) 3: 3230332e3131342e3232362e302f32332d3233203d3e203435373033.roa (hash: wM3JMaIp+zvVQetOr/lRp0Azv2B1AVIYfVuKB1kJoRo=) 4: 3230332e3131342e3232372e302f32342d3234203d3e203435373033.roa (hash: vehsLc9IdsSn7EUUdSdrNurNOdDJw1QIcbLPuX3RJb4=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.crl rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:03:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:27:2e:5d:46:81:8f:de:16:16:6f:fd:89:7e:a8:eb:06:ff:2c:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA23A685C6726226B631C7DF6C89BB4413F6F3B6 Validity Not Before: Jun 2 06:17:53 2026 GMT Not After : Jun 3 10:03:53 2026 GMT Subject: CN=8F39EAA0A2761F827C84BC9D77BBCA14EABAAA83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5e:95:02:ab:e9:b8:7c:68:d2:5e:59:62:c5: 2a:70:e7:02:44:81:ec:42:06:d4:26:98:35:ae:8d: 53:e4:79:74:66:8a:03:98:0e:88:3c:22:cc:2b:39: 40:bd:af:04:39:7a:e6:83:c6:00:aa:21:d2:d9:f4: 1f:b5:43:b1:0d:ed:22:2b:b3:a4:03:d5:51:ac:4b: 59:c5:cf:5b:98:a0:1c:17:98:52:ee:fd:80:59:85: 38:8b:48:2f:21:c3:77:d7:9d:82:64:9d:8a:5e:60: 52:a2:64:d1:ee:9d:0f:c6:72:e6:23:0c:1d:95:cb: 17:f7:e1:b7:2d:3c:69:d2:8f:fe:bb:1f:37:4b:81: 87:c1:60:e2:c0:eb:3c:90:d3:15:99:4e:0c:d3:04: c8:0e:a0:35:3b:a5:37:ca:9c:73:18:9f:27:db:88: 56:1a:d6:27:45:1b:b2:c1:cb:d1:2b:8f:9c:ea:5f: 4f:50:a1:b3:6b:31:91:81:61:cb:d4:e2:a0:2b:8d: 60:64:6c:a6:08:23:ec:1a:6e:21:ca:e8:b3:e2:dc: f6:d3:e1:2b:d4:a6:e7:3f:a2:78:10:4a:25:bc:9e: 18:f8:27:e5:d3:25:f4:d6:ad:b6:a3:83:be:f5:bc: 2f:67:77:b5:14:7d:b8:27:7c:9f:9c:2e:9b:0a:6c: df:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:39:EA:A0:A2:76:1F:82:7C:84:BC:9D:77:BB:CA:14:EA:BA:AA:83 X509v3 Authority Key Identifier: keyid:AA:23:A6:85:C6:72:62:26:B6:31:C7:DF:6C:89:BB:44:13:F6:F3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/0463ae7c-a6ff-4fd8-96f2-0ba1880133c7/0/AA23A685C6726226B631C7DF6C89BB4413F6F3B6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:63:d9:fe:7f:02:be:52:22:f4:de:c4:b1:df:b7:1d:9e:23: b4:11:61:7c:7f:5c:42:14:84:83:a2:ec:73:42:45:28:1f:4e: 1e:d4:5d:21:12:5b:2d:a8:29:c0:d9:23:10:03:b9:51:8c:e0: dd:78:fd:c8:5b:d6:48:66:a8:b5:67:e4:c0:02:91:fc:13:2a: 2d:72:a6:e4:62:f7:21:ce:91:9c:77:b0:e2:ee:20:75:ce:98: a1:ab:c9:bc:8f:f3:8f:dc:b5:2a:bf:33:c0:86:cb:07:cd:2f: 37:52:5a:03:d7:54:1b:20:68:cf:c9:5c:38:c6:6c:be:6c:5a: ff:a6:da:00:5b:b2:71:bb:2c:11:31:78:bc:a0:45:d0:71:1a: 48:2b:1f:f7:15:0d:2b:96:85:9d:f2:03:99:25:b4:fd:ab:7e: 02:80:e9:56:80:cb:25:6c:f6:2b:fa:23:2b:8c:d6:c7:69:f5: 75:8e:55:8d:e4:37:29:d5:fd:c1:8e:5d:d1:f1:dd:65:21:8d: 6c:d0:c2:32:64:11:fa:4a:84:53:85:14:be:d3:a0:b4:15:42: 42:a8:b6:cc:4f:0f:27:10:a5:11:7f:44:2b:72:1d:8a:fe:29: 93:3b:81:d3:c0:03:1a:c9:a6:80:a6:06:c5:f7:bb:54:bf:69: 4d:82:59:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZScuXUaBj94WFm/9iX6o6wb/LA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEyM0E2ODVDNjcyNjIyNkI2MzFDN0RGNkM4OUJCNDQx M0Y2RjNCNjAeFw0yNjA2MDIwNjE3NTNaFw0yNjA2MDMxMDAzNTNaMDMxMTAvBgNV BAMTKDhGMzlFQUEwQTI3NjFGODI3Qzg0QkM5RDc3QkJDQTE0RUFCQUFBODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHXpUCq+m4fGjSXllixSpw5wJE gexCBtQmmDWujVPkeXRmigOYDog8IswrOUC9rwQ5euaDxgCqIdLZ9B+1Q7EN7SIr s6QD1VGsS1nFz1uYoBwXmFLu/YBZhTiLSC8hw3fXnYJknYpeYFKiZNHunQ/GcuYj DB2Vyxf34bctPGnSj/67HzdLgYfBYOLA6zyQ0xWZTgzTBMgOoDU7pTfKnHMYnyfb iFYa1idFG7LBy9Erj5zqX09QobNrMZGBYcvU4qArjWBkbKYII+wabiHK6LPi3PbT 4SvUpuc/ongQSiW8nhj4J+XTJfTWrbajg771vC9nd7UUfbgnfJ+cLpsKbN9xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjznqoKJ2H4J8hLydd7vKFOq6qoMwHwYDVR0j BBgwFoAUqiOmhcZyYia2McffbIm7RBP287YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDQ2M2FlN2MtYTZmZi00ZmQ4LTk2ZjItMGJhMTg4MDEzM2M3LzAvQUEyM0E2ODVD NjcyNjIyNkI2MzFDN0RGNkM4OUJCNDQxM0Y2RjNCNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BQTIzQTY4NUM2NzI2MjI2QjYzMUM3REY2Qzg5QkI0NDEzRjZG M0I2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMDQ2M2FlN2MtYTZmZi00ZmQ4LTk2 ZjItMGJhMTg4MDEzM2M3LzAvQUEyM0E2ODVDNjcyNjIyNkI2MzFDN0RGNkM4OUJC NDQxM0Y2RjNCNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALVj2f5/Ar5SIvTexLHftx2eI7QRYXx/XEIU hIOi7HNCRSgfTh7UXSESWy2oKcDZIxADuVGM4N14/chb1khmqLVn5MACkfwTKi1y puRi9yHOkZx3sOLuIHXOmKGrybyP84/ctSq/M8CGywfNLzdSWgPXVBsgaM/JXDjG bL5sWv+m2gBbsnG7LBExeLygRdBxGkgrH/cVDSuWhZ3yA5kltP2rfgKA6VaAyyVs 9iv6IyuM1sdp9XWOVY3kNynV/cGOXdHx3WUhjWzQwjJkEfpKhFOFFL7ToLQVQkKo tsxPDycQpRF/RCtyHYr+KZM7gdPAAxrJpoCmBsX3u1S/aU2CWcw= -----END CERTIFICATE-----Generated at Wed Jun 3 04:11:57 2026 by rpki-client