$ rpki-client -vvf rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.mft File: D57816B86ABF0E6E25D84D1D5EB37F57672082E2.mft (raw, json) Hash identifier: Nbh51gWMI2aILy7DW218odUwYIlXpiJIyixjDu9Do6s= Subject key identifier: E8:F7:1D:8E:8B:3F:2E:80:D3:89:CC:1A:9F:36:00:62:0D:BD:CA:84 Authority key identifier: D5:78:16:B8:6A:BF:0E:6E:25:D8:4D:1D:5E:B3:7F:57:67:20:82:E2 Certificate issuer: /CN=D57816B86ABF0E6E25D84D1D5EB37F57672082E2 Certificate serial: 450E4246CF6D8D879E19867B30325FF8DA3E6FFD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 18:11:54 +0000 Manifest this update: Tue 02 Jun 2026 18:06:54 +0000 Manifest next update: Wed 03 Jun 2026 21:08:54 +0000 Files and hashes: 1: 3130332e31342e37352e302f32342d3234203d3e20313334363332.roa (hash: peOff/bMaPRVFv7RqgmuHQIO5KzTIHkBdGVMuXkb3Y0=) 2: 323030313a6466373a353430303a3a2f34382d3438203d3e20313334363332.roa (hash: rH/HlzNj8EN1t4rBBnxlIYgmTwkrb8JdSMLp5n/vbuw=) 3: 3130332e31342e37342e302f32342d3234203d3e20313334363332.roa (hash: ut81wNpcxfZaRtfYOIEu10o1O6sE5PD51eUSrS4eL90=) 4: D57816B86ABF0E6E25D84D1D5EB37F57672082E2.crl (hash: DnZVIaiM3MoFcC03XjVurUPMTiBvUOqjezH1sWbdMm0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.crl rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:0e:42:46:cf:6d:8d:87:9e:19:86:7b:30:32:5f:f8:da:3e:6f:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D57816B86ABF0E6E25D84D1D5EB37F57672082E2 Validity Not Before: Jun 2 18:06:54 2026 GMT Not After : Jun 3 21:08:54 2026 GMT Subject: CN=E8F71D8E8B3F2E80D389CC1A9F3600620DBDCA84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ea:3c:f8:22:34:8b:19:97:41:ca:98:78:09: 1b:7d:12:e6:9c:27:c5:bf:00:aa:41:2c:e4:d3:98: 97:ad:41:26:dc:c0:52:18:93:d7:4f:45:0e:0a:76: 4b:06:6b:0b:44:cb:c4:15:95:48:99:db:26:4a:ab: 82:d4:16:fc:0b:9d:14:a3:6d:b8:51:98:c3:f3:1b: 2d:98:83:64:a1:d7:b8:e6:f8:87:ad:2b:15:eb:14: f9:ec:f4:85:d2:93:c1:c2:ad:5b:b4:1c:ad:c5:2d: 3a:66:d0:20:c2:b5:ee:e0:28:10:5c:e8:76:d7:a5: fb:12:b0:88:9d:77:e2:40:b1:6d:ec:21:04:b8:a9: 49:6b:24:75:09:0b:0c:96:86:7e:16:e6:75:f0:43: 5a:d8:f5:47:42:bb:d4:92:18:df:80:c8:2d:6f:d8: bb:9f:9f:15:cd:44:3b:fa:e1:b4:fc:11:62:75:56: 31:e6:c6:18:a0:05:21:df:ee:65:7f:b3:ca:52:63: db:9e:41:8b:50:39:63:2f:94:16:41:5f:3b:ee:b4: 62:4a:74:69:b9:d3:6d:4a:e6:41:95:6a:1b:be:03: 74:dd:c6:96:f0:61:bb:7c:f4:f9:eb:be:75:b7:67: a5:61:3e:ec:5d:de:92:6d:e5:37:ca:99:07:8f:9a: 72:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F7:1D:8E:8B:3F:2E:80:D3:89:CC:1A:9F:36:00:62:0D:BD:CA:84 X509v3 Authority Key Identifier: keyid:D5:78:16:B8:6A:BF:0E:6E:25:D8:4D:1D:5E:B3:7F:57:67:20:82:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/D57816B86ABF0E6E25D84D1D5EB37F57672082E2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:61:98:ed:09:dc:85:ea:f7:d3:ff:ee:22:30:03:fa:b4:81: f9:37:c8:82:58:43:24:07:2b:c6:86:24:f9:ce:8c:3c:4e:aa: e1:77:ff:7b:aa:ed:33:d8:50:c4:14:cd:2a:60:55:f1:32:1c: 63:94:8a:8c:9c:18:4e:e9:6d:10:bf:9d:39:0a:6f:78:13:1e: 0a:a9:30:be:22:c4:ca:f8:2e:50:e2:84:af:43:05:1c:23:15: ab:8c:bc:6e:24:35:f2:d0:04:ad:da:03:a8:c8:56:1e:af:bb: dd:98:ae:d6:ed:12:bf:3b:fc:67:2e:a2:72:bc:3c:a7:68:33: bf:f5:22:04:56:aa:7f:3a:cd:dc:f4:b4:41:0f:0f:1a:9e:d1: c1:2a:16:a2:1c:5c:09:60:6a:4e:a6:bf:b9:8f:a0:e9:fc:e2: d4:64:ec:b6:79:d0:db:0e:14:d6:4f:e1:2e:42:74:3f:fe:da: 7d:d3:6a:00:a7:5a:90:1e:66:0a:bd:0b:c2:9a:06:23:29:10: 9b:8e:44:0c:ad:24:b3:7e:3e:3d:91:da:44:e1:d9:1e:24:77: eb:72:a7:dc:97:2a:6f:e7:7d:41:d3:60:ed:51:aa:1a:fe:22: ec:7a:40:e0:0e:36:80:bf:91:db:85:1f:a4:68:a3:11:65:15: 40:6c:e5:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURQ5CRs9tjYeeGYZ7MDJf+No+b/0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU3ODE2Qjg2QUJGMEU2RTI1RDg0RDFENUVCMzdGNTc2 NzIwODJFMjAeFw0yNjA2MDIxODA2NTRaFw0yNjA2MDMyMTA4NTRaMDMxMTAvBgNV BAMTKEU4RjcxRDhFOEIzRjJFODBEMzg5Q0MxQTlGMzYwMDYyMERCRENBODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL6jz4IjSLGZdByph4CRt9Euac J8W/AKpBLOTTmJetQSbcwFIYk9dPRQ4KdksGawtEy8QVlUiZ2yZKq4LUFvwLnRSj bbhRmMPzGy2Yg2Sh17jm+IetKxXrFPns9IXSk8HCrVu0HK3FLTpm0CDCte7gKBBc 6HbXpfsSsIidd+JAsW3sIQS4qUlrJHUJCwyWhn4W5nXwQ1rY9UdCu9SSGN+AyC1v 2LufnxXNRDv64bT8EWJ1VjHmxhigBSHf7mV/s8pSY9ueQYtQOWMvlBZBXzvutGJK dGm5021K5kGVahu+A3TdxpbwYbt89PnrvnW3Z6VhPuxd3pJt5TfKmQePmnLBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6Pcdjos/LoDTicwanzYAYg29yoQwHwYDVR0j BBgwFoAU1XgWuGq/Dm4l2E0dXrN/V2cgguIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MTAwMGUyM2UtZjQ0YS00Y2ZjLWJmNTYtZDk5YTA5MmQ3MzE0LzAvRDU3ODE2Qjg2 QUJGMEU2RTI1RDg0RDFENUVCMzdGNTc2NzIwODJFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9ENTc4MTZCODZBQkYwRTZFMjVEODREMUQ1RUIzN0Y1NzY3MjA4 MkUyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMTAwMGUyM2UtZjQ0YS00Y2ZjLWJm NTYtZDk5YTA5MmQ3MzE0LzAvRDU3ODE2Qjg2QUJGMEU2RTI1RDg0RDFENUVCMzdG NTc2NzIwODJFMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIFhmO0J3IXq99P/7iIwA/q0gfk3yIJYQyQH K8aGJPnOjDxOquF3/3uq7TPYUMQUzSpgVfEyHGOUioycGE7pbRC/nTkKb3gTHgqp ML4ixMr4LlDihK9DBRwjFauMvG4kNfLQBK3aA6jIVh6vu92YrtbtEr87/GcuonK8 PKdoM7/1IgRWqn86zdz0tEEPDxqe0cEqFqIcXAlgak6mv7mPoOn84tRk7LZ50NsO FNZP4S5CdD/+2n3TagCnWpAeZgq9C8KaBiMpEJuORAytJLN+Pj2R2kTh2R4kd+ty p9yXKm/nfUHTYO1Rqhr+Iux6QOAONoC/kduFH6RooxFlFUBs5cg= -----END CERTIFICATE-----Generated at Wed Jun 3 04:22:55 2026 by rpki-client