$ rpki-client -vvf rpki-rsync.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/B68CA352FD19570302F874C669E957D75A73CB1A.mft File: B68CA352FD19570302F874C669E957D75A73CB1A.mft (raw, json) Hash identifier: kd91Ts9eDSjugsHI27fuaSv60pxqeoz5SAk1EilYd10= Subject key identifier: D3:97:0B:A7:BC:61:F4:AA:40:B6:39:5D:92:5F:3D:F8:7A:28:4D:E5 Authority key identifier: B6:8C:A3:52:FD:19:57:03:02:F8:74:C6:69:E9:57:D7:5A:73:CB:1A Certificate issuer: /CN=B68CA352FD19570302F874C669E957D75A73CB1A Certificate serial: 673F32843CDAF9AB9C6E80DF965B89563A5E0853 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B68CA352FD19570302F874C669E957D75A73CB1A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/B68CA352FD19570302F874C669E957D75A73CB1A.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 17:51:27 +0000 Manifest this update: Tue 02 Jun 2026 17:46:27 +0000 Manifest next update: Wed 03 Jun 2026 18:28:27 +0000 Files and hashes: 1: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (hash: cz1cQtv7tCgDk2XS5KepF7E6Gy4H3IOmqv/4F0jBKKs=) 2: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (hash: PPKzPS1avC1hYARVLoXIKKmtPdbk4f7qBVqCnnsV8sM=) 3: 3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa (hash: 5VrmWDNZS7if5g//ZdEtWvioHlEWvzJs1bPHJcalJoE=) 4: B68CA352FD19570302F874C669E957D75A73CB1A.crl (hash: n1Jx/SQrkkNi9ZPf45Hns7pHodxg8peutsGR7l7MNVQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/B68CA352FD19570302F874C669E957D75A73CB1A.crl rsync://rpki-rsync.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/B68CA352FD19570302F874C669E957D75A73CB1A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B68CA352FD19570302F874C669E957D75A73CB1A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 18:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:3f:32:84:3c:da:f9:ab:9c:6e:80:df:96:5b:89:56:3a:5e:08:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B68CA352FD19570302F874C669E957D75A73CB1A Validity Not Before: Jun 2 17:46:27 2026 GMT Not After : Jun 3 18:28:27 2026 GMT Subject: CN=D3970BA7BC61F4AA40B6395D925F3DF87A284DE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f7:94:0d:06:2e:58:d4:3b:53:63:f9:e9:04: e2:1d:28:77:fa:0c:9f:0d:3f:10:b7:51:8d:64:5c: 08:b9:15:e5:ca:48:09:38:4d:41:23:2e:95:8b:ce: fa:1a:ca:3f:28:3a:53:a2:bf:b9:f5:09:92:97:ad: 78:cc:87:f1:b8:f2:ab:b1:65:17:74:ca:d5:71:74: e9:49:a8:3f:57:1b:e6:65:3d:a1:ea:fb:0b:6b:67: 24:3e:f1:0f:02:06:44:aa:a3:8d:0b:ff:10:39:a8: 56:23:9e:1b:bb:e5:e1:93:27:fe:e1:52:3e:d4:2b: bf:42:aa:c5:6b:16:88:79:d0:bd:d5:ed:fb:ce:3b: d2:6f:05:8b:ed:df:97:17:f8:15:7c:8e:da:fc:9a: b7:33:f9:b5:a1:41:4a:80:37:40:fd:d9:3d:73:5a: 8c:02:ac:02:09:d8:29:75:4b:e1:fa:7c:8a:16:95: d9:24:6c:29:d4:81:f5:2b:a6:68:dc:8b:22:16:08: b7:83:5d:19:87:8f:a8:cc:20:be:61:d4:6c:51:f4: 29:81:89:29:e0:55:70:e4:ca:19:ba:76:f3:e4:f7: 70:f5:4f:a4:45:1f:cb:ef:d0:cb:24:7e:66:ab:2a: 9b:0e:6f:19:52:c8:25:ba:55:02:b2:2b:69:03:c5: 7a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:97:0B:A7:BC:61:F4:AA:40:B6:39:5D:92:5F:3D:F8:7A:28:4D:E5 X509v3 Authority Key Identifier: keyid:B6:8C:A3:52:FD:19:57:03:02:F8:74:C6:69:E9:57:D7:5A:73:CB:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/B68CA352FD19570302F874C669E957D75A73CB1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B68CA352FD19570302F874C669E957D75A73CB1A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/B68CA352FD19570302F874C669E957D75A73CB1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:27:42:16:e8:63:c8:c1:58:98:3f:15:0d:d5:40:40:c6:6d: b7:46:72:6a:d6:e9:9b:26:6c:ed:ab:48:f4:ff:be:3d:5c:4b: 34:99:9f:3b:73:d8:f7:ba:e4:1c:c1:16:37:2a:48:5f:f4:9f: 62:2a:b3:55:55:61:a4:b5:21:2e:55:3d:2b:29:94:dc:ef:2d: 0d:1c:7d:ed:0f:67:da:93:21:a4:77:f5:30:47:e7:0d:d8:38: cd:2c:c9:bc:61:2d:43:0b:20:a7:66:2f:6e:75:3d:80:54:b1: 3e:37:ce:92:b8:4e:63:c1:ea:59:e6:25:55:05:4e:f0:b6:76: 99:95:c1:28:62:dd:14:f0:7b:0c:f0:ca:91:aa:70:9c:42:cc: 04:57:9e:bc:c3:bd:87:a7:38:48:2d:4f:74:02:60:80:0c:36: 72:f3:cb:f9:2d:7d:24:03:06:a3:ab:db:78:ab:95:c1:7d:f6: d6:e1:f0:8b:80:36:ff:f7:48:e8:32:cc:7b:9c:4f:70:c3:48: c4:1b:60:f2:84:49:18:1f:2f:54:1a:01:f9:0b:16:4c:16:26: 88:44:23:1b:e1:46:03:4e:09:9b:d9:f2:9c:ec:9e:d4:12:c2: d7:de:5d:e9:d4:7c:78:71:0c:1d:25:fc:ac:e9:61:19:a0:61: 02:e0:8c:fe -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZz8yhDza+aucboDflluJVjpeCFMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjY4Q0EzNTJGRDE5NTcwMzAyRjg3NEM2NjlFOTU3RDc1 QTczQ0IxQTAeFw0yNjA2MDIxNzQ2MjdaFw0yNjA2MDMxODI4MjdaMDMxMTAvBgNV BAMTKEQzOTcwQkE3QkM2MUY0QUE0MEI2Mzk1RDkyNUYzREY4N0EyODRERTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDM95QNBi5Y1DtTY/npBOIdKHf6 DJ8NPxC3UY1kXAi5FeXKSAk4TUEjLpWLzvoayj8oOlOiv7n1CZKXrXjMh/G48qux ZRd0ytVxdOlJqD9XG+ZlPaHq+wtrZyQ+8Q8CBkSqo40L/xA5qFYjnhu75eGTJ/7h Uj7UK79CqsVrFoh50L3V7fvOO9JvBYvt35cX+BV8jtr8mrcz+bWhQUqAN0D92T1z WowCrAIJ2Cl1S+H6fIoWldkkbCnUgfUrpmjciyIWCLeDXRmHj6jMIL5h1GxR9CmB iSngVXDkyhm6dvPk93D1T6RFH8vv0MskfmarKpsObxlSyCW6VQKyK2kDxXpVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU05cLp7xh9KpAtjldkl89+HooTeUwHwYDVR0j BBgwFoAUtoyjUv0ZVwMC+HTGaelX11pzyxowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAwNDIzM2YtYmIyYy00N2Q3LTkwMWMtZTNjODJmOGQ0MjNjLzAvQjY4Q0EzNTJG RDE5NTcwMzAyRjg3NEM2NjlFOTU3RDc1QTczQ0IxQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CNjhDQTM1MkZEMTk1NzAzMDJGODc0QzY2OUU5NTdENzVBNzND QjFBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjAwNDIzM2YtYmIyYy00N2Q3LTkw MWMtZTNjODJmOGQ0MjNjLzAvQjY4Q0EzNTJGRDE5NTcwMzAyRjg3NEM2NjlFOTU3 RDc1QTczQ0IxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAAnQhboY8jBWJg/FQ3VQEDGbbdGcmrW6Zsm bO2rSPT/vj1cSzSZnztz2Pe65BzBFjcqSF/0n2Iqs1VVYaS1IS5VPSsplNzvLQ0c fe0PZ9qTIaR39TBH5w3YOM0sybxhLUMLIKdmL251PYBUsT43zpK4TmPB6lnmJVUF TvC2dpmVwShi3RTwewzwypGqcJxCzARXnrzDvYenOEgtT3QCYIAMNnLzy/ktfSQD BqOr23irlcF99tbh8IuANv/3SOgyzHucT3DDSMQbYPKESRgfL1QaAfkLFkwWJohE IxvhRgNOCZvZ8pzsntQSwtfeXenUfHhxDB0l/KzpYRmgYQLgjP4= -----END CERTIFICATE-----Generated at Wed Jun 3 04:37:17 2026 by rpki-client