$ rpki-client -vvf rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.mft File: 328533C99D9FDEAA8F1418F15BD32B96BC206058.mft (raw, json) Hash identifier: zDPE0T55fTq582Uy71Yj+J+VG/pZ0IChQ2WGTc6UOZc= Subject key identifier: D1:22:90:AF:8F:9C:17:C6:2D:82:B7:87:C8:B4:D6:6E:7C:E8:E3:89 Authority key identifier: 32:85:33:C9:9D:9F:DE:AA:8F:14:18:F1:5B:D3:2B:96:BC:20:60:58 Certificate issuer: /CN=328533C99D9FDEAA8F1418F15BD32B96BC206058 Certificate serial: 10B28F68811EE429E0E8C4115AD3C501BCD8E60D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/328533C99D9FDEAA8F1418F15BD32B96BC206058.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.mft Manifest number: 2B Signing time: Wed 03 Jun 2026 01:46:53 +0000 Manifest this update: Wed 03 Jun 2026 01:41:53 +0000 Manifest next update: Thu 04 Jun 2026 05:02:53 +0000 Files and hashes: 1: 3130332e3231392e362e302f32342d3234203d3e203338313537.roa (hash: WdtifxvKK3KsxSLiwEXLWrNPcTtmbGv7tQrCl/tBPS8=) 2: 328533C99D9FDEAA8F1418F15BD32B96BC206058.crl (hash: VjHR4Ubm1mlk0YjV4a7EiaYFA/1e7VAEuV3s/zKUDGo=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.crl rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/328533C99D9FDEAA8F1418F15BD32B96BC206058.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 04:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:b2:8f:68:81:1e:e4:29:e0:e8:c4:11:5a:d3:c5:01:bc:d8:e6:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=328533C99D9FDEAA8F1418F15BD32B96BC206058 Validity Not Before: Jun 3 01:41:53 2026 GMT Not After : Jun 4 05:02:53 2026 GMT Subject: CN=D12290AF8F9C17C62D82B787C8B4D66E7CE8E389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3a:ea:9d:dc:23:73:30:5e:63:8a:6c:0a:4d: 4b:71:c4:b8:c6:26:7a:4f:91:6b:c3:8c:24:31:9a: 23:a6:53:27:33:f8:ae:c7:19:66:2a:83:01:a9:05: bb:77:02:c5:78:e9:92:f3:df:15:f9:04:aa:ce:cf: 72:b5:15:6c:d9:c0:bd:68:84:ec:d5:39:5f:15:43: 3f:7f:6c:d3:9a:ce:ab:4c:98:d9:86:70:4b:f4:2d: 63:d9:e2:6b:d4:eb:f4:50:3d:16:34:24:f5:d1:8b: ac:c0:7c:37:33:90:22:7b:4c:41:d3:48:47:2a:b0: 50:de:69:2a:da:b8:d3:48:c6:a6:94:61:c3:4e:f7: df:f2:dc:a2:2e:e4:87:23:54:f0:7c:f5:d0:1d:5c: 47:50:d0:51:88:7b:20:a2:dd:c4:8b:30:40:c2:89: 16:37:17:02:fb:2d:4c:0e:a8:e8:36:45:91:61:3e: 5e:4b:4f:52:c1:7d:ef:fb:09:96:64:e9:73:2c:cd: 9a:20:a0:bf:70:19:a2:81:ee:17:db:a8:8a:36:8d: 8b:3f:84:f3:52:36:65:4e:c1:5d:f0:c0:8d:45:51: e2:89:4a:00:50:e2:f9:57:19:0b:57:c4:90:8d:89: 06:5e:19:f6:c1:7d:87:03:c9:da:1e:86:41:03:94: 05:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:22:90:AF:8F:9C:17:C6:2D:82:B7:87:C8:B4:D6:6E:7C:E8:E3:89 X509v3 Authority Key Identifier: keyid:32:85:33:C9:9D:9F:DE:AA:8F:14:18:F1:5B:D3:2B:96:BC:20:60:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/328533C99D9FDEAA8F1418F15BD32B96BC206058.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:42:f5:36:cb:b7:95:0c:f4:35:8f:d2:90:f4:8d:82:dc:6e: fd:24:6c:9d:52:a0:7b:13:6e:63:3f:2c:75:65:2a:f5:be:38: 75:6f:23:81:e9:9c:5d:87:b0:68:4f:7d:c3:9b:32:8f:57:fe: 40:87:ca:fc:07:fb:cd:40:c8:dd:27:5d:46:70:ed:1b:6a:88: e7:6e:5b:1b:e4:47:c6:61:66:e9:99:45:b1:a8:0a:ec:f7:69: 2f:d0:80:d2:b8:a2:f3:9e:29:81:f1:4b:fb:bc:69:e7:85:9c: 45:bd:fd:36:e5:28:18:06:8b:ef:78:cf:68:21:27:7e:78:4d: 6b:a4:99:fd:cf:06:a7:17:bb:0f:9e:f1:37:0a:9a:da:48:9f: 2a:0a:38:0c:c9:d5:a6:87:af:14:f2:95:59:0e:ba:32:ce:ee: 96:07:ea:eb:18:84:1d:7d:e2:cc:ef:03:9e:57:00:a6:95:b5: df:59:37:c0:a8:5e:03:13:85:96:56:16:ed:50:21:3a:d9:d0: 07:66:7e:e8:58:6a:cf:56:45:92:d5:c2:aa:14:49:1e:49:b4: b6:ef:75:ce:f3:85:52:e7:c1:c6:4c:15:a0:23:f6:c3:94:d5: 6c:17:7b:26:69:f0:5b:50:c5:ae:cb:3e:24:0e:48:fe:d1:c3: 18:57:36:48 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUELKPaIEe5Cng6MQRWtPFAbzY5g0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzI4NTMzQzk5RDlGREVBQThGMTQxOEYxNUJEMzJCOTZC QzIwNjA1ODAeFw0yNjA2MDMwMTQxNTNaFw0yNjA2MDQwNTAyNTNaMDMxMTAvBgNV BAMTKEQxMjI5MEFGOEY5QzE3QzYyRDgyQjc4N0M4QjRENjZFN0NFOEUzODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWOuqd3CNzMF5jimwKTUtxxLjG JnpPkWvDjCQxmiOmUycz+K7HGWYqgwGpBbt3AsV46ZLz3xX5BKrOz3K1FWzZwL1o hOzVOV8VQz9/bNOazqtMmNmGcEv0LWPZ4mvU6/RQPRY0JPXRi6zAfDczkCJ7TEHT SEcqsFDeaSrauNNIxqaUYcNO99/y3KIu5IcjVPB89dAdXEdQ0FGIeyCi3cSLMEDC iRY3FwL7LUwOqOg2RZFhPl5LT1LBfe/7CZZk6XMszZogoL9wGaKB7hfbqIo2jYs/ hPNSNmVOwV3wwI1FUeKJSgBQ4vlXGQtXxJCNiQZeGfbBfYcDydoehkEDlAUHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0SKQr4+cF8YtgreHyLTWbnzo44kwHwYDVR0j BBgwFoAUMoUzyZ2f3qqPFBjxW9MrlrwgYFgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MjAyMWVlNzYtYTlmZi00YmZhLTgyMjMtOTQ2ZWVjY2NmMDM2LzAvMzI4NTMzQzk5 RDlGREVBQThGMTQxOEYxNUJEMzJCOTZCQzIwNjA1OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMjg1MzNDOTlEOUZERUFBOEYxNDE4RjE1QkQzMkI5NkJDMjA2 MDU4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMjAyMWVlNzYtYTlmZi00YmZhLTgy MjMtOTQ2ZWVjY2NmMDM2LzAvMzI4NTMzQzk5RDlGREVBQThGMTQxOEYxNUJEMzJC OTZCQzIwNjA1OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFlC9TbLt5UM9DWP0pD0jYLcbv0kbJ1SoHsT bmM/LHVlKvW+OHVvI4HpnF2HsGhPfcObMo9X/kCHyvwH+81AyN0nXUZw7RtqiOdu WxvkR8ZhZumZRbGoCuz3aS/QgNK4ovOeKYHxS/u8aeeFnEW9/TblKBgGi+94z2gh J354TWukmf3PBqcXuw+e8TcKmtpInyoKOAzJ1aaHrxTylVkOujLO7pYH6usYhB19 4szvA55XAKaVtd9ZN8CoXgMThZZWFu1QITrZ0AdmfuhYas9WRZLVwqoUSR5JtLbv dc7zhVLnwcZMFaAj9sOU1WwXeyZp8FtQxa7LPiQOSP7RwxhXNkg= -----END CERTIFICATE-----Generated at Wed Jun 3 04:12:08 2026 by rpki-client