$ rpki-client -vvf rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.mft File: BB322B002A297F8520DD12064BEB9ACA71727712.mft (raw, json) Hash identifier: iEkA9tKhQfltkGKuGvKxOGsdEJTf7nOZPwP2Lp9yPh4= Subject key identifier: 1B:D6:A2:35:DA:7F:F7:2A:CF:34:C1:01:E2:38:87:F7:A6:6A:1F:82 Authority key identifier: BB:32:2B:00:2A:29:7F:85:20:DD:12:06:4B:EB:9A:CA:71:72:77:12 Certificate issuer: /CN=BB322B002A297F8520DD12064BEB9ACA71727712 Certificate serial: 3EBA6FA4D44C9D7F8BD66F294DBC53E2EE10B5C2 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB322B002A297F8520DD12064BEB9ACA71727712.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 19:33:43 +0000 Manifest this update: Tue 02 Jun 2026 19:28:43 +0000 Manifest next update: Wed 03 Jun 2026 22:01:43 +0000 Files and hashes: 1: 3130332e3136352e3135342e302f32342d3234203d3e20313431393635.roa (hash: vRniZffLsrR39+YMBuuOMWA3xEVH1whiIwlxoJ0FXP8=) 2: BB322B002A297F8520DD12064BEB9ACA71727712.crl (hash: SwvaTlEqeBqb5QMJyxI4xwSksrJU/BAP0JfwRjhAa+E=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.crl rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB322B002A297F8520DD12064BEB9ACA71727712.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 22:01:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ba:6f:a4:d4:4c:9d:7f:8b:d6:6f:29:4d:bc:53:e2:ee:10:b5:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB322B002A297F8520DD12064BEB9ACA71727712 Validity Not Before: Jun 2 19:28:43 2026 GMT Not After : Jun 3 22:01:43 2026 GMT Subject: CN=1BD6A235DA7FF72ACF34C101E23887F7A66A1F82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:13:08:1b:65:1a:09:e2:bb:ba:e0:8d:e7:35: 0a:35:10:65:25:42:7f:59:0c:b9:9d:da:de:0f:46: 11:c9:12:6d:83:73:a5:4f:53:12:f9:30:bf:ea:19: ba:59:f6:37:da:53:0e:a1:86:f1:eb:ce:46:d6:b5: 28:21:86:7e:d9:99:0d:9e:c9:f6:a3:1c:99:1e:c2: 73:8b:18:fd:49:54:9b:bc:11:c4:60:8c:d1:07:75: 65:81:48:7f:76:5b:6a:60:d4:28:14:5f:79:27:58: 86:99:59:83:45:32:47:fc:62:9b:3e:67:2c:9f:79: 02:a0:93:cd:67:ee:f4:b1:b8:45:bf:e2:3d:30:22: 64:93:e9:d6:39:21:d3:df:6d:d2:77:a1:be:aa:8b: d7:50:27:45:e6:fc:ec:20:f2:ed:16:00:68:9f:26: 74:17:43:66:eb:43:c7:5a:04:ae:d2:17:14:96:70: 77:4f:de:44:cc:f1:76:77:38:f7:05:c5:5f:a3:af: 10:b9:20:e4:b5:9e:03:f4:2f:d1:07:53:69:4c:d5: 36:5b:db:14:13:9d:db:22:d0:63:45:81:28:29:ed: 8b:c5:8f:48:ec:c2:66:55:54:82:5b:0c:ab:15:85: c5:93:b9:ed:9f:72:c9:18:66:de:c2:1e:ec:c3:ea: b9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D6:A2:35:DA:7F:F7:2A:CF:34:C1:01:E2:38:87:F7:A6:6A:1F:82 X509v3 Authority Key Identifier: keyid:BB:32:2B:00:2A:29:7F:85:20:DD:12:06:4B:EB:9A:CA:71:72:77:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB322B002A297F8520DD12064BEB9ACA71727712.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2cf35a47-2cce-487f-aa27-c9e9de635bec/0/BB322B002A297F8520DD12064BEB9ACA71727712.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:b6:46:4b:02:1a:72:e5:d1:2b:24:01:29:e6:e7:7f:f6:e4: 13:44:46:ad:12:db:3a:d5:0d:25:20:18:e6:c0:54:0f:e9:75: ca:ba:70:e9:47:a9:e9:a8:4d:70:a0:00:24:0e:ae:9d:ea:4e: e7:7b:32:37:71:6b:01:b5:09:d2:4c:ca:7f:52:46:3b:f8:c1: 47:d3:fe:69:07:cd:73:83:46:01:28:8d:ca:d4:16:88:be:65: b4:31:a3:c2:55:98:eb:b2:e3:f8:7a:21:24:42:c8:54:33:f7: 9c:2a:fc:d9:bf:ce:93:30:ce:5d:5e:3e:33:3e:1f:e4:a0:1b: b7:2b:ea:ec:25:f2:6d:7e:4e:13:ed:36:6a:3b:53:cf:d3:02: 97:51:ce:7a:57:5d:88:5d:94:25:14:52:f0:d3:ff:1b:d9:19: 80:46:f7:29:29:e8:5b:b9:d0:19:4a:a3:9c:c0:8c:1f:22:9d: d3:fe:85:cf:71:e5:b4:0d:85:3f:89:90:bd:a3:3d:54:34:3c: cc:e1:68:7b:82:fa:a4:95:c6:c0:3b:a6:20:ec:0b:03:02:0d: bc:72:04:87:d7:14:0d:1f:48:70:8e:ef:23:c5:5f:2c:6e:c9: 7c:95:91:c5:86:cd:10:3c:4d:4a:78:8e:8a:d7:fd:29:d7:d9: 3d:9d:57:0c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPrpvpNRMnX+L1m8pTbxT4u4QtcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkIzMjJCMDAyQTI5N0Y4NTIwREQxMjA2NEJFQjlBQ0E3 MTcyNzcxMjAeFw0yNjA2MDIxOTI4NDNaFw0yNjA2MDMyMjAxNDNaMDMxMTAvBgNV BAMTKDFCRDZBMjM1REE3RkY3MkFDRjM0QzEwMUUyMzg4N0Y3QTY2QTFGODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPEwgbZRoJ4ru64I3nNQo1EGUl Qn9ZDLmd2t4PRhHJEm2Dc6VPUxL5ML/qGbpZ9jfaUw6hhvHrzkbWtSghhn7ZmQ2e yfajHJkewnOLGP1JVJu8EcRgjNEHdWWBSH92W2pg1CgUX3knWIaZWYNFMkf8Yps+ ZyyfeQKgk81n7vSxuEW/4j0wImST6dY5IdPfbdJ3ob6qi9dQJ0Xm/Owg8u0WAGif JnQXQ2brQ8daBK7SFxSWcHdP3kTM8XZ3OPcFxV+jrxC5IOS1ngP0L9EHU2lM1TZb 2xQTndsi0GNFgSgp7YvFj0jswmZVVIJbDKsVhcWTue2fcskYZt7CHuzD6rnTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUG9aiNdp/9yrPNMEB4jiH96ZqH4IwHwYDVR0j BBgwFoAUuzIrACopf4Ug3RIGS+uaynFydxIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmNmMzVhNDctMmNjZS00ODdmLWFhMjctYzllOWRlNjM1YmVjLzAvQkIzMjJCMDAy QTI5N0Y4NTIwREQxMjA2NEJFQjlBQ0E3MTcyNzcxMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjMyMkIwMDJBMjk3Rjg1MjBERDEyMDY0QkVCOUFDQTcxNzI3 NzEyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmNmMzVhNDctMmNjZS00ODdmLWFh MjctYzllOWRlNjM1YmVjLzAvQkIzMjJCMDAyQTI5N0Y4NTIwREQxMjA2NEJFQjlB Q0E3MTcyNzcxMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAG2RksCGnLl0SskASnm53/25BNERq0S2zrV DSUgGObAVA/pdcq6cOlHqemoTXCgACQOrp3qTud7MjdxawG1CdJMyn9SRjv4wUfT /mkHzXODRgEojcrUFoi+ZbQxo8JVmOuy4/h6ISRCyFQz95wq/Nm/zpMwzl1ePjM+ H+SgG7cr6uwl8m1+ThPtNmo7U8/TApdRznpXXYhdlCUUUvDT/xvZGYBG9ykp6Fu5 0BlKo5zAjB8indP+hc9x5bQNhT+JkL2jPVQ0PMzhaHuC+qSVxsA7piDsCwMCDbxy BIfXFA0fSHCO7yPFXyxuyXyVkcWGzRA8TUp4jorX/SnX2T2dVww= -----END CERTIFICATE-----Generated at Wed Jun 3 04:44:40 2026 by rpki-client