$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.mft File: 2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.mft (raw, json) Hash identifier: /aJn9/Mw/syine58uL0RNI+zc11ukxeCioNlOR8DzuA= Subject key identifier: F2:97:5D:13:69:AB:8E:28:8A:CA:92:CF:B4:33:D7:E5:B3:E3:0C:F6 Authority key identifier: 2D:4E:F7:6F:F5:F1:DE:08:B9:FB:7C:AE:D4:9A:F7:AD:4C:60:18:35 Certificate issuer: /CN=2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835 Certificate serial: 08EE0A03CC32683AC62B420E514C44B16DCDA81A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 17:41:19 +0000 Manifest this update: Tue 02 Jun 2026 17:36:19 +0000 Manifest next update: Wed 03 Jun 2026 20:05:19 +0000 Files and hashes: 1: 3130332e31392e35392e302f32342d3234203d3e20313332363337.roa (hash: +vElMuoXueIlORLkNX9hNN9LTELx3Cm8ZNhxGm0p8LM=) 2: 3130332e31392e35362e302f32342d3234203d3e20313332363337.roa (hash: Lvw5pO2bg6firYOVJrL24L/mVS2H6b/TJe2TV+FnMQs=) 3: 3130332e31392e35372e302f32342d3234203d3e20313332363337.roa (hash: Qy2f1Th+IuSFin6EsJuwgkXChR1+TY6gnLgDe+ouGOE=) 4: 323430323a333263303a3a2f33322d3332203d3e20313332363337.roa (hash: gCsatGRm4KYeS4xTuGnz+oT2rG5lR5XCvd8UnIJR5JU=) 5: 2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.crl (hash: 3/2faCl0ynSuxTdv2VJAjxR40s1GoZNexiLYmG0AMBs=) 6: 3130332e31392e35362e302f32322d3232203d3e20313332363337.roa (hash: JZgdRbJu890tbXcbh9Oxv/c/hndsIuQkwCj004yU0ZY=) 7: 3130332e31392e35382e302f32342d3234203d3e20313332363337.roa (hash: abfZiYldhdnO1xBcxOi/v0tih5cS8BcQKFP2Z8xIlZI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.crl rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:ee:0a:03:cc:32:68:3a:c6:2b:42:0e:51:4c:44:b1:6d:cd:a8:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835 Validity Not Before: Jun 2 17:36:19 2026 GMT Not After : Jun 3 20:05:19 2026 GMT Subject: CN=F2975D1369AB8E288ACA92CFB433D7E5B3E30CF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bb:0b:dd:10:3c:2a:29:92:ba:cd:62:7c:c5: 2b:25:12:73:3b:2c:17:34:56:80:c7:0a:21:73:7a: 1e:7f:f2:7c:e2:94:80:b0:19:7a:61:79:b1:ca:54: 56:49:d5:92:ae:23:2d:7e:57:db:9d:c6:4d:80:d9: e6:59:be:7e:f0:92:06:6e:ce:5e:61:c9:ce:67:ab: 68:89:cf:56:35:c7:3a:e2:fc:a0:23:b4:14:ec:50: 0d:b4:b2:78:bc:4e:37:b0:47:6a:24:43:8a:de:9b: 5b:8f:aa:f5:d6:7d:1d:e1:4a:4e:bf:59:43:f9:a0: b3:b6:b5:36:c4:78:cc:df:cd:b7:f7:a1:54:e6:8c: 36:d7:32:16:d1:5c:10:c4:65:d9:f7:f5:4e:a5:63: 70:c4:b0:57:03:aa:46:8f:df:f4:bd:07:4f:63:a3: 9e:79:22:02:6e:1d:9a:5c:84:37:18:88:37:63:03: d3:3a:8b:fd:97:da:5e:63:87:96:95:15:87:5f:55: 57:21:e2:81:e4:02:f6:5a:56:2c:e6:23:af:48:9f: 80:6f:7b:f7:cc:a6:19:6f:fe:be:23:15:4f:74:1f: 1f:bb:fc:ef:98:13:3a:ec:80:77:a2:f2:86:61:33: ee:54:d6:3a:de:39:2a:39:14:9c:fd:b6:27:0f:c4: 21:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:97:5D:13:69:AB:8E:28:8A:CA:92:CF:B4:33:D7:E5:B3:E3:0C:F6 X509v3 Authority Key Identifier: keyid:2D:4E:F7:6F:F5:F1:DE:08:B9:FB:7C:AE:D4:9A:F7:AD:4C:60:18:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/2D4EF76FF5F1DE08B9FB7CAED49AF7AD4C601835.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:9e:32:87:7e:a6:89:14:64:f8:05:9b:6d:e1:3e:09:8a:ba: 1a:6e:14:c1:b5:9e:80:a9:8e:1d:77:93:bf:5b:d6:4f:53:96: 13:dd:e0:c4:a1:36:c4:15:a3:9a:0f:2a:36:68:72:44:52:b9: 41:19:4f:94:34:bd:16:87:2e:6d:27:62:d6:5a:d6:f8:24:ae: 34:aa:56:92:f6:6c:16:75:c1:e2:33:16:fa:6d:ad:6f:07:be: 46:22:e5:ee:de:e2:47:68:87:ee:d3:8b:13:71:55:2c:07:25: ed:0f:bc:50:e0:b3:6f:6f:71:ef:ac:21:c9:3f:72:c0:29:49: 56:32:72:ec:0d:88:fe:7b:c4:b2:24:8c:43:57:69:3a:a2:f5: 64:05:66:33:cf:a4:3a:c1:c0:70:f9:80:88:ba:10:5f:a4:d3: a3:aa:ec:b4:ca:08:1e:06:38:cc:cc:11:82:95:f6:34:49:67: ba:65:5f:53:10:81:ff:c6:8a:21:51:a2:2b:fe:67:a0:95:84: 1c:f9:45:eb:c8:ae:dc:7b:1a:0f:52:02:f4:cb:ad:d9:25:af: 5c:82:62:5e:ef:96:83:b2:87:6c:18:c1:04:c0:2a:63:53:90: 69:c8:6f:d4:b8:84:8d:f8:38:16:04:b0:63:3f:c7:37:d9:c0: d6:15:41:68 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCO4KA8wyaDrGK0IOUUxEsW3NqBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ0RUY3NkZGNUYxREUwOEI5RkI3Q0FFRDQ5QUY3QUQ0 QzYwMTgzNTAeFw0yNjA2MDIxNzM2MTlaFw0yNjA2MDMyMDA1MTlaMDMxMTAvBgNV BAMTKEYyOTc1RDEzNjlBQjhFMjg4QUNBOTJDRkI0MzNEN0U1QjNFMzBDRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCauwvdEDwqKZK6zWJ8xSslEnM7 LBc0VoDHCiFzeh5/8nzilICwGXphebHKVFZJ1ZKuIy1+V9udxk2A2eZZvn7wkgZu zl5hyc5nq2iJz1Y1xzri/KAjtBTsUA20sni8TjewR2okQ4rem1uPqvXWfR3hSk6/ WUP5oLO2tTbEeMzfzbf3oVTmjDbXMhbRXBDEZdn39U6lY3DEsFcDqkaP3/S9B09j o555IgJuHZpchDcYiDdjA9M6i/2X2l5jh5aVFYdfVVch4oHkAvZaVizmI69In4Bv e/fMphlv/r4jFU90Hx+7/O+YEzrsgHei8oZhM+5U1jreOSo5FJz9ticPxCGBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8pddE2mrjiiKypLPtDPX5bPjDPYwHwYDVR0j BBgwFoAULU73b/Xx3gi5+3yu1Jr3rUxgGDUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQwOTI3ZTYtOGEwYS00ZmE3LTg5NjktOWZiOWQ2OTQzOTdjLzAvMkQ0RUY3NkZG NUYxREUwOEI5RkI3Q0FFRDQ5QUY3QUQ0QzYwMTgzNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yRDRFRjc2RkY1RjFERTA4QjlGQjdDQUVENDlBRjdBRDRDNjAx ODM1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmQwOTI3ZTYtOGEwYS00ZmE3LTg5 NjktOWZiOWQ2OTQzOTdjLzAvMkQ0RUY3NkZGNUYxREUwOEI5RkI3Q0FFRDQ5QUY3 QUQ0QzYwMTgzNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAICeMod+pokUZPgFm23hPgmKuhpuFMG1noCp jh13k79b1k9TlhPd4MShNsQVo5oPKjZockRSuUEZT5Q0vRaHLm0nYtZa1vgkrjSq VpL2bBZ1weIzFvptrW8HvkYi5e7e4kdoh+7TixNxVSwHJe0PvFDgs29vce+sIck/ csApSVYycuwNiP57xLIkjENXaTqi9WQFZjPPpDrBwHD5gIi6EF+k06Oq7LTKCB4G OMzMEYKV9jRJZ7plX1MQgf/GiiFRoiv+Z6CVhBz5RevIrtx7Gg9SAvTLrdklr1yC Yl7vloOyh2wYwQTAKmNTkGnIb9S4hI34OBYEsGM/xzfZwNYVQWg= -----END CERTIFICATE-----Generated at Wed Jun 3 04:00:33 2026 by rpki-client