$ rpki-client -vvf rpki-rsync.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/C2F21005CDD8F19E492720297D0BA5C66395653F.mft File: C2F21005CDD8F19E492720297D0BA5C66395653F.mft (raw, json) Hash identifier: 9EGeaCyHTizxSL4s7LrQrbGtlbZ3UOXxhNoXNy6LJ04= Subject key identifier: AF:84:E6:64:95:D0:F5:66:19:2C:C9:48:86:67:93:9A:FB:21:5B:8D Authority key identifier: C2:F2:10:05:CD:D8:F1:9E:49:27:20:29:7D:0B:A5:C6:63:95:65:3F Certificate issuer: /CN=C2F21005CDD8F19E492720297D0BA5C66395653F Certificate serial: 23CE1D0C26FB57C0DA6227F73DAFDDC678CF420A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C2F21005CDD8F19E492720297D0BA5C66395653F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/C2F21005CDD8F19E492720297D0BA5C66395653F.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 10:17:52 +0000 Manifest this update: Tue 02 Jun 2026 10:12:52 +0000 Manifest next update: Wed 03 Jun 2026 12:35:52 +0000 Files and hashes: 1: 3130332e39312e35352e302f32342d3234203d3e20313530323538.roa (hash: 4WF38lDugkx4g5GWHdzVk5hRBqpGlU+mntDxAYWnRfU=) 2: C2F21005CDD8F19E492720297D0BA5C66395653F.crl (hash: SUdkqTg3oPdG4wMW0sGMSdvJ3LkogVa8PrE0XMdg17Y=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/C2F21005CDD8F19E492720297D0BA5C66395653F.crl rsync://rpki-rsync.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/C2F21005CDD8F19E492720297D0BA5C66395653F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C2F21005CDD8F19E492720297D0BA5C66395653F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 12:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:ce:1d:0c:26:fb:57:c0:da:62:27:f7:3d:af:dd:c6:78:cf:42:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F21005CDD8F19E492720297D0BA5C66395653F Validity Not Before: Jun 2 10:12:52 2026 GMT Not After : Jun 3 12:35:52 2026 GMT Subject: CN=AF84E66495D0F566192CC9488667939AFB215B8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e5:42:07:e8:9c:27:8b:8a:f4:90:0b:05:46: a6:d3:34:b8:45:cd:ab:cb:d1:73:3f:08:f9:2b:e4: 8f:49:0d:de:ec:76:ce:24:52:f5:5c:5b:e5:63:af: 5b:ee:84:c5:1b:1f:e2:72:74:2b:44:43:94:1b:a8: ef:f3:6b:c3:33:74:2e:52:02:72:0a:69:34:f7:77: 8b:29:b2:1b:cc:26:b3:47:64:0f:1f:e8:12:bf:a1: d4:1d:d9:ef:30:ec:92:23:a0:d7:27:09:f0:30:07: d1:35:0b:2b:34:2e:04:a7:2e:ea:57:ff:1d:28:17: 3a:b9:b2:ff:9b:e9:ba:40:f1:98:93:c0:73:de:1d: 74:29:82:49:1a:8f:e7:a2:07:b4:e2:65:30:a1:ee: d7:b7:88:5f:48:da:69:cf:2d:b8:46:17:ce:1a:7e: a0:f6:1c:2a:f8:e8:16:b9:13:a9:c7:a5:bc:8b:91: 90:f1:02:1b:4a:99:b9:61:f2:71:2d:22:90:57:66: 58:88:50:10:58:79:11:b5:4b:22:ca:7e:ec:f7:cf: 00:57:b5:99:59:e0:04:a8:6c:d0:3a:f0:79:cb:2d: 42:de:81:d7:54:39:bc:ec:13:a2:27:77:a2:bc:d2: 1b:81:18:19:ea:65:63:a1:b5:56:2c:72:10:e2:0e: dd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:84:E6:64:95:D0:F5:66:19:2C:C9:48:86:67:93:9A:FB:21:5B:8D X509v3 Authority Key Identifier: keyid:C2:F2:10:05:CD:D8:F1:9E:49:27:20:29:7D:0B:A5:C6:63:95:65:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/C2F21005CDD8F19E492720297D0BA5C66395653F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C2F21005CDD8F19E492720297D0BA5C66395653F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2ffbaf71-2d57-4e4a-91d0-cac8ab0acefe/0/C2F21005CDD8F19E492720297D0BA5C66395653F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:95:5d:36:6e:d5:2f:eb:da:4c:c3:d0:a5:91:ed:9e:d0:0c: 39:8f:dc:c9:b7:fc:96:27:96:f1:13:6d:a1:88:45:30:0c:2f: 0f:2a:dd:8d:80:a0:d5:74:2b:41:dc:27:5d:47:9c:4f:97:91: 87:ea:af:d7:13:8b:5b:b1:f9:2c:6e:59:46:e0:52:f6:b2:d1: 94:2e:a4:db:0b:58:08:31:5c:f7:d7:85:93:7c:b4:95:d4:55: 19:a1:62:52:c9:cb:3d:50:e8:1f:e3:fc:b8:2e:39:19:55:9b: 33:62:04:66:f5:58:7d:17:96:10:2c:86:d7:fd:49:dd:67:4d: 3a:37:55:16:e9:d1:04:db:c7:cd:0d:50:9b:a6:13:6a:e0:68: 6a:aa:68:df:90:20:8e:21:f5:1c:21:71:5f:59:33:df:c9:75: 97:8f:83:f5:ea:af:80:5e:6e:d7:36:e0:0a:db:84:13:47:e5: 47:12:92:94:5a:16:07:29:be:3d:58:ff:5b:2d:41:d5:b9:b9: 08:99:23:59:e2:71:81:f3:23:a9:d3:e0:e0:91:4f:4f:3c:9e: ae:31:6f:12:f2:6c:75:3f:ec:8d:c7:4a:14:57:09:84:8d:fb: 3f:ec:e2:06:37:6b:35:1b:5f:16:24:90:27:d3:f4:6d:52:9b: 78:61:b3:48 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI84dDCb7V8DaYif3Pa/dxnjPQgowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGMjEwMDVDREQ4RjE5RTQ5MjcyMDI5N0QwQkE1QzY2 Mzk1NjUzRjAeFw0yNjA2MDIxMDEyNTJaFw0yNjA2MDMxMjM1NTJaMDMxMTAvBgNV BAMTKEFGODRFNjY0OTVEMEY1NjYxOTJDQzk0ODg2Njc5MzlBRkIyMTVCOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC65UIH6Jwni4r0kAsFRqbTNLhF zavL0XM/CPkr5I9JDd7sds4kUvVcW+Vjr1vuhMUbH+JydCtEQ5QbqO/za8MzdC5S AnIKaTT3d4spshvMJrNHZA8f6BK/odQd2e8w7JIjoNcnCfAwB9E1Cys0LgSnLupX /x0oFzq5sv+b6bpA8ZiTwHPeHXQpgkkaj+eiB7TiZTCh7te3iF9I2mnPLbhGF84a fqD2HCr46Ba5E6nHpbyLkZDxAhtKmblh8nEtIpBXZliIUBBYeRG1SyLKfuz3zwBX tZlZ4ASobNA68HnLLULegddUObzsE6Ind6K80huBGBnqZWOhtVYschDiDt2JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUr4TmZJXQ9WYZLMlIhmeTmvshW40wHwYDVR0j BBgwFoAUwvIQBc3Y8Z5JJyApfQulxmOVZT8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmZmYmFmNzEtMmQ1Ny00ZTRhLTkxZDAtY2FjOGFiMGFjZWZlLzAvQzJGMjEwMDVD REQ4RjE5RTQ5MjcyMDI5N0QwQkE1QzY2Mzk1NjUzRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMkYyMTAwNUNERDhGMTlFNDkyNzIwMjk3RDBCQTVDNjYzOTU2 NTNGLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmZmYmFmNzEtMmQ1Ny00ZTRhLTkx ZDAtY2FjOGFiMGFjZWZlLzAvQzJGMjEwMDVDREQ4RjE5RTQ5MjcyMDI5N0QwQkE1 QzY2Mzk1NjUzRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGmVXTZu1S/r2kzD0KWR7Z7QDDmP3Mm3/JYn lvETbaGIRTAMLw8q3Y2AoNV0K0HcJ11HnE+XkYfqr9cTi1ux+SxuWUbgUvay0ZQu pNsLWAgxXPfXhZN8tJXUVRmhYlLJyz1Q6B/j/LguORlVmzNiBGb1WH0XlhAshtf9 Sd1nTTo3VRbp0QTbx80NUJumE2rgaGqqaN+QII4h9RwhcV9ZM9/JdZePg/Xqr4Be btc24ArbhBNH5UcSkpRaFgcpvj1Y/1stQdW5uQiZI1nicYHzI6nT4OCRT088nq4x bxLybHU/7I3HShRXCYSN+z/s4gY3azUbXxYkkCfT9G1Sm3hhs0g= -----END CERTIFICATE-----Generated at Wed Jun 3 04:37:08 2026 by rpki-client