$ rpki-client -vvf rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft File: 1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft (raw, json) Hash identifier: lPmVwKzFCx9YEzhKwiMa/TLp7MKJF+wcIiH2bdku8dA= Subject key identifier: 0D:66:1A:3C:AD:2D:1C:3B:A1:AF:46:0F:71:E6:E0:65:CD:60:14:5A Authority key identifier: 1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A Certificate issuer: /CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Certificate serial: 4F172D79B80019B3DFA2937877A6D8A465567F56 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 15:23:39 +0000 Manifest this update: Tue 02 Jun 2026 15:18:39 +0000 Manifest next update: Wed 03 Jun 2026 15:24:39 +0000 Files and hashes: 1: 3131372e37342e3131362e302f32342d3234203d3e203338353233.roa (hash: MRJCCb3fXe1PqSBXHNtZ+I4+QxuZf0FtTfzRiqIoYFg=) 2: 3131372e37342e3131372e302f32342d3234203d3e203338353233.roa (hash: MAqDcQzKsQ7AU2jwczXNTkd2KAp2lSq7hYrm+mz5mbc=) 3: 323430313a326334303a353a3a2f34382d3438203d3e203338353233.roa (hash: Ulhe7SBzoKXa0nbHiYWTSM2UW8Ne9l9FUM0Zzr+5Taw=) 4: 3131372e37342e3131392e302f32342d3234203d3e203338353233.roa (hash: uwXs1B2vENHoFPXzX6L0y7II8AePyfh6rZF6h22vRrA=) 5: 3131372e37342e3131342e302f32342d3234203d3e203338353233.roa (hash: 99QIwzzuN/Z0qUxV3WwSxtLTN6hnTR8mitqHt39iQf4=) 6: 323430313a326334303a343a3a2f34382d3438203d3e203338353233.roa (hash: r8bhwMyuWK8pro2AJ6O3DeDhHxZkOZDkQzVfsAiQ4HM=) 7: 3131372e37342e3131332e302f32342d3234203d3e203338353233.roa (hash: 2RFM120BK2x+ijcQiQQFduH+zaBhpG83qp16mYO7vG8=) 8: 1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl (hash: 9a39Cc2DnpFsXYogw1bpDVkti8c1sM1Gpuf0BKI3Ioo=) 9: 323430313a326334303a323a3a2f34382d3438203d3e203338353233.roa (hash: dioQduQ3RsGsXcF2fvN/JbmBfWyTlyf1+yoiwspl0zk=) 10: 323430313a326334303a313a3a2f34382d3438203d3e203338353233.roa (hash: 6p/psu31RGuXqE6YHMjc6bPnb3I31ZolmJJogTJhucY=) 11: 3131372e37342e3131382e302f32342d3234203d3e203338353233.roa (hash: JVFHSqzVsgqy22qJbtrvNEyG8V0kzJkVnI2PAp64X94=) 12: 323430313a326334303a333a3a2f34382d3438203d3e203338353233.roa (hash: 1Xw8ZcmhMagcycv6RIC2nnyQd9l0Ss7PGPzzLHbvNJI=) 13: 3131372e37342e3131322e302f32342d3234203d3e203338353233.roa (hash: oJAKvIjQYUnV4YiPQwgQNfHdtV+ujtVQM+Xex28JGbg=) 14: 3131372e37342e3131352e302f32342d3234203d3e203338353233.roa (hash: 8bY1t1WWG1ycFYAnepDoYlqaZY4Ueot1JfgflfLyzZA=) 15: 323430313a326334303a3a2f34382d3438203d3e203338353233.roa (hash: NsEUBjEg4RvBD7zitmsA9BrE/lRHRKsCpJUJlO5IUjE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:17:2d:79:b8:00:19:b3:df:a2:93:78:77:a6:d8:a4:65:56:7f:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A4531574FEFFD9E221DE0D82CE657853E4CEE3A Validity Not Before: Jun 2 15:18:39 2026 GMT Not After : Jun 3 15:24:39 2026 GMT Subject: CN=0D661A3CAD2D1C3BA1AF460F71E6E065CD60145A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ee:09:81:9e:ea:7c:37:7c:8f:bb:ce:be:5a: e5:e4:bb:96:46:2c:99:a6:90:64:64:e3:89:12:9d: 80:0f:8f:19:87:f4:69:7c:f0:99:02:58:08:15:0c: 76:19:98:3e:c6:77:b3:55:8f:c6:94:48:6c:24:8f: 07:ec:5b:95:b7:53:3c:8a:28:5e:bd:cf:7b:63:d2: 22:1e:52:26:1c:2e:ac:84:23:53:21:0f:11:29:d0: e1:e4:db:ad:fe:6f:d6:89:7c:05:82:15:af:2a:19: 2a:24:f7:fd:9c:03:4d:d1:7b:27:52:67:4c:32:7c: 85:33:2f:0c:93:91:41:a2:34:43:c0:ef:24:35:d6: d2:c8:57:a7:12:a5:46:a4:60:16:07:98:da:df:af: a7:30:cd:0a:4f:8e:67:89:6d:10:3b:55:7e:bc:37: ab:ec:ec:1d:5a:97:d5:12:0a:9f:d4:60:b4:8e:f4: bd:47:82:83:d6:f2:aa:74:a0:41:48:1a:f6:ba:40: e2:64:29:26:68:31:0d:3d:9b:2d:34:e5:13:94:5d: f0:43:58:84:e2:2e:b8:be:32:a5:cf:60:3c:f7:47: f9:5b:de:84:8d:62:5b:d8:9c:e5:d4:dd:67:d0:05: 94:45:02:d5:54:70:f3:a1:1a:2d:11:1d:16:8a:ea: eb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:66:1A:3C:AD:2D:1C:3B:A1:AF:46:0F:71:E6:E0:65:CD:60:14:5A X509v3 Authority Key Identifier: keyid:1A:45:31:57:4F:EF:FD:9E:22:1D:E0:D8:2C:E6:57:85:3E:4C:EE:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/355a1a44-337d-4db4-90d7-5bd4f37214b8/0/1A4531574FEFFD9E221DE0D82CE657853E4CEE3A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:4f:d5:10:f4:9a:a9:44:cb:bd:e6:5c:0f:b5:39:b8:0d:e1: a1:06:78:c1:e4:8d:ce:d3:30:e3:28:0f:64:90:ed:a3:37:9b: 6c:40:30:7a:b3:c5:7a:42:78:55:71:8c:73:0a:8c:3b:7b:32: 23:20:60:8a:01:29:c2:8c:88:25:94:98:4b:21:e7:2b:24:d5: 1c:85:79:51:8f:6f:ae:c9:0d:ca:72:da:7f:fa:77:bb:f5:b7: 25:67:40:1d:48:c6:07:c5:0a:01:a7:c6:27:7f:0a:e3:4e:68: 8e:b2:9b:3d:b0:4c:21:8f:19:ee:89:45:d6:43:26:d9:98:04: 5f:21:5d:0a:10:63:0d:f1:0a:a7:5e:eb:e7:eb:7a:aa:01:ca: d3:e0:98:9c:38:d8:51:10:a2:a3:e3:60:b0:2a:89:52:b2:af: f0:23:a3:4d:39:51:a8:d0:13:4e:9f:c7:1f:58:1d:96:fb:19: 7b:05:4c:5c:d1:eb:67:15:5a:5b:2b:db:c7:44:46:81:97:95: e5:24:23:4c:2a:62:92:d0:a5:92:ab:9e:97:b8:08:e9:ac:cd: 40:ea:9b:ce:ab:79:d0:54:e2:cb:6a:a7:67:23:fb:a2:ce:66: fe:8e:ba:34:62:a9:2e:c4:ed:69:7b:e5:47:3b:9a:d4:bb:48: 9f:e8:eb:52 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTxctebgAGbPfopN4d6bYpGVWf1YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUz RTRDRUUzQTAeFw0yNjA2MDIxNTE4MzlaFw0yNjA2MDMxNTI0MzlaMDMxMTAvBgNV BAMTKDBENjYxQTNDQUQyRDFDM0JBMUFGNDYwRjcxRTZFMDY1Q0Q2MDE0NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl7gmBnup8N3yPu86+WuXku5ZG LJmmkGRk44kSnYAPjxmH9Gl88JkCWAgVDHYZmD7Gd7NVj8aUSGwkjwfsW5W3UzyK KF69z3tj0iIeUiYcLqyEI1MhDxEp0OHk263+b9aJfAWCFa8qGSok9/2cA03ReydS Z0wyfIUzLwyTkUGiNEPA7yQ11tLIV6cSpUakYBYHmNrfr6cwzQpPjmeJbRA7VX68 N6vs7B1al9USCp/UYLSO9L1HgoPW8qp0oEFIGva6QOJkKSZoMQ09my005ROUXfBD WITiLri+MqXPYDz3R/lb3oSNYlvYnOXU3WfQBZRFAtVUcPOhGi0RHRaK6uvpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDWYaPK0tHDuhr0YPcebgZc1gFFowHwYDVR0j BBgwFoAUGkUxV0/v/Z4iHeDYLOZXhT5M7jowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzU1YTFhNDQtMzM3ZC00ZGI0LTkwZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0 RkVGRkQ5RTIyMURFMEQ4MkNFNjU3ODUzRTRDRUUzQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xQTQ1MzE1NzRGRUZGRDlFMjIxREUwRDgyQ0U2NTc4NTNFNENF RTNBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzU1YTFhNDQtMzM3ZC00ZGI0LTkw ZDctNWJkNGYzNzIxNGI4LzAvMUE0NTMxNTc0RkVGRkQ5RTIyMURFMEQ4MkNFNjU3 ODUzRTRDRUUzQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAFP1RD0mqlEy73mXA+1ObgN4aEGeMHkjc7T MOMoD2SQ7aM3m2xAMHqzxXpCeFVxjHMKjDt7MiMgYIoBKcKMiCWUmEsh5ysk1RyF eVGPb67JDcpy2n/6d7v1tyVnQB1IxgfFCgGnxid/CuNOaI6ymz2wTCGPGe6JRdZD JtmYBF8hXQoQYw3xCqde6+freqoBytPgmJw42FEQoqPjYLAqiVKyr/Ajo005UajQ E06fxx9YHZb7GXsFTFzR62cVWlsr28dERoGXleUkI0wqYpLQpZKrnpe4COmszUDq m86redBU4stqp2cj+6LOZv6OujRiqS7E7Wl75Uc7mtS7SJ/o61I= -----END CERTIFICATE-----Generated at Wed Jun 3 04:00:57 2026 by rpki-client