$ rpki-client -vvf rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.mft File: CFE270B664EB6494B67927A1489C0F8AB9E36FE8.mft (raw, json) Hash identifier: j5+jTgzY+IYJm5dU9XRftQYi52WUJshStveMKdL1jDY= Subject key identifier: B7:CD:82:BD:B9:7B:36:22:2B:A0:2C:48:EA:5F:B7:51:4E:03:E8:40 Authority key identifier: CF:E2:70:B6:64:EB:64:94:B6:79:27:A1:48:9C:0F:8A:B9:E3:6F:E8 Certificate issuer: /CN=CFE270B664EB6494B67927A1489C0F8AB9E36FE8 Certificate serial: 3A917E460BD4B36C0FE077A85D21F65DDB088B93 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 10:17:51 +0000 Manifest this update: Tue 02 Jun 2026 10:12:51 +0000 Manifest next update: Wed 03 Jun 2026 13:31:51 +0000 Files and hashes: 1: CFE270B664EB6494B67927A1489C0F8AB9E36FE8.crl (hash: 4PHOgzblmlB5HDuJek99IIyKcpf3w97ZcBh3gF7+RlA=) 2: 3130332e3135322e372e302f32342d3234203d3e20313430343236.roa (hash: nXHdSA+c5zf00SmFOpLQqjFcwfm5eVHw9Cph5IqIoGg=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.crl rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 13:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:91:7e:46:0b:d4:b3:6c:0f:e0:77:a8:5d:21:f6:5d:db:08:8b:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CFE270B664EB6494B67927A1489C0F8AB9E36FE8 Validity Not Before: Jun 2 10:12:51 2026 GMT Not After : Jun 3 13:31:51 2026 GMT Subject: CN=B7CD82BDB97B36222BA02C48EA5FB7514E03E840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:93:d9:5c:29:db:77:6c:7c:9e:f9:ab:7c:49: c3:50:52:b5:a6:2c:75:78:c7:d5:5d:8c:7e:dc:6f: c3:04:15:89:97:d6:78:3f:3f:67:ca:0e:8c:d1:e1: de:58:38:47:b0:a6:28:a7:3e:09:90:f2:19:19:33: 83:ae:44:05:2f:6d:74:61:3b:67:f8:12:6e:4b:50: 2a:d8:1a:e9:5e:38:39:8c:03:0b:e3:3a:2d:d9:b1: 84:52:99:53:97:f6:c6:9d:ea:da:97:6a:ca:27:d6: 61:57:33:d9:8f:a7:03:05:49:76:84:fd:67:df:a4: b4:a1:33:c8:0d:4b:a7:27:bc:c7:11:a5:5a:1b:c6: c9:b8:e3:f0:b2:e9:4c:4f:48:43:84:6b:f4:1b:b8: c0:f0:a4:48:3b:c3:a1:e2:eb:13:91:4e:65:18:36: 97:91:58:c6:e1:53:da:d5:e0:1c:37:fa:1c:8f:65: 11:ae:0b:1b:31:1b:3d:25:82:7d:3e:be:06:bc:25: 40:d9:3b:44:61:91:9f:c9:89:75:ec:e7:3a:f8:0f: 09:55:1a:77:c5:5f:2e:ef:e7:92:9e:6a:0e:97:a7: 90:09:58:46:51:09:b7:ed:9d:ef:36:a1:bd:90:ba: 13:53:76:b2:f4:2e:6b:e7:57:23:bd:1a:43:32:65: 8a:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CD:82:BD:B9:7B:36:22:2B:A0:2C:48:EA:5F:B7:51:4E:03:E8:40 X509v3 Authority Key Identifier: keyid:CF:E2:70:B6:64:EB:64:94:B6:79:27:A1:48:9C:0F:8A:B9:E3:6F:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/3baf365e-05de-4c39-bf96-83e939bed7df/0/CFE270B664EB6494B67927A1489C0F8AB9E36FE8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:1a:c1:d2:4b:78:2b:da:1f:e7:ea:e4:7c:40:6e:d4:d1:35: f3:90:50:70:7a:1a:6b:b9:c2:05:43:b8:75:10:9b:c2:c3:3e: b4:15:bb:16:ce:fb:78:05:ab:10:5e:99:b5:19:82:72:0f:42: 80:0e:ea:0a:32:b0:08:4a:8b:88:2d:f8:cb:65:88:15:65:d3: c1:8c:4e:6e:02:ef:05:fe:5f:d8:6f:e4:51:ff:87:21:36:34: e3:06:d1:6b:98:2a:2b:76:05:37:16:b1:24:09:ee:0c:46:3b: d6:5a:94:85:81:e9:fa:ad:9c:26:5a:9c:e7:85:75:0a:13:c3: 9c:e6:be:a9:87:04:fa:f7:b6:ab:37:54:76:32:37:fb:53:7e: c6:14:77:39:51:7f:c3:aa:82:d3:9c:9b:17:4b:19:19:1e:24: bf:8f:0a:8d:48:ba:26:3c:8a:55:50:19:6f:f5:4d:fc:f1:10: f6:07:07:fc:bd:44:89:e6:76:74:e5:32:0f:42:de:bf:b4:c1: 23:75:8c:6a:d7:da:ab:af:10:46:b6:9d:e6:a4:42:1d:91:7d: 04:8f:e9:a3:4a:bf:0d:52:cc:fe:ac:80:21:23:34:5a:be:65: 9c:12:a6:9b:d2:c4:c6:c3:74:a9:d8:fd:b6:42:5c:da:57:b1: fc:d2:d3:3b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOpF+RgvUs2wP4HeoXSH2XdsIi5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ZFMjcwQjY2NEVCNjQ5NEI2NzkyN0ExNDg5QzBGOEFC OUUzNkZFODAeFw0yNjA2MDIxMDEyNTFaFw0yNjA2MDMxMzMxNTFaMDMxMTAvBgNV BAMTKEI3Q0Q4MkJEQjk3QjM2MjIyQkEwMkM0OEVBNUZCNzUxNEUwM0U4NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0k9lcKdt3bHye+at8ScNQUrWm LHV4x9VdjH7cb8MEFYmX1ng/P2fKDozR4d5YOEewpiinPgmQ8hkZM4OuRAUvbXRh O2f4Em5LUCrYGuleODmMAwvjOi3ZsYRSmVOX9sad6tqXason1mFXM9mPpwMFSXaE /WffpLShM8gNS6cnvMcRpVobxsm44/Cy6UxPSEOEa/QbuMDwpEg7w6Hi6xORTmUY NpeRWMbhU9rV4Bw3+hyPZRGuCxsxGz0lgn0+vga8JUDZO0RhkZ/JiXXs5zr4DwlV GnfFXy7v55Keag6Xp5AJWEZRCbftne82ob2QuhNTdrL0LmvnVyO9GkMyZYrrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUt82Cvbl7NiIroCxI6l+3UU4D6EAwHwYDVR0j BBgwFoAUz+JwtmTrZJS2eSehSJwPirnjb+gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v M2JhZjM2NWUtMDVkZS00YzM5LWJmOTYtODNlOTM5YmVkN2RmLzAvQ0ZFMjcwQjY2 NEVCNjQ5NEI2NzkyN0ExNDg5QzBGOEFCOUUzNkZFOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DRkUyNzBCNjY0RUI2NDk0QjY3OTI3QTE0ODlDMEY4QUI5RTM2 RkU4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vM2JhZjM2NWUtMDVkZS00YzM5LWJm OTYtODNlOTM5YmVkN2RmLzAvQ0ZFMjcwQjY2NEVCNjQ5NEI2NzkyN0ExNDg5QzBG OEFCOUUzNkZFOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB4awdJLeCvaH+fq5HxAbtTRNfOQUHB6Gmu5 wgVDuHUQm8LDPrQVuxbO+3gFqxBembUZgnIPQoAO6goysAhKi4gt+MtliBVl08GM Tm4C7wX+X9hv5FH/hyE2NOMG0WuYKit2BTcWsSQJ7gxGO9ZalIWB6fqtnCZanOeF dQoTw5zmvqmHBPr3tqs3VHYyN/tTfsYUdzlRf8OqgtOcmxdLGRkeJL+PCo1IuiY8 ilVQGW/1TfzxEPYHB/y9RInmdnTlMg9C3r+0wSN1jGrX2quvEEa2neakQh2RfQSP 6aNKvw1SzP6sgCEjNFq+ZZwSppvSxMbDdKnY/bZCXNpXsfzS0zs= -----END CERTIFICATE-----Generated at Wed Jun 3 03:50:22 2026 by rpki-client