$ rpki-client -vvf rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft File: 028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft (raw, json) Hash identifier: j4qcEGXsPTnn6+JYy0rleI3hsb/iqBmDXo+Zk8Nm4ZU= Subject key identifier: C1:B6:11:D8:0B:2B:7B:1F:0E:DB:5E:50:7E:55:75:51:63:AB:78:8C Authority key identifier: 02:8B:3E:A2:51:C3:A5:97:AF:55:D4:DB:3E:F4:3A:07:C2:18:A5:A6 Certificate issuer: /CN=028B3EA251C3A597AF55D4DB3EF43A07C218A5A6 Certificate serial: 6B0C66723BD62516F0DEADDEB3B97C1D5F2E8F87 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 19:44:00 +0000 Manifest this update: Tue 02 Jun 2026 19:39:00 +0000 Manifest next update: Wed 03 Jun 2026 21:06:00 +0000 Files and hashes: 1: 323430363a373234303a3a2f33322d3332203d3e20313431303634.roa (hash: OZMHHHmslz7MYh9R9Ib0RjlOxsJyDimPwwAqaL88/ng=) 2: 3130332e3135352e3136362e302f32342d3234203d3e20313431303634.roa (hash: GtQhQt5lC+popSxKBpEXClSBs/pxIHaZp5GFBcVq7Ds=) 3: 028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.crl (hash: uIIHRki21vemz4FLvlxCyOXEPaxPFb55yJG4T80zk9Y=) 4: 3130332e3135352e3136372e302f32342d3234203d3e20313431303634.roa (hash: OyG3mFe6SrJhcLOwFyBCeuQpeyeUH09cXSgAgqZj+fA=) 5: 3130332e3135352e3136362e302f32332d3233203d3e20313431303634.roa (hash: N8zhnsK8z7VxJNfcfyiLUZPoMiisc/2RHnWBqlz/4MI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.crl rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 21:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:0c:66:72:3b:d6:25:16:f0:de:ad:de:b3:b9:7c:1d:5f:2e:8f:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=028B3EA251C3A597AF55D4DB3EF43A07C218A5A6 Validity Not Before: Jun 2 19:39:00 2026 GMT Not After : Jun 3 21:06:00 2026 GMT Subject: CN=C1B611D80B2B7B1F0EDB5E507E55755163AB788C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e9:55:26:57:80:36:0c:ec:22:f2:62:b0:f8: 96:06:be:a4:e7:49:21:4a:91:f5:f8:11:50:54:3f: 90:d2:60:da:61:72:31:70:a5:cf:ac:dd:79:9e:27: b7:ea:d2:ab:ac:84:e3:e5:71:4f:85:9b:ca:a1:18: 07:a9:2a:63:93:2c:0b:3a:21:69:3f:a7:9c:de:e6: ec:eb:45:21:3e:5a:f5:2e:19:0f:25:64:a2:e9:ef: 2c:00:b6:3c:f7:e9:92:4d:3b:85:c6:41:8b:f4:3e: 82:57:2e:d8:d5:fe:ac:bd:81:d3:99:e0:4e:bf:86: 4d:2b:e7:20:66:01:c8:a3:a8:7d:69:e1:4e:0c:83: 79:9a:a0:69:cd:f9:e5:ee:b7:bd:e7:b9:ad:ea:b7: 9a:c5:06:77:53:3b:c5:92:4c:e0:4c:5f:c4:47:c6: f9:90:8a:ad:04:ff:e3:16:99:ec:78:6e:17:56:ae: 0a:50:96:79:83:e6:0b:a9:b5:01:19:82:1a:36:99: e7:59:73:69:08:ad:66:ae:1d:72:d3:24:0a:3b:98: a5:f9:2c:45:a1:8a:90:e5:b2:95:9c:15:4e:9d:98: 33:fc:a6:43:43:e3:d8:e4:ae:f9:c4:d8:44:00:94: 22:78:4b:92:37:1f:ff:f7:2c:11:5f:cf:3a:06:55: cf:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B6:11:D8:0B:2B:7B:1F:0E:DB:5E:50:7E:55:75:51:63:AB:78:8C X509v3 Authority Key Identifier: keyid:02:8B:3E:A2:51:C3:A5:97:AF:55:D4:DB:3E:F4:3A:07:C2:18:A5:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/028B3EA251C3A597AF55D4DB3EF43A07C218A5A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:d3:15:53:87:99:d8:03:00:a5:7d:1c:83:cc:ed:0b:45:ee: 1f:3f:06:bb:cf:6f:61:e9:d9:89:e6:15:e9:9b:9a:e8:a4:a3: 4d:c6:e2:85:5f:16:6f:bf:5b:63:45:df:9e:9a:f3:89:b1:e3: 0f:4d:59:33:ba:12:ff:a0:b0:88:13:5d:72:74:de:4b:35:12: c4:2c:36:c1:f6:df:43:5d:29:ca:96:2d:00:4c:f6:21:4c:28: e7:c8:a1:69:c9:d4:14:d3:1f:1e:d8:e8:45:d2:ba:28:89:6a: 6b:99:bc:23:27:77:ef:8e:6b:18:98:e7:55:75:b1:68:17:5e: 5a:88:c2:1b:99:38:35:3b:ff:36:00:68:19:50:92:69:68:e2: 05:9f:99:22:5a:0a:65:c5:4d:bb:3b:dd:a1:e9:29:be:f0:ca: c6:1b:eb:24:3f:32:49:62:e6:99:a4:80:6f:78:11:b2:3e:5b: 54:05:ff:4b:b6:9c:e9:ab:98:b4:ca:db:15:28:a2:f0:55:1d: d7:c0:f9:9a:a6:b2:f3:94:46:dd:ff:f6:51:8a:a7:f9:86:22: 4f:32:7f:a1:2f:ba:1a:fe:1f:04:1b:9e:ee:1a:2f:9b:9b:6a: 0a:3a:85:d1:b5:30:6c:e2:7e:f3:92:4d:35:fc:5c:71:05:80: 08:29:12:c4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUawxmcjvWJRbw3q3es7l8HV8uj4cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI4QjNFQTI1MUMzQTU5N0FGNTVENERCM0VGNDNBMDdD MjE4QTVBNjAeFw0yNjA2MDIxOTM5MDBaFw0yNjA2MDMyMTA2MDBaMDMxMTAvBgNV BAMTKEMxQjYxMUQ4MEIyQjdCMUYwRURCNUU1MDdFNTU3NTUxNjNBQjc4OEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu6VUmV4A2DOwi8mKw+JYGvqTn SSFKkfX4EVBUP5DSYNphcjFwpc+s3XmeJ7fq0qushOPlcU+Fm8qhGAepKmOTLAs6 IWk/p5ze5uzrRSE+WvUuGQ8lZKLp7ywAtjz36ZJNO4XGQYv0PoJXLtjV/qy9gdOZ 4E6/hk0r5yBmAcijqH1p4U4Mg3maoGnN+eXut73nua3qt5rFBndTO8WSTOBMX8RH xvmQiq0E/+MWmex4bhdWrgpQlnmD5guptQEZgho2medZc2kIrWauHXLTJAo7mKX5 LEWhipDlspWcFU6dmDP8pkND49jkrvnE2EQAlCJ4S5I3H//3LBFfzzoGVc9zAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUwbYR2Asrex8O215QflV1UWOreIwwHwYDVR0j BBgwFoAUAos+olHDpZevVdTbPvQ6B8IYpaYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NGM2YjJiZDctZDdmMS00ODE1LWE2MGEtY2FkNTQwMjljZTg4LzAvMDI4QjNFQTI1 MUMzQTU5N0FGNTVENERCM0VGNDNBMDdDMjE4QTVBNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wMjhCM0VBMjUxQzNBNTk3QUY1NUQ0REIzRUY0M0EwN0MyMThB NUE2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNGM2YjJiZDctZDdmMS00ODE1LWE2 MGEtY2FkNTQwMjljZTg4LzAvMDI4QjNFQTI1MUMzQTU5N0FGNTVENERCM0VGNDNB MDdDMjE4QTVBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJXTFVOHmdgDAKV9HIPM7QtF7h8/BrvPb2Hp 2YnmFembmuiko03G4oVfFm+/W2NF356a84mx4w9NWTO6Ev+gsIgTXXJ03ks1EsQs NsH230NdKcqWLQBM9iFMKOfIoWnJ1BTTHx7Y6EXSuiiJamuZvCMnd++OaxiY51V1 sWgXXlqIwhuZODU7/zYAaBlQkmlo4gWfmSJaCmXFTbs73aHpKb7wysYb6yQ/Mkli 5pmkgG94EbI+W1QF/0u2nOmrmLTK2xUoovBVHdfA+ZqmsvOURt3/9lGKp/mGIk8y f6Evuhr+HwQbnu4aL5ubago6hdG1MGzifvOSTTX8XHEFgAgpEsQ= -----END CERTIFICATE-----Generated at Wed Jun 3 03:53:36 2026 by rpki-client