$ rpki-client -vvf rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.mft File: A33230767964863363DEE33E7BD3F5C204182D74.mft (raw, json) Hash identifier: SP2hIeb09AzFL5cXTUllaQuxEBpblJB/6xMBqZsiRbQ= Subject key identifier: CA:48:AF:48:FB:28:BD:26:38:BF:7F:43:B8:25:D5:14:86:59:61:14 Authority key identifier: A3:32:30:76:79:64:86:33:63:DE:E3:3E:7B:D3:F5:C2:04:18:2D:74 Certificate issuer: /CN=A33230767964863363DEE33E7BD3F5C204182D74 Certificate serial: 525AE6115986CBB5419B913AC7E3A051A4F44FE6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A33230767964863363DEE33E7BD3F5C204182D74.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 11:49:41 +0000 Manifest this update: Tue 02 Jun 2026 11:44:41 +0000 Manifest next update: Wed 03 Jun 2026 15:06:41 +0000 Files and hashes: 1: 3130332e38302e38302e302f32332d3233203d3e203634333030.roa (hash: swM3gRycoq2bpDf9jMK6TFe7xm5hIDTJnObip9j+E3U=) 2: 3130332e38302e38302e302f32322d3234203d3e203634333030.roa (hash: zfPIxy8u09KfI7kcdeQFP8vqKSJ+i/ut+oqw3CDggbg=) 3: 3130332e38302e38302e302f32322d3232203d3e203634333030.roa (hash: e/qY4LpsifjFJ8z9K3gWHOX8kQ1mg4k/iAFjqdxwcPM=) 4: A33230767964863363DEE33E7BD3F5C204182D74.crl (hash: to1fE1qMGdQ/ngnHzylMmwXMIof7mmobBmB+wTbK3yI=) 5: 323430303a346563303a3a2f33322d3438203d3e203634333030.roa (hash: +c51V8VPvLdRJzVzsvsfm1mPoM5H0OBSu1SWRMxqOYg=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.crl rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A33230767964863363DEE33E7BD3F5C204182D74.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:5a:e6:11:59:86:cb:b5:41:9b:91:3a:c7:e3:a0:51:a4:f4:4f:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A33230767964863363DEE33E7BD3F5C204182D74 Validity Not Before: Jun 2 11:44:41 2026 GMT Not After : Jun 3 15:06:41 2026 GMT Subject: CN=CA48AF48FB28BD2638BF7F43B825D51486596114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1e:cb:3d:5a:f4:b6:49:ec:80:4b:fb:3e:85: e9:eb:26:3a:b6:e2:3d:7b:17:24:29:b3:6f:25:b9: 44:68:fd:0d:6b:65:93:98:22:00:d2:e8:55:ef:b1: 4e:7a:ed:b8:ea:f3:c0:a5:23:98:eb:f7:38:b3:40: 0f:50:f2:03:ca:a9:88:0f:7e:2e:55:2c:46:c1:95: 66:37:67:33:32:36:92:62:e8:e1:5c:a0:e5:d7:37: 55:81:52:96:b4:37:65:43:28:4c:62:90:41:9c:a0: e1:28:ff:95:f3:08:10:53:c3:5f:a0:85:f7:ae:e5: 5f:68:00:83:b0:5f:c2:c9:74:c5:2c:30:06:52:09: 87:65:35:06:66:6e:82:56:31:91:87:28:05:ce:1c: dc:fb:12:59:c3:30:3e:cc:ee:f6:ab:5d:69:1c:ab: 9e:35:d2:58:47:df:48:4a:01:e3:1c:60:7c:4a:91: 2c:64:e9:9d:40:de:29:4d:82:14:df:4f:46:77:6f: f7:bc:a1:4f:3c:5c:10:31:77:4d:6b:3a:be:65:38: 9b:30:7c:82:6e:b7:17:e9:5f:69:94:b1:87:7e:1b: 0e:59:00:5e:a0:cb:73:9a:20:80:bc:04:b6:d5:f6: eb:a8:ff:37:ad:f3:0f:6d:05:91:71:b1:a9:46:76: 70:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:48:AF:48:FB:28:BD:26:38:BF:7F:43:B8:25:D5:14:86:59:61:14 X509v3 Authority Key Identifier: keyid:A3:32:30:76:79:64:86:33:63:DE:E3:3E:7B:D3:F5:C2:04:18:2D:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A33230767964863363DEE33E7BD3F5C204182D74.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f6:ce:8f:12:8a:5d:7a:75:db:57:e3:99:c2:97:ba:50:eb: 62:18:d2:2d:f8:78:f6:b3:21:ec:6d:03:c3:b8:7f:7d:3e:4f: b7:5c:48:a4:97:56:be:94:7c:f1:79:2a:ce:e0:73:a4:fc:bb: b6:c1:a7:39:4e:ab:0d:a0:69:09:6b:8a:a9:a0:3c:13:9c:87: b3:78:b8:fc:73:29:dd:9f:22:cc:ae:b7:34:c3:85:19:8a:5a: 1a:d8:5d:89:6e:a3:4e:ed:86:47:a5:ca:71:97:4c:ea:5f:7f: 16:78:ac:91:21:08:e4:27:e6:4a:f7:c3:b3:02:8c:50:ec:aa: df:76:6e:44:61:72:b7:09:ec:a3:df:50:33:1c:50:ca:2c:94: b9:cd:f8:fa:22:3a:52:72:f0:31:77:29:df:c8:78:b9:30:be: a8:61:ae:e8:24:2f:e7:3d:0b:5d:d3:b6:5a:97:e9:ea:10:80: 36:54:cc:97:93:8d:a9:51:e5:35:43:1e:58:02:c7:b3:d4:2a: 47:88:f3:2e:79:2e:e9:c5:9a:d8:4c:16:4c:07:ed:a1:5b:a8: b1:bd:66:49:e5:d9:14:d5:0a:5d:94:d0:ac:00:c9:61:ac:48: 1b:15:6f:d1:62:ae:df:07:25:0a:56:a2:70:c1:81:4f:97:ea: 13:40:50:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUlrmEVmGy7VBm5E6x+OgUaT0T+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTMzMjMwNzY3OTY0ODYzMzYzREVFMzNFN0JEM0Y1QzIw NDE4MkQ3NDAeFw0yNjA2MDIxMTQ0NDFaFw0yNjA2MDMxNTA2NDFaMDMxMTAvBgNV BAMTKENBNDhBRjQ4RkIyOEJEMjYzOEJGN0Y0M0I4MjVENTE0ODY1OTYxMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVHss9WvS2SeyAS/s+henrJjq2 4j17FyQps28luURo/Q1rZZOYIgDS6FXvsU567bjq88ClI5jr9zizQA9Q8gPKqYgP fi5VLEbBlWY3ZzMyNpJi6OFcoOXXN1WBUpa0N2VDKExikEGcoOEo/5XzCBBTw1+g hfeu5V9oAIOwX8LJdMUsMAZSCYdlNQZmboJWMZGHKAXOHNz7ElnDMD7M7varXWkc q5410lhH30hKAeMcYHxKkSxk6Z1A3ilNghTfT0Z3b/e8oU88XBAxd01rOr5lOJsw fIJutxfpX2mUsYd+Gw5ZAF6gy3OaIIC8BLbV9uuo/zet8w9tBZFxsalGdnDNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUykivSPsovSY4v39DuCXVFIZZYRQwHwYDVR0j BBgwFoAUozIwdnlkhjNj3uM+e9P1wgQYLXQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NTg2ZDM2MzctOTJiNC00YWM3LWE3NWItOTljYjBiMDU2NWIwLzAvQTMzMjMwNzY3 OTY0ODYzMzYzREVFMzNFN0JEM0Y1QzIwNDE4MkQ3NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMzMyMzA3Njc5NjQ4NjMzNjNERUUzM0U3QkQzRjVDMjA0MTgy RDc0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNTg2ZDM2MzctOTJiNC00YWM3LWE3 NWItOTljYjBiMDU2NWIwLzAvQTMzMjMwNzY3OTY0ODYzMzYzREVFMzNFN0JEM0Y1 QzIwNDE4MkQ3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFz2zo8Sil16ddtX45nCl7pQ62IY0i34ePaz IextA8O4f30+T7dcSKSXVr6UfPF5Ks7gc6T8u7bBpzlOqw2gaQlriqmgPBOch7N4 uPxzKd2fIsyutzTDhRmKWhrYXYluo07thkelynGXTOpffxZ4rJEhCOQn5kr3w7MC jFDsqt92bkRhcrcJ7KPfUDMcUMoslLnN+PoiOlJy8DF3Kd/IeLkwvqhhrugkL+c9 C13TtlqX6eoQgDZUzJeTjalR5TVDHlgCx7PUKkeI8y55LunFmthMFkwH7aFbqLG9 Zknl2RTVCl2U0KwAyWGsSBsVb9Firt8HJQpWonDBgU+X6hNAUNc= -----END CERTIFICATE-----Generated at Wed Jun 3 03:20:57 2026 by rpki-client