$ rpki-client -vvf rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.mft File: BA5788B9D9BEA734CE494C9762645F7B8B4EE750.mft (raw, json) Hash identifier: h4BNMoUvHC3+Y0AbJ1sSDVRpmawCPckz92pbO9+0FiQ= Subject key identifier: D2:F2:62:AE:54:D5:AB:EF:FC:94:2A:FA:77:B0:AD:6E:2E:06:BB:CA Authority key identifier: BA:57:88:B9:D9:BE:A7:34:CE:49:4C:97:62:64:5F:7B:8B:4E:E7:50 Certificate issuer: /CN=BA5788B9D9BEA734CE494C9762645F7B8B4EE750 Certificate serial: 61F752D867E5A186A8EF133CCF63EA84817E5025 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 08:30:33 +0000 Manifest this update: Tue 02 Jun 2026 08:25:33 +0000 Manifest next update: Wed 03 Jun 2026 11:33:33 +0000 Files and hashes: 1: 3130332e3134372e3235352e302f32342d3234203d3e20313334363534.roa (hash: P+tA2MRxWl0o3RHVswwy2Vb5fc9y+6/a967dCUK4/QA=) 2: 3130332e3134372e3235342e302f32342d3234203d3e20313334363534.roa (hash: 1yaaJ9G5o/7m18fGAiY33Sl2tkngDENHDH33T1CdcHc=) 3: BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl (hash: uKn5KBikRNKKX0Jw6rhkVxNYpTOpRe/HOV47HvWuRqs=) 4: 323430353a633563303a666630303a3a2f34302d3438203d3e20313334363534.roa (hash: GxX5lfBpXcjqMmca1p8RO5KpzC5umjRU6XwnA7zvfuQ=) 5: 323430353a633563303a3a2f33322d3438203d3e20313339393736.roa (hash: bK2fsV+VK/o1aLXTk9/ke6JBkK1wOgjAm/5MH3N06d0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 11:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f7:52:d8:67:e5:a1:86:a8:ef:13:3c:cf:63:ea:84:81:7e:50:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA5788B9D9BEA734CE494C9762645F7B8B4EE750 Validity Not Before: Jun 2 08:25:33 2026 GMT Not After : Jun 3 11:33:33 2026 GMT Subject: CN=D2F262AE54D5ABEFFC942AFA77B0AD6E2E06BBCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9a:5a:11:0b:be:8d:07:40:41:18:d5:a3:0e: df:46:cb:ca:e5:9c:52:5d:70:4a:dc:f0:53:c0:70: f1:63:37:48:be:0a:f7:6a:b7:ef:10:56:6a:5b:36: 25:3f:12:6b:ce:3f:96:9a:8f:e8:d4:cb:69:46:04: c2:24:95:c7:03:c1:79:69:5e:e1:37:fb:13:b4:19: 99:f4:05:aa:1c:7f:fd:6c:49:6c:cd:a1:cb:ff:97: a2:79:47:5f:9e:9c:bd:4b:e2:55:1f:f6:24:cc:d6: e1:bb:6b:c3:8d:5f:9e:22:10:91:e8:c0:68:ff:45: 8c:ec:73:c5:53:da:81:22:d9:1e:3b:69:bb:32:f3: fe:05:b5:c5:76:8b:c0:13:12:d7:2b:53:76:16:95: 95:f3:07:89:01:68:6a:74:32:ec:e4:e9:6e:a4:08: fb:94:b6:85:0e:80:13:eb:49:a5:fd:8f:d5:e0:63: bf:54:9c:06:84:d6:62:b1:c3:a2:87:6f:fe:2a:8f: 7f:03:fe:f3:3a:5c:5e:f6:fe:a4:7f:b2:b3:e4:2f: 86:c2:c8:82:17:f9:22:2e:26:fe:59:6d:5e:2a:ff: 3a:d0:3b:a9:d0:04:d5:7a:24:4b:8f:b8:df:61:62: aa:54:29:dd:59:76:e0:b0:30:31:89:8d:8c:ee:7f: 82:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F2:62:AE:54:D5:AB:EF:FC:94:2A:FA:77:B0:AD:6E:2E:06:BB:CA X509v3 Authority Key Identifier: keyid:BA:57:88:B9:D9:BE:A7:34:CE:49:4C:97:62:64:5F:7B:8B:4E:E7:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/60e4750e-4393-43ec-9ab5-d247bbc07d86/0/BA5788B9D9BEA734CE494C9762645F7B8B4EE750.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:4b:a9:4d:e0:cd:08:2c:ec:ce:2a:f5:ad:6a:db:25:f1:65: 52:61:2f:e1:90:b5:70:81:a2:b1:e0:78:3b:fa:39:d7:f4:b6: cc:8c:14:4b:18:04:54:d9:5a:06:fb:db:04:a8:c4:d3:5f:00: 9c:81:3f:b5:04:0b:6a:63:d1:f4:b1:a3:ff:99:3c:2b:92:9a: 7e:10:f4:3c:47:76:ad:4c:ee:89:1c:d5:14:a1:bb:86:6f:38: 3c:47:3e:4d:18:5b:f2:60:e0:40:ce:fa:b0:b8:b1:96:fb:b1: 5f:91:c3:37:6e:80:ce:4c:38:c2:8d:5e:cc:f8:d7:ed:a1:19: 06:f0:cc:58:21:b0:e7:9e:c9:bb:f4:4f:69:c4:de:28:fb:bf: 47:95:22:65:ce:23:6e:c6:5f:66:b6:0a:29:59:28:71:81:97: 8f:80:df:ff:2c:c3:98:48:1c:e7:41:c2:aa:3a:1f:fc:fe:4c: 60:69:60:66:8b:d1:7f:d2:6b:63:4e:9e:a6:fb:46:61:97:1c: 01:d5:52:22:9e:f7:c3:8b:d6:3e:d7:30:33:32:6e:4a:f6:68: 92:4b:15:d0:d0:a0:f4:34:7b:33:e8:cc:00:0d:30:dd:9b:4f: 6d:48:dc:a1:8c:aa:0d:ab:60:fe:b2:81:43:08:59:ef:aa:42: cc:33:d2:74 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYfdS2GfloYao7xM8z2PqhIF+UCUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkE1Nzg4QjlEOUJFQTczNENFNDk0Qzk3NjI2NDVGN0I4 QjRFRTc1MDAeFw0yNjA2MDIwODI1MzNaFw0yNjA2MDMxMTMzMzNaMDMxMTAvBgNV BAMTKEQyRjI2MkFFNTRENUFCRUZGQzk0MkFGQTc3QjBBRDZFMkUwNkJCQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLmloRC76NB0BBGNWjDt9Gy8rl nFJdcErc8FPAcPFjN0i+Cvdqt+8QVmpbNiU/EmvOP5aaj+jUy2lGBMIklccDwXlp XuE3+xO0GZn0Baocf/1sSWzNocv/l6J5R1+enL1L4lUf9iTM1uG7a8ONX54iEJHo wGj/RYzsc8VT2oEi2R47absy8/4FtcV2i8ATEtcrU3YWlZXzB4kBaGp0Muzk6W6k CPuUtoUOgBPrSaX9j9XgY79UnAaE1mKxw6KHb/4qj38D/vM6XF72/qR/srPkL4bC yIIX+SIuJv5ZbV4q/zrQO6nQBNV6JEuPuN9hYqpUKd1ZduCwMDGJjYzuf4JLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0vJirlTVq+/8lCr6d7Ctbi4Gu8owHwYDVR0j BBgwFoAUuleIudm+pzTOSUyXYmRfe4tO51AwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjBlNDc1MGUtNDM5My00M2VjLTlhYjUtZDI0N2JiYzA3ZDg2LzAvQkE1Nzg4QjlE OUJFQTczNENFNDk0Qzk3NjI2NDVGN0I4QjRFRTc1MC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQTU3ODhCOUQ5QkVBNzM0Q0U0OTRDOTc2MjY0NUY3QjhCNEVF NzUwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjBlNDc1MGUtNDM5My00M2VjLTlh YjUtZDI0N2JiYzA3ZDg2LzAvQkE1Nzg4QjlEOUJFQTczNENFNDk0Qzk3NjI2NDVG N0I4QjRFRTc1MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAANLqU3gzQgs7M4q9a1q2yXxZVJhL+GQtXCB orHgeDv6Odf0tsyMFEsYBFTZWgb72wSoxNNfAJyBP7UEC2pj0fSxo/+ZPCuSmn4Q 9DxHdq1M7okc1RShu4ZvODxHPk0YW/Jg4EDO+rC4sZb7sV+RwzdugM5MOMKNXsz4 1+2hGQbwzFghsOeeybv0T2nE3ij7v0eVImXOI27GX2a2CilZKHGBl4+A3/8sw5hI HOdBwqo6H/z+TGBpYGaL0X/Sa2NOnqb7RmGXHAHVUiKe98OL1j7XMDMybkr2aJJL FdDQoPQ0ezPozAANMN2bT21I3KGMqg2rYP6ygUMIWe+qQswz0nQ= -----END CERTIFICATE-----Generated at Wed Jun 3 04:08:42 2026 by rpki-client