$ rpki-client -vvf rpki-rsync.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/A23D2170DA27C430D1B3E7D124ABD655F46B001F.mft File: A23D2170DA27C430D1B3E7D124ABD655F46B001F.mft (raw, json) Hash identifier: p3N+AE5lhphwMRsd5/2TtLT3wmWGl4W6t4DVNrk5rg0= Subject key identifier: A4:30:75:0C:4E:43:06:05:F1:84:53:EA:A6:8E:BB:69:5C:E4:79:E8 Authority key identifier: A2:3D:21:70:DA:27:C4:30:D1:B3:E7:D1:24:AB:D6:55:F4:6B:00:1F Certificate issuer: /CN=A23D2170DA27C430D1B3E7D124ABD655F46B001F Certificate serial: 1BD33FA64164997328CAB33E11D48E58C9DD6A7D Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A23D2170DA27C430D1B3E7D124ABD655F46B001F.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/A23D2170DA27C430D1B3E7D124ABD655F46B001F.mft Manifest number: 2B Signing time: Wed 03 Jun 2026 01:31:32 +0000 Manifest this update: Wed 03 Jun 2026 01:26:32 +0000 Manifest next update: Thu 04 Jun 2026 03:37:32 +0000 Files and hashes: 1: A23D2170DA27C430D1B3E7D124ABD655F46B001F.crl (hash: RsvwF9mxDtE6l1ENnty9NLXiRWcKMk6ISDoosOpSDko=) 2: 3230322e38372e3234302e302f32312d3234203d3e203234323032.roa (hash: h4LsVnhP761IIN/z9Kk00GAOTaHl3wnyiIWG9ZY5w+g=) 3: 323430363a323134303a3a2f33322d3438203d3e203234323032.roa (hash: kqAPpNXie+q2l37gsl3EdI8q/ahDj2lY/Z2RQl2axK8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/A23D2170DA27C430D1B3E7D124ABD655F46B001F.crl rsync://rpki-rsync.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/A23D2170DA27C430D1B3E7D124ABD655F46B001F.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A23D2170DA27C430D1B3E7D124ABD655F46B001F.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:d3:3f:a6:41:64:99:73:28:ca:b3:3e:11:d4:8e:58:c9:dd:6a:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A23D2170DA27C430D1B3E7D124ABD655F46B001F Validity Not Before: Jun 3 01:26:32 2026 GMT Not After : Jun 4 03:37:32 2026 GMT Subject: CN=A430750C4E430605F18453EAA68EBB695CE479E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:91:41:67:11:3e:35:f6:cd:13:da:50:c0:58: 0b:ab:32:c3:55:ac:f5:69:2e:fd:4b:c4:4f:a5:4b: 23:cd:9c:03:3c:f9:fe:61:dd:e8:62:89:6d:27:40: fc:a3:23:d1:2b:b6:03:13:36:bd:36:4a:f3:46:d0: 27:1a:3b:6e:46:6e:c1:ab:65:e8:26:22:01:51:0b: 90:98:cc:9f:cb:f6:aa:0f:15:fc:2f:69:7a:e4:fe: c3:9f:9d:3f:f8:b4:40:b1:df:5e:b9:7e:69:3a:e0: f5:31:3d:ba:d0:d1:a0:6d:69:2e:3e:4b:76:e9:90: 71:bf:18:64:32:d4:ac:9c:9f:fb:b3:74:8b:28:cd: 6c:aa:22:c2:e1:ef:40:b8:98:45:fa:45:c6:49:68: 88:13:d5:3f:a8:0b:86:ba:8b:c1:4f:7d:6d:73:80: a8:79:ae:96:fd:ec:86:76:f5:46:9a:23:b2:98:c7: cd:d2:e4:68:b0:ab:95:cc:75:ba:aa:49:72:06:1b: 8f:45:a6:7f:99:9e:c7:01:cc:11:91:84:57:13:33: f9:22:62:bc:25:04:4f:8b:84:b3:e5:81:17:0d:6f: 92:bc:61:b5:ea:eb:ba:d2:20:84:94:ff:74:e2:b8: 9c:f2:3d:42:32:eb:4c:c2:2f:49:3d:1b:e5:94:1c: 71:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:30:75:0C:4E:43:06:05:F1:84:53:EA:A6:8E:BB:69:5C:E4:79:E8 X509v3 Authority Key Identifier: keyid:A2:3D:21:70:DA:27:C4:30:D1:B3:E7:D1:24:AB:D6:55:F4:6B:00:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/A23D2170DA27C430D1B3E7D124ABD655F46B001F.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A23D2170DA27C430D1B3E7D124ABD655F46B001F.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/61f02a89-7ee8-4a83-8004-234d914a0fd4/0/A23D2170DA27C430D1B3E7D124ABD655F46B001F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:b6:ea:e9:b0:ff:0a:ef:04:a9:60:ec:e5:97:a4:41:20:a8: c2:7f:36:15:8b:32:c7:e7:db:bd:b0:bc:9f:c3:c1:47:4f:30: 55:60:79:89:91:a2:d8:2e:e9:5c:ec:d5:ab:7a:a0:48:d7:62: 23:28:cf:d9:91:a0:67:93:c4:cf:54:02:42:c6:07:6f:39:4d: 7d:21:e1:45:ae:46:10:3b:27:c8:84:de:1f:1c:6f:5c:f8:a1: ff:9c:1d:ed:c5:8a:5b:77:38:c4:50:af:87:29:44:f2:6f:57: 83:a0:6f:8f:12:1b:95:bb:fb:e4:dc:bf:21:51:60:6f:e2:2f: bd:2b:9f:45:80:4c:cb:03:e5:69:55:89:65:7a:f9:9d:15:41: 87:84:4e:d3:19:f0:38:9c:0e:83:9e:93:32:f1:e9:e8:8e:98: 85:d8:f2:9b:b9:a9:4a:af:13:22:83:4e:12:79:de:b8:8d:0f: 75:4c:53:20:42:e8:56:a5:ad:49:f3:88:e3:7a:ef:34:14:c1: 3a:69:44:cf:0f:fb:ce:40:de:89:4e:3d:1a:dc:4a:59:d0:bd: f3:ce:76:6c:7c:10:06:aa:18:a0:6d:c9:9b:7f:38:31:7c:b9: 07:5c:3c:f0:b4:e9:39:58:7a:7d:9b:f5:18:f4:d0:4d:e9:b3: a8:57:f5:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG9M/pkFkmXMoyrM+EdSOWMndan0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTIzRDIxNzBEQTI3QzQzMEQxQjNFN0QxMjRBQkQ2NTVG NDZCMDAxRjAeFw0yNjA2MDMwMTI2MzJaFw0yNjA2MDQwMzM3MzJaMDMxMTAvBgNV BAMTKEE0MzA3NTBDNEU0MzA2MDVGMTg0NTNFQUE2OEVCQjY5NUNFNDc5RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjkUFnET419s0T2lDAWAurMsNV rPVpLv1LxE+lSyPNnAM8+f5h3ehiiW0nQPyjI9ErtgMTNr02SvNG0CcaO25GbsGr ZegmIgFRC5CYzJ/L9qoPFfwvaXrk/sOfnT/4tECx3165fmk64PUxPbrQ0aBtaS4+ S3bpkHG/GGQy1Kycn/uzdIsozWyqIsLh70C4mEX6RcZJaIgT1T+oC4a6i8FPfW1z gKh5rpb97IZ29UaaI7KYx83S5Giwq5XMdbqqSXIGG49Fpn+ZnscBzBGRhFcTM/ki YrwlBE+LhLPlgRcNb5K8YbXq67rSIISU/3TiuJzyPUIy60zCL0k9G+WUHHGjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpDB1DE5DBgXxhFPqpo67aVzkeegwHwYDVR0j BBgwFoAUoj0hcNonxDDRs+fRJKvWVfRrAB8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjFmMDJhODktN2VlOC00YTgzLTgwMDQtMjM0ZDkxNGEwZmQ0LzAvQTIzRDIxNzBE QTI3QzQzMEQxQjNFN0QxMjRBQkQ2NTVGNDZCMDAxRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMjNEMjE3MERBMjdDNDMwRDFCM0U3RDEyNEFCRDY1NUY0NkIw MDFGLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjFmMDJhODktN2VlOC00YTgzLTgw MDQtMjM0ZDkxNGEwZmQ0LzAvQTIzRDIxNzBEQTI3QzQzMEQxQjNFN0QxMjRBQkQ2 NTVGNDZCMDAxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIy26umw/wrvBKlg7OWXpEEgqMJ/NhWLMsfn 272wvJ/DwUdPMFVgeYmRotgu6Vzs1at6oEjXYiMoz9mRoGeTxM9UAkLGB285TX0h 4UWuRhA7J8iE3h8cb1z4of+cHe3Filt3OMRQr4cpRPJvV4Ogb48SG5W7++TcvyFR YG/iL70rn0WATMsD5WlViWV6+Z0VQYeETtMZ8DicDoOekzLx6eiOmIXY8pu5qUqv EyKDThJ53riND3VMUyBC6FalrUnziON67zQUwTppRM8P+85A3olOPRrcSlnQvfPO dmx8EAaqGKBtyZt/ODF8uQdcPPC06TlYen2b9Rj00E3ps6hX9XE= -----END CERTIFICATE-----Generated at Wed Jun 3 03:39:36 2026 by rpki-client