$ rpki-client -vvf rpki-rsync.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.mft File: 19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.mft (raw, json) Hash identifier: GOwSPzmcKSsiYTZ41jKaNtf1ZAk0Gjiac7pRCW6iFww= Subject key identifier: 67:64:F3:B3:04:69:BE:1B:CD:0F:DE:3F:63:A4:E0:63:0B:66:11:C8 Authority key identifier: 19:A7:D2:47:3F:AA:6B:72:E3:99:A4:A1:0F:4B:64:0A:DF:1B:BB:37 Certificate issuer: /CN=19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37 Certificate serial: 3B4B175133D1115A7C13EAD9793F2D3B10E96C03 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 21:36:09 +0000 Manifest this update: Tue 02 Jun 2026 21:31:09 +0000 Manifest next update: Wed 03 Jun 2026 22:22:09 +0000 Files and hashes: 1: 3130332e3138312e3234362e302f32342d3234203d3e20313439333935.roa (hash: yUTHLwhvAH/MhoYaduOS14+07g6chdMoBPVYy5YJcX4=) 2: 3130332e3138312e3234362e302f32332d3234203d3e20313439333935.roa (hash: Ur2deLsRWDmCAqL8yUm8FNnfEGneYV45Th8VxPgH0qk=) 3: 19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.crl (hash: tpR16/zCdrEj5FDp2GsZ0HsR5D5kLyB6xwqwEzURvEA=) 4: 3130332e3138312e3234372e302f32342d3234203d3e20313439333935.roa (hash: rAfzEZvuHRI/Kzt1SmKQHwBtPJb8jdNpuP/cvt9qX+w=) 5: 323030313a6466303a376263303a3a2f34382d3438203d3e20313439333935.roa (hash: 7AkBTaxaVF6MfSYLN5bOMc9OzhJ7a78FUzJRaPwJ6kQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.crl rsync://rpki-rsync.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 22:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4b:17:51:33:d1:11:5a:7c:13:ea:d9:79:3f:2d:3b:10:e9:6c:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37 Validity Not Before: Jun 2 21:31:09 2026 GMT Not After : Jun 3 22:22:09 2026 GMT Subject: CN=6764F3B30469BE1BCD0FDE3F63A4E0630B6611C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d7:fa:e1:d2:d7:fb:80:46:11:65:47:97:48: a9:74:9d:c3:48:7a:b2:fa:c5:38:5a:db:da:80:35: 7c:2b:a0:18:32:04:00:78:e7:6c:7a:ab:af:9d:7e: ea:1a:b9:2f:d8:11:b6:2a:a2:54:77:4d:c6:e5:de: da:be:c0:c5:6b:8f:f2:3c:a8:1a:71:3d:de:62:1e: 04:dc:d8:55:a3:b7:f0:d6:9c:0b:7c:e0:1f:d9:b7: 39:67:cf:ca:b5:69:4e:e1:22:5a:48:34:12:cc:de: 95:a3:a5:97:fa:ce:c0:b3:c3:45:96:2f:e2:a1:44: 5b:dd:0a:c9:65:f1:f1:89:e2:76:a4:a7:4d:a9:bb: 90:8a:40:4f:79:44:04:11:f6:4b:87:57:cb:72:e7: 8b:99:57:65:bf:9d:04:c7:f9:32:99:a9:00:8f:b7: 74:30:9b:40:56:80:e7:1b:09:db:9b:a6:18:46:20: bd:ac:42:bb:67:d1:08:6f:ff:51:6d:66:72:3c:33: 78:c4:ae:ec:2c:5a:c0:45:b4:24:75:0c:74:45:4b: 39:e7:b0:d0:a8:4f:33:3c:11:a0:dc:78:58:6f:60: af:8a:0e:01:34:8b:6e:9b:2e:2e:14:c4:39:71:2d: 3f:58:26:7c:24:0a:7a:1a:1f:8c:5d:d7:0d:37:5b: 86:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:64:F3:B3:04:69:BE:1B:CD:0F:DE:3F:63:A4:E0:63:0B:66:11:C8 X509v3 Authority Key Identifier: keyid:19:A7:D2:47:3F:AA:6B:72:E3:99:A4:A1:0F:4B:64:0A:DF:1B:BB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/641e08ef-3ae6-4b90-b477-0e9140d04380/0/19A7D2473FAA6B72E399A4A10F4B640ADF1BBB37.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:05:18:13:bd:10:c8:5a:c3:87:79:13:95:9c:11:c6:24:46: 05:e4:68:96:4d:1e:17:a4:17:ff:20:4c:6c:5d:9c:78:35:2e: 75:48:63:d1:8c:e5:e1:30:fb:0d:db:5c:a8:64:a1:7b:1b:75: 3c:4d:44:38:fc:cf:d9:a9:81:d1:cf:c2:3b:03:ae:07:f7:a1: 47:01:d8:97:ce:d4:6b:a1:dd:8c:9a:8b:b0:fb:e1:dd:e2:5f: 04:c0:bc:69:c5:11:18:a7:04:61:19:d7:fd:a1:fc:54:9f:21: c5:57:71:17:70:1d:3b:fc:17:ef:22:33:b4:38:bc:c0:5b:80: 1d:a8:bb:ca:7c:c2:38:c5:71:b3:52:01:19:b3:15:fa:c9:fb: 05:66:d5:ec:2c:02:b1:75:40:10:2a:dc:95:d7:a6:37:6b:06: 13:90:e6:a8:f4:ad:5e:bc:93:60:63:2b:f1:fe:61:ca:e3:44: dc:8b:3d:2d:13:b5:2e:85:17:46:07:9f:af:7d:5b:07:fb:67: 86:81:f3:77:f4:96:e3:ee:fc:6d:bc:19:44:a4:25:41:d2:c7: 49:bc:0b:1f:e1:08:07:88:b9:0e:c0:c5:a0:6c:08:d7:be:bb: da:e8:cc:8d:2c:8d:9b:b0:41:de:48:58:1d:05:1c:dc:c1:29: b8:e0:1e:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO0sXUTPREVp8E+rZeT8tOxDpbAMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlBN0QyNDczRkFBNkI3MkUzOTlBNEExMEY0QjY0MEFE RjFCQkIzNzAeFw0yNjA2MDIyMTMxMDlaFw0yNjA2MDMyMjIyMDlaMDMxMTAvBgNV BAMTKDY3NjRGM0IzMDQ2OUJFMUJDRDBGREUzRjYzQTRFMDYzMEI2NjExQzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm1/rh0tf7gEYRZUeXSKl0ncNI erL6xTha29qANXwroBgyBAB452x6q6+dfuoauS/YEbYqolR3Tcbl3tq+wMVrj/I8 qBpxPd5iHgTc2FWjt/DWnAt84B/Ztzlnz8q1aU7hIlpINBLM3pWjpZf6zsCzw0WW L+KhRFvdCsll8fGJ4nakp02pu5CKQE95RAQR9kuHV8ty54uZV2W/nQTH+TKZqQCP t3Qwm0BWgOcbCdubphhGIL2sQrtn0Qhv/1FtZnI8M3jEruwsWsBFtCR1DHRFSznn sNCoTzM8EaDceFhvYK+KDgE0i26bLi4UxDlxLT9YJnwkCnoaH4xd1w03W4YRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZ2TzswRpvhvND94/Y6TgYwtmEcgwHwYDVR0j BBgwFoAUGafSRz+qa3LjmaShD0tkCt8buzcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjQxZTA4ZWYtM2FlNi00YjkwLWI0NzctMGU5MTQwZDA0MzgwLzAvMTlBN0QyNDcz RkFBNkI3MkUzOTlBNEExMEY0QjY0MEFERjFCQkIzNy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8xOUE3RDI0NzNGQUE2QjcyRTM5OUE0QTEwRjRCNjQwQURGMUJC QjM3LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjQxZTA4ZWYtM2FlNi00YjkwLWI0 NzctMGU5MTQwZDA0MzgwLzAvMTlBN0QyNDczRkFBNkI3MkUzOTlBNEExMEY0QjY0 MEFERjFCQkIzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMgFGBO9EMhaw4d5E5WcEcYkRgXkaJZNHhek F/8gTGxdnHg1LnVIY9GM5eEw+w3bXKhkoXsbdTxNRDj8z9mpgdHPwjsDrgf3oUcB 2JfO1Guh3Yyai7D74d3iXwTAvGnFERinBGEZ1/2h/FSfIcVXcRdwHTv8F+8iM7Q4 vMBbgB2ou8p8wjjFcbNSARmzFfrJ+wVm1ewsArF1QBAq3JXXpjdrBhOQ5qj0rV68 k2BjK/H+YcrjRNyLPS0TtS6FF0YHn699Wwf7Z4aB83f0luPu/G28GUSkJUHSx0m8 Cx/hCAeIuQ7AxaBsCNe+u9rozI0sjZuwQd5IWB0FHNzBKbjgHiw= -----END CERTIFICATE-----Generated at Wed Jun 3 04:19:54 2026 by rpki-client