$ rpki-client -vvf rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.mft File: 7E5852640ACB27CE4AC466E5338B30E206711DDD.mft (raw, json) Hash identifier: YNxr3039YU7ULB1lHkn/tEjfJv+3e25WCRtlKiW6Z/4= Subject key identifier: D5:08:DA:F2:EA:16:1F:45:0C:66:F4:B0:BD:72:52:B6:B7:22:34:97 Authority key identifier: 7E:58:52:64:0A:CB:27:CE:4A:C4:66:E5:33:8B:30:E2:06:71:1D:DD Certificate issuer: /CN=7E5852640ACB27CE4AC466E5338B30E206711DDD Certificate serial: 6597DB13734939147B12233F9C15FA5D8B5CDAE8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7E5852640ACB27CE4AC466E5338B30E206711DDD.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.mft Manifest number: 2B Signing time: Wed 03 Jun 2026 01:21:22 +0000 Manifest this update: Wed 03 Jun 2026 01:16:22 +0000 Manifest next update: Thu 04 Jun 2026 03:27:22 +0000 Files and hashes: 1: 3130332e32322e3231362e302f32342d3234203d3e20313530323631.roa (hash: 1PUWFE0HvObC84cJz28KwHOs36xPuTELe/I8Yxh+ht0=) 2: 3130332e32322e3231362e302f32332d3233203d3e20313530323631.roa (hash: 8hArOQkZgNmI16L0WGc7RzZ5Ruf+DKiwdMQ56yopHsU=) 3: 7E5852640ACB27CE4AC466E5338B30E206711DDD.crl (hash: 7rAfwxCcCE02CzOBXp2kkaMzcXkyw3tXrWyg1KPe1UU=) 4: 3130332e32322e3231372e302f32342d3234203d3e20313530323631.roa (hash: zgUoXY12HmCoiLv/YyPkviXHygAhdx3kmWkfk7KOXTU=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.crl rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7E5852640ACB27CE4AC466E5338B30E206711DDD.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 03:27:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:97:db:13:73:49:39:14:7b:12:23:3f:9c:15:fa:5d:8b:5c:da:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E5852640ACB27CE4AC466E5338B30E206711DDD Validity Not Before: Jun 3 01:16:22 2026 GMT Not After : Jun 4 03:27:22 2026 GMT Subject: CN=D508DAF2EA161F450C66F4B0BD7252B6B7223497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:0d:8c:1f:d8:d5:a4:1e:3e:d0:44:2d:cf:96: 14:5f:24:43:07:a1:84:98:3b:f7:86:5d:df:15:77: f6:6d:44:fd:72:d9:67:c6:66:68:eb:d0:fb:9c:06: d4:ac:94:63:0f:1d:ca:ee:02:49:22:2c:c9:da:ef: 90:2e:be:bb:df:f2:31:c6:07:e1:f9:85:a1:f2:73: 1a:5d:24:38:97:87:7c:91:6f:dd:4e:75:b3:7a:3f: 50:78:6a:36:36:f6:7b:71:28:81:28:d9:8d:06:ad: 41:aa:ab:1d:50:57:24:61:4e:44:4a:13:d1:3b:7c: 01:d9:31:0a:11:ac:73:1a:d9:31:bb:c3:3a:b5:a3: 83:c9:ef:7b:1c:2e:88:d2:74:84:9a:a3:06:8a:0f: 52:b3:ff:18:45:0a:a9:95:31:54:8f:62:dc:aa:fa: 9d:ce:9f:46:3d:c8:ce:78:f3:e3:64:d8:ed:f7:0c: 4f:ef:7f:93:61:53:15:c2:d5:96:50:15:f5:d0:ab: 41:ac:c1:e8:4f:8d:16:95:29:4d:6c:6c:ff:63:e4: 45:3a:e0:c7:e5:df:4c:ab:1a:8d:49:d0:71:f8:3e: 81:65:45:8d:9a:cc:49:1a:4b:d4:85:24:a2:2e:82: 6b:5a:11:5c:20:b2:18:71:2b:ce:dd:a4:03:85:6e: 77:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:08:DA:F2:EA:16:1F:45:0C:66:F4:B0:BD:72:52:B6:B7:22:34:97 X509v3 Authority Key Identifier: keyid:7E:58:52:64:0A:CB:27:CE:4A:C4:66:E5:33:8B:30:E2:06:71:1D:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7E5852640ACB27CE4AC466E5338B30E206711DDD.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/654607f0-1701-49b1-91ff-b1bed5cbded1/0/7E5852640ACB27CE4AC466E5338B30E206711DDD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:5e:9c:99:02:f1:81:dd:66:ea:d2:e1:51:de:f6:d1:f8:c2: 33:cb:74:3b:21:a7:5d:50:4e:6e:df:1c:65:97:c2:5b:17:cf: 35:8a:26:08:a8:d1:18:ba:0f:c9:77:d6:85:39:15:2d:28:ec: 91:f1:f8:8e:c8:2c:15:7d:61:7f:9e:5b:78:ee:ae:b3:e8:1c: 9f:16:b1:98:2c:bd:a3:40:43:a1:84:b3:7f:2f:48:b5:aa:87: 6f:05:9b:3c:f9:ad:1f:f8:89:c2:9d:ee:c3:bc:80:e0:32:01: df:65:8b:96:c7:32:b7:34:29:3a:67:c4:97:0c:d2:ea:45:fc: ea:58:11:50:8e:9d:e5:56:0a:1b:a5:82:f0:b8:0b:c2:15:2b: c9:3e:37:12:06:19:d7:aa:ee:da:dd:2d:64:ed:ac:ea:f7:d8: ba:57:07:32:61:4f:31:c2:9d:a7:9d:2d:67:97:e5:e2:8e:ba: 73:f2:ae:2c:b2:a0:b8:4a:71:b3:88:2a:f9:09:49:d1:4c:0b: c5:85:30:cb:c7:17:1c:e3:3d:ba:2c:6f:d1:9d:8b:c4:93:97: 5f:7c:21:00:f8:1f:69:1f:20:1f:f7:4d:e0:1f:0c:7c:0d:44: 04:12:fc:68:6b:2f:bd:c1:e7:66:9a:b3:e6:10:fd:73:c3:29: cc:b1:f5:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZZfbE3NJORR7EiM/nBX6XYtc2ugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0U1ODUyNjQwQUNCMjdDRTRBQzQ2NkU1MzM4QjMwRTIw NjcxMURERDAeFw0yNjA2MDMwMTE2MjJaFw0yNjA2MDQwMzI3MjJaMDMxMTAvBgNV BAMTKEQ1MDhEQUYyRUExNjFGNDUwQzY2RjRCMEJENzI1MkI2QjcyMjM0OTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0DYwf2NWkHj7QRC3PlhRfJEMH oYSYO/eGXd8Vd/ZtRP1y2WfGZmjr0PucBtSslGMPHcruAkkiLMna75Auvrvf8jHG B+H5haHycxpdJDiXh3yRb91OdbN6P1B4ajY29ntxKIEo2Y0GrUGqqx1QVyRhTkRK E9E7fAHZMQoRrHMa2TG7wzq1o4PJ73scLojSdISaowaKD1Kz/xhFCqmVMVSPYtyq +p3On0Y9yM548+Nk2O33DE/vf5NhUxXC1ZZQFfXQq0GswehPjRaVKU1sbP9j5EU6 4Mfl30yrGo1J0HH4PoFlRY2azEkaS9SFJKIugmtaEVwgshhxK87dpAOFbncBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1Qja8uoWH0UMZvSwvXJStrciNJcwHwYDVR0j BBgwFoAUflhSZArLJ85KxGblM4sw4gZxHd0wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NjU0NjA3ZjAtMTcwMS00OWIxLTkxZmYtYjFiZWQ1Y2JkZWQxLzAvN0U1ODUyNjQw QUNCMjdDRTRBQzQ2NkU1MzM4QjMwRTIwNjcxMURERC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RTU4NTI2NDBBQ0IyN0NFNEFDNDY2RTUzMzhCMzBFMjA2NzEx RERELmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNjU0NjA3ZjAtMTcwMS00OWIxLTkx ZmYtYjFiZWQ1Y2JkZWQxLzAvN0U1ODUyNjQwQUNCMjdDRTRBQzQ2NkU1MzM4QjMw RTIwNjcxMURERC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACRenJkC8YHdZurS4VHe9tH4wjPLdDshp11Q Tm7fHGWXwlsXzzWKJgio0Ri6D8l31oU5FS0o7JHx+I7ILBV9YX+eW3jurrPoHJ8W sZgsvaNAQ6GEs38vSLWqh28Fmzz5rR/4icKd7sO8gOAyAd9li5bHMrc0KTpnxJcM 0upF/OpYEVCOneVWChulgvC4C8IVK8k+NxIGGdeq7trdLWTtrOr32LpXBzJhTzHC naedLWeX5eKOunPyriyyoLhKcbOIKvkJSdFMC8WFMMvHFxzjPbosb9Gdi8STl198 IQD4H2kfIB/3TeAfDHwNRAQS/GhrL73B52aas+YQ/XPDKcyx9QA= -----END CERTIFICATE-----Generated at Wed Jun 3 04:26:35 2026 by rpki-client