$ rpki-client -vvf rpki-rsync.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/C23796060EF39ED0E6BB9F606F9F425C455FDC20.mft File: C23796060EF39ED0E6BB9F606F9F425C455FDC20.mft (raw, json) Hash identifier: caRTJMjIQ1ArJaQREBFitA59Onz4zAalATfVv8Am9eM= Subject key identifier: FD:F6:7F:44:2A:F9:13:45:7A:92:34:B3:52:89:FB:55:0F:79:44:F7 Authority key identifier: C2:37:96:06:0E:F3:9E:D0:E6:BB:9F:60:6F:9F:42:5C:45:5F:DC:20 Certificate issuer: /CN=C23796060EF39ED0E6BB9F606F9F425C455FDC20 Certificate serial: 18087FB6C22D1F7FC235F523E7CC669ED347B9B4 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C23796060EF39ED0E6BB9F606F9F425C455FDC20.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/C23796060EF39ED0E6BB9F606F9F425C455FDC20.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 11:18:57 +0000 Manifest this update: Tue 02 Jun 2026 11:13:57 +0000 Manifest next update: Wed 03 Jun 2026 14:36:57 +0000 Files and hashes: 1: 3130332e3134332e342e302f32342d3234203d3e20313339343034.roa (hash: trtJ6caoi9E2cPVadT/x0hsZneaEQLzf3GDB3mta1B8=) 2: 3130332e3134332e352e302f32342d3234203d3e20313339343034.roa (hash: ENAt0Wj8pAqQGPsWatdFNKTs/QZwprQkkW2hjlJfcA8=) 3: C23796060EF39ED0E6BB9F606F9F425C455FDC20.crl (hash: bU0sBMUMIc5ypXZTqVRH0Oh/JUB6JIX9BLQrM099gSw=) 4: 323430353a343634303a3a2f33322d3332203d3e20313339343034.roa (hash: IjCojVCQLVDXso6MfZ5Olpug+HpXiFAkQ/9TrlGdwBg=) 5: 3130332e3134332e342e302f32332d3233203d3e20313339343034.roa (hash: baz94lUrN5c1rRyv2s8gFFKO/4uJw+NhpT+Cp/9iDxI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/C23796060EF39ED0E6BB9F606F9F425C455FDC20.crl rsync://rpki-rsync.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/C23796060EF39ED0E6BB9F606F9F425C455FDC20.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C23796060EF39ED0E6BB9F606F9F425C455FDC20.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 14:36:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:08:7f:b6:c2:2d:1f:7f:c2:35:f5:23:e7:cc:66:9e:d3:47:b9:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C23796060EF39ED0E6BB9F606F9F425C455FDC20 Validity Not Before: Jun 2 11:13:57 2026 GMT Not After : Jun 3 14:36:57 2026 GMT Subject: CN=FDF67F442AF913457A9234B35289FB550F7944F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:62:f0:6f:e0:0a:f8:a4:8c:ad:34:50:b5:fc: ba:98:b4:8d:b3:83:42:27:dd:41:cd:0d:e3:73:e5: 3b:2c:0f:70:97:95:59:97:09:de:b0:11:d4:d7:8c: 8c:79:05:7d:ff:8c:0c:ef:40:5a:35:ef:bc:55:b7: 3b:1b:c2:ff:ff:37:96:ba:b0:e3:a4:18:42:1b:4d: 88:d0:fa:c3:37:7e:bd:4a:44:72:e3:04:16:b7:7b: b6:48:0d:b5:80:df:7d:f9:46:6a:4d:97:56:24:22: cb:20:de:19:f7:d7:bc:d9:4c:4e:32:3b:e5:b8:06: ac:a0:0d:d3:67:6a:72:b9:e1:ef:8d:5c:88:b1:f4: 6f:50:d8:da:a9:d7:03:b7:2a:69:17:83:14:05:f1: df:79:e7:1a:b2:c2:1a:a3:27:63:40:cf:95:27:72: 93:d9:37:36:d2:8f:07:18:3a:15:72:c3:90:27:d4: e2:52:24:cc:4b:e2:49:e1:8c:13:f7:ff:cb:86:ef: c9:8d:6d:d3:e5:59:b0:04:75:88:72:a7:3a:24:07: a8:eb:3c:a7:7a:fd:20:8b:56:e7:c0:ac:ac:b0:9e: 08:ac:2c:fc:d2:72:d0:6b:1b:50:67:ee:e3:4c:cb: 77:c4:c5:7b:b0:01:bd:20:af:ec:67:be:d5:ad:e4: 24:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F6:7F:44:2A:F9:13:45:7A:92:34:B3:52:89:FB:55:0F:79:44:F7 X509v3 Authority Key Identifier: keyid:C2:37:96:06:0E:F3:9E:D0:E6:BB:9F:60:6F:9F:42:5C:45:5F:DC:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/C23796060EF39ED0E6BB9F606F9F425C455FDC20.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/C23796060EF39ED0E6BB9F606F9F425C455FDC20.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7998d6ee-6fd7-4e2d-ae41-6939fdb153ee/0/C23796060EF39ED0E6BB9F606F9F425C455FDC20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:e1:97:47:2e:b0:61:01:24:ab:46:ab:64:05:a0:78:5a:03: b7:0c:ff:54:06:d8:e4:91:4c:dd:70:44:0b:17:48:a7:4e:37: f4:34:a7:b4:7a:12:3a:e9:6b:b3:36:e6:dc:4a:61:75:b2:4e: ff:fd:59:c1:0b:e4:07:79:f1:cc:96:a0:8c:d3:c1:b5:7a:6e: c2:b8:cd:45:23:da:72:a6:c6:f2:ce:be:19:0a:8e:ae:58:b0: 97:51:04:52:47:b2:35:ee:ba:21:85:26:0e:30:f2:3d:2a:4f: f7:b3:86:0c:a3:5f:1b:97:62:8f:ba:ae:39:9a:45:33:f4:4c: dd:c1:e2:c2:a1:ef:48:76:58:1d:1a:40:ea:23:b1:dc:be:a0: 89:89:15:da:16:6e:b7:26:33:c6:89:18:6d:64:9c:42:e9:34: ca:b8:2b:bd:a8:16:9c:53:a1:b5:bc:f4:55:fb:1c:e9:3d:49: 9d:56:0e:36:de:cc:00:9b:b5:a0:c3:66:bf:ed:d4:3d:8c:1a: 85:2c:d5:fa:c8:a4:bd:aa:2a:e2:6a:47:c1:61:85:c8:5a:b0: 37:ee:15:bb:3f:24:9d:4d:2e:44:1f:41:d1:2e:c0:5a:12:93: 21:a5:32:ee:74:3c:24:c0:69:24:6b:81:54:44:cc:44:60:6c: b8:80:95:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGAh/tsItH3/CNfUj58xmntNHubQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIzNzk2MDYwRUYzOUVEMEU2QkI5RjYwNkY5RjQyNUM0 NTVGREMyMDAeFw0yNjA2MDIxMTEzNTdaFw0yNjA2MDMxNDM2NTdaMDMxMTAvBgNV BAMTKEZERjY3RjQ0MkFGOTEzNDU3QTkyMzRCMzUyODlGQjU1MEY3OTQ0RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxYvBv4Ar4pIytNFC1/LqYtI2z g0In3UHNDeNz5TssD3CXlVmXCd6wEdTXjIx5BX3/jAzvQFo177xVtzsbwv//N5a6 sOOkGEIbTYjQ+sM3fr1KRHLjBBa3e7ZIDbWA3335RmpNl1YkIssg3hn317zZTE4y O+W4BqygDdNnanK54e+NXIix9G9Q2Nqp1wO3KmkXgxQF8d955xqywhqjJ2NAz5Un cpPZNzbSjwcYOhVyw5An1OJSJMxL4knhjBP3/8uG78mNbdPlWbAEdYhypzokB6jr PKd6/SCLVufArKywngisLPzSctBrG1Bn7uNMy3fExXuwAb0gr+xnvtWt5CQHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/fZ/RCr5E0V6kjSzUon7VQ95RPcwHwYDVR0j BBgwFoAUwjeWBg7zntDmu59gb59CXEVf3CAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v Nzk5OGQ2ZWUtNmZkNy00ZTJkLWFlNDEtNjkzOWZkYjE1M2VlLzAvQzIzNzk2MDYw RUYzOUVEMEU2QkI5RjYwNkY5RjQyNUM0NTVGREMyMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DMjM3OTYwNjBFRjM5RUQwRTZCQjlGNjA2RjlGNDI1QzQ1NUZE QzIwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzk5OGQ2ZWUtNmZkNy00ZTJkLWFl NDEtNjkzOWZkYjE1M2VlLzAvQzIzNzk2MDYwRUYzOUVEMEU2QkI5RjYwNkY5RjQy NUM0NTVGREMyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGXhl0cusGEBJKtGq2QFoHhaA7cM/1QG2OSR TN1wRAsXSKdON/Q0p7R6Ejrpa7M25txKYXWyTv/9WcEL5Ad58cyWoIzTwbV6bsK4 zUUj2nKmxvLOvhkKjq5YsJdRBFJHsjXuuiGFJg4w8j0qT/ezhgyjXxuXYo+6rjma RTP0TN3B4sKh70h2WB0aQOojsdy+oImJFdoWbrcmM8aJGG1knELpNMq4K72oFpxT obW89FX7HOk9SZ1WDjbezACbtaDDZr/t1D2MGoUs1frIpL2qKuJqR8FhhchasDfu Fbs/JJ1NLkQfQdEuwFoSkyGlMu50PCTAaSRrgVREzERgbLiAlQE= -----END CERTIFICATE-----Generated at Wed Jun 3 04:18:43 2026 by rpki-client