$ rpki-client -vvf rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.mft File: 32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.mft (raw, json) Hash identifier: rermJ8PP+Zj3SIiEDcdyIUYhT7kspLimiw8/1CQoyLU= Subject key identifier: 10:ED:50:A9:13:FB:E6:1B:38:AB:1A:C8:3A:53:40:4E:54:22:88:D6 Authority key identifier: 32:BA:6A:EC:51:EA:21:4B:B4:B7:42:FA:E2:EC:3F:0C:4D:72:B3:26 Certificate issuer: /CN=32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326 Certificate serial: 5C5B3ED42FC5ED5D7E3AFE6764BEA80514AEB167 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.mft Manifest number: 2B Signing time: Wed 03 Jun 2026 02:32:52 +0000 Manifest this update: Wed 03 Jun 2026 02:27:52 +0000 Manifest next update: Thu 04 Jun 2026 04:01:52 +0000 Files and hashes: 1: 32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.crl (hash: T/WCbOrjmZGE4SFO9CYtfc0qAXUT2LQzWZ2bIq50uOM=) 2: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (hash: Uh5y0YtfY7V2qTdTkRsIfNJf6g7Mb5/NMceYo7geuVc=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.crl rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 04:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:5b:3e:d4:2f:c5:ed:5d:7e:3a:fe:67:64:be:a8:05:14:ae:b1:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326 Validity Not Before: Jun 3 02:27:52 2026 GMT Not After : Jun 4 04:01:52 2026 GMT Subject: CN=10ED50A913FBE61B38AB1AC83A53404E542288D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e5:5c:16:58:84:0b:11:63:8b:a4:61:ba:98: 02:6f:1e:ef:80:7d:21:72:5e:93:b6:df:2a:07:67: 75:d0:9b:da:39:40:47:bf:82:b6:fa:0c:36:82:e7: 73:07:7d:a0:a6:5a:b2:12:bd:0e:20:97:40:b6:fc: 03:7c:bd:11:21:f1:4e:09:6d:3a:e7:e2:27:4e:fc: 69:bb:11:18:28:f7:b9:3c:1c:4c:91:d8:66:4e:e5: a0:de:cd:16:77:9a:98:14:88:43:b3:f4:08:83:a9: aa:49:9e:1e:aa:5d:47:56:56:18:ff:39:3f:e5:43: 34:fa:41:a5:86:f6:0f:82:90:91:80:1e:0b:e6:97: 59:b2:1c:96:7e:32:3f:a0:02:fe:5f:e1:ab:58:25: 47:48:be:c9:18:fe:1f:36:cf:67:74:74:f8:1d:ae: e5:6e:42:b2:10:77:2e:73:a4:3d:45:ef:49:ef:92: 6d:9a:c7:e7:ab:0c:99:3e:2d:9e:03:b5:e2:0c:3b: 98:16:1a:7d:a4:4b:87:79:1c:5d:9a:51:89:34:22: 3d:6d:ff:16:35:75:6d:52:96:1e:a7:da:53:ff:cc: 46:4b:12:44:59:9e:26:51:bd:de:74:c6:d7:2b:49: db:54:da:42:39:ee:36:72:1b:4e:9d:4c:c8:50:f4: 3d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:ED:50:A9:13:FB:E6:1B:38:AB:1A:C8:3A:53:40:4E:54:22:88:D6 X509v3 Authority Key Identifier: keyid:32:BA:6A:EC:51:EA:21:4B:B4:B7:42:FA:E2:EC:3F:0C:4D:72:B3:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/32BA6AEC51EA214BB4B742FAE2EC3F0C4D72B326.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:27:70:e2:fa:cc:1a:c0:3a:b2:13:f8:0b:0a:b0:7f:d0:c6: 1d:4e:21:d3:62:ec:f3:a4:5f:ca:14:c4:ba:3c:93:3f:bc:96: f7:74:f8:61:f7:85:e0:48:6d:94:bf:ea:51:b0:f2:56:38:b4: 0e:b3:55:90:72:9e:83:e6:4e:15:0d:29:d3:6f:17:bb:f9:e2: 58:2b:64:00:6c:24:fc:fb:cd:4c:83:72:4b:dd:60:c7:2f:f6: ac:6c:94:8c:e0:41:6f:b2:61:41:39:b7:e1:73:ad:dd:aa:17: 15:fb:f6:a6:04:b5:35:16:a6:17:ec:38:a8:e2:65:d1:15:d8: 9a:d3:7e:3a:4a:98:9b:b3:ed:90:2c:0e:ce:b2:c0:ae:8b:3d: 30:1d:36:c8:68:bc:6e:9d:d7:9c:50:5c:a1:59:0e:03:63:71: 2d:23:c9:46:78:3e:77:ed:77:03:95:fc:a7:0b:5c:ec:9e:7f: 42:6a:cf:4f:ad:71:89:f7:51:b8:1c:2e:cd:d1:b1:5f:35:21: f2:c9:05:34:d9:67:88:3a:71:01:bd:1a:9e:28:ff:44:b3:db: e2:18:ff:cf:e4:01:e9:ea:0a:08:58:06:8c:64:86:88:b8:6b: 7d:5f:34:0f:74:cd:c5:ae:b8:2f:e2:9e:73:65:dd:36:aa:ec: 2a:d5:1f:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXFs+1C/F7V1+Ov5nZL6oBRSusWcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzJCQTZBRUM1MUVBMjE0QkI0Qjc0MkZBRTJFQzNGMEM0 RDcyQjMyNjAeFw0yNjA2MDMwMjI3NTJaFw0yNjA2MDQwNDAxNTJaMDMxMTAvBgNV BAMTKDEwRUQ1MEE5MTNGQkU2MUIzOEFCMUFDODNBNTM0MDRFNTQyMjg4RDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh5VwWWIQLEWOLpGG6mAJvHu+A fSFyXpO23yoHZ3XQm9o5QEe/grb6DDaC53MHfaCmWrISvQ4gl0C2/AN8vREh8U4J bTrn4idO/Gm7ERgo97k8HEyR2GZO5aDezRZ3mpgUiEOz9AiDqapJnh6qXUdWVhj/ OT/lQzT6QaWG9g+CkJGAHgvml1myHJZ+Mj+gAv5f4atYJUdIvskY/h82z2d0dPgd ruVuQrIQdy5zpD1F70nvkm2ax+erDJk+LZ4DteIMO5gWGn2kS4d5HF2aUYk0Ij1t /xY1dW1Slh6n2lP/zEZLEkRZniZRvd50xtcrSdtU2kI57jZyG06dTMhQ9D31AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEO1QqRP75hs4qxrIOlNATlQiiNYwHwYDVR0j BBgwFoAUMrpq7FHqIUu0t0L64uw/DE1ysyYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODExZDlhYmMtNDk4Ny00ZGJjLTk3NmQtM2YzMmIyOTE3MTVkLzAvMzJCQTZBRUM1 MUVBMjE0QkI0Qjc0MkZBRTJFQzNGMEM0RDcyQjMyNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMkJBNkFFQzUxRUEyMTRCQjRCNzQyRkFFMkVDM0YwQzRENzJC MzI2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vODExZDlhYmMtNDk4Ny00ZGJjLTk3 NmQtM2YzMmIyOTE3MTVkLzAvMzJCQTZBRUM1MUVBMjE0QkI0Qjc0MkZBRTJFQzNG MEM0RDcyQjMyNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACIncOL6zBrAOrIT+AsKsH/Qxh1OIdNi7POk X8oUxLo8kz+8lvd0+GH3heBIbZS/6lGw8lY4tA6zVZBynoPmThUNKdNvF7v54lgr ZABsJPz7zUyDckvdYMcv9qxslIzgQW+yYUE5t+Fzrd2qFxX79qYEtTUWphfsOKji ZdEV2JrTfjpKmJuz7ZAsDs6ywK6LPTAdNshovG6d15xQXKFZDgNjcS0jyUZ4Pnft dwOV/KcLXOyef0Jqz0+tcYn3UbgcLs3RsV81IfLJBTTZZ4g6cQG9Gp4o/0Sz2+IY /8/kAenqCghYBoxkhoi4a31fNA90zcWuuC/innNl3Taq7CrVH0Q= -----END CERTIFICATE-----Generated at Wed Jun 3 04:15:21 2026 by rpki-client