$ rpki-client -vvf rpki-rsync.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.mft File: 04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.mft (raw, json) Hash identifier: OZRA1GKTqZ+wiKJijrBoQOHCs5Dti91njMWicNH0dWs= Subject key identifier: 71:08:CF:A6:F4:5A:FA:FF:75:F4:58:2F:7B:61:42:C9:20:48:07:BA Authority key identifier: 04:DB:B5:85:11:EB:56:6D:9B:E1:98:B7:EC:E1:71:D2:AE:3F:0D:36 Certificate issuer: /CN=04DBB58511EB566D9BE198B7ECE171D2AE3F0D36 Certificate serial: 6577EADA230F06E44BD47E10E38F091638B576B3 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 09:01:08 +0000 Manifest this update: Tue 02 Jun 2026 08:56:08 +0000 Manifest next update: Wed 03 Jun 2026 12:58:08 +0000 Files and hashes: 1: 3138322e35342e3134302e302f32322d3234203d3e203535363835.roa (hash: jiJN5uTtVqTyi/LsSOB3CZxJlHQ5mjW5GcesMlLX4EE=) 2: 3130332e36302e3138302e302f32322d3234203d3e203535363835.roa (hash: Sxgjfc3rJMR/6kggcztr6diqTcIFdNjFMaFwfjqQRVc=) 3: 04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.crl (hash: nlikkFKivj0XRIg4Zm1aP8dNiXd9PWFAiZAq7qmKm1I=) 4: 3130332e38302e38382e302f32322d3234203d3e203535363835.roa (hash: bImD2ZtrKw/qYZlZEa6DVDo0ea7PH2tJcz0npEPPdds=) 5: 3130332e38302e39312e302f32342d3234203d3e20313337333033.roa (hash: 8fVyhPJOnEawBWwgARzQly7FMcHwy/+Ghg0XkCT2OOs=) 6: 3130332e38302e39302e302f32342d3234203d3e20313337333033.roa (hash: vatB6xTCpKTsE4tbG+JDKUhfyJC22x4PAXCG04Pc2lA=) 7: 3130332e36302e3138332e302f32342d3234203d3e20313431363330.roa (hash: ngWzWlF3BDUAfLENIH4eXpEMJ09d6MMBm0aRXwTS2DE=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.crl rsync://rpki-rsync.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:77:ea:da:23:0f:06:e4:4b:d4:7e:10:e3:8f:09:16:38:b5:76:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04DBB58511EB566D9BE198B7ECE171D2AE3F0D36 Validity Not Before: Jun 2 08:56:08 2026 GMT Not After : Jun 3 12:58:08 2026 GMT Subject: CN=7108CFA6F45AFAFF75F4582F7B6142C9204807BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9e:e0:84:9b:e2:36:e5:59:01:07:be:40:0d: e4:cc:9d:cc:fd:86:a9:5d:bb:4e:d5:69:ca:cd:5d: 72:1f:b2:8c:1f:57:c7:ed:59:d2:31:aa:ca:89:d7: ad:c0:74:f3:86:57:4b:c5:32:12:62:7f:71:24:fb: e2:63:c3:1a:1e:3c:bb:44:5e:ff:79:4f:f4:80:8e: e3:4e:e5:89:3d:cb:a4:32:a1:36:df:01:47:ab:0c: 21:17:74:3c:89:13:9a:6d:6a:d9:bd:12:e6:21:3f: a4:ce:66:a9:be:5d:d3:27:e0:7e:59:2a:74:c9:46: 3f:73:b8:01:2d:e4:74:ba:7a:3d:75:3a:7a:e9:d6: b9:8a:e2:48:e9:8c:81:86:53:bc:06:67:58:9b:f5: 40:44:f5:2a:29:3c:5d:2e:9d:37:2d:ed:ae:e9:9a: 73:ec:fb:7a:f0:11:b2:21:11:30:5a:77:67:25:37: 21:1e:32:4b:4c:d8:33:1c:8f:26:7b:dd:1e:68:bf: 0c:48:e7:93:51:aa:00:cb:87:71:b2:ff:27:21:2c: 7e:9f:fc:8f:c0:aa:77:73:92:75:59:0d:06:9a:b4: 46:e2:43:3d:59:e4:95:fe:34:81:47:5c:93:68:ad: 3b:a4:d2:2f:4c:f5:e8:8c:51:00:73:8d:a3:89:6a: 9f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:08:CF:A6:F4:5A:FA:FF:75:F4:58:2F:7B:61:42:C9:20:48:07:BA X509v3 Authority Key Identifier: keyid:04:DB:B5:85:11:EB:56:6D:9B:E1:98:B7:EC:E1:71:D2:AE:3F:0D:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/04DBB58511EB566D9BE198B7ECE171D2AE3F0D36.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:3d:a2:33:37:d1:e0:cd:21:b0:22:57:42:a7:ed:9c:05:4b: f8:6f:4e:56:97:82:45:b2:43:94:47:43:d4:46:c5:cd:76:20: 37:c7:72:88:74:09:06:8c:a3:59:88:10:da:ec:ea:4a:12:96: 59:f7:38:b3:54:02:96:e7:22:16:8f:4e:f0:4f:25:e7:ba:1e: b5:e7:d5:5a:fd:02:36:8d:4a:cd:af:9c:a7:95:b5:84:75:5a: c1:d9:b1:12:6f:6b:6b:64:3f:fc:39:dd:ad:92:2b:72:0d:41: 84:26:6b:c4:22:d0:a5:e3:f9:6f:f8:21:d2:c1:56:80:e3:85: 8b:c5:dc:83:fb:c5:dc:49:a6:c3:fe:65:78:17:5f:92:6a:18: 65:30:5c:f9:a9:1c:9f:59:62:43:7c:c0:77:38:19:71:c9:66: d6:61:94:08:cd:9e:ac:22:10:6a:0f:ee:3f:8b:fc:93:ad:aa: bc:f2:4e:84:28:c1:60:18:e3:a5:22:ed:ee:a0:b0:6f:6c:2c: 70:01:12:c7:85:6b:ad:61:97:57:41:7b:15:10:9d:59:21:79: 88:b0:f8:92:52:d3:b2:fd:fe:3c:0a:ee:90:88:9a:52:89:3e: 2a:f9:a6:a4:75:c1:fe:31:73:56:ed:fe:49:0e:6b:22:4f:7b: 80:18:d8:40 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZXfq2iMPBuRL1H4Q448JFji1drMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDREQkI1ODUxMUVCNTY2RDlCRTE5OEI3RUNFMTcxRDJB RTNGMEQzNjAeFw0yNjA2MDIwODU2MDhaFw0yNjA2MDMxMjU4MDhaMDMxMTAvBgNV BAMTKDcxMDhDRkE2RjQ1QUZBRkY3NUY0NTgyRjdCNjE0MkM5MjA0ODA3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLnuCEm+I25VkBB75ADeTMncz9 hqldu07VacrNXXIfsowfV8ftWdIxqsqJ163AdPOGV0vFMhJif3Ek++JjwxoePLtE Xv95T/SAjuNO5Yk9y6QyoTbfAUerDCEXdDyJE5ptatm9EuYhP6TOZqm+XdMn4H5Z KnTJRj9zuAEt5HS6ej11Onrp1rmK4kjpjIGGU7wGZ1ib9UBE9SopPF0unTct7a7p mnPs+3rwEbIhETBad2clNyEeMktM2DMcjyZ73R5ovwxI55NRqgDLh3Gy/ychLH6f /I/AqndzknVZDQaatEbiQz1Z5JX+NIFHXJNorTuk0i9M9eiMUQBzjaOJap9xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcQjPpvRa+v919Fgve2FCySBIB7owHwYDVR0j BBgwFoAUBNu1hRHrVm2b4Zi37OFx0q4/DTYwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODIwMzJiYzktNjA1YS00MjUzLWE0Y2QtNjJmMTI0MTI2ZWFjLzAvMDREQkI1ODUx MUVCNTY2RDlCRTE5OEI3RUNFMTcxRDJBRTNGMEQzNi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8wNERCQjU4NTExRUI1NjZEOUJFMTk4QjdFQ0UxNzFEMkFFM0Yw RDM2LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vODIwMzJiYzktNjA1YS00MjUzLWE0 Y2QtNjJmMTI0MTI2ZWFjLzAvMDREQkI1ODUxMUVCNTY2RDlCRTE5OEI3RUNFMTcx RDJBRTNGMEQzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKw9ojM30eDNIbAiV0Kn7ZwFS/hvTlaXgkWy Q5RHQ9RGxc12IDfHcoh0CQaMo1mIENrs6koSlln3OLNUApbnIhaPTvBPJee6HrXn 1Vr9AjaNSs2vnKeVtYR1WsHZsRJva2tkP/w53a2SK3INQYQma8Qi0KXj+W/4IdLB VoDjhYvF3IP7xdxJpsP+ZXgXX5JqGGUwXPmpHJ9ZYkN8wHc4GXHJZtZhlAjNnqwi EGoP7j+L/JOtqrzyToQowWAY46Ui7e6gsG9sLHABEseFa61hl1dBexUQnVkheYiw +JJS07L9/jwK7pCImlKJPir5pqR1wf4xc1bt/kkOayJPe4AY2EA= -----END CERTIFICATE-----Generated at Wed Jun 3 04:08:24 2026 by rpki-client