$ rpki-client -vvf rpki-rsync.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/A952A58DE132E26886D9A077713042EADBA3C178.mft File: A952A58DE132E26886D9A077713042EADBA3C178.mft (raw, json) Hash identifier: RHFrjW3k6cetIiSF2/6ksv2+wAzs70KArmM+NfgOEbo= Subject key identifier: 69:DB:74:41:04:AA:B1:65:56:3D:F6:C1:D7:FE:4E:DF:92:BE:F4:AD Authority key identifier: A9:52:A5:8D:E1:32:E2:68:86:D9:A0:77:71:30:42:EA:DB:A3:C1:78 Certificate issuer: /CN=A952A58DE132E26886D9A077713042EADBA3C178 Certificate serial: 406E86152310B76DB1E15B47DDBE4A629931324F Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A952A58DE132E26886D9A077713042EADBA3C178.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/A952A58DE132E26886D9A077713042EADBA3C178.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 10:28:02 +0000 Manifest this update: Tue 02 Jun 2026 10:23:02 +0000 Manifest next update: Wed 03 Jun 2026 11:07:02 +0000 Files and hashes: 1: 3130332e3137352e3233382e302f32342d3234203d3e20313437313232.roa (hash: I9P+22XUrYqfAeG+s4HEGC5b6efFAbm0WVpCZy5OhYk=) 2: 3130332e3137352e3233392e302f32342d3234203d3e20313437313232.roa (hash: j2rPBHDu8altdMacoto0CdEJNfbZiyRNmXyQ2rZHa2o=) 3: A952A58DE132E26886D9A077713042EADBA3C178.crl (hash: e4wFwOdzKEmLtIjt65D0med24xozLbSgoOpuadTexjM=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/A952A58DE132E26886D9A077713042EADBA3C178.crl rsync://rpki-rsync.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/A952A58DE132E26886D9A077713042EADBA3C178.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A952A58DE132E26886D9A077713042EADBA3C178.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:6e:86:15:23:10:b7:6d:b1:e1:5b:47:dd:be:4a:62:99:31:32:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A952A58DE132E26886D9A077713042EADBA3C178 Validity Not Before: Jun 2 10:23:02 2026 GMT Not After : Jun 3 11:07:02 2026 GMT Subject: CN=69DB744104AAB165563DF6C1D7FE4EDF92BEF4AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ab:e3:18:04:f1:3c:7e:32:6c:9f:d2:47:cd: b1:40:d8:d0:1c:32:d6:9a:42:54:d0:89:2e:df:f0: 72:bb:a9:f9:82:68:ed:5c:c1:cc:1f:eb:94:27:2c: 2a:b4:77:8a:4d:75:f5:8b:cb:f4:cf:b1:39:82:b7: ba:51:fd:da:e9:88:60:14:0d:cf:6d:18:b0:04:85: 67:64:34:9b:58:51:6c:67:04:8b:b9:4b:f6:14:c1: 16:4e:c3:bc:89:bf:8d:a7:d0:52:24:be:64:b0:61: e7:70:d1:9e:f7:b0:a0:c1:3e:92:8d:57:9c:e1:11: 37:30:c3:bb:fe:7f:0c:11:6b:ee:a0:c6:b5:e1:02: fc:91:c7:dc:29:5f:6a:47:e1:de:ee:be:40:a2:ea: 64:f5:24:7a:d8:f8:55:f3:13:f6:e9:bc:4a:1a:f5: bd:dd:19:4a:4e:79:d3:be:04:e4:56:f8:9a:be:0d: a5:6d:94:39:48:de:dd:ea:65:ee:cf:03:63:be:10: 8e:27:21:cf:94:fb:45:e3:31:ef:7e:be:5f:ea:02: d9:2f:f6:45:30:7a:1d:ef:b5:f4:7d:9a:6d:a2:83: 98:55:93:75:c4:0c:cb:fa:7e:a7:bc:53:32:c2:35: 8b:2c:3f:83:83:19:e5:0b:a9:ba:b4:87:08:d1:be: d0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:DB:74:41:04:AA:B1:65:56:3D:F6:C1:D7:FE:4E:DF:92:BE:F4:AD X509v3 Authority Key Identifier: keyid:A9:52:A5:8D:E1:32:E2:68:86:D9:A0:77:71:30:42:EA:DB:A3:C1:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/A952A58DE132E26886D9A077713042EADBA3C178.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A952A58DE132E26886D9A077713042EADBA3C178.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/8957a3bf-4823-4609-85cd-77570bf18580/0/A952A58DE132E26886D9A077713042EADBA3C178.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:cc:53:0d:f1:fb:b6:79:0a:e2:b1:b7:0f:86:ee:c0:51:48: d9:27:e3:8a:6c:54:ec:fc:74:08:26:19:60:64:f3:9c:1d:7b: 5d:79:13:7d:34:dd:02:c8:5f:90:42:73:92:c5:19:a8:d9:55: 2e:e2:c2:74:13:4a:51:be:e1:b7:03:7b:09:9e:14:39:0b:e9: 13:8c:33:cc:be:e8:67:4e:66:ce:58:d4:e5:20:a7:2d:dc:04: 7c:c8:df:a1:f4:0f:4a:59:81:9a:a8:ae:67:e6:6c:ef:4b:c3: 7a:12:61:49:ec:04:6f:e4:98:90:d4:b0:9e:d4:39:0b:1b:b7: ee:3e:a6:46:a4:04:6b:51:fb:31:a6:3c:de:93:0a:df:99:d3: 9c:68:ba:42:66:4c:9c:74:61:6e:d3:8c:c5:2c:36:fd:24:c8: d5:e0:a0:eb:34:d7:87:95:89:40:a3:d8:78:9f:93:e0:a3:d7: da:e0:46:3e:e5:90:19:42:72:79:77:58:ca:39:31:7f:3f:15: ee:d5:1e:b0:b1:2e:53:8e:b8:e8:dc:df:2d:e8:8b:3f:2c:4c: 73:40:a4:44:be:fb:bc:ea:34:5a:96:3d:55:80:84:ad:4f:62: d4:97:ce:2b:e7:9f:5c:cd:5c:38:bf:4a:4c:ba:5d:69:0c:8e: 38:90:50:30 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQG6GFSMQt22x4VtH3b5KYpkxMk8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTk1MkE1OERFMTMyRTI2ODg2RDlBMDc3NzEzMDQyRUFE QkEzQzE3ODAeFw0yNjA2MDIxMDIzMDJaFw0yNjA2MDMxMTA3MDJaMDMxMTAvBgNV BAMTKDY5REI3NDQxMDRBQUIxNjU1NjNERjZDMUQ3RkU0RURGOTJCRUY0QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3q+MYBPE8fjJsn9JHzbFA2NAc MtaaQlTQiS7f8HK7qfmCaO1cwcwf65QnLCq0d4pNdfWLy/TPsTmCt7pR/drpiGAU Dc9tGLAEhWdkNJtYUWxnBIu5S/YUwRZOw7yJv42n0FIkvmSwYedw0Z73sKDBPpKN V5zhETcww7v+fwwRa+6gxrXhAvyRx9wpX2pH4d7uvkCi6mT1JHrY+FXzE/bpvEoa 9b3dGUpOedO+BORW+Jq+DaVtlDlI3t3qZe7PA2O+EI4nIc+U+0XjMe9+vl/qAtkv 9kUweh3vtfR9mm2ig5hVk3XEDMv6fqe8UzLCNYssP4ODGeULqbq0hwjRvtATAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUadt0QQSqsWVWPfbB1/5O35K+9K0wHwYDVR0j BBgwFoAUqVKljeEy4miG2aB3cTBC6tujwXgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ODk1N2EzYmYtNDgyMy00NjA5LTg1Y2QtNzc1NzBiZjE4NTgwLzAvQTk1MkE1OERF MTMyRTI2ODg2RDlBMDc3NzEzMDQyRUFEQkEzQzE3OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BOTUyQTU4REUxMzJFMjY4ODZEOUEwNzc3MTMwNDJFQURCQTND MTc4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vODk1N2EzYmYtNDgyMy00NjA5LTg1 Y2QtNzc1NzBiZjE4NTgwLzAvQTk1MkE1OERFMTMyRTI2ODg2RDlBMDc3NzEzMDQy RUFEQkEzQzE3OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGXMUw3x+7Z5CuKxtw+G7sBRSNkn44psVOz8 dAgmGWBk85wde115E3003QLIX5BCc5LFGajZVS7iwnQTSlG+4bcDewmeFDkL6ROM M8y+6GdOZs5Y1OUgpy3cBHzI36H0D0pZgZqormfmbO9Lw3oSYUnsBG/kmJDUsJ7U OQsbt+4+pkakBGtR+zGmPN6TCt+Z05xoukJmTJx0YW7TjMUsNv0kyNXgoOs014eV iUCj2Hifk+Cj19rgRj7lkBlCcnl3WMo5MX8/Fe7VHrCxLlOOuOjc3y3oiz8sTHNA pES++7zqNFqWPVWAhK1PYtSXzivnn1zNXDi/Sky6XWkMjjiQUDA= -----END CERTIFICATE-----Generated at Wed Jun 3 04:05:15 2026 by rpki-client