$ rpki-client -vvf rpki-rsync.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/9796934CE983E32FE16AC8EC0968FB6FF0339712.mft File: 9796934CE983E32FE16AC8EC0968FB6FF0339712.mft (raw, json) Hash identifier: S4g50IAHAbou/76Ll20zDJeXrjj2VPTz4g2WFera37I= Subject key identifier: 3D:5A:70:F8:03:E8:E8:BF:A4:9A:35:24:AB:38:04:8B:7E:D8:24:F3 Authority key identifier: 97:96:93:4C:E9:83:E3:2F:E1:6A:C8:EC:09:68:FB:6F:F0:33:97:12 Certificate issuer: /CN=9796934CE983E32FE16AC8EC0968FB6FF0339712 Certificate serial: 4831E32F25E57F796BBC487C3A2370EFD6E46903 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9796934CE983E32FE16AC8EC0968FB6FF0339712.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/9796934CE983E32FE16AC8EC0968FB6FF0339712.mft Manifest number: 2B Signing time: Wed 03 Jun 2026 00:05:00 +0000 Manifest this update: Wed 03 Jun 2026 00:00:00 +0000 Manifest next update: Thu 04 Jun 2026 03:24:00 +0000 Files and hashes: 1: 9796934CE983E32FE16AC8EC0968FB6FF0339712.crl (hash: IirbUh2xOYMmIhL1WIjnNW78nGbDWvjhelKo63pzEhI=) 2: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: CyXCnh6Eu/KCDGsGPBvecfzZa94iTRYuLOf5EOeQnK4=) 3: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: yEBegNseO4WhgSgnMf0UD1P9unzjG8GGfBUDaVupNxw=) 4: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: TDOsoHO/HMJ3+M/IDdZkOYM5yQ6eYeDxjPpemNYDfKc=) 5: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: gEjgmPi52YAqYyRKLzVAHY/tcddAmwneB2Joo9b5lCU=) 6: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: y59gW5BEgEi3F+rl6LRjNXAc9apuX+ON4CV36/Ae45k=) 7: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: 90gI7sKaQLOikXOS30SwmXL0rMP42rJQ2sx3CKH87jQ=) 8: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: dKhNn6GJjJO6VU2o0VhUMT3uGr0zEWCIpRqbnuOjsu4=) 9: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: UWBZ8HDVUh8vSiS9fwmZD70vxv5kj8iLpVqFbVQF6Ag=) 10: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: rNgJ1hrCOEzVkRLQiZgbFHzGeuIdRSxk2VHfwHrqS1k=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/9796934CE983E32FE16AC8EC0968FB6FF0339712.crl rsync://rpki-rsync.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/9796934CE983E32FE16AC8EC0968FB6FF0339712.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9796934CE983E32FE16AC8EC0968FB6FF0339712.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:31:e3:2f:25:e5:7f:79:6b:bc:48:7c:3a:23:70:ef:d6:e4:69:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9796934CE983E32FE16AC8EC0968FB6FF0339712 Validity Not Before: Jun 3 00:00:00 2026 GMT Not After : Jun 4 03:24:00 2026 GMT Subject: CN=3D5A70F803E8E8BFA49A3524AB38048B7ED824F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:dd:47:51:47:f6:ce:1f:25:9e:6f:94:d7:48: 3f:7c:8e:13:86:e1:b8:58:42:ba:98:e1:1c:af:4a: 7b:4f:66:ea:ea:c4:06:68:8f:b7:c4:06:9d:29:f2: b8:ec:c1:4f:68:ba:cb:7a:5b:a7:ad:93:7c:47:95: 04:25:21:2c:44:67:8e:a8:13:77:c6:62:2e:be:f8: 42:23:f2:2f:6a:f4:bd:a7:4e:32:6f:0d:1e:29:ab: ce:db:84:db:76:1a:6d:d6:a1:74:62:0f:41:ea:34: bb:40:97:58:a2:1f:c8:3c:31:f5:f2:f5:5c:ec:94: 1b:cb:80:29:b5:41:17:ed:61:5f:5e:2f:cc:eb:3c: 4d:19:82:40:fe:49:13:74:e4:6d:14:f0:1f:01:78: 61:b2:25:c6:d6:fc:4e:b5:98:14:87:42:c1:38:e7: 9d:20:b1:5b:cd:57:d2:5a:95:80:a2:ed:29:86:b1: 37:0d:6e:2c:a7:3d:53:69:e2:cc:e6:2d:36:3d:36: 34:5d:23:42:53:63:e5:50:18:27:06:c2:1d:83:c9: cd:09:81:9a:58:19:35:e1:a7:3e:c3:29:48:ef:b3: aa:73:34:16:f9:47:26:b4:ea:a2:3f:c7:b2:e6:eb: 23:b7:3f:b3:e9:5d:22:2a:97:ee:f9:8d:e4:38:f5: cd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:5A:70:F8:03:E8:E8:BF:A4:9A:35:24:AB:38:04:8B:7E:D8:24:F3 X509v3 Authority Key Identifier: keyid:97:96:93:4C:E9:83:E3:2F:E1:6A:C8:EC:09:68:FB:6F:F0:33:97:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/9796934CE983E32FE16AC8EC0968FB6FF0339712.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9796934CE983E32FE16AC8EC0968FB6FF0339712.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/9796934CE983E32FE16AC8EC0968FB6FF0339712.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:cb:52:1f:aa:b9:cf:a7:0a:95:ac:7a:0a:87:f0:e7:ee:f2: 6f:d3:2e:2f:37:3b:da:f6:76:58:7f:ef:ed:52:7c:2e:b1:d7: 43:ff:ab:0c:e7:f1:d6:94:d4:76:97:ba:a5:28:20:9d:c1:c4: a1:24:c3:de:8b:42:90:98:6c:2d:21:69:e6:62:a0:ba:61:27: 31:50:a0:11:53:80:00:67:cb:2c:4f:fc:d0:b4:20:d0:47:70: fc:f5:63:a3:c2:d7:f8:c0:11:9c:89:b8:55:5c:59:c8:b8:38: 2a:19:1e:6e:27:4d:ab:73:ac:4f:fa:a2:8d:d7:c1:0a:df:8f: 26:18:52:10:0f:1e:05:de:5a:6c:de:1e:13:d6:7b:1d:1b:7d: 39:7a:b1:4c:5a:eb:7e:6b:c0:30:09:74:85:a7:5f:21:7f:e8: ea:6b:c8:43:61:27:66:0d:d6:68:8f:44:c0:1b:8a:f5:9c:c9: 26:5e:ce:f2:3c:bd:3f:64:44:9c:34:99:35:6a:6f:f3:60:13: e0:50:c4:8c:67:7f:98:54:59:ea:5b:83:e8:68:49:db:9a:e8: 27:89:3e:5c:eb:fc:3b:45:7a:b1:6e:50:8d:b7:fd:71:c5:1a: c5:ee:cc:2f:b8:fe:81:41:50:0d:de:69:bc:4b:2a:49:6b:63: 44:49:9f:4f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSDHjLyXlf3lrvEh8OiNw79bkaQMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTc5NjkzNENFOTgzRTMyRkUxNkFDOEVDMDk2OEZCNkZG MDMzOTcxMjAeFw0yNjA2MDMwMDAwMDBaFw0yNjA2MDQwMzI0MDBaMDMxMTAvBgNV BAMTKDNENUE3MEY4MDNFOEU4QkZBNDlBMzUyNEFCMzgwNDhCN0VEODI0RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCX3UdRR/bOHyWeb5TXSD98jhOG 4bhYQrqY4RyvSntPZurqxAZoj7fEBp0p8rjswU9oust6W6etk3xHlQQlISxEZ46o E3fGYi6++EIj8i9q9L2nTjJvDR4pq87bhNt2Gm3WoXRiD0HqNLtAl1iiH8g8MfXy 9VzslBvLgCm1QRftYV9eL8zrPE0ZgkD+SRN05G0U8B8BeGGyJcbW/E61mBSHQsE4 550gsVvNV9JalYCi7SmGsTcNbiynPVNp4szmLTY9NjRdI0JTY+VQGCcGwh2Dyc0J gZpYGTXhpz7DKUjvs6pzNBb5Rya06qI/x7Lm6yO3P7PpXSIql+75jeQ49c3vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPVpw+APo6L+kmjUkqzgEi37YJPMwHwYDVR0j BBgwFoAUl5aTTOmD4y/hasjsCWj7b/AzlxIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YTE2MzNiOGUtMGRmOS00NGFjLTljYWUtZDZmNjc2NWE1MmM5LzAvOTc5NjkzNENF OTgzRTMyRkUxNkFDOEVDMDk2OEZCNkZGMDMzOTcxMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85Nzk2OTM0Q0U5ODNFMzJGRTE2QUM4RUMwOTY4RkI2RkYwMzM5 NzEyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvOTc5NjkzNENFOTgzRTMyRkUxNkFDOEVDMDk2OEZC NkZGMDMzOTcxMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADHLUh+quc+nCpWsegqH8Ofu8m/TLi83O9r2 dlh/7+1SfC6x10P/qwzn8daU1HaXuqUoIJ3BxKEkw96LQpCYbC0haeZioLphJzFQ oBFTgABnyyxP/NC0INBHcPz1Y6PC1/jAEZyJuFVcWci4OCoZHm4nTatzrE/6oo3X wQrfjyYYUhAPHgXeWmzeHhPWex0bfTl6sUxa635rwDAJdIWnXyF/6OpryENhJ2YN 1miPRMAbivWcySZezvI8vT9kRJw0mTVqb/NgE+BQxIxnf5hUWepbg+hoSdua6CeJ Plzr/DtFerFuUI23/XHFGsXuzC+4/oFBUA3eabxLKklrY0RJn08= -----END CERTIFICATE-----Generated at Wed Jun 3 03:46:33 2026 by rpki-client