$ rpki-client -vvf rpki-rsync.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.mft File: AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.mft (raw, json) Hash identifier: Tote5ZdzS1XYk4hoePLnu/BU//Ax94QhpIknIWItq/k= Subject key identifier: 25:D5:D2:21:CD:1D:28:F3:51:57:50:73:88:DA:A9:23:D3:A1:BE:BA Authority key identifier: AF:3C:82:08:58:C3:FE:5A:6E:6C:57:E8:43:E1:CF:D0:1A:45:F2:0A Certificate issuer: /CN=AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A Certificate serial: 6F2A6A24C623FD1DC7DE536E0B80106F0F5EAFFA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 14:32:49 +0000 Manifest this update: Tue 02 Jun 2026 14:27:49 +0000 Manifest next update: Wed 03 Jun 2026 16:37:49 +0000 Files and hashes: 1: 3130332e37382e3139352e302f32342d3234203d3e203634333033.roa (hash: yrLvhSGItcv2/8/qx9t+UKr0DTpSKLWTcCZshoqb+Zo=) 2: AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.crl (hash: zpFMSbqnpe6ivHDd0l18Z5XUsIjW79Hwe7rTzXE4W8Q=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.crl rsync://rpki-rsync.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 16:37:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:2a:6a:24:c6:23:fd:1d:c7:de:53:6e:0b:80:10:6f:0f:5e:af:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A Validity Not Before: Jun 2 14:27:49 2026 GMT Not After : Jun 3 16:37:49 2026 GMT Subject: CN=25D5D221CD1D28F35157507388DAA923D3A1BEBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b9:5b:41:df:c1:c7:92:a3:0c:c2:bf:1c:c8: 7a:00:6f:b0:3b:4c:0b:a0:3d:2b:86:f3:46:3c:49: 41:9d:8c:e9:8e:72:75:6a:9c:94:06:45:02:a6:2c: f0:8c:ad:83:ed:7f:7c:7b:1b:8b:75:3c:7d:51:60: 3a:76:95:eb:ad:dc:3e:8c:af:5d:55:a1:eb:17:17: 44:96:aa:4e:a1:e2:d2:38:ac:85:d7:80:e0:bb:f2: 69:e1:a4:de:de:d9:1a:10:e7:c5:14:4b:8e:0a:a6: b1:6e:6e:81:eb:09:3e:e5:f3:da:c4:ab:99:13:f9: ea:cc:55:25:50:11:66:7f:7d:3e:c8:6d:df:e7:55: 7f:e5:b8:09:e8:4f:f3:75:74:02:ea:1c:cc:53:5d: 9e:97:83:19:f2:82:92:00:b6:4e:86:9d:5f:4e:f8: e1:32:81:7b:60:d6:3b:28:49:98:34:04:9e:ca:ba: 6d:53:13:d7:8c:06:52:e4:31:2d:8e:c0:ce:7b:7d: e2:62:14:58:33:9a:0b:af:61:9f:12:6f:7b:5a:e2: 30:0f:d3:ed:6a:c3:ae:9c:3f:e6:3c:5b:b9:3b:6d: 9d:95:46:61:53:92:af:ce:0a:f0:1b:a3:c4:97:0d: 4d:d1:2b:b3:63:97:bf:1b:d2:0e:84:67:b5:51:a3: c6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D5:D2:21:CD:1D:28:F3:51:57:50:73:88:DA:A9:23:D3:A1:BE:BA X509v3 Authority Key Identifier: keyid:AF:3C:82:08:58:C3:FE:5A:6E:6C:57:E8:43:E1:CF:D0:1A:45:F2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ac6b5abc-2c54-4c5f-b3f8-3346f19e6cc8/0/AF3C820858C3FE5A6E6C57E843E1CFD01A45F20A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ea:91:5e:6b:73:de:0e:84:66:ab:21:47:40:65:01:b8:71: a1:ab:86:c9:bb:18:9d:8d:61:f3:cf:73:0b:e1:15:5d:5e:08: 19:2a:b7:a7:52:37:e4:4e:f5:8d:41:f1:af:2f:03:d4:41:69: 98:a8:d0:53:73:4c:16:9e:1b:ab:c6:07:73:3c:67:d0:fb:74: 95:5a:fc:2d:a8:d4:a5:a9:c6:13:1b:e5:a7:0e:0c:0e:d1:99: bf:6c:f5:48:81:f9:80:22:23:45:20:02:19:44:17:7e:99:bf: 79:3a:b1:f4:3f:1a:b0:31:3c:7a:ff:03:b6:0e:b9:42:b3:c7: 44:1b:f1:a3:b9:b9:be:bd:5e:6a:74:d3:02:30:be:7f:e7:44: eb:38:1f:eb:06:26:06:b7:3d:fc:de:26:5c:01:fb:17:ba:83: fd:2b:8f:43:72:6b:2c:1e:eb:16:a1:24:c4:ca:4b:91:88:f3: 19:b3:19:bc:7e:77:f5:c3:1a:88:27:ea:15:6b:00:47:8b:7a: 29:e6:78:ec:e4:70:87:36:49:cf:b9:16:37:14:ab:69:61:10: cf:e5:cc:5e:71:dd:44:3c:25:18:3f:91:64:b0:45:6f:53:89: 47:b8:48:18:c8:71:33:40:71:80:5e:b9:f6:8f:31:77:2e:96: 62:0b:ed:30 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbypqJMYj/R3H3lNuC4AQbw9er/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUYzQzgyMDg1OEMzRkU1QTZFNkM1N0U4NDNFMUNGRDAx QTQ1RjIwQTAeFw0yNjA2MDIxNDI3NDlaFw0yNjA2MDMxNjM3NDlaMDMxMTAvBgNV BAMTKDI1RDVEMjIxQ0QxRDI4RjM1MTU3NTA3Mzg4REFBOTIzRDNBMUJFQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxuVtB38HHkqMMwr8cyHoAb7A7 TAugPSuG80Y8SUGdjOmOcnVqnJQGRQKmLPCMrYPtf3x7G4t1PH1RYDp2leut3D6M r11VoesXF0SWqk6h4tI4rIXXgOC78mnhpN7e2RoQ58UUS44KprFuboHrCT7l89rE q5kT+erMVSVQEWZ/fT7Ibd/nVX/luAnoT/N1dALqHMxTXZ6XgxnygpIAtk6GnV9O +OEygXtg1jsoSZg0BJ7Kum1TE9eMBlLkMS2OwM57feJiFFgzmguvYZ8Sb3ta4jAP 0+1qw66cP+Y8W7k7bZ2VRmFTkq/OCvAbo8SXDU3RK7Njl78b0g6EZ7VRo8ZXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJdXSIc0dKPNRV1BziNqpI9OhvrowHwYDVR0j BBgwFoAUrzyCCFjD/lpubFfoQ+HP0BpF8gowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWM2YjVhYmMtMmM1NC00YzVmLWIzZjgtMzM0NmYxOWU2Y2M4LzAvQUYzQzgyMDg1 OEMzRkU1QTZFNkM1N0U4NDNFMUNGRDAxQTQ1RjIwQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BRjNDODIwODU4QzNGRTVBNkU2QzU3RTg0M0UxQ0ZEMDFBNDVG MjBBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWM2YjVhYmMtMmM1NC00YzVmLWIz ZjgtMzM0NmYxOWU2Y2M4LzAvQUYzQzgyMDg1OEMzRkU1QTZFNkM1N0U4NDNFMUNG RDAxQTQ1RjIwQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI7qkV5rc94OhGarIUdAZQG4caGrhsm7GJ2N YfPPcwvhFV1eCBkqt6dSN+RO9Y1B8a8vA9RBaZio0FNzTBaeG6vGB3M8Z9D7dJVa /C2o1KWpxhMb5acODA7Rmb9s9UiB+YAiI0UgAhlEF36Zv3k6sfQ/GrAxPHr/A7YO uUKzx0Qb8aO5ub69Xmp00wIwvn/nROs4H+sGJga3PfzeJlwB+xe6g/0rj0Nyaywe 6xahJMTKS5GI8xmzGbx+d/XDGogn6hVrAEeLeinmeOzkcIc2Sc+5FjcUq2lhEM/l zF5x3UQ8JRg/kWSwRW9TiUe4SBjIcTNAcYBeufaPMXculmIL7TA= -----END CERTIFICATE-----Generated at Wed Jun 3 04:15:56 2026 by rpki-client