$ rpki-client -vvf rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.mft File: CA270F1FD051B3CD65DB930972A99335C45615EC.mft (raw, json) Hash identifier: QqiYSOLpZraadKC501pyzc05F+KZfFCJMx/cqaIyqgI= Subject key identifier: D2:42:E3:78:A8:FF:5F:69:BF:13:37:F1:AD:D4:A3:21:9D:15:6A:6B Authority key identifier: CA:27:0F:1F:D0:51:B3:CD:65:DB:93:09:72:A9:93:35:C4:56:15:EC Certificate issuer: /CN=CA270F1FD051B3CD65DB930972A99335C45615EC Certificate serial: 456F504B76610E484ACB6C9288F0AC825F05DCA8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA270F1FD051B3CD65DB930972A99335C45615EC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 12:40:39 +0000 Manifest this update: Tue 02 Jun 2026 12:35:39 +0000 Manifest next update: Wed 03 Jun 2026 13:56:39 +0000 Files and hashes: 1: 3130332e3136322e3135302e302f32342d3234203d3e20313431363536.roa (hash: NkKjSf90ElcdssnMG0/v4I3k9N6YTsqapPAgxV9RP+E=) 2: CA270F1FD051B3CD65DB930972A99335C45615EC.crl (hash: 58hbrb3z91gKFbZPi5NdVDg5WExXwIrwQZRdmEooRDs=) 3: 3130332e3136322e3135312e302f32342d3234203d3e20313431363536.roa (hash: UuwOEqaAvPthTROezeYmcp8tB98baeryTixXf6GL8Aw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.crl rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA270F1FD051B3CD65DB930972A99335C45615EC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:6f:50:4b:76:61:0e:48:4a:cb:6c:92:88:f0:ac:82:5f:05:dc:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA270F1FD051B3CD65DB930972A99335C45615EC Validity Not Before: Jun 2 12:35:39 2026 GMT Not After : Jun 3 13:56:39 2026 GMT Subject: CN=D242E378A8FF5F69BF1337F1ADD4A3219D156A6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:da:b4:a2:23:c0:9a:a6:3b:be:f7:18:ee:bb: 2f:1b:ae:d8:82:39:b1:6b:00:23:8f:ce:e5:52:aa: 6d:19:d0:68:df:73:71:3b:e7:18:e0:31:5d:b0:50: 72:56:6c:11:30:64:90:57:3d:61:e0:0f:ec:ee:fc: 71:1d:9b:aa:93:09:7d:f0:ce:c1:14:c3:11:76:fb: 15:0d:fe:72:c4:aa:f4:6b:51:6b:66:13:13:ca:94: da:3a:2c:59:68:01:a8:d1:ea:bb:a1:04:b8:7e:15: 5f:dd:c6:5f:17:e7:2b:d5:1e:bc:b2:54:2f:5f:f0: c1:8f:61:26:32:91:56:11:1b:b8:36:48:2f:b0:1b: aa:06:c9:ca:0b:43:4c:a5:8e:d1:77:fd:fe:95:3c: c5:1e:6a:00:f3:eb:a8:7c:28:41:67:0a:89:6c:b0: 24:9f:f2:f6:55:36:a0:e3:bd:79:72:e6:98:af:30: af:a5:6a:87:fc:c5:97:2c:b4:20:e3:72:75:86:80: ac:3d:50:09:2d:56:76:fd:2b:9c:a5:93:a8:04:92: 46:94:c7:80:9d:6c:69:43:db:c0:d4:79:ab:a1:7a: 70:f2:38:ab:06:9f:13:33:38:0c:59:66:79:a0:c5: 07:9e:01:7e:6f:72:d9:6b:56:ac:73:50:d8:c1:1c: c9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:42:E3:78:A8:FF:5F:69:BF:13:37:F1:AD:D4:A3:21:9D:15:6A:6B X509v3 Authority Key Identifier: keyid:CA:27:0F:1F:D0:51:B3:CD:65:DB:93:09:72:A9:93:35:C4:56:15:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/CA270F1FD051B3CD65DB930972A99335C45615EC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/CA270F1FD051B3CD65DB930972A99335C45615EC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:1a:a2:c0:3b:8f:c9:a7:42:61:1e:64:65:88:50:5a:7b:7c: 31:da:ae:e4:51:cb:a8:0d:1a:99:bc:2f:36:f9:65:f5:9c:99: 0b:44:74:90:f0:e4:73:3b:36:40:a1:35:bd:1f:06:ae:dd:b5: b5:73:57:98:fd:3b:97:ae:0b:68:aa:2d:25:c7:94:a2:26:69: 81:27:e4:f3:29:55:cf:87:65:e1:10:96:98:46:9e:3a:39:28: 2d:a2:6b:fb:aa:a6:4e:4a:e0:2c:5a:70:47:2d:f6:f9:91:fc: 9d:2a:56:b9:68:48:43:11:53:96:a2:55:90:98:b9:3c:82:23: ea:96:f5:74:09:5c:7c:50:da:9a:f9:4b:1f:08:b0:e3:a9:de: c6:90:fa:d8:60:18:ee:f2:1f:e2:3f:22:eb:fd:fd:b7:f4:9c: 41:ae:44:fa:40:72:03:91:49:4b:3c:d9:06:97:c6:4a:33:c0: 1c:47:41:20:70:a6:92:d5:37:90:43:04:dd:ff:5a:ba:19:74: 8d:a5:46:f5:52:e6:29:a5:e9:ca:ac:f0:f6:0e:68:23:33:30: a8:58:0c:1c:b9:cc:32:f7:72:ac:96:9d:88:9b:0b:8b:d5:1d: 88:4d:13:c9:53:8b:a2:1b:f3:d3:c4:7c:1f:f6:a2:f4:d5:1a: f3:35:a2:41 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURW9QS3ZhDkhKy2ySiPCsgl8F3KgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0EyNzBGMUZEMDUxQjNDRDY1REI5MzA5NzJBOTkzMzVD NDU2MTVFQzAeFw0yNjA2MDIxMjM1MzlaFw0yNjA2MDMxMzU2MzlaMDMxMTAvBgNV BAMTKEQyNDJFMzc4QThGRjVGNjlCRjEzMzdGMUFERDRBMzIxOUQxNTZBNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC72rSiI8Capju+9xjuuy8brtiC ObFrACOPzuVSqm0Z0Gjfc3E75xjgMV2wUHJWbBEwZJBXPWHgD+zu/HEdm6qTCX3w zsEUwxF2+xUN/nLEqvRrUWtmExPKlNo6LFloAajR6ruhBLh+FV/dxl8X5yvVHryy VC9f8MGPYSYykVYRG7g2SC+wG6oGycoLQ0yljtF3/f6VPMUeagDz66h8KEFnCols sCSf8vZVNqDjvXly5pivMK+laof8xZcstCDjcnWGgKw9UAktVnb9K5ylk6gEkkaU x4CdbGlD28DUeauhenDyOKsGnxMzOAxZZnmgxQeeAX5vctlrVqxzUNjBHMlHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0kLjeKj/X2m/EzfxrdSjIZ0VamswHwYDVR0j BBgwFoAUyicPH9BRs81l25MJcqmTNcRWFewwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWVkOWVhMjAtMzQzZC00YWNiLTk1ODEtODFmOWQ3ZWE5MmZlLzAvQ0EyNzBGMUZE MDUxQjNDRDY1REI5MzA5NzJBOTkzMzVDNDU2MTVFQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9DQTI3MEYxRkQwNTFCM0NENjVEQjkzMDk3MkE5OTMzNUM0NTYx NUVDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWVkOWVhMjAtMzQzZC00YWNiLTk1 ODEtODFmOWQ3ZWE5MmZlLzAvQ0EyNzBGMUZEMDUxQjNDRDY1REI5MzA5NzJBOTkz MzVDNDU2MTVFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMIaosA7j8mnQmEeZGWIUFp7fDHaruRRy6gN Gpm8Lzb5ZfWcmQtEdJDw5HM7NkChNb0fBq7dtbVzV5j9O5euC2iqLSXHlKImaYEn 5PMpVc+HZeEQlphGnjo5KC2ia/uqpk5K4CxacEct9vmR/J0qVrloSEMRU5aiVZCY uTyCI+qW9XQJXHxQ2pr5Sx8IsOOp3saQ+thgGO7yH+I/Iuv9/bf0nEGuRPpAcgOR SUs82QaXxkozwBxHQSBwppLVN5BDBN3/WroZdI2lRvVS5iml6cqs8PYOaCMzMKhY DBy5zDL3cqyWnYibC4vVHYhNE8lTi6Ib89PEfB/2ovTVGvM1okE= -----END CERTIFICATE-----Generated at Wed Jun 3 03:46:23 2026 by rpki-client