$ rpki-client -vvf rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.mft File: 8DD710534DF68AAB08361EE28306B8FDEE71D144.mft (raw, json) Hash identifier: HQfAzg/PRQoqfGTvkMFjE5vQNPXjPQde0klFJs2R7L0= Subject key identifier: 23:7F:F6:2B:02:AC:B4:E8:E8:7E:F2:1C:33:E5:85:81:EB:F6:15:D7 Authority key identifier: 8D:D7:10:53:4D:F6:8A:AB:08:36:1E:E2:83:06:B8:FD:EE:71:D1:44 Certificate issuer: /CN=8DD710534DF68AAB08361EE28306B8FDEE71D144 Certificate serial: 402D592C1F2E46C46C6185CEBB32E5441D7DE555 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8DD710534DF68AAB08361EE28306B8FDEE71D144.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 14:43:03 +0000 Manifest this update: Tue 02 Jun 2026 14:38:03 +0000 Manifest next update: Wed 03 Jun 2026 14:44:03 +0000 Files and hashes: 1: 3130332e3135382e3130322e302f32342d3234203d3e20313431313239.roa (hash: OzarGbzrKygn581G2dCLdzA7C4q7lKqki8T+O4VVozc=) 2: 8DD710534DF68AAB08361EE28306B8FDEE71D144.crl (hash: A8l07XjS9m1/TAI2yI4YZ6IelQFq5xHa1CPnY9CB8ZI=) 3: 3130332e3135382e3130332e302f32342d3234203d3e203435333137.roa (hash: mt9y4ArG2gRgvhKLs+xygsf6wYJsNzK3vkSOg2Yasms=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.crl rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8DD710534DF68AAB08361EE28306B8FDEE71D144.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 14:44:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:2d:59:2c:1f:2e:46:c4:6c:61:85:ce:bb:32:e5:44:1d:7d:e5:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8DD710534DF68AAB08361EE28306B8FDEE71D144 Validity Not Before: Jun 2 14:38:03 2026 GMT Not After : Jun 3 14:44:03 2026 GMT Subject: CN=237FF62B02ACB4E8E87EF21C33E58581EBF615D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e9:ec:aa:62:51:60:71:39:25:0b:6f:7d:cb: 8f:ea:8d:b6:f6:f6:07:f2:ed:20:3c:e7:73:b6:a6: 18:41:76:8c:47:4c:06:b7:1d:25:02:ab:db:ca:22: 4a:dc:fb:50:b4:64:81:4a:02:58:a7:07:54:d9:35: a8:97:9c:e9:92:db:79:b9:3d:57:a5:80:78:b2:86: 8f:7d:31:90:1d:52:9d:d5:06:9a:54:3b:e1:28:d2: 3d:28:c6:17:c1:ea:32:6c:3f:fd:12:5a:a0:b3:de: 96:bc:d9:87:53:1f:08:50:e5:f1:a0:26:9d:c3:75: 53:3b:3c:12:c5:71:a6:2b:84:25:8c:ed:42:41:f0: a0:d3:a9:07:98:6e:48:00:38:1c:4d:82:bf:28:d9: 09:89:eb:24:a2:19:8e:84:11:51:ea:70:3b:4c:70: e9:3f:9a:1e:d8:cc:30:f1:4f:52:ee:16:8d:72:fb: 98:0c:5a:5e:c0:1b:b2:e0:f8:8b:5e:ff:e3:51:8f: 4f:9c:9a:b5:00:93:f2:20:71:be:f6:96:8c:ce:5b: cc:6b:b1:32:99:5f:37:3c:d9:94:f5:3b:a8:0d:e3: 55:96:04:a3:71:37:ab:1f:a8:f6:29:5a:fe:c3:5f: 85:5f:c2:eb:f3:25:5c:c7:e5:37:20:b8:79:0b:28: 26:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7F:F6:2B:02:AC:B4:E8:E8:7E:F2:1C:33:E5:85:81:EB:F6:15:D7 X509v3 Authority Key Identifier: keyid:8D:D7:10:53:4D:F6:8A:AB:08:36:1E:E2:83:06:B8:FD:EE:71:D1:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8DD710534DF68AAB08361EE28306B8FDEE71D144.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b724e45b-254b-4feb-bf8e-7bf120912af7/0/8DD710534DF68AAB08361EE28306B8FDEE71D144.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:f3:93:a5:f2:fe:3d:b7:40:ee:b2:8d:2f:51:4b:e2:aa:b1: b8:2a:ad:ac:8d:f3:56:c9:53:1f:ca:bc:64:3a:52:16:38:1b: 7d:02:76:58:81:71:e2:6e:a7:c6:d1:0f:6b:00:f1:e4:75:2e: a4:7e:67:31:9b:a9:51:de:6f:2b:74:d6:fe:85:b9:66:ee:3e: 03:c8:f8:ff:56:1e:3d:45:a7:c8:01:57:54:9f:4d:27:e9:ed: 8a:1e:90:0c:bf:df:ee:3a:4a:79:0a:2b:6f:05:03:51:11:86: 1c:d4:18:c5:38:74:be:f6:b5:7b:bc:ab:95:b1:8c:a8:4e:e9: 85:2c:33:cd:3e:6d:35:49:5c:38:04:2e:eb:6c:4f:07:8e:da: 0d:86:3b:e1:4f:2d:a0:16:36:c0:03:0f:27:95:0e:3c:5d:bd: 9e:f9:36:c8:90:bd:e9:0d:d1:b7:98:79:5b:8d:26:b7:ee:15: cf:14:d4:25:30:ca:38:f4:49:fb:8d:9f:f7:9d:2f:49:ff:48: 33:9d:50:57:f1:f9:69:6f:e3:4b:5d:e7:1a:4f:ea:4c:00:e1: 9e:60:59:f0:cf:36:dd:82:d0:9c:25:59:6e:b9:47:d6:99:0b: ee:e0:a7:80:34:9f:25:e3:1f:b8:45:35:99:98:5c:ac:07:84: 48:84:5e:8f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQC1ZLB8uRsRsYYXOuzLlRB195VUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOERENzEwNTM0REY2OEFBQjA4MzYxRUUyODMwNkI4RkRF RTcxRDE0NDAeFw0yNjA2MDIxNDM4MDNaFw0yNjA2MDMxNDQ0MDNaMDMxMTAvBgNV BAMTKDIzN0ZGNjJCMDJBQ0I0RThFODdFRjIxQzMzRTU4NTgxRUJGNjE1RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC36eyqYlFgcTklC299y4/qjbb2 9gfy7SA853O2phhBdoxHTAa3HSUCq9vKIkrc+1C0ZIFKAlinB1TZNaiXnOmS23m5 PVelgHiyho99MZAdUp3VBppUO+Eo0j0oxhfB6jJsP/0SWqCz3pa82YdTHwhQ5fGg Jp3DdVM7PBLFcaYrhCWM7UJB8KDTqQeYbkgAOBxNgr8o2QmJ6ySiGY6EEVHqcDtM cOk/mh7YzDDxT1LuFo1y+5gMWl7AG7Lg+Ite/+NRj0+cmrUAk/Igcb72lozOW8xr sTKZXzc82ZT1O6gN41WWBKNxN6sfqPYpWv7DX4VfwuvzJVzH5TcguHkLKCZHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUI3/2KwKstOjofvIcM+WFgev2FdcwHwYDVR0j BBgwFoAUjdcQU032iqsINh7igwa4/e5x0UQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjcyNGU0NWItMjU0Yi00ZmViLWJmOGUtN2JmMTIwOTEyYWY3LzAvOERENzEwNTM0 REY2OEFBQjA4MzYxRUUyODMwNkI4RkRFRTcxRDE0NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84REQ3MTA1MzRERjY4QUFCMDgzNjFFRTI4MzA2QjhGREVFNzFE MTQ0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjcyNGU0NWItMjU0Yi00ZmViLWJm OGUtN2JmMTIwOTEyYWY3LzAvOERENzEwNTM0REY2OEFBQjA4MzYxRUUyODMwNkI4 RkRFRTcxRDE0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACjzk6Xy/j23QO6yjS9RS+KqsbgqrayN81bJ Ux/KvGQ6UhY4G30CdliBceJup8bRD2sA8eR1LqR+ZzGbqVHebyt01v6FuWbuPgPI +P9WHj1Fp8gBV1SfTSfp7YoekAy/3+46SnkKK28FA1ERhhzUGMU4dL72tXu8q5Wx jKhO6YUsM80+bTVJXDgELutsTweO2g2GO+FPLaAWNsADDyeVDjxdvZ75NsiQvekN 0beYeVuNJrfuFc8U1CUwyjj0SfuNn/edL0n/SDOdUFfx+Wlv40td5xpP6kwA4Z5g WfDPNt2C0JwlWW65R9aZC+7gp4A0nyXjH7hFNZmYXKwHhEiEXo8= -----END CERTIFICATE-----Generated at Wed Jun 3 04:26:13 2026 by rpki-client