$ rpki-client -vvf rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.mft File: B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.mft (raw, json) Hash identifier: HDbfmaeuNXJbmAXYRPKBhEna6KNOho/y4q7mMB89wLY= Subject key identifier: 64:D4:90:E4:3D:9E:07:67:CD:E8:C9:6E:04:6A:0B:8C:12:D4:D7:61 Authority key identifier: B0:B8:CD:CE:E7:42:6D:03:10:20:BE:C1:EA:D2:33:7C:B5:1D:A7:18 Certificate issuer: /CN=B0B8CDCEE7426D031020BEC1EAD2337CB51DA718 Certificate serial: 41441C8AF7B4ACC5E0C80EC07813E2E6ABA99149 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.mft Manifest number: 2C Signing time: Tue 02 Jun 2026 18:32:27 +0000 Manifest this update: Tue 02 Jun 2026 18:27:27 +0000 Manifest next update: Wed 03 Jun 2026 19:28:27 +0000 Files and hashes: 1: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (hash: 6QK6aAC3OH45PZDy0os84YcWYINTJWbPpMpi72u5POI=) 2: B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.crl (hash: Bkw9l7LPkNRUF8Urb/Yoitss34MAD1Ul+8IfMEJD3Fk=) 3: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (hash: AMAK0g33Kv2aI5QR9+0p9uxKjyyXdje3jg9ykQZ5pUA=) 4: 3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa (hash: fQwW9jEUlabh0L2NvQSOViFURIlDH59x+g1CS1ccauI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.crl rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:44:1c:8a:f7:b4:ac:c5:e0:c8:0e:c0:78:13:e2:e6:ab:a9:91:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B0B8CDCEE7426D031020BEC1EAD2337CB51DA718 Validity Not Before: Jun 2 18:27:27 2026 GMT Not After : Jun 3 19:28:27 2026 GMT Subject: CN=64D490E43D9E0767CDE8C96E046A0B8C12D4D761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d0:78:f8:81:cd:cf:dd:41:48:3a:d2:42:81: 27:97:a9:55:3a:71:7b:13:78:50:d1:a9:59:79:c6: 63:3b:67:69:19:fa:7e:79:f0:27:3f:83:95:e9:cf: 4e:a2:f6:a6:2b:27:f0:55:e9:1a:62:58:91:a5:01: 13:01:1a:ab:cc:59:e7:c3:f7:a4:dd:cb:48:d9:97: 2e:c0:45:b3:06:7a:ee:bf:3a:56:14:5a:7b:f7:fd: f4:a0:0b:77:8e:41:c8:5d:42:db:03:e4:f3:90:b5: 59:6f:de:3a:ec:f0:93:38:d6:11:d1:be:d9:3d:e0: 91:05:6d:0b:6e:e9:8a:ed:65:7d:08:81:4b:31:59: 06:be:13:f5:7e:c8:91:c6:7f:69:c8:bc:b5:d1:cc: 84:e0:47:1c:2f:42:eb:87:f5:f8:47:59:0d:24:c4: 0d:e5:e1:e0:06:6e:43:f2:75:12:f7:cb:fc:f9:85: b7:3b:7a:76:79:e2:3f:6d:0f:0c:85:ee:12:e9:fd: c6:b1:83:10:0a:88:10:c0:47:6b:1e:a1:a4:77:16: eb:19:e7:0a:20:38:7c:cd:8e:a9:1d:69:16:50:08: c1:e2:ea:d8:8c:80:0d:8f:c3:6e:19:ef:d0:66:1e: aa:5c:d6:59:ca:e5:36:f3:84:f7:00:e6:c9:d4:6b: fd:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D4:90:E4:3D:9E:07:67:CD:E8:C9:6E:04:6A:0B:8C:12:D4:D7:61 X509v3 Authority Key Identifier: keyid:B0:B8:CD:CE:E7:42:6D:03:10:20:BE:C1:EA:D2:33:7C:B5:1D:A7:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/B0B8CDCEE7426D031020BEC1EAD2337CB51DA718.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:64:19:e1:20:3d:bf:37:d6:63:e3:cb:98:51:a3:78:83:c5: 64:20:ac:89:98:ab:47:a6:54:17:f4:72:c8:10:a4:56:b8:0d: 26:ea:bf:a4:70:48:c9:c4:f1:75:22:a4:0f:26:65:ea:5b:f3: 0b:b1:53:7a:1f:6b:0a:1c:2c:8e:b0:a8:ae:a6:9c:13:d8:64: 95:6d:bb:5e:78:ec:97:c6:b1:0d:f9:36:7c:c7:43:01:23:8a: 4a:14:5b:e8:f3:74:1a:be:31:79:5b:d3:58:4d:ce:5a:49:95: 0b:aa:33:3e:c5:66:5b:26:9e:72:cb:63:f7:bf:07:38:24:53: 1a:37:0f:0c:9f:60:f4:1a:db:b8:c7:51:e7:8b:e7:43:69:e5: 6d:3f:37:88:84:f7:7d:22:fe:ed:8d:62:df:02:8c:f8:5b:7f: 00:8e:36:8e:ab:9b:d1:a3:38:4b:a2:f5:b7:09:69:a1:18:12: 64:c0:c4:33:88:07:b1:e2:36:cf:d6:5d:6c:47:78:15:cc:3d: 0d:c2:ab:3b:8c:81:f3:60:21:34:7e:73:a7:6b:4c:2c:0c:75: 53:ef:dc:a2:96:96:65:63:ef:fd:0b:d5:62:e0:6c:6c:29:85: d8:07:99:fa:18:1c:75:d4:7e:4c:5f:0b:30:8c:6b:d4:89:d2: 93:87:9b:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQUQcive0rMXgyA7AeBPi5qupkUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjBCOENEQ0VFNzQyNkQwMzEwMjBCRUMxRUFEMjMzN0NC NTFEQTcxODAeFw0yNjA2MDIxODI3MjdaFw0yNjA2MDMxOTI4MjdaMDMxMTAvBgNV BAMTKDY0RDQ5MEU0M0Q5RTA3NjdDREU4Qzk2RTA0NkEwQjhDMTJENEQ3NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG0Hj4gc3P3UFIOtJCgSeXqVU6 cXsTeFDRqVl5xmM7Z2kZ+n558Cc/g5Xpz06i9qYrJ/BV6RpiWJGlARMBGqvMWefD 96Tdy0jZly7ARbMGeu6/OlYUWnv3/fSgC3eOQchdQtsD5POQtVlv3jrs8JM41hHR vtk94JEFbQtu6YrtZX0IgUsxWQa+E/V+yJHGf2nIvLXRzITgRxwvQuuH9fhHWQ0k xA3l4eAGbkPydRL3y/z5hbc7enZ54j9tDwyF7hLp/caxgxAKiBDAR2seoaR3FusZ 5wogOHzNjqkdaRZQCMHi6tiMgA2Pw24Z79BmHqpc1lnK5TbzhPcA5snUa/2VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZNSQ5D2eB2fN6MluBGoLjBLU12EwHwYDVR0j BBgwFoAUsLjNzudCbQMQIL7B6tIzfLUdpxgwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YmZjMTdjYzItZjRhMi00MTVlLThlYTItZjljNDdmNzVjNGNhLzAvQjBCOENEQ0VF NzQyNkQwMzEwMjBCRUMxRUFEMjMzN0NCNTFEQTcxOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CMEI4Q0RDRUU3NDI2RDAzMTAyMEJFQzFFQUQyMzM3Q0I1MURB NzE4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYmZjMTdjYzItZjRhMi00MTVlLThl YTItZjljNDdmNzVjNGNhLzAvQjBCOENEQ0VFNzQyNkQwMzEwMjBCRUMxRUFEMjMz N0NCNTFEQTcxOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEZkGeEgPb831mPjy5hRo3iDxWQgrImYq0em VBf0csgQpFa4DSbqv6RwSMnE8XUipA8mZepb8wuxU3ofawocLI6wqK6mnBPYZJVt u1547JfGsQ35NnzHQwEjikoUW+jzdBq+MXlb01hNzlpJlQuqMz7FZlsmnnLLY/e/ BzgkUxo3DwyfYPQa27jHUeeL50Np5W0/N4iE930i/u2NYt8CjPhbfwCONo6rm9Gj OEui9bcJaaEYEmTAxDOIB7HiNs/WXWxHeBXMPQ3CqzuMgfNgITR+c6drTCwMdVPv 3KKWlmVj7/0L1WLgbGwphdgHmfoYHHXUfkxfCzCMa9SJ0pOHmyU= -----END CERTIFICATE-----Generated at Wed Jun 3 03:46:55 2026 by rpki-client