$ rpki-client -vvf rpki-rsync.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/202AE8066C06A8D8247209E512833DDA85B77BB8.mft File: 202AE8066C06A8D8247209E512833DDA85B77BB8.mft (raw, json) Hash identifier: 9Ve8SPfEmMHvdDJX4W79sKtsJSJsfSLlIMCi+Wu1WHU= Subject key identifier: 7B:F2:EF:86:A0:94:BE:99:AA:ED:ED:F1:BF:E7:97:BA:BD:73:A6:2D Authority key identifier: 20:2A:E8:06:6C:06:A8:D8:24:72:09:E5:12:83:3D:DA:85:B7:7B:B8 Certificate issuer: /CN=202AE8066C06A8D8247209E512833DDA85B77BB8 Certificate serial: 09D847E8CE32D52EF523E4545E4DDA329EE1AAA7 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202AE8066C06A8D8247209E512833DDA85B77BB8.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/202AE8066C06A8D8247209E512833DDA85B77BB8.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 16:04:23 +0000 Manifest this update: Tue 02 Jun 2026 15:59:23 +0000 Manifest next update: Wed 03 Jun 2026 18:01:23 +0000 Files and hashes: 1: 3130332e31392e3232392e302f32342d3234203d3e20313332363638.roa (hash: cqtnc1i5sl/i5SSZ+1p5ccjOtXsU77bjgEVzGiDIIzQ=) 2: 3130332e31392e3233302e302f32342d3234203d3e20313332363638.roa (hash: 7tCfrY+RtB6+WkTyes1RDW6n/IACRq2QGZK0+NvNBQg=) 3: 202AE8066C06A8D8247209E512833DDA85B77BB8.crl (hash: fYqq9iYQIc7qwqZn3hjUo8dObglCN6Izwn7dc6r6+/w=) 4: 3130332e31392e3232382e302f32342d3234203d3e20313332363638.roa (hash: VqpFZFZX8l9YzsFUEW1KN7wbhAWqil6y6lntU3UefIg=) 5: 3130332e31392e3233312e302f32342d3234203d3e20313332363638.roa (hash: Lfhcsuq0sTwRRhPKyKhPGs2CL51mhkSyNfRDvbtgTl8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/202AE8066C06A8D8247209E512833DDA85B77BB8.crl rsync://rpki-rsync.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/202AE8066C06A8D8247209E512833DDA85B77BB8.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202AE8066C06A8D8247209E512833DDA85B77BB8.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:d8:47:e8:ce:32:d5:2e:f5:23:e4:54:5e:4d:da:32:9e:e1:aa:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=202AE8066C06A8D8247209E512833DDA85B77BB8 Validity Not Before: Jun 2 15:59:23 2026 GMT Not After : Jun 3 18:01:23 2026 GMT Subject: CN=7BF2EF86A094BE99AAEDEDF1BFE797BABD73A62D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:40:73:7c:dd:84:2a:8b:08:1a:5e:f4:24:76: 28:3f:37:b8:47:bc:d1:16:62:6a:4e:d4:db:75:07: a3:df:5c:ae:d0:b0:36:7f:64:3e:a3:25:d6:e4:d5: af:44:cf:01:fd:08:bb:6a:fb:71:85:90:4e:f6:8d: 0f:d8:03:e4:a2:45:2e:4c:64:d6:6c:1b:9e:49:01: d6:94:4d:0c:e9:a4:a8:67:85:1a:fb:3f:8a:0f:e5: 93:0f:9b:d6:06:b2:59:c3:e1:be:ca:72:53:2d:31: 11:94:d1:b8:59:89:16:1a:5e:61:ba:16:9f:3a:1a: e9:b5:66:20:9e:d8:1b:90:2d:a3:81:5d:19:ce:a0: 8a:d0:30:fa:b1:80:a6:54:3c:75:77:9b:bc:19:a6: f9:fd:7d:09:1e:c3:2d:b5:d2:f1:54:5c:9a:3b:11: 6d:47:49:88:53:9a:5e:d2:7a:92:c8:3b:1a:11:68: 2f:f5:90:49:0b:bf:86:d4:7f:39:74:0b:63:5b:1f: 1a:85:3d:07:ff:8f:0a:a3:c3:17:cb:10:8d:33:61: 42:0d:7f:d7:d5:a1:f1:2f:61:7c:d9:de:f0:2e:cf: 58:e0:0d:b0:af:d5:93:f9:a3:54:d3:15:d3:6e:b9: 20:5d:d3:9d:cd:e7:a4:b1:23:f9:41:5e:b6:4c:40: f0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:F2:EF:86:A0:94:BE:99:AA:ED:ED:F1:BF:E7:97:BA:BD:73:A6:2D X509v3 Authority Key Identifier: keyid:20:2A:E8:06:6C:06:A8:D8:24:72:09:E5:12:83:3D:DA:85:B7:7B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/202AE8066C06A8D8247209E512833DDA85B77BB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/202AE8066C06A8D8247209E512833DDA85B77BB8.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d2f1417a-5718-4071-9f35-c122555dac7a/0/202AE8066C06A8D8247209E512833DDA85B77BB8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:8c:50:b3:32:77:8f:24:7a:ef:33:9b:90:d7:86:4c:56:75: 31:f8:69:49:c0:ee:b9:51:04:72:5f:74:82:3d:e1:b7:23:c3: d4:74:07:c4:74:9f:89:a3:5c:87:dc:bd:07:e2:95:e5:92:1c: bf:fc:6b:dc:72:f7:bc:7c:8f:30:b6:b6:9c:ba:7a:1f:ad:3d: 0f:b8:c3:7b:16:6e:40:3d:65:c7:e0:9e:53:fc:20:97:61:e9: e0:56:dd:55:86:4c:88:20:f1:0e:fb:e3:e4:a3:a1:6c:f8:02: 98:e8:f0:0c:10:79:21:4b:56:53:9b:e0:5b:c5:40:6c:a6:a7: b9:92:82:a0:be:e6:e1:eb:a6:40:a7:fb:c5:7f:35:c2:fd:5b: f2:fa:90:58:47:d1:79:d5:64:9f:5e:71:d3:56:7d:03:99:1c: 43:51:c0:59:3d:2a:d5:5d:f5:74:9c:f5:cd:95:c5:e7:31:d8: e0:f4:2a:ea:d6:d3:d5:68:71:05:f3:b8:89:b5:23:9e:2d:c8: 0c:c0:dc:80:d3:be:51:a2:ee:83:a3:ff:9c:ea:11:9f:9c:cb: 3f:37:05:ef:75:2e:69:a2:bd:be:b6:f6:54:65:00:ac:2b:f9: ed:87:18:c9:25:e6:7e:51:9e:7d:b3:91:3e:03:2b:80:bc:29: a4:fe:9e:13 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCdhH6M4y1S71I+RUXk3aMp7hqqcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjAyQUU4MDY2QzA2QThEODI0NzIwOUU1MTI4MzNEREE4 NUI3N0JCODAeFw0yNjA2MDIxNTU5MjNaFw0yNjA2MDMxODAxMjNaMDMxMTAvBgNV BAMTKDdCRjJFRjg2QTA5NEJFOTlBQUVERURGMUJGRTc5N0JBQkQ3M0E2MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJQHN83YQqiwgaXvQkdig/N7hH vNEWYmpO1Nt1B6PfXK7QsDZ/ZD6jJdbk1a9EzwH9CLtq+3GFkE72jQ/YA+SiRS5M ZNZsG55JAdaUTQzppKhnhRr7P4oP5ZMPm9YGslnD4b7KclMtMRGU0bhZiRYaXmG6 Fp86Gum1ZiCe2BuQLaOBXRnOoIrQMPqxgKZUPHV3m7wZpvn9fQkewy210vFUXJo7 EW1HSYhTml7SepLIOxoRaC/1kEkLv4bUfzl0C2NbHxqFPQf/jwqjwxfLEI0zYUIN f9fVofEvYXzZ3vAuz1jgDbCv1ZP5o1TTFdNuuSBd053N56SxI/lBXrZMQPAJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUe/LvhqCUvpmq7e3xv+eXur1zpi0wHwYDVR0j BBgwFoAUICroBmwGqNgkcgnlEoM92oW3e7gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDJmMTQxN2EtNTcxOC00MDcxLTlmMzUtYzEyMjU1NWRhYzdhLzAvMjAyQUU4MDY2 QzA2QThEODI0NzIwOUU1MTI4MzNEREE4NUI3N0JCOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMDJBRTgwNjZDMDZBOEQ4MjQ3MjA5RTUxMjgzM0REQTg1Qjc3 QkI4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDJmMTQxN2EtNTcxOC00MDcxLTlm MzUtYzEyMjU1NWRhYzdhLzAvMjAyQUU4MDY2QzA2QThEODI0NzIwOUU1MTI4MzNE REE4NUI3N0JCOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABuMULMyd48keu8zm5DXhkxWdTH4aUnA7rlR BHJfdII94bcjw9R0B8R0n4mjXIfcvQfileWSHL/8a9xy97x8jzC2tpy6eh+tPQ+4 w3sWbkA9ZcfgnlP8IJdh6eBW3VWGTIgg8Q774+SjoWz4Apjo8AwQeSFLVlOb4FvF QGymp7mSgqC+5uHrpkCn+8V/NcL9W/L6kFhH0XnVZJ9ecdNWfQOZHENRwFk9KtVd 9XSc9c2Vxecx2OD0KurW09VocQXzuIm1I54tyAzA3IDTvlGi7oOj/5zqEZ+cyz83 Be91Lmmivb629lRlAKwr+e2HGMkl5n5Rnn2zkT4DK4C8KaT+nhM= -----END CERTIFICATE-----Generated at Wed Jun 3 04:11:57 2026 by rpki-client