$ rpki-client -vvf rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft File: 228D8D937BBC58B186163CE4DD0333EF171136B5.mft (raw, json) Hash identifier: /jTbaVQq1Ey1G2+LXU0hqAWAVh5i43XSDGxf5rYQ5+g= Subject key identifier: 06:88:4F:2E:00:EF:B5:2D:26:C7:9B:6C:0B:55:D9:E2:F9:58:F6:08 Authority key identifier: 22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 Certificate issuer: /CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Certificate serial: 5F5265448546B82D7A5028E567D32AAF0F83F358 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 22:43:27 +0000 Manifest this update: Tue 02 Jun 2026 22:38:27 +0000 Manifest next update: Thu 04 Jun 2026 01:16:27 +0000 Files and hashes: 1: 34352e3234392e3232342e302f32332d3233203d3e20313532303237.roa (hash: JM/02KXvppUFA6M2lfoMyS0PaD1KXTG0P2tE2Kswrq4=) 2: 228D8D937BBC58B186163CE4DD0333EF171136B5.crl (hash: u7RU9OVj7qtcwKWWHK8hit8o7I12EgZmVUntfTy8vP4=) 3: 34352e3234392e3232352e302f32342d3234203d3e20313532303237.roa (hash: MTpdy0CYG7SIZe6cOf6a6b9EOLMRkXO/tTUBIEJ2xwQ=) 4: 34352e3234392e3232342e302f32342d3234203d3e20313532303237.roa (hash: Dk+nSXFZDNacuokslAhQOKnR2rRHLun2ihG3BWOPCgU=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.crl rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:52:65:44:85:46:b8:2d:7a:50:28:e5:67:d3:2a:af:0f:83:f3:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228D8D937BBC58B186163CE4DD0333EF171136B5 Validity Not Before: Jun 2 22:38:27 2026 GMT Not After : Jun 4 01:16:27 2026 GMT Subject: CN=06884F2E00EFB52D26C79B6C0B55D9E2F958F608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ff:c3:d8:33:c5:f3:af:34:18:b6:c2:95:ce: 11:27:77:76:8b:6d:94:8a:99:2b:1a:20:b2:ed:33: 35:30:0e:f0:f0:f3:19:26:ca:bb:a3:ba:f8:83:a5: 83:36:de:7b:30:7e:81:e7:47:27:a8:dd:6b:03:9c: ce:29:ac:10:45:54:fc:de:17:1b:5c:b9:bc:17:f1: 59:4a:23:43:74:50:34:c3:23:57:c6:d7:d8:12:ac: 20:be:b2:60:8a:f4:43:98:71:f9:7d:4f:63:ff:b4: e3:77:8b:85:ec:a9:6f:01:62:7e:25:e1:7a:05:9f: 51:c3:ce:1e:34:ee:c2:3c:d1:8b:10:8a:40:ef:18: dc:b2:d8:35:b2:7b:91:36:9c:5a:56:a0:f9:3a:7d: 04:2e:97:66:61:52:ff:c9:77:3d:63:52:98:48:99: fb:9a:59:c5:de:4c:eb:25:cd:40:ef:5d:70:32:9e: 66:73:66:70:6a:86:9a:7d:ae:5c:2e:9d:03:20:5e: f2:4f:a4:a2:d8:f3:17:5d:ca:d7:28:8a:0d:fb:9c: 47:02:e9:a7:81:c2:43:20:dc:07:2c:8a:4b:9f:84: 5f:18:94:b9:b8:61:18:91:0f:66:d3:69:5d:fe:7e: ff:68:57:f9:5d:4d:25:18:31:a1:b4:b0:7e:93:5d: 23:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:88:4F:2E:00:EF:B5:2D:26:C7:9B:6C:0B:55:D9:E2:F9:58:F6:08 X509v3 Authority Key Identifier: keyid:22:8D:8D:93:7B:BC:58:B1:86:16:3C:E4:DD:03:33:EF:17:11:36:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/228D8D937BBC58B186163CE4DD0333EF171136B5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d9b899ac-4870-4e28-8e4e-2c23752a4a60/0/228D8D937BBC58B186163CE4DD0333EF171136B5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:7d:5c:e1:77:61:23:5e:e7:7e:90:ab:7b:b8:d1:1c:68:ab: a1:cb:79:88:1c:65:74:c9:96:d2:44:11:5f:4a:74:8d:5b:04: bc:db:f1:54:a1:fc:8d:f4:7f:95:87:59:f6:eb:da:ca:96:2d: 0c:6c:d6:ed:1f:e3:d3:43:e4:74:cb:6a:da:99:b4:80:7d:84: 48:13:3a:89:58:36:77:4c:5c:ba:c4:78:0c:70:b7:70:d6:b3: 09:2e:26:90:3d:e1:43:a2:ad:40:6c:98:f9:19:5b:4e:d4:86: 9e:6a:e9:21:4b:1b:7b:1d:7e:22:85:2a:b6:ce:27:4e:4c:51: 9e:f7:a1:d9:4f:e6:28:d3:fb:7b:3a:2e:92:87:56:cb:05:c0: ce:0b:b7:4e:74:a9:a8:3b:29:39:1c:79:d4:07:83:b8:5f:dd: 58:fa:63:89:97:73:26:9e:2e:44:f6:29:d5:61:0f:34:46:65: bd:25:50:ef:59:8e:ee:ec:4c:04:ba:b0:4b:02:aa:da:a2:d8: 06:cb:96:fb:e9:92:9a:eb:4d:16:5b:fe:86:30:3a:c8:d0:fb: ea:a0:11:7a:3f:fc:78:f1:e8:fd:90:db:ee:48:1e:51:54:5f: f3:91:fe:c0:81:65:b5:51:ab:6e:20:6f:92:a1:b6:5d:ed:5f: d6:99:f0:be -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX1JlRIVGuC16UCjlZ9Mqrw+D81gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RDhEOTM3QkJDNThCMTg2MTYzQ0U0REQwMzMzRUYx NzExMzZCNTAeFw0yNjA2MDIyMjM4MjdaFw0yNjA2MDQwMTE2MjdaMDMxMTAvBgNV BAMTKDA2ODg0RjJFMDBFRkI1MkQyNkM3OUI2QzBCNTVEOUUyRjk1OEY2MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA/8PYM8XzrzQYtsKVzhEnd3aL bZSKmSsaILLtMzUwDvDw8xkmyrujuviDpYM23nswfoHnRyeo3WsDnM4prBBFVPze FxtcubwX8VlKI0N0UDTDI1fG19gSrCC+smCK9EOYcfl9T2P/tON3i4XsqW8BYn4l 4XoFn1HDzh407sI80YsQikDvGNyy2DWye5E2nFpWoPk6fQQul2ZhUv/Jdz1jUphI mfuaWcXeTOslzUDvXXAynmZzZnBqhpp9rlwunQMgXvJPpKLY8xddytcoig37nEcC 6aeBwkMg3AcsikufhF8YlLm4YRiRD2bTaV3+fv9oV/ldTSUYMaG0sH6TXSPhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBohPLgDvtS0mx5tsC1XZ4vlY9ggwHwYDVR0j BBgwFoAUIo2Nk3u8WLGGFjzk3QMz7xcRNrUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDliODk5YWMtNDg3MC00ZTI4LThlNGUtMmMyMzc1MmE0YTYwLzAvMjI4RDhEOTM3 QkJDNThCMTg2MTYzQ0U0REQwMzMzRUYxNzExMzZCNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yMjhEOEQ5MzdCQkM1OEIxODYxNjNDRTRERDAzMzNFRjE3MTEz NkI1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDliODk5YWMtNDg3MC00ZTI4LThl NGUtMmMyMzc1MmE0YTYwLzAvMjI4RDhEOTM3QkJDNThCMTg2MTYzQ0U0REQwMzMz RUYxNzExMzZCNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADZ9XOF3YSNe536Qq3u40Rxoq6HLeYgcZXTJ ltJEEV9KdI1bBLzb8VSh/I30f5WHWfbr2sqWLQxs1u0f49ND5HTLatqZtIB9hEgT OolYNndMXLrEeAxwt3DWswkuJpA94UOirUBsmPkZW07Uhp5q6SFLG3sdfiKFKrbO J05MUZ73odlP5ijT+3s6LpKHVssFwM4Lt050qag7KTkcedQHg7hf3Vj6Y4mXcyae LkT2KdVhDzRGZb0lUO9Zju7sTAS6sEsCqtqi2AbLlvvpkprrTRZb/oYwOsjQ++qg EXo//Hjx6P2Q2+5IHlFUX/OR/sCBZbVRq24gb5Khtl3tX9aZ8L4= -----END CERTIFICATE-----Generated at Wed Jun 3 03:38:52 2026 by rpki-client