$ rpki-client -vvf rpki-rsync.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.mft File: 9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.mft (raw, json) Hash identifier: PoOtrhci2DYFCFjdv+z+aaN9ElXNy2lcTPaLVQ1lKmo= Subject key identifier: BA:B6:A4:2A:6A:7C:7F:C8:D2:EF:87:6D:F6:53:65:D0:41:86:A3:A9 Authority key identifier: 9D:72:8C:A3:33:07:36:90:F2:A7:F6:B7:7D:2C:F3:FE:AE:49:AA:B0 Certificate issuer: /CN=9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0 Certificate serial: 3E28BB68AABC77731F90835FFC9885DC7B14F8B1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 10:22:57 +0000 Manifest this update: Tue 02 Jun 2026 10:17:57 +0000 Manifest next update: Wed 03 Jun 2026 10:55:57 +0000 Files and hashes: 1: 3130332e3134372e3131382e302f32332d3234203d3e20313339393632.roa (hash: g3Z9fptq9GjJPdegO4ng7rY8ayX1C1nitJgBmqVwMJ4=) 2: 9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.crl (hash: UFArTY5fAxYCjsiUqS7YH230T5qpUB3vdPRKzSz1Wdk=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.crl rsync://rpki-rsync.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:28:bb:68:aa:bc:77:73:1f:90:83:5f:fc:98:85:dc:7b:14:f8:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0 Validity Not Before: Jun 2 10:17:57 2026 GMT Not After : Jun 3 10:55:57 2026 GMT Subject: CN=BAB6A42A6A7C7FC8D2EF876DF65365D04186A3A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ed:ed:69:33:4e:7c:b5:4a:b4:9b:94:18:69: 77:a7:0d:7d:09:37:6a:45:c1:c7:d9:71:f7:58:53: 0e:8b:75:c6:94:60:f2:d8:44:0e:d3:79:1b:21:92: 23:be:65:b1:19:09:27:00:f8:e6:8e:15:ce:0b:bf: a0:d7:6a:5b:73:37:f2:17:b9:4e:ec:ca:b9:36:04: 55:52:1c:f3:89:16:c4:ff:95:07:a9:bf:6e:9c:92: 28:6f:6e:d8:1f:2a:6a:e6:f4:45:0c:11:c8:3b:ad: fe:f6:19:72:25:bb:5b:66:47:77:4d:e0:c0:73:d1: a8:11:aa:41:ef:1e:45:a7:ab:19:0e:60:a9:91:ea: c3:c3:b1:86:6c:c6:00:3b:ba:7e:49:50:38:7d:3c: 26:ee:17:1b:91:b8:2b:76:8b:63:51:30:d5:be:65: a2:69:25:20:53:e5:ab:ff:ed:17:62:dc:e6:b7:c5: 36:be:f4:9b:b0:38:66:42:1d:a0:fb:b0:6e:71:91: 2d:65:3f:f8:24:a9:29:ab:3a:ae:d6:a0:ae:b9:3a: cc:d8:fe:01:75:e9:92:d2:46:08:f4:d2:36:a5:a8: dd:f2:be:ce:fb:5d:c9:9d:e0:95:92:e8:2b:d0:d5: e9:eb:dc:c9:2e:6d:bf:e8:97:4e:0c:ae:53:5b:0d: 24:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B6:A4:2A:6A:7C:7F:C8:D2:EF:87:6D:F6:53:65:D0:41:86:A3:A9 X509v3 Authority Key Identifier: keyid:9D:72:8C:A3:33:07:36:90:F2:A7:F6:B7:7D:2C:F3:FE:AE:49:AA:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/de5e9131-3abc-4abd-bd92-a755fab91305/0/9D728CA333073690F2A7F6B77D2CF3FEAE49AAB0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bc:f0:c7:89:6f:2c:ff:8b:32:39:58:c8:8c:37:3d:c4:b5: 01:a1:ae:de:35:d1:47:40:a6:73:fe:b9:1f:4c:32:c6:c9:cb: fc:02:80:c3:7f:bb:69:28:c7:59:86:95:f3:75:04:80:d7:60: 48:8f:c1:f8:19:04:3e:0f:5d:38:27:55:3f:ff:6e:44:11:a8: 55:b3:5e:25:b5:24:9f:1f:ed:a7:04:16:78:49:6e:14:7e:27: 5a:aa:c2:0b:ef:b1:0a:14:5a:6c:88:a6:cc:be:ca:46:13:63: 88:17:02:33:0d:3a:38:b8:29:6b:6e:2f:2f:5c:95:1b:06:3e: 4d:0a:0d:c0:95:f9:10:f8:70:18:38:48:22:5c:c9:a9:61:04: b8:d4:61:9c:31:cc:0b:d7:9d:a8:af:1f:0b:5e:09:d9:a3:6d: a7:ee:16:93:0a:9f:fa:e4:1f:13:f3:91:b6:ef:ae:24:5e:dc: 3b:2b:91:85:22:fd:ca:89:a1:97:49:50:65:3f:0c:b2:61:89: 07:8d:1b:38:15:cc:e3:bc:4f:05:98:86:e0:33:dd:a1:db:7f: 41:9b:0a:b4:1c:26:e9:c2:dd:90:8e:25:c1:07:b9:15:38:1e: c2:e4:1f:0d:0f:d5:4d:48:a9:d2:5e:30:32:d3:2f:a0:a7:d8: 31:44:b8:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPii7aKq8d3MfkINf/JiF3HsU+LEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ3MjhDQTMzMzA3MzY5MEYyQTdGNkI3N0QyQ0YzRkVB RTQ5QUFCMDAeFw0yNjA2MDIxMDE3NTdaFw0yNjA2MDMxMDU1NTdaMDMxMTAvBgNV BAMTKEJBQjZBNDJBNkE3QzdGQzhEMkVGODc2REY2NTM2NUQwNDE4NkEzQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu7e1pM058tUq0m5QYaXenDX0J N2pFwcfZcfdYUw6LdcaUYPLYRA7TeRshkiO+ZbEZCScA+OaOFc4Lv6DXaltzN/IX uU7syrk2BFVSHPOJFsT/lQepv26ckihvbtgfKmrm9EUMEcg7rf72GXIlu1tmR3dN 4MBz0agRqkHvHkWnqxkOYKmR6sPDsYZsxgA7un5JUDh9PCbuFxuRuCt2i2NRMNW+ ZaJpJSBT5av/7Rdi3Oa3xTa+9JuwOGZCHaD7sG5xkS1lP/gkqSmrOq7WoK65OszY /gF16ZLSRgj00jalqN3yvs77Xcmd4JWS6CvQ1enr3Mkubb/ol04MrlNbDSRnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUurakKmp8f8jS74dt9lNl0EGGo6kwHwYDVR0j BBgwFoAUnXKMozMHNpDyp/a3fSzz/q5JqrAwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZGU1ZTkxMzEtM2FiYy00YWJkLWJkOTItYTc1NWZhYjkxMzA1LzAvOUQ3MjhDQTMz MzA3MzY5MEYyQTdGNkI3N0QyQ0YzRkVBRTQ5QUFCMC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85RDcyOENBMzMzMDczNjkwRjJBN0Y2Qjc3RDJDRjNGRUFFNDlB QUIwLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZGU1ZTkxMzEtM2FiYy00YWJkLWJk OTItYTc1NWZhYjkxMzA1LzAvOUQ3MjhDQTMzMzA3MzY5MEYyQTdGNkI3N0QyQ0Yz RkVBRTQ5QUFCMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE+88MeJbyz/izI5WMiMNz3EtQGhrt410UdA pnP+uR9MMsbJy/wCgMN/u2kox1mGlfN1BIDXYEiPwfgZBD4PXTgnVT//bkQRqFWz XiW1JJ8f7acEFnhJbhR+J1qqwgvvsQoUWmyIpsy+ykYTY4gXAjMNOji4KWtuLy9c lRsGPk0KDcCV+RD4cBg4SCJcyalhBLjUYZwxzAvXnaivHwteCdmjbafuFpMKn/rk HxPzkbbvriRe3DsrkYUi/cqJoZdJUGU/DLJhiQeNGzgVzOO8TwWYhuAz3aHbf0Gb CrQcJunC3ZCOJcEHuRU4HsLkHw0P1U1IqdJeMDLTL6Cn2DFEuLc= -----END CERTIFICATE-----Generated at Wed Jun 3 04:15:54 2026 by rpki-client