$ rpki-client -vvf rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.mft File: 4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.mft (raw, json) Hash identifier: R1k0aZeYYnBuY5eWS5XPHK9mM95snKxGNoqjQTCcpeQ= Subject key identifier: 77:9C:70:1E:23:B1:D7:FF:FB:78:DD:79:95:72:93:D7:1E:42:6B:31 Authority key identifier: 4B:3B:54:F4:A1:20:3D:9D:F5:E8:09:42:28:C9:1F:C2:1F:F2:C5:C4 Certificate issuer: /CN=4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4 Certificate serial: 418B97D0A378C5A7EAEFE0FB8C12E74FA389B301 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.mft Manifest number: 2A Signing time: Tue 02 Jun 2026 12:20:17 +0000 Manifest this update: Tue 02 Jun 2026 12:15:17 +0000 Manifest next update: Wed 03 Jun 2026 14:39:17 +0000 Files and hashes: 1: 323030313a6466343a343938303a3a2f34382d3438203d3e20313430343633.roa (hash: rk63OWefzg4vng4Tc3mM68t8dHw3/EWO+Sh3DRDdtqA=) 2: 3130332e3135332e3133312e302f32342d3234203d3e20313430343633.roa (hash: esc3McyAl6hUlG4d1U+cxH9phLSFNKnapu2B7Ix2aTI=) 3: 4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.crl (hash: JEsFuW5DDnxI0ao2bph/bIsZ7iSMTdPx96frQVsaVE8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.crl rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:8b:97:d0:a3:78:c5:a7:ea:ef:e0:fb:8c:12:e7:4f:a3:89:b3:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4 Validity Not Before: Jun 2 12:15:17 2026 GMT Not After : Jun 3 14:39:17 2026 GMT Subject: CN=779C701E23B1D7FFFB78DD79957293D71E426B31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ff:30:51:83:bf:8d:f0:f7:ac:fd:f8:c6:a4: ec:e9:20:ea:8c:1a:63:53:e4:17:6a:42:7f:c3:ca: 85:5b:65:ea:ff:00:12:c5:4f:d6:bb:0f:79:e9:11: 29:93:66:26:ff:c0:7c:7b:14:8c:aa:80:f4:10:89: 40:7f:14:2c:4c:92:33:b7:4d:ec:21:d9:d5:0e:f5: 23:3b:ca:ac:de:e1:64:1d:8f:08:ae:cf:1c:3d:89: f7:94:3a:ae:1e:60:df:25:2c:9b:5f:6c:09:ac:e4: 40:cf:28:c1:5f:7c:4a:43:df:e2:05:ba:62:48:2e: 65:14:15:d3:7f:02:de:23:36:20:24:70:86:58:59: 66:f8:be:68:8e:ea:78:d6:a4:0c:af:07:d5:31:e9: 85:8c:09:e0:79:0c:00:d8:42:2d:a5:a4:96:26:9d: 14:63:47:f9:99:f4:cc:86:0f:ab:39:fc:6b:eb:2d: 8e:58:f5:52:11:96:39:d0:02:8e:32:6b:92:f0:c7: 5f:ba:0c:22:33:5d:c0:35:87:ba:d8:22:e6:bb:ba: 18:de:d4:ac:32:7e:b8:7a:fb:69:fc:da:4a:c7:cf: c4:c2:28:0c:61:3c:60:28:94:39:1e:af:2e:1c:78: ea:90:f2:0d:d0:15:c8:9f:af:78:0c:49:49:75:4d: 50:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:9C:70:1E:23:B1:D7:FF:FB:78:DD:79:95:72:93:D7:1E:42:6B:31 X509v3 Authority Key Identifier: keyid:4B:3B:54:F4:A1:20:3D:9D:F5:E8:09:42:28:C9:1F:C2:1F:F2:C5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/ea1e0bd7-281a-4eba-b98c-82939327ddd7/0/4B3B54F4A1203D9DF5E8094228C91FC21FF2C5C4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:12:48:d8:64:63:a6:3d:07:51:6a:05:e3:7e:50:fd:03:bb: 5c:c3:ef:5f:4c:b8:0a:b2:f2:f1:50:59:69:55:35:6c:36:fd: ee:b5:47:77:65:d0:c9:1b:ad:89:19:67:bc:31:17:4f:64:2c: e4:41:74:7b:bd:13:d3:13:ec:89:ef:fb:9c:a4:94:3f:1a:ec: 56:e7:be:72:db:11:24:2e:ae:9a:c5:d7:ea:a2:49:17:de:36: 95:85:07:06:9d:2e:85:cf:41:13:0f:bf:a4:65:84:65:53:96: 44:da:f5:1b:3c:bd:c3:69:c0:23:88:a7:5f:85:da:8c:50:b5: 74:0c:48:db:e4:93:ae:c7:a3:20:93:03:66:cf:84:d6:7c:16: 27:b3:44:5f:e4:5c:ae:13:3b:7f:e4:0e:48:4d:5b:00:b4:55: ff:d5:0b:e4:61:34:ab:70:c6:6d:88:45:68:80:df:4e:b0:20: 56:90:75:11:89:f4:86:1e:08:7f:82:ec:f1:fc:ee:0f:3e:ac: c9:1a:90:e1:08:2d:b7:4a:eb:2d:da:05:b8:f2:67:5c:b7:5d: 07:4d:0d:47:3b:83:c4:a8:73:3d:93:8e:e6:ba:d9:1a:be:48: 96:29:21:33:57:8e:49:88:52:1b:fa:5d:cd:28:e0:0e:ad:63: 46:78:e0:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQYuX0KN4xafq7+D7jBLnT6OJswEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzQjU0RjRBMTIwM0Q5REY1RTgwOTQyMjhDOTFGQzIx RkYyQzVDNDAeFw0yNjA2MDIxMjE1MTdaFw0yNjA2MDMxNDM5MTdaMDMxMTAvBgNV BAMTKDc3OUM3MDFFMjNCMUQ3RkZGQjc4REQ3OTk1NzI5M0Q3MUU0MjZCMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu/zBRg7+N8Pes/fjGpOzpIOqM GmNT5BdqQn/DyoVbZer/ABLFT9a7D3npESmTZib/wHx7FIyqgPQQiUB/FCxMkjO3 Tewh2dUO9SM7yqze4WQdjwiuzxw9ifeUOq4eYN8lLJtfbAms5EDPKMFffEpD3+IF umJILmUUFdN/At4jNiAkcIZYWWb4vmiO6njWpAyvB9Ux6YWMCeB5DADYQi2lpJYm nRRjR/mZ9MyGD6s5/GvrLY5Y9VIRljnQAo4ya5Lwx1+6DCIzXcA1h7rYIua7uhje 1Kwyfrh6+2n82krHz8TCKAxhPGAolDkery4ceOqQ8g3QFcifr3gMSUl1TVAjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUd5xwHiOx1//7eN15lXKT1x5CazEwHwYDVR0j BBgwFoAUSztU9KEgPZ316AlCKMkfwh/yxcQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZWExZTBiZDctMjgxYS00ZWJhLWI5OGMtODI5MzkzMjdkZGQ3LzAvNEIzQjU0RjRB MTIwM0Q5REY1RTgwOTQyMjhDOTFGQzIxRkYyQzVDNC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80QjNCNTRGNEExMjAzRDlERjVFODA5NDIyOEM5MUZDMjFGRjJD NUM0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZWExZTBiZDctMjgxYS00ZWJhLWI5 OGMtODI5MzkzMjdkZGQ3LzAvNEIzQjU0RjRBMTIwM0Q5REY1RTgwOTQyMjhDOTFG QzIxRkYyQzVDNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA4SSNhkY6Y9B1FqBeN+UP0Du1zD719MuAqy 8vFQWWlVNWw2/e61R3dl0MkbrYkZZ7wxF09kLORBdHu9E9MT7Inv+5yklD8a7Fbn vnLbESQurprF1+qiSRfeNpWFBwadLoXPQRMPv6RlhGVTlkTa9Rs8vcNpwCOIp1+F 2oxQtXQMSNvkk67HoyCTA2bPhNZ8FiezRF/kXK4TO3/kDkhNWwC0Vf/VC+RhNKtw xm2IRWiA306wIFaQdRGJ9IYeCH+C7PH87g8+rMkakOEILbdK6y3aBbjyZ1y3XQdN DUc7g8Socz2Tjua62Rq+SJYpITNXjkmIUhv6Xc0o4A6tY0Z44Fs= -----END CERTIFICATE-----Generated at Wed Jun 3 03:38:54 2026 by rpki-client