$ rpki-client -vvf rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft File: 7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft (raw, json) Hash identifier: g67ZnrU55JrUT8F4hVjxQq9PCOTyA0TwX+uSTfXxJ34= Subject key identifier: 2D:82:54:05:61:55:6D:ED:AA:03:B8:1D:82:BC:B7:66:8C:B4:9C:CF Authority key identifier: 7D:2A:02:CF:AA:CD:51:FA:2E:B1:D7:AE:C7:0E:CD:81:04:47:5F:53 Certificate issuer: /CN=7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53 Certificate serial: 5E45F533420B2C9C2DB01ABF0AA9466CEB11DA2A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft Manifest number: 2B Signing time: Wed 03 Jun 2026 00:30:30 +0000 Manifest this update: Wed 03 Jun 2026 00:25:30 +0000 Manifest next update: Thu 04 Jun 2026 03:07:30 +0000 Files and hashes: 1: 3130332e3136342e3139332e302f32342d3234203d3e20313431393339.roa (hash: VOmlgkQp1tgA9VYOLX2CHv85GyyaVqqf5FgzdISInaI=) 2: 7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.crl (hash: y96UxpJwxHtrCFAoVOV9f5OqAR55E9G82CHzyy+MDYA=) 3: 3130332e3136342e3139322e302f32342d3234203d3e20313431393339.roa (hash: FuJt3vcY9L09+RmWxid8u8pgisIt7rO49/5ndQMSY6Q=) 4: 3130332e3136342e3139322e302f32332d3234203d3e20313431393339.roa (hash: caZbilaazkpxqRWhkCpM9BxKghMhKlcvJxCPrxBN/3Q=) 5: 323030313a6466313a316263303a3a2f34382d3438203d3e20313431393339.roa (hash: nFLDPD776WE/L2X/jlMFqVRg6eI7I+qoNOVFN/HkArY=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.crl rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Jun 2026 03:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:45:f5:33:42:0b:2c:9c:2d:b0:1a:bf:0a:a9:46:6c:eb:11:da:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53 Validity Not Before: Jun 3 00:25:30 2026 GMT Not After : Jun 4 03:07:30 2026 GMT Subject: CN=2D82540561556DEDAA03B81D82BCB7668CB49CCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:1a:77:38:b0:09:c3:c2:48:7e:6b:48:01:e4: 59:23:18:41:7e:88:03:1f:47:54:0f:2b:34:e6:4f: ba:f4:54:b8:55:68:d2:2b:6d:f2:89:b9:60:dc:ac: 3d:6c:72:e2:23:8a:fd:f1:b6:60:90:ee:27:de:a4: 7f:91:9f:a1:ec:87:ab:32:4e:f0:c6:c9:4f:04:6e: 36:87:3b:12:ed:9f:59:84:29:4e:f7:14:f7:83:29: 8d:cd:8b:91:b5:29:53:74:49:78:e9:fa:5d:6a:5a: 4e:1d:f2:ab:e7:29:91:7e:f8:fe:7a:b0:23:bf:bb: 8f:8e:ed:37:41:a4:26:9a:3e:ce:49:38:10:61:23: 5a:83:22:01:a1:e9:6d:15:70:83:f9:01:00:66:73: de:bd:d0:5e:5d:e9:36:fb:7c:cc:8b:26:fe:af:7b: 7f:b9:18:f0:ce:76:52:f1:ab:fb:f7:0a:ea:44:d3: 4e:f9:fe:6f:10:62:76:5f:3d:49:8f:95:06:16:e0: 2f:55:f3:30:56:49:95:4c:64:b4:1b:c6:77:3d:1e: 42:fd:b9:91:f8:8d:66:e6:b6:2c:04:0e:3c:7e:dd: 9c:dd:18:94:86:19:ad:e6:b6:f4:8d:da:36:a4:fe: c8:c0:9d:54:9e:ea:e5:98:ad:93:d0:1f:d7:1b:6c: 86:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:82:54:05:61:55:6D:ED:AA:03:B8:1D:82:BC:B7:66:8C:B4:9C:CF X509v3 Authority Key Identifier: keyid:7D:2A:02:CF:AA:CD:51:FA:2E:B1:D7:AE:C7:0E:CD:81:04:47:5F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/7D2A02CFAACD51FA2EB1D7AEC70ECD8104475F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:4e:fa:43:d4:5e:18:eb:92:e3:70:75:81:87:cf:75:c7:92: dc:8d:53:39:06:0f:fd:a6:6c:ab:cb:dd:6b:96:de:0b:9b:f1: 02:76:3d:5f:9b:02:47:47:a0:60:fa:78:b0:6d:f4:cd:1a:02: 9e:0f:83:c4:a2:ac:04:99:b0:72:58:00:bd:f8:51:8b:b0:72: 57:77:3c:c3:b8:a6:2f:49:d9:eb:47:4f:54:7a:d0:c1:73:e9: 3b:2d:bc:3b:79:ac:94:4f:15:b2:8b:0b:f8:9a:a9:ac:fb:3f: a2:11:68:2a:d7:bb:41:8c:f2:86:82:dc:fd:d6:a0:2a:80:e2: 81:44:3d:71:e7:60:ce:4b:81:c7:18:dc:42:f4:65:ec:ca:a1: cb:3c:5d:b3:a5:c8:89:ad:ab:f6:db:05:37:9d:b2:38:a9:2b: 03:d0:5d:e5:94:57:1d:37:ad:f0:3c:60:2b:47:b8:1e:52:ec: a0:6c:fb:19:bf:02:af:84:21:23:cc:16:27:53:42:d0:87:f7: b9:e9:09:8c:eb:7a:d8:3b:ea:60:de:8d:c2:16:bb:f9:bc:31: e7:32:94:e7:0a:be:5f:d1:0b:b5:4f:0d:ee:28:a4:ef:9e:90: 70:fa:c9:55:76:d0:41:6a:32:aa:63:68:83:83:ef:ce:0d:cf: b5:a5:a8:f1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXkX1M0ILLJwtsBq/CqlGbOsR2iowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0QyQTAyQ0ZBQUNENTFGQTJFQjFEN0FFQzcwRUNEODEw NDQ3NUY1MzAeFw0yNjA2MDMwMDI1MzBaFw0yNjA2MDQwMzA3MzBaMDMxMTAvBgNV BAMTKDJEODI1NDA1NjE1NTZERURBQTAzQjgxRDgyQkNCNzY2OENCNDlDQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhGnc4sAnDwkh+a0gB5FkjGEF+ iAMfR1QPKzTmT7r0VLhVaNIrbfKJuWDcrD1scuIjiv3xtmCQ7ifepH+Rn6Hsh6sy TvDGyU8EbjaHOxLtn1mEKU73FPeDKY3Ni5G1KVN0SXjp+l1qWk4d8qvnKZF++P56 sCO/u4+O7TdBpCaaPs5JOBBhI1qDIgGh6W0VcIP5AQBmc9690F5d6Tb7fMyLJv6v e3+5GPDOdlLxq/v3CupE0075/m8QYnZfPUmPlQYW4C9V8zBWSZVMZLQbxnc9HkL9 uZH4jWbmtiwEDjx+3ZzdGJSGGa3mtvSN2jak/sjAnVSe6uWYrZPQH9cbbIYfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULYJUBWFVbe2qA7gdgry3Zoy0nM8wHwYDVR0j BBgwFoAUfSoCz6rNUfousdeuxw7NgQRHX1MwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmJhNDhlNGUtZmM5NS00YWNmLWJlYWMtZDkzYTBmNjk0NDIxLzAvN0QyQTAyQ0ZB QUNENTFGQTJFQjFEN0FFQzcwRUNEODEwNDQ3NUY1My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83RDJBMDJDRkFBQ0Q1MUZBMkVCMUQ3QUVDNzBFQ0Q4MTA0NDc1 RjUzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZmJhNDhlNGUtZmM5NS00YWNmLWJl YWMtZDkzYTBmNjk0NDIxLzAvN0QyQTAyQ0ZBQUNENTFGQTJFQjFEN0FFQzcwRUNE ODEwNDQ3NUY1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABZO+kPUXhjrkuNwdYGHz3XHktyNUzkGD/2m bKvL3WuW3gub8QJ2PV+bAkdHoGD6eLBt9M0aAp4Pg8SirASZsHJYAL34UYuwcld3 PMO4pi9J2etHT1R60MFz6TstvDt5rJRPFbKLC/iaqaz7P6IRaCrXu0GM8oaC3P3W oCqA4oFEPXHnYM5LgccY3EL0ZezKocs8XbOlyImtq/bbBTedsjipKwPQXeWUVx03 rfA8YCtHuB5S7KBs+xm/Aq+EISPMFidTQtCH97npCYzretg76mDejcIWu/m8Mecy lOcKvl/RC7VPDe4opO+ekHD6yVV20EFqMqpjaIOD784Nz7WlqPE= -----END CERTIFICATE-----Generated at Wed Jun 3 03:50:19 2026 by rpki-client