$ rpki-client -vvf rpki-rsync.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.mft File: 2AE1433BB82F27716DF526DADCCC4C2B37589CA5.mft (raw, json) Hash identifier: lnoTI2M8CJVusmn9IWzuEJqXqCwIV2W91ioF3f5lMX4= Subject key identifier: 10:8E:BF:90:E5:CB:4D:E0:E5:0E:C4:C8:2E:08:C6:24:76:47:CF:D5 Authority key identifier: 2A:E1:43:3B:B8:2F:27:71:6D:F5:26:DA:DC:CC:4C:2B:37:58:9C:A5 Certificate issuer: /CN=2AE1433BB82F27716DF526DADCCC4C2B37589CA5 Certificate serial: 211AF19D52F54EB65723EE5F02F4B8BA927B1E94 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.mft Manifest number: 40 Signing time: Thu 18 Jun 2026 10:04:24 +0000 Manifest this update: Thu 18 Jun 2026 09:59:24 +0000 Manifest next update: Fri 19 Jun 2026 11:45:24 +0000 Files and hashes: 1: 2AE1433BB82F27716DF526DADCCC4C2B37589CA5.crl (hash: /hSHxO4sQTnd4MYCducv9eB734MQQBsTCBDPBnmh90g=) 2: 3135372e31352e38322e302f32342d3234203d3e20313532333633.roa (hash: K2AeuLRVAE8BPE4wuWW8WhZGZyYvk9GHwxpL0SCIDfk=) 3: 3135372e31352e38322e302f32332d3233203d3e20313532333633.roa (hash: 8wKUF9NYC7pRZOxvlEf5LxZ2nZECYvwr1BSS5u1G+4Y=) 4: 3135372e31352e38332e302f32342d3234203d3e20313532333633.roa (hash: 8N1ryLqGS1Ck4AODHf8NX/rVMxyMRb5QCwGLiIIXGg8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.crl rsync://rpki-rsync.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 08:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:1a:f1:9d:52:f5:4e:b6:57:23:ee:5f:02:f4:b8:ba:92:7b:1e:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AE1433BB82F27716DF526DADCCC4C2B37589CA5 Validity Not Before: Jun 18 09:59:24 2026 GMT Not After : Jun 19 11:45:24 2026 GMT Subject: CN=108EBF90E5CB4DE0E50EC4C82E08C6247647CFD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:20:ca:74:a3:50:94:52:5d:08:57:58:fc:05: a0:50:63:d5:25:52:fc:e2:fc:64:40:74:c4:9f:43: 5e:eb:18:c2:69:63:8a:84:25:77:c8:ed:b9:14:2e: a6:08:b4:71:1d:b9:2c:d2:4a:a2:cd:a7:f0:04:af: 4f:65:5c:42:9b:83:9b:dd:c8:41:18:e0:aa:52:3f: 71:0d:c9:b1:9b:98:f9:9f:19:78:f8:90:0e:cc:4e: 31:58:c1:37:a8:9f:8b:91:5a:98:4c:51:73:7d:b2: 1a:c3:61:d4:aa:2d:92:24:d7:cc:95:3e:7a:cf:1e: d2:34:5d:14:68:00:40:88:b6:a0:b0:f1:33:e6:ae: a0:8c:56:bd:83:0c:1e:3e:a1:7c:d0:fb:c3:9f:61: 20:c5:04:11:8f:52:5a:5b:2c:f8:df:0c:d5:94:29: 84:79:78:56:64:30:f3:60:66:c9:d4:67:37:ca:91: b2:88:a5:49:12:95:49:f3:75:aa:2e:b3:c7:a6:ab: 41:58:b5:f4:d4:45:74:8b:55:9d:9a:30:35:92:f0: 56:e0:a1:b8:3e:77:aa:d9:ac:32:d6:7b:b6:34:52: a1:bc:ac:29:ee:08:3c:a4:b6:13:13:e8:d6:e7:39: df:2e:9d:1d:a7:92:d8:ba:5e:d5:6b:5f:9f:51:4b: 33:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8E:BF:90:E5:CB:4D:E0:E5:0E:C4:C8:2E:08:C6:24:76:47:CF:D5 X509v3 Authority Key Identifier: keyid:2A:E1:43:3B:B8:2F:27:71:6D:F5:26:DA:DC:CC:4C:2B:37:58:9C:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/1d011a1c-a0ad-4d93-86af-3f0aadd9684f/0/2AE1433BB82F27716DF526DADCCC4C2B37589CA5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:44:52:21:89:1c:2b:ba:a3:a7:8e:3b:8b:39:af:d4:ec:59: 89:55:bc:26:31:d6:a6:2d:d5:30:6f:f9:1c:4c:99:89:b2:1d: 7a:61:44:77:75:90:1b:1c:eb:63:cd:80:76:61:23:af:f8:f3: 37:52:ca:73:24:55:5a:e9:9c:f6:71:2b:a4:96:ab:b9:5c:9c: 0f:93:c4:d3:c5:88:e7:18:a0:93:de:fb:56:c1:6d:9b:16:ce: 21:bb:ef:11:8b:ce:d0:62:1d:33:38:82:d3:d9:97:52:3e:64: 13:c4:9b:ce:01:78:4e:0c:4f:c9:b7:ec:4c:68:08:63:8b:73: c1:57:9d:01:2a:1e:4a:6c:4d:ef:07:be:d8:2d:f7:f1:87:1f: d8:36:7f:53:17:1a:5c:b9:c1:99:e2:4b:ef:59:aa:b4:38:fd: 56:dd:a0:8e:a7:3d:77:3e:e2:8a:3e:39:83:ac:80:45:ef:6e: 24:d9:97:61:de:3c:b6:3b:a4:cc:2d:92:a0:32:90:55:03:f6: cd:d6:b8:e9:8c:a9:65:83:9b:10:36:a9:b3:eb:c4:7c:b2:b4: 1f:17:c2:58:f1:9c:49:6e:b4:7a:ec:e5:df:7d:70:bc:88:ab: b0:c9:81:62:0f:11:87:f3:f7:5c:e7:c9:08:78:58:84:43:83: 20:ed:46:2f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIRrxnVL1TrZXI+5fAvS4upJ7HpQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFFMTQzM0JCODJGMjc3MTZERjUyNkRBRENDQzRDMkIz NzU4OUNBNTAeFw0yNjA2MTgwOTU5MjRaFw0yNjA2MTkxMTQ1MjRaMDMxMTAvBgNV BAMTKDEwOEVCRjkwRTVDQjRERTBFNTBFQzRDODJFMDhDNjI0NzY0N0NGRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlIMp0o1CUUl0IV1j8BaBQY9Ul Uvzi/GRAdMSfQ17rGMJpY4qEJXfI7bkULqYItHEduSzSSqLNp/AEr09lXEKbg5vd yEEY4KpSP3ENybGbmPmfGXj4kA7MTjFYwTeon4uRWphMUXN9shrDYdSqLZIk18yV PnrPHtI0XRRoAECItqCw8TPmrqCMVr2DDB4+oXzQ+8OfYSDFBBGPUlpbLPjfDNWU KYR5eFZkMPNgZsnUZzfKkbKIpUkSlUnzdaous8emq0FYtfTURXSLVZ2aMDWS8Fbg obg+d6rZrDLWe7Y0UqG8rCnuCDykthMT6NbnOd8unR2nkti6XtVrX59RSzORAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEI6/kOXLTeDlDsTILgjGJHZHz9UwHwYDVR0j BBgwFoAUKuFDO7gvJ3Ft9Sba3MxMKzdYnKUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MWQwMTFhMWMtYTBhZC00ZDkzLTg2YWYtM2YwYWFkZDk2ODRmLzAvMkFFMTQzM0JC ODJGMjc3MTZERjUyNkRBRENDQzRDMkIzNzU4OUNBNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yQUUxNDMzQkI4MkYyNzcxNkRGNTI2REFEQ0NDNEMyQjM3NTg5 Q0E1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMWQwMTFhMWMtYTBhZC00ZDkzLTg2 YWYtM2YwYWFkZDk2ODRmLzAvMkFFMTQzM0JCODJGMjc3MTZERjUyNkRBRENDQzRD MkIzNzU4OUNBNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMVEUiGJHCu6o6eOO4s5r9TsWYlVvCYx1qYt 1TBv+RxMmYmyHXphRHd1kBsc62PNgHZhI6/48zdSynMkVVrpnPZxK6SWq7lcnA+T xNPFiOcYoJPe+1bBbZsWziG77xGLztBiHTM4gtPZl1I+ZBPEm84BeE4MT8m37Exo CGOLc8FXnQEqHkpsTe8Hvtgt9/GHH9g2f1MXGly5wZniS+9ZqrQ4/VbdoI6nPXc+ 4oo+OYOsgEXvbiTZl2HePLY7pMwtkqAykFUD9s3WuOmMqWWDmxA2qbPrxHyytB8X wljxnElutHrs5d99cLyIq7DJgWIPEYfz91znyQh4WIRDgyDtRi8= -----END CERTIFICATE-----Generated at Thu Jun 18 17:15:17 2026 by rpki-client