$ rpki-client -vvf rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft File: 2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft (raw, json) Hash identifier: DemShEXLJmIBVqQbcvADv33s5dTaCquPQIcfU1v0au8= Subject key identifier: 5F:02:DA:3E:86:C0:8A:1D:02:A5:2E:04:94:8B:02:26:90:76:CE:91 Authority key identifier: 2A:31:37:EE:F7:7F:1A:F1:6F:7A:12:DD:6D:36:94:4C:72:E2:C4:63 Certificate issuer: /CN=2A3137EEF77F1AF16F7A12DD6D36944C72E2C463 Certificate serial: 4E09F2334192020CD92602D730C792EB7C963D06 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft Manifest number: 41 Signing time: Sat 20 Jun 2026 13:10:51 +0000 Manifest this update: Sat 20 Jun 2026 13:05:51 +0000 Manifest next update: Sun 21 Jun 2026 13:56:51 +0000 Files and hashes: 1: 3130332e35312e3132332e302f32342d3234203d3e20313530343730.roa (hash: i83P/tWxpN7+zDb3L4rKQFgIev7DrUCxoADIDDyJE9U=) 2: 3130332e35312e3132332e302f32342d3234203d3e203438343635.roa (hash: iJm4NhgPbIn9ZoK9MCrx0LzGYq+XRWtI9oNHEB41bTw=) 3: 3130332e35312e3132322e302f32342d3234203d3e203438343635.roa (hash: 6lFtnPCNARkQq8uMVyUcH9X2yfQ7BRCjGYYqyfiHjKo=) 4: 2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.crl (hash: tSeyRiwVyJoZWYDKpXHuCJudeiI5KEwi7Kb55vfKOgU=) 5: 3130332e35312e3132322e302f32342d3234203d3e20313530343730.roa (hash: 6oOlCIxGneY8XQmzJaSA+rXwKrW4Xz1wcUf44XfKjgk=) 6: 3130332e35312e3132322e302f32332d3233203d3e20313530343730.roa (hash: JbxVAMh0l8cOOEqUdkvkAwk1Vty1kRSyKXbV2pl/yFg=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.crl rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 10:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:09:f2:33:41:92:02:0c:d9:26:02:d7:30:c7:92:eb:7c:96:3d:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2A3137EEF77F1AF16F7A12DD6D36944C72E2C463 Validity Not Before: Jun 20 13:05:51 2026 GMT Not After : Jun 21 13:56:51 2026 GMT Subject: CN=5F02DA3E86C08A1D02A52E04948B02269076CE91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:35:9c:09:df:dc:3a:4d:8e:0f:44:30:da:8a: d3:c7:58:e7:ea:2c:f5:0b:9e:2a:8b:47:0d:70:c0: aa:b5:0b:52:e1:2e:56:87:b4:2e:30:7b:3d:33:38: 28:70:06:20:60:dc:23:c3:c8:f0:56:b3:b1:99:0b: c4:61:c0:2f:2b:13:bc:b4:26:57:28:bf:ee:2c:0d: ad:b3:2c:46:98:25:85:a4:4b:bb:53:38:73:aa:df: 79:d5:83:d5:0c:05:d6:da:e2:17:95:b0:56:88:55: 4e:5b:7a:e6:36:da:88:fe:7a:31:5c:65:ce:1f:7a: 05:a3:ac:45:cd:ab:86:04:0b:0b:1e:cb:7d:30:38: e4:ed:c0:3e:4d:d4:ff:c6:15:4d:06:d5:46:0d:44: 74:38:46:96:0e:7c:18:ee:3c:f3:3f:5c:da:7e:a7: cc:47:4c:e5:4c:cd:ff:fc:7b:15:00:7c:6e:90:87: 35:42:da:46:50:d0:03:e9:b3:a1:7f:4f:ac:d9:0d: 29:e4:54:ea:64:8b:47:21:7e:b3:06:c4:ba:73:28: 4b:f9:f0:ce:73:34:78:6a:d9:6d:b7:82:c8:11:db: 24:5c:2c:00:f3:97:09:13:47:d5:4e:02:65:6a:8c: 3c:ab:b1:af:ff:d9:07:72:44:72:df:bc:34:45:d4: 3b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:02:DA:3E:86:C0:8A:1D:02:A5:2E:04:94:8B:02:26:90:76:CE:91 X509v3 Authority Key Identifier: keyid:2A:31:37:EE:F7:7F:1A:F1:6F:7A:12:DD:6D:36:94:4C:72:E2:C4:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/328eec5b-5324-4422-a32f-9b1dced3759f/0/2A3137EEF77F1AF16F7A12DD6D36944C72E2C463.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:85:77:3e:cb:7d:1f:31:c5:83:36:05:b0:3f:da:02:c4:7e: 1f:b5:84:76:02:18:75:e7:1d:5d:c8:94:e4:ae:48:66:39:d7: aa:f5:8c:14:29:ec:a7:81:55:33:60:85:ac:99:66:39:cd:90: ae:07:e6:1d:f0:61:16:b7:27:c7:f6:29:72:75:86:b3:81:91: ab:c9:19:ad:67:6c:8f:29:46:1a:6e:b7:88:b4:de:1a:da:36: b1:fa:71:0d:7b:39:06:88:75:3c:89:67:32:cd:46:b3:54:79: 15:08:c1:c2:7a:57:9c:1e:70:96:d9:89:1f:0b:96:ea:c4:21: 94:28:02:36:a6:21:7f:4a:f4:c3:38:ec:1e:8a:81:0e:81:c8: f1:08:00:27:3b:d5:00:cf:9f:47:bf:5d:b5:23:a3:2e:2d:7d: cd:31:a7:68:da:b0:4a:ec:49:70:61:ad:87:5b:b7:8f:c9:2d: 14:95:8e:0a:08:59:e4:02:31:fa:f3:b9:bd:43:bb:a8:bd:c6: 15:26:61:0d:5c:9a:4d:dc:f8:bd:18:db:61:c3:e4:e0:74:d0: 8c:f4:8a:3a:a2:32:61:25:ea:42:90:df:44:d3:54:85:3b:1f: 8a:6d:c1:b8:8a:38:53:a5:5b:5d:79:22:0d:5e:49:57:b4:60: 83:d4:8b:8d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTgnyM0GSAgzZJgLXMMeS63yWPQYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkEzMTM3RUVGNzdGMUFGMTZGN0ExMkRENkQzNjk0NEM3 MkUyQzQ2MzAeFw0yNjA2MjAxMzA1NTFaFw0yNjA2MjExMzU2NTFaMDMxMTAvBgNV BAMTKDVGMDJEQTNFODZDMDhBMUQwMkE1MkUwNDk0OEIwMjI2OTA3NkNFOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqNZwJ39w6TY4PRDDaitPHWOfq LPULniqLRw1wwKq1C1LhLlaHtC4wez0zOChwBiBg3CPDyPBWs7GZC8RhwC8rE7y0 Jlcov+4sDa2zLEaYJYWkS7tTOHOq33nVg9UMBdba4heVsFaIVU5beuY22oj+ejFc Zc4fegWjrEXNq4YECwsey30wOOTtwD5N1P/GFU0G1UYNRHQ4RpYOfBjuPPM/XNp+ p8xHTOVMzf/8exUAfG6QhzVC2kZQ0APps6F/T6zZDSnkVOpki0chfrMGxLpzKEv5 8M5zNHhq2W23gsgR2yRcLADzlwkTR9VOAmVqjDyrsa//2QdyRHLfvDRF1DtdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXwLaPobAih0CpS4ElIsCJpB2zpEwHwYDVR0j BBgwFoAUKjE37vd/GvFvehLdbTaUTHLixGMwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzI4ZWVjNWItNTMyNC00NDIyLWEzMmYtOWIxZGNlZDM3NTlmLzAvMkEzMTM3RUVG NzdGMUFGMTZGN0ExMkRENkQzNjk0NEM3MkUyQzQ2My5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQTMxMzdFRUY3N0YxQUYxNkY3QTEyREQ2RDM2OTQ0QzcyRTJD NDYzLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzI4ZWVjNWItNTMyNC00NDIyLWEz MmYtOWIxZGNlZDM3NTlmLzAvMkEzMTM3RUVGNzdGMUFGMTZGN0ExMkRENkQzNjk0 NEM3MkUyQzQ2My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADqFdz7LfR8xxYM2BbA/2gLEfh+1hHYCGHXn HV3IlOSuSGY516r1jBQp7KeBVTNghayZZjnNkK4H5h3wYRa3J8f2KXJ1hrOBkavJ Ga1nbI8pRhput4i03hraNrH6cQ17OQaIdTyJZzLNRrNUeRUIwcJ6V5wecJbZiR8L lurEIZQoAjamIX9K9MM47B6KgQ6ByPEIACc71QDPn0e/XbUjoy4tfc0xp2jasErs SXBhrYdbt4/JLRSVjgoIWeQCMfrzub1Du6i9xhUmYQ1cmk3c+L0Y22HD5OB00Iz0 ijqiMmEl6kKQ30TTVIU7H4ptwbiKOFOlW115Ig1eSVe0YIPUi40= -----END CERTIFICATE-----Generated at Sat Jun 20 16:55:15 2026 by rpki-client