$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft File: BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft (raw, json) Hash identifier: ZGtJEx94ldst2QEFW9vP2hSnq377sKLUwTBw496cUKs= Subject key identifier: A6:E9:32:94:46:97:E2:3D:32:55:3B:47:5D:4F:58:75:F3:A7:67:02 Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Certificate serial: 66D53939479EBB66957AFC21DD2DB20328CA5EA1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 07:34:28 +0000 Manifest this update: Tue 02 Jun 2026 07:29:28 +0000 Manifest next update: Wed 03 Jun 2026 09:35:28 +0000 Files and hashes: 1: 3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa (hash: xGj0e4XQ4vJ8oWerZ4jXagNlyhy1gxpkEDp9VKKcLHc=) 2: 3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa (hash: nVBnDB0/UQIhvlZknFXMulW4aEJQqLigk7J0WBCftGQ=) 3: 323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa (hash: q4GFRcWVs+Ai4gXERrwVrrYZbhWnp7v5yT7e4NRdMGk=) 4: 3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa (hash: W57jnxb8I7PewGJC2zTEjUBxKopfhpmR1Iwvxvyuls4=) 5: 3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa (hash: nUugKOdExMFJnvFh04jHSO3wCeesIumGtVFPqxZ7JUo=) 6: BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl (hash: KmODTB0hGu4Ts83Vrw153SzHkSm0NB0ub6NklKsvXK8=) 7: 323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa (hash: mb6stKBonjjNRvfMm98TbumJRAVflg9hiU378+4IYt4=) 8: 323430333a653063303a3a2f33322d3332203d3e20313338303839.roa (hash: 29cKBY9SmIDNcy8Up3JMwSzyFn85kJNfVtGR4zVqHOo=) 9: 3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa (hash: IcQvSAJGT5F2NpZZwUWfDRfWyeJTixApL9YTKNnPovc=) 10: 323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa (hash: UdoPkZ+2AOHg3vZbgjXSJjipAK97nm8TlruCo/DcsiI=) 11: 323430333a653063303a3a2f33322d3438203d3e20313338303839.roa (hash: Gh74rlG6cZiGWXdiLt7turdRPANg8uysBJZ/a1V4u3c=) 12: 3130332e3132342e3133372e302f32342d3234203d3e20313338303839.roa (hash: m7aYtnxqmO5yLH8RFKNeSd1PMgjIrrVpH7VORkZBuSQ=) 13: 323430333a653063303a3a2f34382d3438203d3e20313338303839.roa (hash: O7Jg3ekrKiPlwDIBfPqMERpdUxButyek7mBs/PaEfvA=) 14: 3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa (hash: IgZVkE+S6069w73+w/n6imuTngD34gWEV6HPl2N+lmw=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 09:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d5:39:39:47:9e:bb:66:95:7a:fc:21:dd:2d:b2:03:28:ca:5e:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67 Validity Not Before: Jun 2 07:29:28 2026 GMT Not After : Jun 3 09:35:28 2026 GMT Subject: CN=A6E932944697E23D32553B475D4F5875F3A76702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:75:d9:00:4f:24:2a:8b:0b:7b:e2:c4:db:1d: aa:f5:38:6c:54:15:e9:56:fe:2a:bc:67:2f:e9:cb: 04:d8:4f:a6:97:7f:3c:ca:33:7f:39:9b:a3:53:7a: 2f:8c:45:81:14:56:72:40:3c:fe:5c:70:7e:c2:4e: 34:c5:77:1b:bb:40:86:8a:ce:f4:86:47:2a:54:7d: e9:0d:8f:ff:60:d3:4c:cc:a2:c1:e7:fe:d7:52:18: fe:22:54:24:1e:b0:c7:a9:d9:71:87:8b:07:e5:05: 53:49:f8:ab:cf:0e:69:d0:33:a7:57:1d:45:51:b8: 6a:b4:9c:cc:9e:ea:c5:78:a8:61:a6:69:02:78:76: d3:ce:fb:55:51:b9:33:e1:a0:49:fd:db:e9:a5:ec: b1:f2:8f:ea:93:94:0d:f3:e3:dd:35:93:88:de:4b: 62:11:c4:ae:84:75:f4:66:f9:f5:09:db:16:ab:73: ea:5d:0b:a9:f5:0e:27:2e:ba:62:52:c9:5c:4b:d3: 07:dd:bb:b1:12:e8:d3:be:be:9f:21:0d:46:ec:7c: ea:54:b5:43:32:44:47:eb:29:97:f2:31:a4:95:2a: 43:ff:e8:9a:c5:ee:fb:de:54:ed:b7:51:04:03:e0: 37:e7:29:11:e6:4a:17:27:d3:c6:03:7b:f5:ee:56: cc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E9:32:94:46:97:E2:3D:32:55:3B:47:5D:4F:58:75:F3:A7:67:02 X509v3 Authority Key Identifier: keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:bf:15:73:78:8b:ec:cd:4a:8b:ab:8e:7b:ff:6f:40:ef:2f: 62:cc:79:e3:dd:1a:8b:2b:73:6a:84:b7:49:4c:d3:f1:cc:9b: a1:35:e3:e8:31:06:7d:aa:49:07:58:a4:b6:bc:d1:dc:f7:8f: 4d:fc:4f:bd:d8:9e:88:90:64:99:f6:73:cc:d1:78:86:64:88: 32:24:d0:f7:01:f4:10:55:a8:36:2d:69:00:82:02:91:4a:47: 73:28:ca:6c:3e:7a:a3:6f:9f:4d:3e:e9:51:9c:83:f9:02:d9: 3d:b2:b1:40:25:b1:ad:85:97:3a:9b:18:27:7a:f8:17:8a:c1: d8:08:da:37:4c:50:17:39:ab:6b:65:5f:1d:70:5a:89:fa:4e: 1b:21:a6:3a:41:45:c2:d8:ad:77:a0:9d:6f:36:46:3b:77:07: 58:b5:68:6e:95:62:a2:4e:c6:1e:5a:c5:78:f3:a2:1b:bd:2d: 6b:df:87:09:b1:5d:3f:05:78:61:98:52:e5:6c:7f:0d:5f:5b: f2:da:48:49:5e:91:7e:35:c7:0c:b9:07:70:ea:f2:c6:7f:9d: 59:82:c9:da:4f:b6:05:76:c3:5f:85:9c:a1:41:14:6d:58:c8: 3c:04:30:4b:03:97:dc:69:7e:35:40:05:b9:ea:58:2e:96:80: 87:e1:dd:08 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZtU5OUeeu2aVevwh3S2yAyjKXqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdC NDQ4NkU2NzAeFw0yNjA2MDIwNzI5MjhaFw0yNjA2MDMwOTM1MjhaMDMxMTAvBgNV BAMTKEE2RTkzMjk0NDY5N0UyM0QzMjU1M0I0NzVENEY1ODc1RjNBNzY3MDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0ddkATyQqiwt74sTbHar1OGxU FelW/iq8Zy/pywTYT6aXfzzKM385m6NTei+MRYEUVnJAPP5ccH7CTjTFdxu7QIaK zvSGRypUfekNj/9g00zMosHn/tdSGP4iVCQesMep2XGHiwflBVNJ+KvPDmnQM6dX HUVRuGq0nMye6sV4qGGmaQJ4dtPO+1VRuTPhoEn92+ml7LHyj+qTlA3z4901k4je S2IRxK6EdfRm+fUJ2xarc+pdC6n1DicuumJSyVxL0wfdu7ES6NO+vp8hDUbsfOpU tUMyREfrKZfyMaSVKkP/6JrF7vveVO23UQQD4DfnKRHmShcn08YDe/XuVswDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpukylEaX4j0yVTtHXU9YdfOnZwIwHwYDVR0j BBgwFoAUu5M7+ysMijq9TlVIW8zZ57RIbmcwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NWFiYTRlNTktZmIzMS00MWI1LTg4ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIy QjBDOEEzQUJENEU1NTQ4NUJDQ0Q5RTdCNDQ4NkU2Ny5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9CQjkzM0JGQjJCMEM4QTNBQkQ0RTU1NDg1QkNDRDlFN0I0NDg2 RTY3LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNWFiYTRlNTktZmIzMS00MWI1LTg4 ZTctMGIyY2VkMWYyMDFjLzAvQkI5MzNCRkIyQjBDOEEzQUJENEU1NTQ4NUJDQ0Q5 RTdCNDQ4NkU2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALS/FXN4i+zNSourjnv/b0DvL2LMeePdGosr c2qEt0lM0/HMm6E14+gxBn2qSQdYpLa80dz3j038T73YnoiQZJn2c8zReIZkiDIk 0PcB9BBVqDYtaQCCApFKR3Moymw+eqNvn00+6VGcg/kC2T2ysUAlsa2FlzqbGCd6 +BeKwdgI2jdMUBc5q2tlXx1wWon6ThshpjpBRcLYrXegnW82Rjt3B1i1aG6VYqJO xh5axXjzohu9LWvfhwmxXT8FeGGYUuVsfw1fW/LaSElekX41xwy5B3Dq8sZ/nVmC ydpPtgV2w1+FnKFBFG1YyDwEMEsDl9xpfjVABbnqWC6WgIfh3Qg= -----END CERTIFICATE-----Generated at Tue Jun 2 21:36:12 2026 by rpki-client