$ rpki-client -vvf rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.mft File: 2D8147AB32AE34FE0599301C399BA431CBD96AE2.mft (raw, json) Hash identifier: qbFMjJhiPYbfEoGfYBF1hh9ILsu+uoupO1kzeGcAo+8= Subject key identifier: C3:71:50:69:4C:13:3B:3F:19:F9:5B:34:17:9A:24:AE:0B:A2:58:2D Authority key identifier: 2D:81:47:AB:32:AE:34:FE:05:99:30:1C:39:9B:A4:31:CB:D9:6A:E2 Certificate issuer: /CN=2D8147AB32AE34FE0599301C399BA431CBD96AE2 Certificate serial: 28834793CBC26FD2423DF44064D29A8B47BB21F6 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.mft Manifest number: 3F Signing time: Wed 17 Jun 2026 23:31:12 +0000 Manifest this update: Wed 17 Jun 2026 23:26:12 +0000 Manifest next update: Fri 19 Jun 2026 03:01:12 +0000 Files and hashes: 1: 3135372e31302e3138332e302f32342d3234203d3e20313532333434.roa (hash: RnobRsvxkM1MTdlV59E6oBUzJE/tUaI5t4eU9X2Ihxg=) 2: 3135372e31302e3138322e302f32332d3234203d3e20313532333434.roa (hash: OX/hSObmRCzkD1qVckzfWkKuBPC5Pdod9YDgySPz4C8=) 3: 3135372e31302e3138322e302f32342d3234203d3e20313532333434.roa (hash: YTcLxO+mbdwk1sv6hkGjyOE34UWEs5shSWT+DleZD5E=) 4: 2D8147AB32AE34FE0599301C399BA431CBD96AE2.crl (hash: jhJy7hp4iuwH4+Fk97qcTP6prt1xGlJ3kaSjqniUml0=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.crl rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 03:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:83:47:93:cb:c2:6f:d2:42:3d:f4:40:64:d2:9a:8b:47:bb:21:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D8147AB32AE34FE0599301C399BA431CBD96AE2 Validity Not Before: Jun 17 23:26:12 2026 GMT Not After : Jun 19 03:01:12 2026 GMT Subject: CN=C37150694C133B3F19F95B34179A24AE0BA2582D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c1:7e:29:b4:92:b2:68:e6:c8:dc:5b:aa:6a: d7:1c:72:d7:4f:55:be:a3:4f:cb:59:64:01:4e:26: dc:d7:53:7d:5e:26:ae:8a:ab:d2:95:c4:d4:2b:a7: 55:f5:fd:1a:c5:a6:92:fc:ab:c4:7a:14:8a:0a:04: 7c:27:db:24:63:f7:8f:de:51:44:69:5a:f9:9b:82: 8a:9c:ba:20:cc:b6:87:76:ed:00:75:e0:d7:3a:d5: 44:b6:34:dc:36:7d:7e:5c:f3:d4:29:eb:05:10:89: 46:5a:4b:8e:d3:3b:86:8c:cf:d6:f0:5e:cd:9b:95: 2f:50:6c:47:98:05:ed:80:ca:2c:1b:4d:e4:97:54: e8:3e:af:4e:91:69:19:d9:31:f1:1d:8c:c0:83:72: 75:f1:96:3c:41:9d:df:19:81:e4:88:1f:4b:2e:6b: 62:85:8b:40:09:e1:a0:43:a7:c4:dd:1e:38:9a:2b: 1a:63:91:e9:d6:06:d1:26:3d:8c:c8:f0:8c:93:f9: e3:1b:db:be:35:22:fc:d8:41:76:69:46:d3:20:5b: 4f:38:2d:05:4d:65:9e:ca:ed:1f:67:e5:c0:4e:c7: c1:c4:a4:43:03:8d:f2:c8:39:8c:f2:0c:bc:47:eb: c2:99:9e:cc:18:dc:e8:4f:cb:7b:c1:09:01:93:32: 80:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:71:50:69:4C:13:3B:3F:19:F9:5B:34:17:9A:24:AE:0B:A2:58:2D X509v3 Authority Key Identifier: keyid:2D:81:47:AB:32:AE:34:FE:05:99:30:1C:39:9B:A4:31:CB:D9:6A:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/91da23e9-84be-4a54-bca0-e9a0cafd16fe/0/2D8147AB32AE34FE0599301C399BA431CBD96AE2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:52:ff:ee:43:12:72:5c:b5:99:88:03:59:1a:fd:b1:57:90: 3b:89:f8:56:5e:a3:48:0c:ba:ed:59:e0:dc:01:5e:89:58:bb: f4:81:96:4b:d7:57:e2:f1:eb:fb:f7:ef:4e:00:c4:ab:51:e8: fc:dc:80:06:34:f7:08:df:94:73:ad:80:69:ea:d3:13:c1:10: 15:05:90:3c:7b:09:8e:3e:33:c1:63:6a:ec:da:ce:1e:f0:f3: 8e:6d:25:7b:d7:65:46:dc:8a:06:d2:84:bd:c6:98:aa:8f:46: c3:5e:c0:ab:a1:bd:75:1d:d6:63:b4:04:ba:e3:80:fd:e4:03: 36:34:1c:e8:1c:a4:51:9d:de:62:6b:6f:28:c0:1c:9c:8c:45: ea:d3:0f:2c:a1:0c:7c:89:94:99:23:0f:9b:0f:bb:12:17:6a: 1e:a0:5f:0a:9d:f6:c2:1f:9b:4e:11:19:39:53:72:7d:d0:90: f8:fe:68:4d:94:cb:44:f5:6a:d1:c9:05:69:19:19:88:0c:64: 86:ae:12:5c:7e:ee:d5:c6:83:9a:c0:ed:99:67:c4:38:aa:ba: 71:b2:28:5f:fd:34:43:18:a4:9b:ea:61:1c:78:c1:d8:6f:bc: 91:1a:1a:15:99:c4:7a:b8:d5:fe:97:8d:d6:b4:11:52:8d:a4: 33:93:40:9b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKINHk8vCb9JCPfRAZNKai0e7IfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ4MTQ3QUIzMkFFMzRGRTA1OTkzMDFDMzk5QkE0MzFD QkQ5NkFFMjAeFw0yNjA2MTcyMzI2MTJaFw0yNjA2MTkwMzAxMTJaMDMxMTAvBgNV BAMTKEMzNzE1MDY5NEMxMzNCM0YxOUY5NUIzNDE3OUEyNEFFMEJBMjU4MkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCawX4ptJKyaObI3FuqatccctdP Vb6jT8tZZAFOJtzXU31eJq6Kq9KVxNQrp1X1/RrFppL8q8R6FIoKBHwn2yRj94/e UURpWvmbgoqcuiDMtod27QB14Nc61US2NNw2fX5c89Qp6wUQiUZaS47TO4aMz9bw Xs2blS9QbEeYBe2AyiwbTeSXVOg+r06RaRnZMfEdjMCDcnXxljxBnd8ZgeSIH0su a2KFi0AJ4aBDp8TdHjiaKxpjkenWBtEmPYzI8IyT+eMb2741IvzYQXZpRtMgW084 LQVNZZ7K7R9n5cBOx8HEpEMDjfLIOYzyDLxH68KZnswY3OhPy3vBCQGTMoDBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUw3FQaUwTOz8Z+Vs0F5okrguiWC0wHwYDVR0j BBgwFoAULYFHqzKuNP4FmTAcOZukMcvZauIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v OTFkYTIzZTktODRiZS00YTU0LWJjYTAtZTlhMGNhZmQxNmZlLzAvMkQ4MTQ3QUIz MkFFMzRGRTA1OTkzMDFDMzk5QkE0MzFDQkQ5NkFFMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC8yRDgxNDdBQjMyQUUzNEZFMDU5OTMwMUMzOTlCQTQzMUNCRDk2 QUUyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vOTFkYTIzZTktODRiZS00YTU0LWJj YTAtZTlhMGNhZmQxNmZlLzAvMkQ4MTQ3QUIzMkFFMzRGRTA1OTkzMDFDMzk5QkE0 MzFDQkQ5NkFFMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD5S/+5DEnJctZmIA1ka/bFXkDuJ+FZeo0gM uu1Z4NwBXolYu/SBlkvXV+Lx6/v3704AxKtR6PzcgAY09wjflHOtgGnq0xPBEBUF kDx7CY4+M8Fjauzazh7w845tJXvXZUbcigbShL3GmKqPRsNewKuhvXUd1mO0BLrj gP3kAzY0HOgcpFGd3mJrbyjAHJyMRerTDyyhDHyJlJkjD5sPuxIXah6gXwqd9sIf m04RGTlTcn3QkPj+aE2Uy0T1atHJBWkZGYgMZIauElx+7tXGg5rA7ZlnxDiqunGy KF/9NEMYpJvqYRx4wdhvvJEaGhWZxHq41f6Xjda0EVKNpDOTQJs= -----END CERTIFICATE-----Generated at Thu Jun 18 17:12:11 2026 by rpki-client