$ rpki-client -vvf rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.mft File: 2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.mft (raw, json) Hash identifier: xj54z3tSZccrL3Xc6SsJIjFP1M5LP79XSCT/pHvN1hY= Subject key identifier: A1:CD:7A:5F:63:E9:55:53:B4:4D:8F:7C:7F:40:3E:14:F9:9B:44:04 Authority key identifier: 2A:A2:C2:03:9F:F7:2E:89:6E:CE:6F:0E:3E:AD:38:A0:28:1A:75:AE Certificate issuer: /CN=2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE Certificate serial: 3FA92268B66D2A16E6BC46AA913821C026D628BF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.mft Manifest number: 41 Signing time: Sat 20 Jun 2026 02:37:58 +0000 Manifest this update: Sat 20 Jun 2026 02:32:58 +0000 Manifest next update: Sun 21 Jun 2026 05:19:58 +0000 Files and hashes: 1: 3130332e3235332e3132372e302f32342d3234203d3e20313530393839.roa (hash: dZhfKdQv3o4ubnF31yoaIvJtkGW4D/+D/cLAtWAUEM0=) 2: 2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.crl (hash: MUCJ/XIApp/Sx1wjd03Ri5gsoyQKOt0PvfBO19TWW3g=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.crl rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Jun 2026 05:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:a9:22:68:b6:6d:2a:16:e6:bc:46:aa:91:38:21:c0:26:d6:28:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE Validity Not Before: Jun 20 02:32:58 2026 GMT Not After : Jun 21 05:19:58 2026 GMT Subject: CN=A1CD7A5F63E95553B44D8F7C7F403E14F99B4404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:16:91:86:08:68:27:c3:8c:4f:b6:dc:d9:14: b2:de:1b:f5:46:94:12:c2:6a:e4:fb:bf:ab:ed:01: 7a:f3:f8:d4:f6:d4:8b:9f:08:62:fa:cb:76:87:1c: 36:48:66:c8:c6:87:1b:11:e2:bb:31:89:0a:fd:63: c2:d7:0e:8d:a4:30:8e:c5:0a:16:aa:cc:41:e1:7c: 4f:99:10:fd:b2:a1:02:e7:95:de:30:9b:57:25:01: dc:c5:ef:72:ba:58:9e:24:40:03:96:41:39:78:2f: 89:62:9e:66:8f:73:19:70:58:11:5a:f1:8e:61:e9: 2c:0d:d1:df:90:3b:d1:84:cf:aa:57:77:fd:33:53: ed:6c:05:9d:1b:77:2a:9c:6d:61:30:d8:45:3b:3b: b1:f9:72:87:32:dc:4c:9d:61:6d:95:dc:7d:a1:52: ab:0c:ec:d9:bb:a6:a8:e6:f6:17:d0:85:64:e6:ee: 07:7a:13:f3:10:cc:58:2f:dd:2c:6e:f6:80:66:34: da:6e:77:5d:fd:d2:61:7e:ee:b7:f2:70:d8:a8:ef: ff:f0:3a:55:75:b1:e4:8f:cd:85:50:d2:b2:e6:c4: 47:8e:7d:16:85:04:ac:83:62:99:34:8b:07:24:70: f0:02:2c:81:e9:40:26:ef:e3:c0:69:f5:22:99:ea: ed:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:CD:7A:5F:63:E9:55:53:B4:4D:8F:7C:7F:40:3E:14:F9:9B:44:04 X509v3 Authority Key Identifier: keyid:2A:A2:C2:03:9F:F7:2E:89:6E:CE:6F:0E:3E:AD:38:A0:28:1A:75:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/2AA2C2039FF72E896ECE6F0E3EAD38A0281A75AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:e0:74:bc:ae:17:44:1f:91:e3:24:ec:d1:89:34:8e:de:46: 45:c9:cb:4f:13:67:2d:1a:e6:bc:2f:61:52:99:1b:9b:fc:8f: ba:80:fc:5b:62:fe:69:e7:53:78:03:56:39:4c:5d:f3:37:bc: 14:f2:00:fe:d9:f7:36:27:84:2d:d5:71:8d:79:24:99:99:23: 4b:f1:8e:16:a3:c0:21:33:7f:84:15:4f:55:b3:5c:1b:27:20: e2:70:e4:a0:ac:bd:1f:c1:57:33:c2:eb:15:34:ad:d9:43:f8: a1:b1:48:b1:f4:39:69:ca:0c:c2:1e:c6:ce:67:a6:9b:20:b5: d8:a1:f7:c2:4f:85:4a:03:85:54:12:35:dc:11:13:04:13:fe: ba:c7:9f:fb:c0:31:a6:c8:26:84:60:b1:32:26:ba:0a:ba:c5: 9e:f1:13:9c:de:8d:5e:e1:f0:0b:62:8c:e7:5c:bc:d9:2c:43: 0f:b4:13:4e:9f:25:ab:1d:e7:b7:67:2a:48:04:2c:31:bc:40: fb:b5:49:eb:aa:e7:ba:52:23:84:4a:ef:44:d7:9b:3a:a2:a5: 5f:8b:e4:64:6d:d1:89:70:12:0a:1b:2b:de:3a:df:8e:44:73: 35:e5:13:17:f2:c6:3b:70:27:b3:4e:60:3d:bd:2f:5e:45:7e: c0:0b:2e:46 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP6kiaLZtKhbmvEaqkTghwCbWKL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFBMkMyMDM5RkY3MkU4OTZFQ0U2RjBFM0VBRDM4QTAy ODFBNzVBRTAeFw0yNjA2MjAwMjMyNThaFw0yNjA2MjEwNTE5NThaMDMxMTAvBgNV BAMTKEExQ0Q3QTVGNjNFOTU1NTNCNDREOEY3QzdGNDAzRTE0Rjk5QjQ0MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBFpGGCGgnw4xPttzZFLLeG/VG lBLCauT7v6vtAXrz+NT21IufCGL6y3aHHDZIZsjGhxsR4rsxiQr9Y8LXDo2kMI7F ChaqzEHhfE+ZEP2yoQLnld4wm1clAdzF73K6WJ4kQAOWQTl4L4linmaPcxlwWBFa 8Y5h6SwN0d+QO9GEz6pXd/0zU+1sBZ0bdyqcbWEw2EU7O7H5cocy3EydYW2V3H2h UqsM7Nm7pqjm9hfQhWTm7gd6E/MQzFgv3Sxu9oBmNNpud1390mF+7rfycNio7//w OlV1seSPzYVQ0rLmxEeOfRaFBKyDYpk0iwckcPACLIHpQCbv48Bp9SKZ6u1nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoc16X2PpVVO0TY98f0A+FPmbRAQwHwYDVR0j BBgwFoAUKqLCA5/3Loluzm8OPq04oCgada4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDNlMjdkYTktZTZlNi00NGE1LTk4ZjQtNTkwZWI1YTFiZDY1LzAvMkFBMkMyMDM5 RkY3MkU4OTZFQ0U2RjBFM0VBRDM4QTAyODFBNzVBRS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQUEyQzIwMzlGRjcyRTg5NkVDRTZGMEUzRUFEMzhBMDI4MUE3 NUFFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDNlMjdkYTktZTZlNi00NGE1LTk4 ZjQtNTkwZWI1YTFiZDY1LzAvMkFBMkMyMDM5RkY3MkU4OTZFQ0U2RjBFM0VBRDM4 QTAyODFBNzVBRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADDgdLyuF0QfkeMk7NGJNI7eRkXJy08TZy0a 5rwvYVKZG5v8j7qA/Fti/mnnU3gDVjlMXfM3vBTyAP7Z9zYnhC3VcY15JJmZI0vx jhajwCEzf4QVT1WzXBsnIOJw5KCsvR/BVzPC6xU0rdlD+KGxSLH0OWnKDMIexs5n ppsgtdih98JPhUoDhVQSNdwREwQT/rrHn/vAMabIJoRgsTImugq6xZ7xE5zejV7h 8AtijOdcvNksQw+0E06fJasd57dnKkgELDG8QPu1Seuq57pSI4RK70TXmzqipV+L 5GRt0YlwEgobK946345EczXlExfyxjtwJ7NOYD29L15FfsALLkY= -----END CERTIFICATE-----Generated at Sat Jun 20 09:15:33 2026 by rpki-client