$ rpki-client -vvf rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft File: 662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft (raw, json) Hash identifier: sz3SHG3P+rikZzb3a58cdJwF3eNxUYyZjNhsGQ+lwI0= Subject key identifier: E1:56:20:90:A5:8F:2B:7D:08:C0:C1:55:C8:43:A5:27:E8:08:C6:46 Authority key identifier: 66:2A:1D:1F:0B:83:DC:EA:C7:3D:97:35:14:97:9A:17:03:FA:9E:28 Certificate issuer: /CN=662A1D1F0B83DCEAC73D973514979A1703FA9E28 Certificate serial: 2EA5CA9AA7F04DE8416212F4FAB93E63D73C5B71 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 17:36:07 +0000 Manifest this update: Tue 02 Jun 2026 17:31:07 +0000 Manifest next update: Wed 03 Jun 2026 18:49:07 +0000 Files and hashes: 1: 3230322e3135392e39362e302f31392d3234203d3e2039333430.roa (hash: wQj10i6uxR8PMgl15oZaZmKj6Dkq8me1CXWhGz38VZw=) 2: 662A1D1F0B83DCEAC73D973514979A1703FA9E28.crl (hash: Wa2+I2H9lMiyiDphwwGj37/KMo9B//MTcGkeHqjmBGE=) 3: 3230322e35332e3232342e302f31392d3234203d3e2039333430.roa (hash: PJEb98fYS4vg3BBgZ6XrL5za6qVUTLmXWj6MOSgyH3k=) 4: 3230322e3135392e35302e302f32332d3234203d3e203435373239.roa (hash: 0DjkrTA9ouNvrCsdojisPz41tYiFCwdDrjUDolphH5E=) 5: 3230322e3135392e302e302f31382d3234203d3e2039333430.roa (hash: IfGffrMHINPuRfD4RL+78GjC4IFDiYDYpPLVDptGnC4=) 6: 3230322e3135332e3232342e302f31392d3234203d3e2039333430.roa (hash: thp9e79q4pO0KAuvlYoAaJIJd+/sNGpgdctK2HpTH70=) 7: 3131372e35342e302e302f31362d3234203d3e2039333430.roa (hash: NybJNfrfr/FQtxQSfpzK5NCbywm4KAHMLV7iC5XOQDQ=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.crl rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a5:ca:9a:a7:f0:4d:e8:41:62:12:f4:fa:b9:3e:63:d7:3c:5b:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=662A1D1F0B83DCEAC73D973514979A1703FA9E28 Validity Not Before: Jun 2 17:31:07 2026 GMT Not After : Jun 3 18:49:07 2026 GMT Subject: CN=E1562090A58F2B7D08C0C155C843A527E808C646 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:64:5a:b9:c3:c6:92:82:81:0a:ba:6e:29:d6: 7d:ce:76:51:a3:f1:94:49:9d:69:3a:b0:e9:22:94: a9:51:67:51:fa:cf:9c:57:2d:c7:39:40:c7:76:df: f1:83:7e:2b:61:0b:0a:df:78:52:21:63:8f:55:44: 2c:1b:29:ac:07:fd:1d:80:b0:37:2d:d5:76:26:21: 56:ff:e5:16:0e:97:63:e0:b8:62:d8:09:00:8f:59: 63:f5:4f:13:18:e7:19:9f:4c:41:ad:ff:1f:d0:e1: 4a:e1:53:35:7e:f0:21:35:61:e5:67:8f:27:79:d6: 24:32:af:fb:41:b2:a0:7d:51:c6:15:9e:48:32:62: 9f:76:b1:f9:cf:64:9d:46:2d:c2:53:ec:6b:93:4f: d7:c9:70:b0:fc:a6:8e:58:fe:7d:8a:13:3b:95:d7: fe:7c:9d:81:3d:7f:d0:3c:ec:55:0a:43:88:08:53: d8:39:13:5a:fb:a7:e1:36:90:f8:e5:01:79:4f:b1: a1:6c:ce:7b:74:52:d4:1a:c4:0f:02:19:3c:60:a9: e5:7c:8c:96:54:da:b1:19:e4:38:85:17:0e:82:2a: 3b:27:39:21:fc:f1:81:bf:31:46:61:37:95:79:a8: 68:d0:34:7d:60:cd:f4:a9:4e:44:b3:09:6b:df:01: 84:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:56:20:90:A5:8F:2B:7D:08:C0:C1:55:C8:43:A5:27:E8:08:C6:46 X509v3 Authority Key Identifier: keyid:66:2A:1D:1F:0B:83:DC:EA:C7:3D:97:35:14:97:9A:17:03:FA:9E:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/662A1D1F0B83DCEAC73D973514979A1703FA9E28.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/e5b1e57e-a0f1-467f-a46f-55a3157b0d65/0/662A1D1F0B83DCEAC73D973514979A1703FA9E28.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:be:e2:08:e6:fd:f1:d0:cf:07:6b:f8:6b:e7:4b:63:1e:57: 2e:b8:f8:b1:61:66:98:da:2d:21:fa:18:a8:d8:09:f7:d9:79: b4:f2:c7:57:b1:62:64:f8:f9:e8:10:e1:a6:c6:d5:8a:bc:02: 66:9d:a8:f5:ac:92:88:28:35:b7:97:50:f4:43:84:58:c7:f5: d3:d1:c8:90:4a:e0:be:33:f1:3c:e8:14:d1:33:e3:3b:ff:2e: 9c:39:56:c3:e8:4b:82:ed:af:8c:49:29:00:8f:c0:69:a8:a3: 0a:c3:90:d4:7c:15:bb:ac:85:35:eb:26:e2:18:55:4d:61:cd: 4b:2d:17:43:df:ec:3d:6f:e3:b0:a3:82:df:c2:c0:8a:be:e7: 6b:64:07:c9:bb:62:b4:e0:b2:10:81:c6:b6:0e:71:72:dd:26: d4:39:25:79:ff:aa:aa:dd:2b:a3:12:83:d6:16:94:bc:3f:55: 96:a7:a7:ad:4b:98:98:eb:f9:83:ab:eb:ee:53:7d:d8:02:c3: c9:0e:bf:83:93:41:af:ea:fe:17:f0:41:58:64:43:94:68:95: 08:cd:de:91:9c:d0:fb:d6:ab:ea:f6:ba:87:50:8c:79:74:68: 16:d8:7f:77:b5:ad:e7:d7:2a:69:59:77:59:7c:d2:a2:21:30: e6:6a:7c:07 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULqXKmqfwTehBYhL0+rk+Y9c8W3EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjYyQTFEMUYwQjgzRENFQUM3M0Q5NzM1MTQ5NzlBMTcw M0ZBOUUyODAeFw0yNjA2MDIxNzMxMDdaFw0yNjA2MDMxODQ5MDdaMDMxMTAvBgNV BAMTKEUxNTYyMDkwQTU4RjJCN0QwOEMwQzE1NUM4NDNBNTI3RTgwOEM2NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+ZFq5w8aSgoEKum4p1n3OdlGj 8ZRJnWk6sOkilKlRZ1H6z5xXLcc5QMd23/GDfithCwrfeFIhY49VRCwbKawH/R2A sDct1XYmIVb/5RYOl2PguGLYCQCPWWP1TxMY5xmfTEGt/x/Q4UrhUzV+8CE1YeVn jyd51iQyr/tBsqB9UcYVnkgyYp92sfnPZJ1GLcJT7GuTT9fJcLD8po5Y/n2KEzuV 1/58nYE9f9A87FUKQ4gIU9g5E1r7p+E2kPjlAXlPsaFsznt0UtQaxA8CGTxgqeV8 jJZU2rEZ5DiFFw6CKjsnOSH88YG/MUZhN5V5qGjQNH1gzfSpTkSzCWvfAYSxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4VYgkKWPK30IwMFVyEOlJ+gIxkYwHwYDVR0j BBgwFoAUZiodHwuD3OrHPZc1FJeaFwP6nigwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZTViMWU1N2UtYTBmMS00NjdmLWE0NmYtNTVhMzE1N2IwZDY1LzAvNjYyQTFEMUYw QjgzRENFQUM3M0Q5NzM1MTQ5NzlBMTcwM0ZBOUUyOC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NjJBMUQxRjBCODNEQ0VBQzczRDk3MzUxNDk3OUExNzAzRkE5 RTI4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZTViMWU1N2UtYTBmMS00NjdmLWE0 NmYtNTVhMzE1N2IwZDY1LzAvNjYyQTFEMUYwQjgzRENFQUM3M0Q5NzM1MTQ5NzlB MTcwM0ZBOUUyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFa+4gjm/fHQzwdr+GvnS2MeVy64+LFhZpja LSH6GKjYCffZebTyx1exYmT4+egQ4abG1Yq8AmadqPWskogoNbeXUPRDhFjH9dPR yJBK4L4z8TzoFNEz4zv/Lpw5VsPoS4Ltr4xJKQCPwGmoowrDkNR8FbushTXrJuIY VU1hzUstF0Pf7D1v47Cjgt/CwIq+52tkB8m7YrTgshCBxrYOcXLdJtQ5JXn/qqrd K6MSg9YWlLw/VZanp61LmJjr+YOr6+5TfdgCw8kOv4OTQa/q/hfwQVhkQ5RolQjN 3pGc0PvWq+r2uodQjHl0aBbYf3e1refXKmlZd1l80qIhMOZqfAc= -----END CERTIFICATE-----Generated at Tue Jun 2 21:28:33 2026 by rpki-client