$ rpki-client -vvf rpki-rsync.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/32857E62250C763037D1ED291D7937072EB50DC5.mft File: 32857E62250C763037D1ED291D7937072EB50DC5.mft (raw, json) Hash identifier: m0nNFOGfOU9/TYly2yp5QBfYmMX/OcHOOdrVQjCaJOk= Subject key identifier: 57:F7:6A:97:48:20:43:A6:41:B4:44:77:72:D9:0F:0A:84:92:C2:C6 Authority key identifier: 32:85:7E:62:25:0C:76:30:37:D1:ED:29:1D:79:37:07:2E:B5:0D:C5 Certificate issuer: /CN=32857E62250C763037D1ED291D7937072EB50DC5 Certificate serial: 4FE593DAE45C557E94330BAA157B4CFBF51A5F2A Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32857E62250C763037D1ED291D7937072EB50DC5.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/32857E62250C763037D1ED291D7937072EB50DC5.mft Manifest number: 3E Signing time: Tue 16 Jun 2026 23:57:58 +0000 Manifest this update: Tue 16 Jun 2026 23:52:58 +0000 Manifest next update: Thu 18 Jun 2026 03:31:58 +0000 Files and hashes: 1: 3130332e3137392e36382e302f32342d3234203d3e20313439333337.roa (hash: bObGNzkzxqsMtfGussqQMllg3CDeiOkWDE0MTteiGhQ=) 2: 32857E62250C763037D1ED291D7937072EB50DC5.crl (hash: pbzHKJdO1t0dqvzH1jbmcrqgAnfYsMeR9FOtwSXxbEs=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/32857E62250C763037D1ED291D7937072EB50DC5.crl rsync://rpki-rsync.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/32857E62250C763037D1ED291D7937072EB50DC5.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32857E62250C763037D1ED291D7937072EB50DC5.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Jun 2026 03:08:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:e5:93:da:e4:5c:55:7e:94:33:0b:aa:15:7b:4c:fb:f5:1a:5f:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32857E62250C763037D1ED291D7937072EB50DC5 Validity Not Before: Jun 16 23:52:58 2026 GMT Not After : Jun 18 03:31:58 2026 GMT Subject: CN=57F76A97482043A641B4447772D90F0A8492C2C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bd:32:57:a9:43:da:c1:3e:38:2f:f0:29:e2: 8e:ca:03:89:6c:5d:b1:53:3c:51:3c:0c:8d:9f:23: ac:68:e3:a4:9f:fe:27:c4:10:52:31:08:20:ee:57: 0e:5a:58:92:ac:ce:3f:2b:f5:dd:e2:b6:b2:83:bf: 89:51:6a:26:cc:b5:cd:d8:af:8b:64:a4:d7:3e:da: a2:c9:ec:be:b9:f8:26:6a:a5:ed:4a:44:78:d6:63: 8b:49:af:7b:a0:a0:0a:83:60:12:20:2c:44:90:3e: 3c:7f:e2:ee:11:26:fa:07:9c:da:41:36:9c:9a:95: eb:a2:07:ab:d8:3a:b1:27:c9:9c:f4:97:35:43:d1: e8:52:4d:fd:f3:86:78:49:9f:64:82:5f:28:6b:4b: e8:d7:2c:9a:f3:2c:28:53:3d:10:56:27:77:d4:fe: 64:09:d2:d6:a5:4a:6f:98:28:69:46:da:43:cc:bb: e4:fd:4f:57:e1:fd:7a:b7:45:9e:8d:5a:63:c6:f3: 2e:e3:bf:0e:c8:61:5e:24:2a:7f:09:4e:c2:0a:52: be:ca:9e:6e:9f:f4:c3:4b:7b:01:25:8f:bc:15:fe: e1:99:f6:ee:a9:d3:1a:c1:47:74:b9:3f:6a:ef:bc: 97:7a:2d:0b:9d:a0:8f:98:27:a8:fa:3b:97:ad:0b: 31:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:F7:6A:97:48:20:43:A6:41:B4:44:77:72:D9:0F:0A:84:92:C2:C6 X509v3 Authority Key Identifier: keyid:32:85:7E:62:25:0C:76:30:37:D1:ED:29:1D:79:37:07:2E:B5:0D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/32857E62250C763037D1ED291D7937072EB50DC5.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/32857E62250C763037D1ED291D7937072EB50DC5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/32857E62250C763037D1ED291D7937072EB50DC5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:3b:c9:b2:15:aa:b5:00:59:ee:c3:5e:a9:02:81:24:82:2e: 38:48:26:57:c4:eb:71:d7:5a:81:1e:62:57:44:b1:24:ec:53: 52:95:05:23:2c:7e:e5:2e:40:56:e4:63:29:86:a0:4e:65:52: 7e:c0:fe:d7:f0:e4:b4:ff:ec:c4:fc:53:2f:13:23:0b:38:3c: d8:56:f9:cf:cf:ce:2c:39:98:ed:4f:cc:87:d7:f3:09:62:ff: 9e:16:fc:50:c5:33:4c:46:48:5c:c1:27:fa:69:6d:e9:cd:44: a8:39:85:d2:64:03:6a:87:c4:4e:db:c9:ec:26:14:93:ff:b0: f5:09:21:b7:38:c7:80:bd:46:4e:cf:87:b8:c3:7b:49:c8:56: 3c:09:3e:3b:62:c1:a3:70:2d:01:4b:4b:0c:46:68:bb:db:dd: c6:c2:78:ee:5e:d8:e4:dc:bf:c5:88:74:b6:7f:37:4b:ee:54: ed:93:fb:d7:32:39:b2:a0:bf:bc:08:9b:47:be:1d:c4:31:62: 5f:fa:44:f6:2c:12:f0:44:ea:fd:4a:51:2c:a9:78:6b:81:4d: 27:f1:58:8a:5c:86:eb:62:8d:e0:98:83:82:4f:37:19:2d:69: 4e:82:2b:0b:ec:05:34:f5:d8:cb:58:36:7e:0f:4c:77:df:92: d1:1c:19:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT+WT2uRcVX6UMwuqFXtM+/UaXyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzI4NTdFNjIyNTBDNzYzMDM3RDFFRDI5MUQ3OTM3MDcy RUI1MERDNTAeFw0yNjA2MTYyMzUyNThaFw0yNjA2MTgwMzMxNThaMDMxMTAvBgNV BAMTKDU3Rjc2QTk3NDgyMDQzQTY0MUI0NDQ3NzcyRDkwRjBBODQ5MkMyQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOvTJXqUPawT44L/Ap4o7KA4ls XbFTPFE8DI2fI6xo46Sf/ifEEFIxCCDuVw5aWJKszj8r9d3itrKDv4lRaibMtc3Y r4tkpNc+2qLJ7L65+CZqpe1KRHjWY4tJr3ugoAqDYBIgLESQPjx/4u4RJvoHnNpB NpyaleuiB6vYOrEnyZz0lzVD0ehSTf3zhnhJn2SCXyhrS+jXLJrzLChTPRBWJ3fU /mQJ0talSm+YKGlG2kPMu+T9T1fh/Xq3RZ6NWmPG8y7jvw7IYV4kKn8JTsIKUr7K nm6f9MNLewElj7wV/uGZ9u6p0xrBR3S5P2rvvJd6LQudoI+YJ6j6O5etCzFZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUV/dql0ggQ6ZBtER3ctkPCoSSwsYwHwYDVR0j BBgwFoAUMoV+YiUMdjA30e0pHXk3By61DcUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MmQzZWQwMTItYWZkYi00MmZiLTk3MWEtZTE2MmE5ZGVjNDZkLzAvMzI4NTdFNjIy NTBDNzYzMDM3RDFFRDI5MUQ3OTM3MDcyRUI1MERDNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8zMjg1N0U2MjI1MEM3NjMwMzdEMUVEMjkxRDc5MzcwNzJFQjUw REM1LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMmQzZWQwMTItYWZkYi00MmZiLTk3 MWEtZTE2MmE5ZGVjNDZkLzAvMzI4NTdFNjIyNTBDNzYzMDM3RDFFRDI5MUQ3OTM3 MDcyRUI1MERDNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKA7ybIVqrUAWe7DXqkCgSSCLjhIJlfE63HX WoEeYldEsSTsU1KVBSMsfuUuQFbkYymGoE5lUn7A/tfw5LT/7MT8Uy8TIws4PNhW +c/Pziw5mO1PzIfX8wli/54W/FDFM0xGSFzBJ/ppbenNRKg5hdJkA2qHxE7byewm FJP/sPUJIbc4x4C9Rk7Ph7jDe0nIVjwJPjtiwaNwLQFLSwxGaLvb3cbCeO5e2OTc v8WIdLZ/N0vuVO2T+9cyObKgv7wIm0e+HcQxYl/6RPYsEvBE6v1KUSypeGuBTSfx WIpchutijeCYg4JPNxktaU6CKwvsBTT12MtYNn4PTHffktEcGdY= -----END CERTIFICATE-----Generated at Wed Jun 17 11:30:26 2026 by rpki-client