$ rpki-client -vvf rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.mft File: 2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.mft (raw, json) Hash identifier: yOCBQOxOaSJjI11wUoF0PcEiNMSP3X54SahwJ+r/dfM= Subject key identifier: F6:61:B8:04:3A:62:3E:4C:F1:ED:6E:F7:B5:0C:AD:BC:02:87:02:28 Authority key identifier: 2C:BD:81:29:5E:A3:FA:38:67:08:20:72:D1:BD:E4:1C:BF:B3:FB:32 Certificate issuer: /CN=2CBD81295EA3FA3867082072D1BDE41CBFB3FB32 Certificate serial: 52BF390C9906CF114E8FBAF683CB62826179D9AF Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.mft Manifest number: 38 Signing time: Sat 13 Jun 2026 03:28:17 +0000 Manifest this update: Sat 13 Jun 2026 03:23:17 +0000 Manifest next update: Sun 14 Jun 2026 06:02:17 +0000 Files and hashes: 1: 3130332e35322e36302e302f32342d3234203d3e20313339343237.roa (hash: oRYTuCJLLdMWXGYdD1e1WCx/FrIV0BiHCyH2sk8DrtM=) 2: 3130332e33312e3234382e302f32342d3234203d3e20313339343237.roa (hash: WTrF0cDS2UOT2PvqICS4rHLAPEa2DituaEKy6TilvQo=) 3: 3130332e35322e36302e302f32332d3233203d3e20313339343237.roa (hash: wZpRBXgVxARx5THQhkidt3uYEJCBivcYi7zf6PFHOe8=) 4: 3130332e33312e3234382e302f32332d3233203d3e20313339343237.roa (hash: gQZiPSYPZragbcbOQFwUKBcBf5Wr0XRio1UQ/GfXKcY=) 5: 2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.crl (hash: ZEpa450SNcy/9eD7Oq317W93J0I3YFNCcCAVtErM16s=) 6: 3130332e35322e36312e302f32342d3234203d3e20313339343237.roa (hash: Ks9YnRvxTe5fupbuzzjnQ7H1k8qTkpLLIojCNDLV9tI=) 7: 3130332e33312e3234392e302f32342d3234203d3e20313339343237.roa (hash: rpaRQ6pLcg3h8lZWS5mZP3KVaWJuOAbOO/JXcmWKPAY=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.crl rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 06:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:bf:39:0c:99:06:cf:11:4e:8f:ba:f6:83:cb:62:82:61:79:d9:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CBD81295EA3FA3867082072D1BDE41CBFB3FB32 Validity Not Before: Jun 13 03:23:17 2026 GMT Not After : Jun 14 06:02:17 2026 GMT Subject: CN=F661B8043A623E4CF1ED6EF7B50CADBC02870228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:3e:49:16:ef:e9:6c:3d:f3:e3:af:19:cd:c4: dd:cd:e0:0d:8b:db:9e:9a:98:48:b2:66:0d:a7:1e: 0a:a1:df:eb:19:23:9e:8d:67:e5:9b:c0:28:52:57: 3d:35:e0:45:0c:a7:9f:51:eb:79:f2:ad:c6:5d:a9: 49:e8:21:70:9d:4b:80:a7:40:2c:5b:ec:3e:b7:06: ee:cf:49:3f:84:3a:b2:78:9b:81:d0:a7:e0:56:ef: 32:7c:b2:08:21:86:de:9e:86:37:5b:61:8d:b8:48: 69:7a:25:23:31:76:b0:fd:ca:41:2f:9a:ec:ce:57: 42:59:f8:e9:c9:a7:3c:ac:07:37:7b:4a:48:c8:35: dd:3f:e1:56:26:4f:cf:b5:e0:83:c6:90:af:53:69: b6:10:03:2a:26:7d:93:92:7c:49:9b:c7:c3:e4:78: 3f:63:40:b6:68:08:7a:ca:8d:fc:19:c9:30:4c:aa: 7c:4b:25:68:5b:f3:a0:11:1f:f6:66:a2:b1:45:b5: 5c:8c:54:03:74:60:b9:6b:34:9c:e4:0b:02:f6:a1: 01:2b:ee:1c:2d:64:3e:07:02:bd:98:b9:44:3c:9a: 72:b1:fd:fb:25:3c:63:2a:de:b8:a8:e3:7a:b4:85: 16:6d:c2:b8:89:ed:14:4e:ea:31:6e:4d:91:b9:e4: 62:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:61:B8:04:3A:62:3E:4C:F1:ED:6E:F7:B5:0C:AD:BC:02:87:02:28 X509v3 Authority Key Identifier: keyid:2C:BD:81:29:5E:A3:FA:38:67:08:20:72:D1:BD:E4:1C:BF:B3:FB:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/2CBD81295EA3FA3867082072D1BDE41CBFB3FB32.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:fa:80:d2:f5:a9:d7:7e:d7:3a:37:3b:16:11:9c:1e:ce:a8: d3:c3:66:08:25:73:7c:d5:84:09:5e:cf:a1:11:e2:c3:ec:ca: b0:b9:88:e8:e4:8d:7a:60:e7:54:fd:2e:a5:a7:67:ce:4d:6c: 2b:05:35:9f:57:23:a0:bf:c2:48:a6:1b:00:69:1b:ed:cb:3a: 4e:81:01:85:5f:c1:83:65:2d:73:53:8f:72:a3:d0:a4:9e:dd: 51:72:07:10:24:77:fd:c7:97:92:3a:59:e9:5a:d6:a2:d0:32: 1c:f3:5a:a7:86:c6:d3:2f:4d:e5:54:d3:a9:d4:01:a5:26:c7: a5:fe:96:8b:dc:45:19:d5:08:75:40:60:9e:12:7b:ca:41:81: 37:21:0a:af:75:7c:37:fd:34:22:11:d1:45:d8:b3:a6:2e:0c: dd:a3:7d:e0:c5:ec:1c:b9:ec:c8:6d:34:f0:4d:56:42:7c:b8: a2:e1:45:9b:43:21:cd:8f:61:67:39:51:d1:31:23:17:c9:56: fc:25:ae:a8:e9:ab:88:64:8f:a0:77:16:68:8f:b2:6e:c3:79: 2d:dc:10:95:89:12:92:bd:de:d0:68:51:d1:1c:68:b1:ce:e2: f9:53:e3:5b:e1:e6:32:fc:e5:e5:b0:df:55:d8:09:89:45:7b: f9:3f:11:f5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUr85DJkGzxFOj7r2g8tigmF52a8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNCRDgxMjk1RUEzRkEzODY3MDgyMDcyRDFCREU0MUNC RkIzRkIzMjAeFw0yNjA2MTMwMzIzMTdaFw0yNjA2MTQwNjAyMTdaMDMxMTAvBgNV BAMTKEY2NjFCODA0M0E2MjNFNENGMUVENkVGN0I1MENBREJDMDI4NzAyMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCPPkkW7+lsPfPjrxnNxN3N4A2L 256amEiyZg2nHgqh3+sZI56NZ+WbwChSVz014EUMp59R63nyrcZdqUnoIXCdS4Cn QCxb7D63Bu7PST+EOrJ4m4HQp+BW7zJ8sgghht6ehjdbYY24SGl6JSMxdrD9ykEv muzOV0JZ+OnJpzysBzd7SkjINd0/4VYmT8+14IPGkK9TabYQAyomfZOSfEmbx8Pk eD9jQLZoCHrKjfwZyTBMqnxLJWhb86ARH/ZmorFFtVyMVAN0YLlrNJzkCwL2oQEr 7hwtZD4HAr2YuUQ8mnKx/fslPGMq3rio43q0hRZtwriJ7RRO6jFuTZG55GJLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9mG4BDpiPkzx7W73tQytvAKHAigwHwYDVR0j BBgwFoAULL2BKV6j+jhnCCBy0b3kHL+z+zIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDYxYjhjY2MtNmMyMi00MjRlLTk2MTQtOGFiOGFkMjg4NDljLzAvMkNCRDgxMjk1 RUEzRkEzODY3MDgyMDcyRDFCREU0MUNCRkIzRkIzMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yQ0JEODEyOTVFQTNGQTM4NjcwODIwNzJEMUJERTQxQ0JGQjNG QjMyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZDYxYjhjY2MtNmMyMi00MjRlLTk2 MTQtOGFiOGFkMjg4NDljLzAvMkNCRDgxMjk1RUEzRkEzODY3MDgyMDcyRDFCREU0 MUNCRkIzRkIzMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE36gNL1qdd+1zo3OxYRnB7OqNPDZgglc3zV hAlez6ER4sPsyrC5iOjkjXpg51T9LqWnZ85NbCsFNZ9XI6C/wkimGwBpG+3LOk6B AYVfwYNlLXNTj3Kj0KSe3VFyBxAkd/3Hl5I6Wela1qLQMhzzWqeGxtMvTeVU06nU AaUmx6X+lovcRRnVCHVAYJ4Se8pBgTchCq91fDf9NCIR0UXYs6YuDN2jfeDF7By5 7MhtNPBNVkJ8uKLhRZtDIc2PYWc5UdExIxfJVvwlrqjpq4hkj6B3FmiPsm7DeS3c EJWJEpK93tBoUdEcaLHO4vlT41vh5jL85eWw31XYCYlFe/k/EfU= -----END CERTIFICATE-----Generated at Sat Jun 13 22:07:19 2026 by rpki-client