$ rpki-client -vvf rpki-rsync.idnic.net/repo/4544e951-3d08-458a-a44a-529d387d26b1/0/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.mft File: 7B2D9E008CC635190865EC64FD829B33BBA1EC0A.mft (raw, json) Hash identifier: QLkRXQH22lGEFKlpOVYrV6ZNbkRFBAbNhiHOUFcKzdc= Subject key identifier: 70:8A:46:45:40:78:1C:8C:41:8A:28:69:A1:55:18:F3:1C:A9:99:C7 Authority key identifier: 7B:2D:9E:00:8C:C6:35:19:08:65:EC:64:FD:82:9B:33:BB:A1:EC:0A Certificate issuer: /CN=7B2D9E008CC635190865EC64FD829B33BBA1EC0A Certificate serial: 6E9AD97318CD4F2FE145F5E6FEAA6CA3ADFEE4AD Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/4544e951-3d08-458a-a44a-529d387d26b1/0/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 19:32:45 +0000 Manifest this update: Tue 16 Jun 2026 19:27:45 +0000 Manifest next update: Wed 17 Jun 2026 23:12:45 +0000 Files and hashes: 1: 3130332e3133312e32392e302f32342d3234203d3e20313338303834.roa (hash: MUH5KpDAgVdYYC+MwQ+aBkJnISkDkljbuMC7PbGyf/c=) 2: 7B2D9E008CC635190865EC64FD829B33BBA1EC0A.crl (hash: upLO0+D83hKhgrbHknKKLAmcrTKHDOQGhHWbG1mDYag=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/4544e951-3d08-458a-a44a-529d387d26b1/0/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.crl rsync://rpki-rsync.idnic.net/repo/4544e951-3d08-458a-a44a-529d387d26b1/0/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 23:12:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:9a:d9:73:18:cd:4f:2f:e1:45:f5:e6:fe:aa:6c:a3:ad:fe:e4:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B2D9E008CC635190865EC64FD829B33BBA1EC0A Validity Not Before: Jun 16 19:27:45 2026 GMT Not After : Jun 17 23:12:45 2026 GMT Subject: CN=708A464540781C8C418A2869A15518F31CA999C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b8:82:13:72:88:af:ef:c2:a3:b5:72:3a:3f: 03:6e:06:6c:59:8c:4e:73:c1:b6:f2:5f:b4:43:fa: fa:e5:8d:ef:7c:f9:74:55:be:79:86:8e:22:b8:09: df:69:fa:e8:cb:d4:c6:3e:79:1f:53:b3:0c:fc:33: 74:2a:3c:46:44:a4:a4:0b:40:95:b7:49:ff:8a:f0: 76:7d:41:a8:10:b1:43:4f:f7:69:0b:d9:28:ea:ad: 8e:a6:09:22:f0:aa:11:86:3d:ec:93:a8:55:db:18: 6b:a1:10:51:81:75:e5:4e:ab:55:50:17:68:2c:21: 3d:78:2c:81:e8:0c:51:50:7b:bc:19:da:07:a0:9d: a8:ba:95:01:f2:35:c4:eb:69:01:df:91:47:54:04: 14:5d:c1:ef:0d:46:c9:5e:8b:a0:45:32:00:1c:7b: 99:3a:2e:84:ab:4d:5f:1e:1d:2e:18:6b:3f:b9:09: 56:74:06:1a:61:58:d8:19:9c:69:10:95:74:cf:05: 79:5a:b8:0f:e8:12:cb:6f:91:f1:29:ec:9b:6e:89: 1f:80:b7:cb:65:b2:6f:99:ab:be:aa:02:67:bc:ac: 1b:33:dc:b8:cf:79:7f:4c:cf:10:43:f3:a7:81:0c: c3:56:96:70:c5:4d:4f:3d:90:b5:98:84:b3:52:bc: f9:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:8A:46:45:40:78:1C:8C:41:8A:28:69:A1:55:18:F3:1C:A9:99:C7 X509v3 Authority Key Identifier: keyid:7B:2D:9E:00:8C:C6:35:19:08:65:EC:64:FD:82:9B:33:BB:A1:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/4544e951-3d08-458a-a44a-529d387d26b1/0/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/4544e951-3d08-458a-a44a-529d387d26b1/0/7B2D9E008CC635190865EC64FD829B33BBA1EC0A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:b1:1c:14:19:3f:8e:63:c4:01:09:63:f6:36:56:37:b1:79: 97:62:d9:f2:9a:0d:5b:00:4e:04:73:19:ec:13:30:f9:7b:5f: 00:21:8c:72:b1:07:0b:c7:32:f7:d1:fb:69:91:6a:5e:26:94: ef:1d:49:35:60:78:31:8e:52:16:fe:f7:b1:df:1a:4c:ac:e3: 8d:2f:c4:65:e9:df:03:66:9e:cb:51:fc:bd:e2:fc:70:11:72: 59:4c:83:f4:d4:ab:46:31:60:77:17:eb:8c:b9:54:61:ae:1a: 8d:99:8a:dd:a9:24:69:72:c7:5e:74:72:82:05:2c:5d:43:ce: 21:32:51:eb:6a:cd:1d:10:6b:35:fc:e6:c1:e0:74:4e:73:2a: 93:2b:6f:15:95:0f:fa:1a:f8:01:44:2d:43:23:b6:72:ca:09: ef:8c:25:61:48:39:c2:4d:73:5b:96:f1:23:94:31:60:db:4a: 69:5b:1b:7d:76:fd:fa:e1:2a:72:64:be:ba:6d:d0:af:eb:54: 41:63:0b:ec:0b:d9:63:1a:65:f5:5a:ed:60:34:36:5a:9c:01: 46:b8:b3:b7:4e:c6:0e:da:a7:90:20:3c:90:9b:1f:c1:f5:d7: 83:2e:43:78:bd:cf:59:15:69:f0:a8:d6:6d:b4:82:2c:72:c9: b2:cf:55:af -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbprZcxjNTy/hRfXm/qpso63+5K0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN0IyRDlFMDA4Q0M2MzUxOTA4NjVFQzY0RkQ4MjlCMzNC QkExRUMwQTAeFw0yNjA2MTYxOTI3NDVaFw0yNjA2MTcyMzEyNDVaMDMxMTAvBgNV BAMTKDcwOEE0NjQ1NDA3ODFDOEM0MThBMjg2OUExNTUxOEYzMUNBOTk5QzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnuIITcoiv78KjtXI6PwNuBmxZ jE5zwbbyX7RD+vrlje98+XRVvnmGjiK4Cd9p+ujL1MY+eR9Tswz8M3QqPEZEpKQL QJW3Sf+K8HZ9QagQsUNP92kL2SjqrY6mCSLwqhGGPeyTqFXbGGuhEFGBdeVOq1VQ F2gsIT14LIHoDFFQe7wZ2gegnai6lQHyNcTraQHfkUdUBBRdwe8NRslei6BFMgAc e5k6LoSrTV8eHS4Yaz+5CVZ0BhphWNgZnGkQlXTPBXlauA/oEstvkfEp7JtuiR+A t8tlsm+Zq76qAme8rBsz3LjPeX9MzxBD86eBDMNWlnDFTU89kLWYhLNSvPnzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcIpGRUB4HIxBiihpoVUY8xypmccwHwYDVR0j BBgwFoAUey2eAIzGNRkIZexk/YKbM7uh7AowDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NDU0NGU5NTEtM2QwOC00NThhLWE0NGEtNTI5ZDM4N2QyNmIxLzAvN0IyRDlFMDA4 Q0M2MzUxOTA4NjVFQzY0RkQ4MjlCMzNCQkExRUMwQS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83QjJEOUUwMDhDQzYzNTE5MDg2NUVDNjRGRDgyOUIzM0JCQTFF QzBBLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNDU0NGU5NTEtM2QwOC00NThhLWE0 NGEtNTI5ZDM4N2QyNmIxLzAvN0IyRDlFMDA4Q0M2MzUxOTA4NjVFQzY0RkQ4MjlC MzNCQkExRUMwQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGKxHBQZP45jxAEJY/Y2VjexeZdi2fKaDVsA TgRzGewTMPl7XwAhjHKxBwvHMvfR+2mRal4mlO8dSTVgeDGOUhb+97HfGkys440v xGXp3wNmnstR/L3i/HARcllMg/TUq0YxYHcX64y5VGGuGo2Zit2pJGlyx150coIF LF1DziEyUetqzR0QazX85sHgdE5zKpMrbxWVD/oa+AFELUMjtnLKCe+MJWFIOcJN c1uW8SOUMWDbSmlbG312/frhKnJkvrpt0K/rVEFjC+wL2WMaZfVa7WA0NlqcAUa4 s7dOxg7ap5AgPJCbH8H114MuQ3i9z1kVafCo1m20gixyybLPVa8= -----END CERTIFICATE-----Generated at Wed Jun 17 09:43:14 2026 by rpki-client