$ rpki-client -vvf rpki-rsync.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.mft File: 678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.mft (raw, json) Hash identifier: 2/zAbaX+50AJjxcTBQ3mRhVJxBL/6r36eS1AK1QWUgg= Subject key identifier: 2F:9C:1F:B2:8F:A3:C5:34:11:82:73:3E:28:D3:0B:EC:34:38:45:85 Authority key identifier: 67:8D:C4:E5:CD:EE:38:E9:2F:16:4E:31:CB:CF:1D:E2:81:E1:1F:78 Certificate issuer: /CN=678DC4E5CDEE38E92F164E31CBCF1DE281E11F78 Certificate serial: 21B9FCE27BF47D2F25B9A0E2D458D957A11B6602 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 15:28:01 +0000 Manifest this update: Tue 16 Jun 2026 15:23:01 +0000 Manifest next update: Wed 17 Jun 2026 18:15:01 +0000 Files and hashes: 1: 3130332e3138372e3136322e302f32332d3233203d3e20313439373434.roa (hash: K7gLEaJOvJG1oR23N++5bronVX/UxVgeV83uSIeZkj8=) 2: 3130332e3138372e3136332e302f32342d3234203d3e20313439373434.roa (hash: HmMWaqxZeJVKcLUeiKwOrIOt1xAtBLuHHQ9Uw6FwLAA=) 3: 678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.crl (hash: lKBkeyGCwTGvYxeRj56DlmNMlMg8/EsYs4yqff8qV24=) 4: 3130332e3138372e3136322e302f32342d3234203d3e20313439373434.roa (hash: geUkmWOBdBD6UmoAAt66qEQS/LMUuwT/GvSkrgWo58s=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.crl rsync://rpki-rsync.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 18:15:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:b9:fc:e2:7b:f4:7d:2f:25:b9:a0:e2:d4:58:d9:57:a1:1b:66:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=678DC4E5CDEE38E92F164E31CBCF1DE281E11F78 Validity Not Before: Jun 16 15:23:01 2026 GMT Not After : Jun 17 18:15:01 2026 GMT Subject: CN=2F9C1FB28FA3C5341182733E28D30BEC34384585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b8:77:32:67:8a:40:41:e3:c9:d3:f0:10:c6: 2a:11:8f:78:0c:ec:13:a8:a8:c4:39:f9:9b:19:db: ee:8e:99:33:c4:73:b5:91:76:31:98:8d:5a:fd:7d: c9:4a:ec:3f:b9:b0:25:c8:d5:c2:1f:bf:96:f7:05: ab:0a:55:6e:12:90:a2:e7:c6:49:58:58:f7:f6:78: d1:aa:ce:8a:de:4a:73:9c:dc:9a:fb:1f:8f:13:ac: bf:57:a2:b8:d7:5f:82:37:14:a1:e1:f4:aa:85:b8: ad:98:66:32:98:9b:54:3f:5b:cf:ff:9c:8e:d8:d3: cd:23:54:fb:94:c2:21:71:7b:cf:c4:b3:d2:6c:f3: 98:aa:02:f1:b5:f0:65:e4:e6:00:5a:59:1e:70:c5: cf:a5:1a:0b:28:ca:7f:f9:b5:c6:38:2e:45:5b:11: 49:cf:ec:6b:fd:86:e7:bf:b2:03:ff:6f:1c:85:87: 5a:0e:d0:71:d8:e4:06:e2:22:18:7a:19:f9:c0:ef: a1:fc:1d:5a:c7:08:e7:94:e6:6c:f0:1b:88:0f:d0: da:f2:ea:92:11:50:ef:da:2a:17:b7:5b:1b:ae:7e: 4b:0d:1f:f2:8d:21:e6:d3:ea:98:f8:4b:fd:af:bf: db:ea:cb:1c:8c:e6:20:4b:43:0b:7f:24:85:89:79: 55:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:9C:1F:B2:8F:A3:C5:34:11:82:73:3E:28:D3:0B:EC:34:38:45:85 X509v3 Authority Key Identifier: keyid:67:8D:C4:E5:CD:EE:38:E9:2F:16:4E:31:CB:CF:1D:E2:81:E1:1F:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b25c7e1d-82e8-4100-b435-9954272fb7a8/0/678DC4E5CDEE38E92F164E31CBCF1DE281E11F78.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:95:57:f8:d3:1d:09:7d:b3:bb:30:44:14:ad:1d:5f:b2:a3: 6c:e7:d2:98:19:31:ae:35:4d:42:b2:0c:ff:76:6e:c9:95:14: fd:ac:68:4e:34:53:76:ec:96:14:9e:5c:2a:b6:3e:61:23:66: 27:2e:db:11:38:55:97:2d:93:f9:ad:a1:df:d7:91:69:3f:bc: 2b:88:e3:a1:bd:da:49:58:07:a9:1d:38:80:1d:eb:2f:bd:ea: d4:be:6f:c4:39:7d:e1:60:dc:e3:52:98:1a:3c:94:40:65:7c: c9:ea:ae:0f:f4:62:41:ac:62:cf:1c:ef:21:cf:c1:44:49:05: e3:80:3c:76:99:6f:59:56:75:b5:6d:3b:f1:f7:b2:f2:b2:98: 99:ce:c8:b7:19:ed:fd:1a:27:c8:33:9f:26:8d:57:ac:c9:21: bb:bb:1f:5b:e1:5d:19:6e:6e:3c:78:46:ff:f1:dd:bf:a1:3a: ff:54:61:10:8b:96:02:d7:95:44:16:ce:f3:fa:11:1c:de:52: 5a:9c:b9:57:2a:f4:03:74:ae:3b:0e:a1:da:0e:05:b5:6b:43: de:be:c1:65:61:a1:c7:4f:dd:de:e4:64:4e:50:7e:b4:73:6c: f6:e3:ba:df:8e:a8:be:fc:15:85:92:e2:6b:a8:03:d0:20:40: 7b:78:36:49 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIbn84nv0fS8luaDi1FjZV6EbZgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjc4REM0RTVDREVFMzhFOTJGMTY0RTMxQ0JDRjFERTI4 MUUxMUY3ODAeFw0yNjA2MTYxNTIzMDFaFw0yNjA2MTcxODE1MDFaMDMxMTAvBgNV BAMTKDJGOUMxRkIyOEZBM0M1MzQxMTgyNzMzRTI4RDMwQkVDMzQzODQ1ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+uHcyZ4pAQePJ0/AQxioRj3gM 7BOoqMQ5+ZsZ2+6OmTPEc7WRdjGYjVr9fclK7D+5sCXI1cIfv5b3BasKVW4SkKLn xklYWPf2eNGqzoreSnOc3Jr7H48TrL9XorjXX4I3FKHh9KqFuK2YZjKYm1Q/W8// nI7Y080jVPuUwiFxe8/Es9Js85iqAvG18GXk5gBaWR5wxc+lGgsoyn/5tcY4LkVb EUnP7Gv9hue/sgP/bxyFh1oO0HHY5AbiIhh6GfnA76H8HVrHCOeU5mzwG4gP0Nry 6pIRUO/aKhe3WxuufksNH/KNIebT6pj4S/2vv9vqyxyM5iBLQwt/JIWJeVXdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUL5wfso+jxTQRgnM+KNML7DQ4RYUwHwYDVR0j BBgwFoAUZ43E5c3uOOkvFk4xy88d4oHhH3gwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjI1YzdlMWQtODJlOC00MTAwLWI0MzUtOTk1NDI3MmZiN2E4LzAvNjc4REM0RTVD REVFMzhFOTJGMTY0RTMxQ0JDRjFERTI4MUUxMUY3OC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82NzhEQzRFNUNERUUzOEU5MkYxNjRFMzFDQkNGMURFMjgxRTEx Rjc4LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjI1YzdlMWQtODJlOC00MTAwLWI0 MzUtOTk1NDI3MmZiN2E4LzAvNjc4REM0RTVDREVFMzhFOTJGMTY0RTMxQ0JDRjFE RTI4MUUxMUY3OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAKVV/jTHQl9s7swRBStHV+yo2zn0pgZMa41 TUKyDP92bsmVFP2saE40U3bslhSeXCq2PmEjZicu2xE4VZctk/mtod/XkWk/vCuI 46G92klYB6kdOIAd6y+96tS+b8Q5feFg3ONSmBo8lEBlfMnqrg/0YkGsYs8c7yHP wURJBeOAPHaZb1lWdbVtO/H3svKymJnOyLcZ7f0aJ8gznyaNV6zJIbu7H1vhXRlu bjx4Rv/x3b+hOv9UYRCLlgLXlUQWzvP6ERzeUlqcuVcq9AN0rjsOodoOBbVrQ96+ wWVhocdP3d7kZE5QfrRzbPbjut+OqL78FYWS4muoA9AgQHt4Nkk= -----END CERTIFICATE-----Generated at Wed Jun 17 11:12:21 2026 by rpki-client