
$ rpki-client -vvf rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.mft
File: 328533C99D9FDEAA8F1418F15BD32B96BC206058.mft (raw, json)
Hash identifier: pjsp8HQ3EX07nCrs7V03kp6k8Ox617VpOpFl6LEwJ6o=
Subject key identifier: 28:53:9F:6F:A1:95:31:D4:D0:7D:FC:35:82:0E:3A:E6:56:C6:B1:79
Authority key identifier: 32:85:33:C9:9D:9F:DE:AA:8F:14:18:F1:5B:D3:2B:96:BC:20:60:58
Certificate issuer: /CN=328533C99D9FDEAA8F1418F15BD32B96BC206058
Certificate serial: 14157756AC9088E637E57EB55360000DAC63158D
Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/328533C99D9FDEAA8F1418F15BD32B96BC206058.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.mft
Manifest number: 68
Signing time: Sun 19 Jul 2026 04:02:15 +0000
Manifest this update: Sun 19 Jul 2026 03:57:15 +0000
Manifest next update: Mon 20 Jul 2026 07:37:15 +0000
Files and hashes: 1: 328533C99D9FDEAA8F1418F15BD32B96BC206058.crl (hash: m6TYU5yx9IzOio5FMTIDJTxv5lV4KnBUpaZP74su6s0=)
2: 3130332e3231392e362e302f32342d3234203d3e203338313537.roa (hash: WdtifxvKK3KsxSLiwEXLWrNPcTtmbGv7tQrCl/tBPS8=)
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.crl
rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.mft
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/328533C99D9FDEAA8F1418F15BD32B96BC206058.cer
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 20 Jul 2026 07:37:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:15:77:56:ac:90:88:e6:37:e5:7e:b5:53:60:00:0d:ac:63:15:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=328533C99D9FDEAA8F1418F15BD32B96BC206058
Validity
Not Before: Jul 19 03:57:15 2026 GMT
Not After : Jul 20 07:37:15 2026 GMT
Subject: CN=28539F6FA19531D4D07DFC35820E3AE656C6B179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4f:ea:42:ce:07:07:8a:5d:78:80:51:dc:a5:
5f:82:c3:cb:4e:8e:a9:ab:ad:0a:44:1b:5e:1a:3a:
4b:a3:71:87:88:fd:15:9f:7b:b1:49:ae:d4:d4:3c:
42:3b:b2:8b:29:1f:b9:f7:5f:b1:49:b0:05:57:c4:
78:fc:b9:1f:e5:5b:25:60:d0:9d:c6:5e:c5:46:c3:
38:cc:1a:55:6b:5b:cb:89:9e:3b:55:0d:b9:b0:6e:
55:e9:66:94:22:5d:88:a3:46:16:e4:76:c9:81:e1:
be:c9:a1:51:b1:e4:3a:3f:24:05:a0:f3:4d:c5:b7:
a4:9c:a0:97:8e:f0:15:8f:5d:89:5c:95:24:aa:19:
67:c1:bb:f1:be:c4:f2:60:1f:7d:c0:01:17:e0:33:
fe:77:c5:95:de:98:1f:6b:9f:1f:35:65:ed:99:80:
27:d1:3c:4d:43:2d:2f:2b:a6:62:c5:de:4f:09:4c:
bd:a5:73:f1:e2:8c:8e:c7:e8:e5:5d:66:6b:f8:fd:
55:4c:08:53:61:ef:c8:b8:34:4a:cc:76:31:e2:33:
55:c4:3c:e8:4f:92:07:08:fa:f8:7e:2f:8f:47:4b:
1e:e8:34:3a:b7:93:db:6f:29:b5:18:04:e3:ef:46:
12:aa:38:72:43:c2:3b:69:62:d0:8f:e4:05:c3:c7:
a9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:53:9F:6F:A1:95:31:D4:D0:7D:FC:35:82:0E:3A:E6:56:C6:B1:79
X509v3 Authority Key Identifier:
keyid:32:85:33:C9:9D:9F:DE:AA:8F:14:18:F1:5B:D3:2B:96:BC:20:60:58
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/328533C99D9FDEAA8F1418F15BD32B96BC206058.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/2021ee76-a9ff-4bfa-8223-946eecccf036/0/328533C99D9FDEAA8F1418F15BD32B96BC206058.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:46:a7:0b:f0:f7:18:1f:ba:0a:f5:ed:ed:19:41:9c:1e:ab:
42:51:47:bd:8b:68:6e:90:c1:07:54:be:99:e6:b4:24:ab:55:
d1:b3:30:c0:ee:7b:88:d0:76:ef:1d:87:7a:f5:e8:82:5c:25:
d0:2a:1b:51:c7:97:40:ef:36:94:16:e5:0b:32:9c:91:52:7d:
5f:90:77:49:47:36:8f:0e:4d:4f:01:b7:ac:15:a6:fc:5c:e8:
38:fd:f8:d9:87:59:31:50:d7:e1:32:84:a2:f6:02:ab:95:44:
37:c9:b3:9d:9c:41:80:02:c1:31:97:6d:ff:5e:61:23:ac:43:
a7:e6:df:af:ca:8b:be:1f:f1:9d:ea:68:ff:d6:55:9a:88:a6:
22:89:2a:60:92:33:80:66:e9:e6:21:72:dd:3d:84:f7:b1:9f:
d3:f5:3b:0c:ac:06:69:3e:da:7a:40:46:1d:4a:8b:3b:02:f5:
e2:3d:4c:c7:1e:44:ed:5e:97:29:ed:c2:de:24:b2:7e:6d:29:
bc:2a:c5:aa:f9:29:c7:a3:9f:74:83:04:3c:9f:6f:57:49:e9:
70:0c:fa:f4:18:8f:08:6c:29:c1:03:de:0a:cf:53:8f:7f:4a:
37:e5:77:29:4d:72:d3:f3:b2:af:b6:54:48:40:bb:56:5e:52:
1e:66:0c:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 19 23:30:48 2026 by rpki-client