
$ rpki-client -vvf rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft
File: D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft (raw, json)
Hash identifier: 9hW9oNgU/iOMW/JSRStDNWuwt066507TzdH54gfaf3M=
Subject key identifier: 4D:35:C4:2C:65:98:94:8D:26:66:FF:36:69:90:E2:EF:B3:E3:95:93
Authority key identifier: D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B
Certificate issuer: /CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B
Certificate serial: 3F4F7C8EC0330494307D17C45BC2B3EC9FC48CBD
Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft
Manifest number: 54
Signing time: Fri 03 Jul 2026 22:00:06 +0000
Manifest this update: Fri 03 Jul 2026 21:55:06 +0000
Manifest next update: Sat 04 Jul 2026 22:11:06 +0000
Files and hashes: 1: D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl (hash: en5tRwfeE73LhPM5ls9LMLTnmDmLfmKO9aIrRdVUTLE=)
2: 323430373a373234303a3a2f33322d3438203d3e203538383230.roa (hash: pbfRu1u/17aE+5jbLOXSjK5kSHLY3NJFYSy/GgweGtc=)
3: 323430373a373234303a3a2f33322d3332203d3e203538383230.roa (hash: XbL3x6HL60HenYCDQv+H+1fWOEpLqL6GUYrIDXhN5Ec=)
4: 3130332e3135322e3234322e302f32332d3234203d3e20313339343536.roa (hash: Q5OWZuOjXammbPGdiQX0OH3xtPw9qN8aeQNvsFX0Ohg=)
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl
rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 04 Jul 2026 22:11:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:4f:7c:8e:c0:33:04:94:30:7d:17:c4:5b:c2:b3:ec:9f:c4:8c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D7B3D29A1C58F2A764EF71D90EEB34A08523E14B
Validity
Not Before: Jul 3 21:55:06 2026 GMT
Not After : Jul 4 22:11:06 2026 GMT
Subject: CN=4D35C42C6598948D2666FF366990E2EFB3E39593
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:08:39:ea:c0:22:15:70:1d:3a:70:fe:19:fe:
b0:bf:5b:f4:75:a3:63:97:03:e0:4c:ad:d0:03:8a:
9b:b7:3f:40:5f:87:46:f2:8c:1a:7a:f4:c3:b7:17:
c9:60:a0:9b:68:a3:4e:c6:b0:bf:27:20:22:f4:e4:
40:6e:df:4a:5f:a4:42:95:74:b9:08:b0:52:de:f9:
c1:ef:b3:53:d1:24:50:cb:99:09:08:d7:5e:8a:8a:
18:8d:44:a4:0c:6b:32:6a:78:04:2f:4f:95:98:a8:
38:ec:48:43:e3:bb:5d:86:c6:1c:0e:87:6c:7f:27:
1f:f4:a4:40:3e:ea:5d:70:3b:4f:8a:a8:a1:85:f7:
1d:f6:89:03:b4:89:05:c0:e0:11:40:94:fc:e3:f2:
cc:f8:aa:78:08:2c:48:65:02:55:c0:e8:dd:35:43:
fa:b2:38:2d:e6:d7:bb:0c:af:f1:9d:f8:52:61:ea:
1f:9f:32:05:b2:3f:13:69:32:9e:17:b5:7a:2c:cb:
e4:84:c9:b7:11:ca:d8:2b:50:bf:e3:2d:f4:e9:05:
7b:00:c6:8c:7a:01:71:10:d7:e5:2c:2a:1b:f0:51:
c7:9f:fa:55:f5:28:2b:d4:6c:70:dc:d1:dc:b9:b7:
a9:37:40:ac:fc:9c:cb:28:75:d7:13:7e:8b:d1:64:
72:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:35:C4:2C:65:98:94:8D:26:66:FF:36:69:90:E2:EF:B3:E3:95:93
X509v3 Authority Key Identifier:
keyid:D7:B3:D2:9A:1C:58:F2:A7:64:EF:71:D9:0E:EB:34:A0:85:23:E1:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/24ba6778-b16d-4ba8-984f-34e419fc9c49/0/D7B3D29A1C58F2A764EF71D90EEB34A08523E14B.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:ea:c0:9f:21:76:2e:ce:24:24:40:d2:82:3b:23:94:a7:6b:
75:6f:45:95:de:72:01:18:53:e9:ae:7e:67:9b:07:26:e5:0b:
81:78:a6:82:cf:f8:b3:5d:b3:8e:c0:4d:ab:be:c7:6c:c4:0f:
d4:7f:c4:b9:b4:4d:60:6d:3a:0a:cf:81:15:8d:22:20:0f:4a:
1c:fa:d5:82:fe:b9:83:ee:01:0b:b2:8b:29:84:0b:d9:d3:3b:
11:6e:04:2d:06:02:09:2d:0d:d6:b0:33:a1:d8:06:a5:5d:a4:
0d:b1:b3:2a:5e:1d:55:f0:3d:cc:b0:c2:15:65:06:6d:b7:59:
1c:9c:8a:86:b2:e6:99:36:7b:a3:cd:82:f4:09:59:b1:a4:7e:
05:f4:cb:87:67:61:c7:7e:06:f6:2b:b7:c1:2d:ca:c1:04:fb:
dd:d0:b4:34:c5:68:0a:70:fa:2f:b7:9f:1d:53:af:10:0d:7c:
89:42:90:c3:f0:d5:22:54:ce:fb:39:27:f9:2b:be:76:09:5d:
2b:43:45:3b:8b:d7:44:42:26:1f:8a:a1:57:8c:40:fc:91:29:
34:41:bd:a5:4b:76:3e:c8:72:6a:4f:bd:18:ea:ef:90:38:85:
ff:72:7f:88:6e:d0:53:00:8c:30:5c:e9:49:51:ff:be:3b:5e:
6f:e6:ad:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 4 11:16:28 2026 by rpki-client