
$ rpki-client -vvf rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.mft
File: A33230767964863363DEE33E7BD3F5C204182D74.mft (raw, json)
Hash identifier: 73CynqHp2d9su5ZAcsx8DKGhxwDRBpNfAdTnkWbda1s=
Subject key identifier: EC:1D:7A:EB:36:7A:30:E5:F4:CD:FC:89:55:2A:48:7C:F4:91:05:E2
Authority key identifier: A3:32:30:76:79:64:86:33:63:DE:E3:3E:7B:D3:F5:C2:04:18:2D:74
Certificate issuer: /CN=A33230767964863363DEE33E7BD3F5C204182D74
Certificate serial: 145ED395F89ED621A2F3B8D8F774C38230F82D
Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A33230767964863363DEE33E7BD3F5C204182D74.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.mft
Manifest number: 68
Signing time: Sun 19 Jul 2026 05:54:29 +0000
Manifest this update: Sun 19 Jul 2026 05:49:29 +0000
Manifest next update: Mon 20 Jul 2026 09:28:29 +0000
Files and hashes: 1: 3130332e38302e38302e302f32332d3233203d3e203634333030.roa (hash: swM3gRycoq2bpDf9jMK6TFe7xm5hIDTJnObip9j+E3U=)
2: A33230767964863363DEE33E7BD3F5C204182D74.crl (hash: jzEXVQ9J72f/7klnqhSDrk5M7aVCgxgtb/CFt6tuHgc=)
3: 3130332e38302e38302e302f32322d3234203d3e203634333030.roa (hash: zfPIxy8u09KfI7kcdeQFP8vqKSJ+i/ut+oqw3CDggbg=)
4: 323430303a346563303a3a2f33322d3438203d3e203634333030.roa (hash: +c51V8VPvLdRJzVzsvsfm1mPoM5H0OBSu1SWRMxqOYg=)
5: 3130332e38302e38302e302f32322d3232203d3e203634333030.roa (hash: e/qY4LpsifjFJ8z9K3gWHOX8kQ1mg4k/iAFjqdxwcPM=)
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.crl
rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.mft
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A33230767964863363DEE33E7BD3F5C204182D74.cer
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 20 Jul 2026 09:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:5e:d3:95:f8:9e:d6:21:a2:f3:b8:d8:f7:74:c3:82:30:f8:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A33230767964863363DEE33E7BD3F5C204182D74
Validity
Not Before: Jul 19 05:49:29 2026 GMT
Not After : Jul 20 09:28:29 2026 GMT
Subject: CN=EC1D7AEB367A30E5F4CDFC89552A487CF49105E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d2:4a:60:f7:d5:31:1e:c9:f7:8e:27:ea:2a:
8b:0d:b2:a6:45:75:75:98:0a:ae:49:c1:b5:8b:27:
80:ef:72:c9:cd:3b:2b:3e:2e:4c:42:07:44:39:d0:
17:1d:bc:7b:18:fb:fe:b9:83:aa:86:0b:2e:19:42:
12:58:4a:80:a3:7d:d1:8b:86:6d:ad:ac:59:70:68:
28:81:24:6d:10:67:9b:1e:02:9c:55:7f:b7:5d:c1:
97:bc:00:b8:a4:3c:d1:4c:b9:88:64:64:62:8d:2a:
50:60:47:d7:ec:1a:66:6d:7d:ad:f2:8f:fb:2e:0f:
29:51:65:ce:52:e6:9b:4f:28:e6:b7:15:19:de:c3:
56:f2:ce:a8:ff:63:ea:c1:08:da:84:c9:1b:c6:6b:
92:3d:8d:34:ef:90:96:c1:62:46:fe:f5:de:59:1f:
2b:34:8d:eb:71:fc:33:a1:bb:ef:b5:89:6c:86:c2:
65:a2:66:3a:e8:f5:fd:8b:91:5a:2f:21:69:c5:82:
9a:34:4f:fa:2e:fb:db:6e:df:c3:dd:d7:df:07:5b:
28:af:67:5a:2c:70:d9:7e:37:8e:44:86:28:f5:6c:
59:a7:62:0a:ba:1e:d4:95:c1:b2:f9:52:db:1f:73:
9d:bc:7d:ce:9d:7b:ed:5d:be:8f:11:b8:42:74:fe:
c8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:1D:7A:EB:36:7A:30:E5:F4:CD:FC:89:55:2A:48:7C:F4:91:05:E2
X509v3 Authority Key Identifier:
keyid:A3:32:30:76:79:64:86:33:63:DE:E3:3E:7B:D3:F5:C2:04:18:2D:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A33230767964863363DEE33E7BD3F5C204182D74.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/586d3637-92b4-4ac7-a75b-99cb0b0565b0/0/A33230767964863363DEE33E7BD3F5C204182D74.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:56:64:54:ee:4e:b3:f5:36:6a:a6:5d:d3:50:95:b7:8a:d5:
da:e2:dc:86:bc:37:34:ec:c9:9e:d9:75:74:4e:19:3a:ca:a0:
08:58:f6:0b:0f:0c:06:81:39:47:c9:40:36:c1:f8:f5:61:6a:
b2:5b:38:01:e5:44:26:86:8c:16:53:45:80:64:86:7d:84:97:
d8:df:d3:31:37:b3:30:e0:dc:5c:74:6c:84:08:e9:9c:8c:5b:
c7:c0:ac:45:2a:04:4a:d4:a9:b8:ce:d4:df:48:c1:c0:be:28:
a8:65:3d:4c:14:04:11:4f:fd:fc:35:01:1f:ed:50:b2:22:91:
ac:af:17:23:ba:2f:dd:27:a1:9c:24:87:17:6a:1a:14:2a:0c:
3b:05:f3:40:bb:ae:da:1f:98:e4:56:72:b0:8e:f0:15:36:f1:
fe:85:6f:75:18:28:cc:48:0a:be:bf:be:84:18:09:4f:5c:a8:
a6:ca:f9:2e:24:66:20:2a:a8:ab:cd:c2:49:df:3c:30:ad:4e:
e1:1a:22:e0:bf:a7:e3:28:82:fb:89:a0:2b:b0:e2:7f:5f:b0:
03:a2:67:c8:8a:d3:4f:1b:07:ca:ae:b9:dc:48:c5:83:03:72:
56:cc:8e:28:28:71:8b:c6:1b:1a:93:88:66:53:2a:cb:3d:88:
50:2d:ea:cf
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgITFF7Tlfie1iGi87jY93TDgjD4LTANBgkqhkiG9w0BAQsF
ADAzMTEwLwYDVQQDEyhBMzMyMzA3Njc5NjQ4NjMzNjNERUUzM0U3QkQzRjVDMjA0
MTgyRDc0MB4XDTI2MDcxOTA1NDkyOVoXDTI2MDcyMDA5MjgyOVowMzExMC8GA1UE
AxMoRUMxRDdBRUIzNjdBMzBFNUY0Q0RGQzg5NTUyQTQ4N0NGNDkxMDVFMjCCASIw
DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOvSSmD31TEeyfeOJ+oqiw2ypkV1
dZgKrknBtYsngO9yyc07Kz4uTEIHRDnQFx28exj7/rmDqoYLLhlCElhKgKN90YuG
ba2sWXBoKIEkbRBnmx4CnFV/t13Bl7wAuKQ80Uy5iGRkYo0qUGBH1+waZm19rfKP
+y4PKVFlzlLmm08o5rcVGd7DVvLOqP9j6sEI2oTJG8Zrkj2NNO+QlsFiRv713lkf
KzSN63H8M6G777WJbIbCZaJmOuj1/YuRWi8hacWCmjRP+i77227fw93X3wdbKK9n
Wixw2X43jkSGKPVsWadiCroe1JXBsvlS2x9znbx9zp177V2+jxG4QnT+yOUCAwEA
AaOCAjwwggI4MB0GA1UdDgQWBBTsHXrrNnow5fTN/IlVKkh89JEF4jAfBgNVHSME
GDAWgBSjMjB2eWSGM2Pe4z570/XCBBgtdDAOBgNVHQ8BAf8EBAMCB4AwgYYGA1Ud
HwR/MH0we6B5oHeGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby81
ODZkMzYzNy05MmI0LTRhYzctYTc1Yi05OWNiMGIwNTY1YjAvMC9BMzMyMzA3Njc5
NjQ4NjMzNjNERUUzM0U3QkQzRjVDMjA0MTgyRDc0LmNybDByBggrBgEFBQcBAQRm
MGQwYgYIKwYBBQUHMAKGVnJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVw
by9JRE5JQy8xL0EzMzIzMDc2Nzk2NDg2MzM2M0RFRTMzRTdCRDNGNUMyMDQxODJE
NzQuY2VyMIGUBggrBgEFBQcBCwSBhzCBhDCBgQYIKwYBBQUHMAuGdXJzeW5jOi8v
cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby81ODZkMzYzNy05MmI0LTRhYzctYTc1
Yi05OWNiMGIwNTY1YjAvMC9BMzMyMzA3Njc5NjQ4NjMzNjNERUUzM0U3QkQzRjVD
MjA0MTgyRDc0Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF
BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF
ADANBgkqhkiG9w0BAQsFAAOCAQEAs1ZkVO5Os/U2aqZd01CVt4rV2uLchrw3NOzJ
ntl1dE4ZOsqgCFj2Cw8MBoE5R8lANsH49WFqsls4AeVEJoaMFlNFgGSGfYSX2N/T
MTezMODcXHRshAjpnIxbx8CsRSoEStSpuM7U30jBwL4oqGU9TBQEEU/9/DUBH+1Q
siKRrK8XI7ov3SehnCSHF2oaFCoMOwXzQLuu2h+Y5FZysI7wFTbx/oVvdRgozEgK
vr++hBgJT1yopsr5LiRmICqoq83CSd88MK1O4Roi4L+n4yiC+4mgK7Dif1+wA6Jn
yIrTTxsHyq653EjFgwNyVsyOKChxi8YbGpOIZlMqyz2IUC3qzw==
-----END CERTIFICATE-----
Generated at Sun Jul 19 23:51:26 2026 by rpki-client