
$ rpki-client -vvf rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft
File: BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft (raw, json)
Hash identifier: MIid/Bd1FZXy/5UxUxRA7zhCESSKABABoKT1uCT5oKM=
Subject key identifier: 1D:C8:BC:5B:A3:2F:1B:C5:B0:3E:F9:9E:87:42:85:BE:E6:65:B8:8F
Authority key identifier: BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67
Certificate issuer: /CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67
Certificate serial: 115DF468A9277BA4482BC07911A84FEA7EC98B48
Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft
Manifest number: 67
Signing time: Fri 17 Jul 2026 13:29:40 +0000
Manifest this update: Fri 17 Jul 2026 13:24:40 +0000
Manifest next update: Sat 18 Jul 2026 17:20:40 +0000
Files and hashes: 1: 3130332e3132342e3133362e302f32322d3234203d3e20313338303839.roa (hash: IgZVkE+S6069w73+w/n6imuTngD34gWEV6HPl2N+lmw=)
2: 323430333a653063303a323a3a2f34382d3438203d3e20313338303839.roa (hash: UdoPkZ+2AOHg3vZbgjXSJjipAK97nm8TlruCo/DcsiI=)
3: 3130332e3132342e3133392e302f32342d3234203d3e20313338303839.roa (hash: W57jnxb8I7PewGJC2zTEjUBxKopfhpmR1Iwvxvyuls4=)
4: 3130332e3132342e3133362e302f32342d3234203d3e20313338303839.roa (hash: nVBnDB0/UQIhvlZknFXMulW4aEJQqLigk7J0WBCftGQ=)
5: 3130332e3132342e3133372e302f32342d3234203d3e20313338303839.roa (hash: m7aYtnxqmO5yLH8RFKNeSd1PMgjIrrVpH7VORkZBuSQ=)
6: 3130332e3132342e3133382e302f32332d3234203d3e20313338303839.roa (hash: nUugKOdExMFJnvFh04jHSO3wCeesIumGtVFPqxZ7JUo=)
7: 3130332e3132342e3133382e302f32342d3234203d3e20313338303839.roa (hash: IcQvSAJGT5F2NpZZwUWfDRfWyeJTixApL9YTKNnPovc=)
8: 323430333a653063303a3a2f33322d3332203d3e20313338303839.roa (hash: 29cKBY9SmIDNcy8Up3JMwSzyFn85kJNfVtGR4zVqHOo=)
9: 323430333a653063303a3a2f34382d3438203d3e20313338303839.roa (hash: O7Jg3ekrKiPlwDIBfPqMERpdUxButyek7mBs/PaEfvA=)
10: 323430333a653063303a313a3a2f34382d3438203d3e20313338303839.roa (hash: q4GFRcWVs+Ai4gXERrwVrrYZbhWnp7v5yT7e4NRdMGk=)
11: BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl (hash: s2CJfJFY2wFeXe1t47xZGnJW2Nwgy4548cEZu96wBfk=)
12: 3130332e3132342e3133362e302f32332d3234203d3e20313338303839.roa (hash: xGj0e4XQ4vJ8oWerZ4jXagNlyhy1gxpkEDp9VKKcLHc=)
13: 323430333a653063303a31333a3a2f34382d3438203d3e20313338303839.roa (hash: mb6stKBonjjNRvfMm98TbumJRAVflg9hiU378+4IYt4=)
14: 323430333a653063303a3a2f33322d3438203d3e20313338303839.roa (hash: Gh74rlG6cZiGWXdiLt7turdRPANg8uysBJZ/a1V4u3c=)
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl
rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 18 Jul 2026 17:20:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:5d:f4:68:a9:27:7b:a4:48:2b:c0:79:11:a8:4f:ea:7e:c9:8b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67
Validity
Not Before: Jul 17 13:24:40 2026 GMT
Not After : Jul 18 17:20:40 2026 GMT
Subject: CN=1DC8BC5BA32F1BC5B03EF99E874285BEE665B88F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6c:35:54:d6:6d:15:95:89:4c:a3:11:be:a9:
c6:63:dd:5c:f2:81:9c:cc:4f:68:62:e4:e1:58:82:
15:eb:0a:2c:fb:c2:cd:74:f4:29:29:85:9f:f9:74:
17:50:c2:a7:1e:59:f4:d7:14:b3:42:2a:07:5b:82:
5d:c2:64:c0:56:ba:48:e4:0d:ea:7a:f8:36:39:6d:
3a:62:2e:64:f2:b7:04:79:16:d4:7b:a8:26:29:37:
84:58:a1:5e:a5:1b:82:0b:60:44:7c:15:dc:be:c6:
d0:ed:03:4a:a5:48:c8:7b:e7:68:c1:e9:40:72:f2:
1a:9d:be:a6:4b:11:8e:f6:47:b8:70:a1:6a:fa:df:
40:56:18:ce:02:a9:e5:eb:32:b5:2c:d6:51:58:4f:
95:18:e4:db:45:58:ed:02:ae:5f:5a:8c:d0:3a:74:
1e:73:83:ab:00:e3:36:58:f9:62:e1:ed:0b:6a:39:
1b:03:8f:b2:fa:ab:9e:45:d0:ff:86:bb:eb:89:e9:
5a:ae:64:c5:0c:d7:63:cb:d6:0e:d1:b8:ef:1a:9a:
e3:84:5b:76:63:35:19:8f:be:92:b0:1e:56:e6:fc:
6b:09:e9:f6:ec:ac:6a:03:5f:24:5b:fa:77:15:e0:
d1:a6:a4:76:ad:4b:39:ac:b9:77:63:d2:24:c6:d7:
95:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C8:BC:5B:A3:2F:1B:C5:B0:3E:F9:9E:87:42:85:BE:E6:65:B8:8F
X509v3 Authority Key Identifier:
keyid:BB:93:3B:FB:2B:0C:8A:3A:BD:4E:55:48:5B:CC:D9:E7:B4:48:6E:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/BB933BFB2B0C8A3ABD4E55485BCCD9E7B4486E67.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:e0:75:bd:89:c7:04:2e:06:74:78:79:3a:52:46:20:23:11:
60:fb:6f:fa:e6:e6:d2:a8:fe:89:62:68:fb:38:64:4d:60:86:
a8:c1:ca:b5:c9:34:75:8b:01:3f:47:31:8a:3a:54:3b:ec:10:
28:2b:e8:37:f6:63:21:c6:92:4a:66:e8:50:2f:1e:85:ec:97:
7e:4d:68:35:c7:23:a5:bb:d0:00:e6:6a:a6:0a:10:12:2e:17:
3c:f1:a5:8e:90:86:c0:ff:d9:ed:2c:18:08:3d:92:da:5e:47:
5f:56:cf:6a:08:4c:ff:63:b5:24:77:8b:82:7b:ab:48:f5:b5:
fe:3f:45:03:2a:7c:98:3c:db:31:c4:b4:6e:14:e5:42:80:2e:
24:5e:de:6f:38:ba:a8:98:db:37:4c:dd:6c:02:03:52:e3:d9:
a1:b0:6c:59:3c:1c:bd:0a:4c:65:8e:58:e8:c0:56:62:86:06:
df:89:1d:14:cc:08:4d:2f:6c:45:17:29:44:8b:c8:ec:15:e4:
b8:45:e3:b3:97:ff:08:53:60:68:3d:e3:20:9e:d7:ed:77:9a:
5a:80:b7:d1:01:1e:e1:36:63:fa:b4:64:81:c6:f9:5e:b9:04:
40:31:3f:c8:2b:de:8b:5d:3d:3c:23:a2:81:b3:8b:ca:36:9d:
aa:f2:9e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 01:48:38 2026 by rpki-client