$ rpki-client -vvf rpki-rsync.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/7B9D20A52D1839E0A747B27E30961527317BE820.mft File: 7B9D20A52D1839E0A747B27E30961527317BE820.mft (raw, json) Hash identifier: 56mjdZw0FGconk2yAIHLmL79wQjXEUUzK5k5wT0u0Q4= Subject key identifier: DA:BB:0B:C1:53:C0:D0:9D:A1:80:2A:54:44:7E:61:24:EE:B0:6B:8A Authority key identifier: 7B:9D:20:A5:2D:18:39:E0:A7:47:B2:7E:30:96:15:27:31:7B:E8:20 Certificate issuer: /CN=7B9D20A52D1839E0A747B27E30961527317BE820 Certificate serial: 203D83854B699AE6EBBCDF19E2416208DA98CC Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7B9D20A52D1839E0A747B27E30961527317BE820.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/7B9D20A52D1839E0A747B27E30961527317BE820.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 15:28:45 +0000 Manifest this update: Tue 02 Jun 2026 15:23:45 +0000 Manifest next update: Wed 03 Jun 2026 16:24:45 +0000 Files and hashes: 1: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: HIvBExvjcNL80TSt3Rk5JG3F8xg1VqZTRljgmRS5hK0=) 2: 7B9D20A52D1839E0A747B27E30961527317BE820.crl (hash: gG4/yNCgf+Ddokl3ynPWkERChfjN31KqmgD6t/Ft9Jc=) 3: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: d5BUk2IHCQz5cnQEHRFcfPlv6TvCXosv3ryqex1uhzo=) 4: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: IMBAva6ocuxkrwvvR0kfzc9aYWdmyeGotwSFXr/8fyM=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/7B9D20A52D1839E0A747B27E30961527317BE820.crl rsync://rpki-rsync.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/7B9D20A52D1839E0A747B27E30961527317BE820.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7B9D20A52D1839E0A747B27E30961527317BE820.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:3d:83:85:4b:69:9a:e6:eb:bc:df:19:e2:41:62:08:da:98:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B9D20A52D1839E0A747B27E30961527317BE820 Validity Not Before: Jun 2 15:23:45 2026 GMT Not After : Jun 3 16:24:45 2026 GMT Subject: CN=DABB0BC153C0D09DA1802A54447E6124EEB06B8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f4:cd:ee:77:12:3e:22:00:5b:34:fe:f8:6a: 0e:90:50:aa:f7:00:27:f5:5d:51:2c:09:f9:26:5b: 43:b2:1f:46:ea:c2:d5:ec:61:1d:4d:21:3f:1f:1d: c7:5f:c1:3d:89:8f:90:f5:8c:eb:3b:32:d7:b3:f5: 41:a2:96:63:48:3c:e0:ff:8c:33:44:d2:2d:91:a9: 24:31:51:43:79:53:ef:ac:35:66:e4:22:e9:30:82: 11:8c:96:c0:7e:37:ed:38:5c:61:62:2b:5b:4d:70: 4c:53:ec:0f:15:a0:0a:ee:bc:ba:40:dd:8b:68:34: cb:47:bb:0a:94:26:c1:a1:d7:57:95:67:cd:f1:96: c4:0d:f4:13:77:eb:7b:b4:2d:7f:c0:fa:60:b1:09: 56:45:45:1c:d5:29:cd:05:40:ed:ae:e6:d3:80:07: ab:60:fc:0d:6f:87:e3:ac:93:f4:d3:f9:3f:0a:26: 41:34:19:c3:81:25:99:08:5f:6b:42:2d:a7:64:05: a5:a1:b4:7a:e2:ba:74:58:71:09:01:1f:9b:d9:6f: ce:ab:43:c8:86:35:39:07:72:82:82:a6:7f:db:f0: 64:51:86:80:1e:be:33:03:16:8f:38:5a:56:f4:54: 98:96:1c:16:a5:f9:d3:f8:17:f1:dd:a6:1d:3f:16: e1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:BB:0B:C1:53:C0:D0:9D:A1:80:2A:54:44:7E:61:24:EE:B0:6B:8A X509v3 Authority Key Identifier: keyid:7B:9D:20:A5:2D:18:39:E0:A7:47:B2:7E:30:96:15:27:31:7B:E8:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/7B9D20A52D1839E0A747B27E30961527317BE820.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7B9D20A52D1839E0A747B27E30961527317BE820.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/7B9D20A52D1839E0A747B27E30961527317BE820.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c1:c4:91:54:da:9d:5d:19:e9:f8:d2:83:11:e7:0c:00:43:b7: 7e:57:8a:32:51:5e:e6:ab:8f:c4:00:fd:73:da:d1:6c:66:48: 21:54:ed:45:60:be:9a:b5:5d:5f:ac:9c:0a:f7:e3:a2:6b:94: 1c:6d:9b:7d:73:90:ed:a9:2e:e0:f6:c7:d7:98:65:90:ed:2d: a4:9f:6b:d5:61:7d:1d:dd:99:8a:b6:54:1b:da:d9:07:39:0a: c2:f7:d2:9b:29:9c:4e:bd:b7:c8:04:a5:83:6f:39:cc:1d:11: 23:57:9c:b1:0d:48:03:4f:bc:62:ce:10:62:48:97:a8:05:7a: d9:df:47:ac:1e:69:30:c4:c4:32:8f:33:0d:0f:d5:b0:2d:25: fd:09:84:da:67:8c:a3:68:9c:ed:97:a0:c4:8e:14:90:62:17: 51:1e:74:0e:e5:9f:84:17:62:a8:47:24:e0:01:f4:77:7f:82: 4f:34:50:c3:3e:2c:af:11:98:6c:11:72:2a:ba:4b:95:76:59: f4:00:d3:86:36:9b:2b:be:a9:bd:5f:30:07:96:e6:45:74:75: be:ac:ee:7d:86:ad:54:32:d4:8a:3f:bd:c0:cd:b2:aa:e5:c9: f1:0b:76:62:4b:36:06:1a:27:69:c4:32:ec:b9:47:1c:bc:5e: 9a:42:86:d9 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgITID2DhUtpmubrvN8Z4kFiCNqYzDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg3QjlEMjBBNTJEMTgzOUUwQTc0N0IyN0UzMDk2MTUyNzMx N0JFODIwMB4XDTI2MDYwMjE1MjM0NVoXDTI2MDYwMzE2MjQ0NVowMzExMC8GA1UE AxMoREFCQjBCQzE1M0MwRDA5REExODAyQTU0NDQ3RTYxMjRFRUIwNkI4QTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKn0ze53Ej4iAFs0/vhqDpBQqvcA J/VdUSwJ+SZbQ7IfRurC1exhHU0hPx8dx1/BPYmPkPWM6zsy17P1QaKWY0g84P+M M0TSLZGpJDFRQ3lT76w1ZuQi6TCCEYyWwH437ThcYWIrW01wTFPsDxWgCu68ukDd i2g0y0e7CpQmwaHXV5VnzfGWxA30E3fre7Qtf8D6YLEJVkVFHNUpzQVA7a7m04AH q2D8DW+H46yT9NP5PwomQTQZw4ElmQhfa0Itp2QFpaG0euK6dFhxCQEfm9lvzqtD yIY1OQdygoKmf9vwZFGGgB6+MwMWjzhaVvRUmJYcFqX50/gX8d2mHT8W4QsCAwEA AaOCAjwwggI4MB0GA1UdDgQWBBTauwvBU8DQnaGAKlREfmEk7rBrijAfBgNVHSME GDAWgBR7nSClLRg54KdHsn4wlhUnMXvoIDAOBgNVHQ8BAf8EBAMCB4AwgYYGA1Ud HwR/MH0we6B5oHeGdXJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC83QjlEMjBBNTJE MTgzOUUwQTc0N0IyN0UzMDk2MTUyNzMxN0JFODIwLmNybDByBggrBgEFBQcBAQRm MGQwYgYIKwYBBQUHMAKGVnJzeW5jOi8vcnBraS1yc3luYy5pZG5pYy5uZXQvcmVw by9JRE5JQy8xLzdCOUQyMEE1MkQxODM5RTBBNzQ3QjI3RTMwOTYxNTI3MzE3QkU4 MjAuY2VyMIGUBggrBgEFBQcBCwSBhzCBhDCBgQYIKwYBBQUHMAuGdXJzeW5jOi8v cnBraS1yc3luYy5pZG5pYy5uZXQvcmVwby82NmFmNGRlNS01MDM3LTQ5MTctOWE5 My0wMTkyYzY5NTliZmIvMC83QjlEMjBBNTJEMTgzOUUwQTc0N0IyN0UzMDk2MTUy NzMxN0JFODIwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAwcSRVNqdXRnp+NKDEecMAEO3fleKMlFe5quP xAD9c9rRbGZIIVTtRWC+mrVdX6ycCvfjomuUHG2bfXOQ7aku4PbH15hlkO0tpJ9r 1WF9Hd2ZirZUG9rZBzkKwvfSmymcTr23yASlg285zB0RI1ecsQ1IA0+8Ys4QYkiX qAV62d9HrB5pMMTEMo8zDQ/VsC0l/QmE2meMo2ic7ZegxI4UkGIXUR50DuWfhBdi qEck4AH0d3+CTzRQwz4srxGYbBFyKrpLlXZZ9ADThjabK76pvV8wB5bmRXR1vqzu fYatVDLUij+9wM2yquXJ8Qt2Yks2BhonacQy7LlHHLxemkKG2Q== -----END CERTIFICATE-----Generated at Tue Jun 2 21:32:32 2026 by rpki-client