$ rpki-client -vvf rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft File: 68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft (raw, json) Hash identifier: wKcVH7pxTjQC4Twak8vvIllEQYJ2sR5pDhqKdRa/jj4= Subject key identifier: 28:54:0A:67:DB:72:82:A6:40:65:50:48:F3:E9:CE:58:70:8D:EC:AC Authority key identifier: 68:F0:07:D7:10:23:2A:49:9B:EB:68:E3:E3:BF:5E:7B:13:25:A9:DE Certificate issuer: /CN=68F007D710232A499BEB68E3E3BF5E7B1325A9DE Certificate serial: 1BDA082A29FA090BE80ADF5C755AD759A737B11E Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft Manifest number: 4D Signing time: Sun 28 Jun 2026 19:45:58 +0000 Manifest this update: Sun 28 Jun 2026 19:40:58 +0000 Manifest next update: Mon 29 Jun 2026 22:16:58 +0000 Files and hashes: 1: 68F007D710232A499BEB68E3E3BF5E7B1325A9DE.crl (hash: kUhFzmv8yXl7Ks/0C+nJpOZpEMnfZ9rTDLz4MMclpnM=) 2: 3130332e3135352e3139302e302f32332d3234203d3e20313431303637.roa (hash: AfcLIhCoxrNIL4gRzBZvaf0VEddtgYfRViPlzgx7Sn0=) 3: 323430363a373534303a3a2f33322d3438203d3e20313431303637.roa (hash: RqzBnuxk9dxcoh/IjiKr1/twWJoSn5/CF9hmDw/2Ve8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.crl rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Jun 2026 22:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:da:08:2a:29:fa:09:0b:e8:0a:df:5c:75:5a:d7:59:a7:37:b1:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68F007D710232A499BEB68E3E3BF5E7B1325A9DE Validity Not Before: Jun 28 19:40:58 2026 GMT Not After : Jun 29 22:16:58 2026 GMT Subject: CN=28540A67DB7282A640655048F3E9CE58708DECAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2b:f0:18:87:1f:79:e8:83:ac:d8:c2:26:64: 96:bc:ca:3a:13:08:44:29:0d:55:e1:58:88:65:14: a6:2b:d4:bf:6f:be:ba:fe:08:93:94:6b:b8:e7:13: a1:96:a2:9c:60:42:b7:7c:b2:51:bd:79:8a:3b:40: b0:08:fb:1d:1b:0b:a0:2e:0c:08:7e:49:35:84:05: ea:67:28:d4:53:d7:4c:43:44:47:05:8c:76:ab:33: 88:8c:18:09:2e:89:83:7b:94:59:59:31:31:7b:55: 94:5f:26:56:a0:e0:57:b1:fe:52:0f:d9:39:91:40: 8a:fd:bd:47:32:d7:d6:8b:e5:9e:c3:10:f5:4e:47: 4e:0e:07:11:dc:35:8e:ab:fc:4e:96:68:a9:1f:1a: 11:d2:c2:51:65:59:2b:24:a0:75:6c:0c:e8:8f:ca: c6:7e:3b:15:d5:0a:7a:fc:2d:5e:be:4b:81:06:8e: e7:c7:46:dd:3e:04:6e:42:a2:8c:1c:60:9d:df:72: f5:2c:06:e5:55:7a:47:9d:ea:c2:4c:b9:7c:b1:83: 2d:0c:0a:bb:b8:07:a8:92:48:73:e3:fb:81:2b:c9: ef:58:fb:f2:f4:08:69:98:66:b2:1a:95:2e:f1:e0: 8b:e5:13:04:7c:da:41:27:95:4b:cb:41:1f:98:38: bc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:54:0A:67:DB:72:82:A6:40:65:50:48:F3:E9:CE:58:70:8D:EC:AC X509v3 Authority Key Identifier: keyid:68:F0:07:D7:10:23:2A:49:9B:EB:68:E3:E3:BF:5E:7B:13:25:A9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:e7:c1:8f:e5:d9:04:07:a4:f3:19:c8:b2:8b:b4:0b:24:f0: e1:2e:2b:1d:df:f7:ff:c3:0f:cf:7a:ab:bf:a6:50:88:1e:40: e7:58:7d:11:df:05:91:9f:00:92:10:9c:fd:46:61:a5:29:26: 39:8d:c8:ce:2c:ae:f4:35:ef:43:c2:4b:d0:8f:79:6d:f4:9b: 78:ea:2f:cd:e5:1d:57:f5:e5:db:af:9d:ed:7f:ca:06:2b:b3: 4a:cf:3e:5b:1d:22:62:51:32:65:2d:56:fe:37:f4:6c:38:50: 00:12:ea:01:9c:ca:96:56:3a:4c:11:92:af:e4:42:1b:eb:af: 69:ac:56:d6:25:96:fa:a4:9c:5e:d0:98:41:be:74:3f:31:c1: 6a:7e:27:b3:57:65:5e:6b:9d:6f:cd:60:e8:c0:34:ad:38:d7: af:d9:3c:21:18:2d:1d:09:ee:82:98:10:88:9b:29:9e:81:3a: dc:a4:37:10:09:dc:a8:c3:cf:eb:2a:e2:70:3e:3e:af:95:a0: ef:cf:ad:cc:01:f5:90:f6:e8:c9:f9:79:52:42:90:49:63:ef: 23:81:0b:b4:44:3a:63:f2:31:43:f2:1b:38:ff:c8:70:33:57: 04:8c:50:22:2e:80:f5:be:b4:90:b8:97:06:ed:f4:89:db:4e: 76:63:cf:e8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG9oIKin6CQvoCt9cdVrXWac3sR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhGMDA3RDcxMDIzMkE0OTlCRUI2OEUzRTNCRjVFN0Ix MzI1QTlERTAeFw0yNjA2MjgxOTQwNThaFw0yNjA2MjkyMjE2NThaMDMxMTAvBgNV BAMTKDI4NTQwQTY3REI3MjgyQTY0MDY1NTA0OEYzRTlDRTU4NzA4REVDQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRK/AYhx956IOs2MImZJa8yjoT CEQpDVXhWIhlFKYr1L9vvrr+CJOUa7jnE6GWopxgQrd8slG9eYo7QLAI+x0bC6Au DAh+STWEBepnKNRT10xDREcFjHarM4iMGAkuiYN7lFlZMTF7VZRfJlag4Fex/lIP 2TmRQIr9vUcy19aL5Z7DEPVOR04OBxHcNY6r/E6WaKkfGhHSwlFlWSskoHVsDOiP ysZ+OxXVCnr8LV6+S4EGjufHRt0+BG5CoowcYJ3fcvUsBuVVeked6sJMuXyxgy0M Cru4B6iSSHPj+4Erye9Y+/L0CGmYZrIalS7x4IvlEwR82kEnlUvLQR+YOLxRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKFQKZ9tygqZAZVBI8+nOWHCN7KwwHwYDVR0j BBgwFoAUaPAH1xAjKkmb62jj479eexMlqd4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzgxOWNkZGYtNmRkOS00ZDljLWI1MzgtOGI3NmI3YzljZTYxLzAvNjhGMDA3RDcx MDIzMkE0OTlCRUI2OEUzRTNCRjVFN0IxMzI1QTlERS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEYwMDdENzEwMjMyQTQ5OUJFQjY4RTNFM0JGNUU3QjEzMjVB OURFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzgxOWNkZGYtNmRkOS00ZDljLWI1 MzgtOGI3NmI3YzljZTYxLzAvNjhGMDA3RDcxMDIzMkE0OTlCRUI2OEUzRTNCRjVF N0IxMzI1QTlERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFjnwY/l2QQHpPMZyLKLtAsk8OEuKx3f9//D D896q7+mUIgeQOdYfRHfBZGfAJIQnP1GYaUpJjmNyM4srvQ170PCS9CPeW30m3jq L83lHVf15duvne1/ygYrs0rPPlsdImJRMmUtVv439Gw4UAAS6gGcypZWOkwRkq/k Qhvrr2msVtYllvqknF7QmEG+dD8xwWp+J7NXZV5rnW/NYOjANK0416/ZPCEYLR0J 7oKYEIibKZ6BOtykNxAJ3KjDz+sq4nA+Pq+VoO/PrcwB9ZD26Mn5eVJCkElj7yOB C7REOmPyMUPyGzj/yHAzVwSMUCIugPW+tJC4lwbt9InbTnZjz+g= -----END CERTIFICATE-----Generated at Mon Jun 29 15:44:43 2026 by rpki-client