$ rpki-client -vvf rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft File: 68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft (raw, json) Hash identifier: VMU+Kb5Ih59RHtJ051slznc62u5s7GizSiWn6ilWvO8= Subject key identifier: E4:60:56:FF:74:4A:66:17:14:73:83:9A:BF:06:02:CF:C4:C3:D2:DC Authority key identifier: 68:F0:07:D7:10:23:2A:49:9B:EB:68:E3:E3:BF:5E:7B:13:25:A9:DE Certificate issuer: /CN=68F007D710232A499BEB68E3E3BF5E7B1325A9DE Certificate serial: 025BDE247FB4C6257CBB0C0B5EB8F2D5FE8B8FE1 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft Manifest number: 12 Signing time: Thu 14 May 2026 21:57:15 +0000 Manifest this update: Thu 14 May 2026 21:52:15 +0000 Manifest next update: Fri 15 May 2026 22:36:15 +0000 Files and hashes: 1: 3130332e3135352e3139302e302f32332d3234203d3e20313431303637.roa (hash: AfcLIhCoxrNIL4gRzBZvaf0VEddtgYfRViPlzgx7Sn0=) 2: 68F007D710232A499BEB68E3E3BF5E7B1325A9DE.crl (hash: dDs+f5Q1Gqqx4GJvv9546xFpC/ZtXFnwvFJmavkCKrk=) 3: 323430363a373534303a3a2f33322d3438203d3e20313431303637.roa (hash: RqzBnuxk9dxcoh/IjiKr1/twWJoSn5/CF9hmDw/2Ve8=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.crl rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 May 2026 20:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:5b:de:24:7f:b4:c6:25:7c:bb:0c:0b:5e:b8:f2:d5:fe:8b:8f:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68F007D710232A499BEB68E3E3BF5E7B1325A9DE Validity Not Before: May 14 21:52:15 2026 GMT Not After : May 15 22:36:15 2026 GMT Subject: CN=E46056FF744A66171473839ABF0602CFC4C3D2DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:df:f6:d0:d7:5d:82:d2:d5:fa:5d:d9:6f:bb: 11:fc:d4:c7:26:f5:16:2a:c5:7b:8b:ff:d2:43:9f: 32:51:ce:3a:94:15:14:eb:ed:da:0d:bc:97:ad:66: 3e:61:23:fa:3f:a5:2a:7e:59:12:9a:e9:40:d6:4a: d8:99:24:d5:70:bf:86:12:33:55:a5:b7:bc:0f:3a: 76:a4:2e:74:88:ee:0b:98:e6:5c:5e:42:04:fd:6f: 5e:5d:d9:2d:87:a5:71:04:c4:5a:11:be:c5:61:18: 85:74:ba:81:69:ea:87:de:ed:88:7d:7e:03:d7:4e: 3d:8b:af:2e:73:71:ba:73:77:d8:c8:4f:3c:f3:3e: 12:8d:b5:b4:b6:ce:23:7c:81:b5:63:62:fb:50:f1: b7:cb:95:58:be:1a:eb:e5:88:83:a6:95:ac:aa:a4: 01:74:72:11:e7:10:37:ce:b4:2d:b3:35:5a:f5:57: 99:2f:db:2a:cc:a4:eb:66:7c:2b:f2:5f:9a:72:1e: da:38:79:cf:29:b2:12:db:95:c0:28:57:c7:15:d2: fd:38:c4:85:a1:87:85:fa:46:37:d6:c8:34:b2:3c: ca:af:51:7e:0d:e2:b6:be:8f:a8:d9:00:fb:c0:84: fe:66:c1:11:73:dd:5b:a5:31:d3:0e:ce:22:74:51: 6a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:60:56:FF:74:4A:66:17:14:73:83:9A:BF:06:02:CF:C4:C3:D2:DC X509v3 Authority Key Identifier: keyid:68:F0:07:D7:10:23:2A:49:9B:EB:68:E3:E3:BF:5E:7B:13:25:A9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7819cddf-6dd9-4d9c-b538-8b76b7c9ce61/0/68F007D710232A499BEB68E3E3BF5E7B1325A9DE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:aa:00:5d:50:4b:53:53:fa:d9:16:1b:c3:a5:ee:cf:41:07: 3a:e4:d5:dc:45:ff:7d:85:9d:b1:43:3d:31:30:2d:6d:97:71: fa:2a:94:47:6d:42:16:0c:21:70:79:88:b4:02:fd:2a:ba:33: 3f:3a:fb:ed:06:63:0b:07:d4:7e:c0:3f:0e:67:82:63:7c:e4: 19:2a:1d:5d:15:36:fa:bf:5e:bd:ed:6c:22:f8:ef:67:53:89: 03:91:51:c0:a0:c2:78:b5:73:de:66:99:55:ea:f0:f5:2c:ec: 7d:5a:52:7a:fa:24:d1:ec:0f:95:82:fa:41:b9:2d:3c:df:57: a6:95:3a:57:04:2b:fe:4f:4b:cc:0b:af:1e:99:e9:c7:73:36: c3:56:e9:7b:ac:e4:a8:c0:14:f9:dd:38:0f:08:30:e6:f1:e2: fd:76:66:71:db:30:f5:41:9f:da:89:aa:8f:ae:32:ef:cd:aa: c8:c7:01:a0:54:dc:99:b7:31:9b:2e:1f:15:7f:88:0e:5a:b6: 5c:46:bb:0b:2e:6e:5b:22:6e:1c:fa:2f:4d:54:a8:21:7e:e7: 57:67:f9:51:2d:17:f6:01:93:ed:3c:52:e7:a1:23:48:d3:e3: 33:e6:a4:bd:a4:53:ee:3e:63:87:ad:8f:a7:a7:a7:9e:9a:a6: ba:78:6b:a4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAlveJH+0xiV8uwwLXrjy1f6Lj+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhGMDA3RDcxMDIzMkE0OTlCRUI2OEUzRTNCRjVFN0Ix MzI1QTlERTAeFw0yNjA1MTQyMTUyMTVaFw0yNjA1MTUyMjM2MTVaMDMxMTAvBgNV BAMTKEU0NjA1NkZGNzQ0QTY2MTcxNDczODM5QUJGMDYwMkNGQzRDM0QyREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS3/bQ112C0tX6XdlvuxH81Mcm 9RYqxXuL/9JDnzJRzjqUFRTr7doNvJetZj5hI/o/pSp+WRKa6UDWStiZJNVwv4YS M1Wlt7wPOnakLnSI7guY5lxeQgT9b15d2S2HpXEExFoRvsVhGIV0uoFp6ofe7Yh9 fgPXTj2Lry5zcbpzd9jITzzzPhKNtbS2ziN8gbVjYvtQ8bfLlVi+GuvliIOmlayq pAF0chHnEDfOtC2zNVr1V5kv2yrMpOtmfCvyX5pyHto4ec8pshLblcAoV8cV0v04 xIWhh4X6RjfWyDSyPMqvUX4N4ra+j6jZAPvAhP5mwRFz3VulMdMOziJ0UWpLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5GBW/3RKZhcUc4OavwYCz8TD0twwHwYDVR0j BBgwFoAUaPAH1xAjKkmb62jj479eexMlqd4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v NzgxOWNkZGYtNmRkOS00ZDljLWI1MzgtOGI3NmI3YzljZTYxLzAvNjhGMDA3RDcx MDIzMkE0OTlCRUI2OEUzRTNCRjVFN0IxMzI1QTlERS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS82OEYwMDdENzEwMjMyQTQ5OUJFQjY4RTNFM0JGNUU3QjEzMjVB OURFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vNzgxOWNkZGYtNmRkOS00ZDljLWI1 MzgtOGI3NmI3YzljZTYxLzAvNjhGMDA3RDcxMDIzMkE0OTlCRUI2OEUzRTNCRjVF N0IxMzI1QTlERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALiqAF1QS1NT+tkWG8Ol7s9BBzrk1dxF/32F nbFDPTEwLW2XcfoqlEdtQhYMIXB5iLQC/Sq6Mz86++0GYwsH1H7APw5ngmN85Bkq HV0VNvq/Xr3tbCL472dTiQORUcCgwni1c95mmVXq8PUs7H1aUnr6JNHsD5WC+kG5 LTzfV6aVOlcEK/5PS8wLrx6Z6cdzNsNW6Xus5KjAFPndOA8IMObx4v12ZnHbMPVB n9qJqo+uMu/NqsjHAaBU3Jm3MZsuHxV/iA5atlxGuwsublsibhz6L01UqCF+51dn +VEtF/YBk+08UuehI0jT4zPmpL2kU+4+Y4etj6enp56aprp4a6Q= -----END CERTIFICATE-----Generated at Fri May 15 09:50:20 2026 by rpki-client