
$ rpki-client -vvf rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.mft
File: 0FB62F1F0D10C5EC7D72410E5637525B621C4870.mft (raw, json)
Hash identifier: UPLreAMDBJS6siBmUUUd7k7lsy7kFrzZH1t7nhrqyi4=
Subject key identifier: 68:D9:D3:C3:91:BB:0B:34:BE:14:61:E9:AC:E1:F5:D2:2C:AB:F6:3C
Authority key identifier: 0F:B6:2F:1F:0D:10:C5:EC:7D:72:41:0E:56:37:52:5B:62:1C:48:70
Certificate issuer: /CN=0FB62F1F0D10C5EC7D72410E5637525B621C4870
Certificate serial: 6478CAECF3BA8C104C49706A2A0EEC0A7445C98E
Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.mft
Manifest number: 66
Signing time: Sat 18 Jul 2026 00:43:17 +0000
Manifest this update: Sat 18 Jul 2026 00:38:17 +0000
Manifest next update: Sun 19 Jul 2026 02:59:17 +0000
Files and hashes: 1: 3136302e32322e36362e302f32342d3234203d3e20313532383134.roa (hash: 4TAm+Tq7VEmBP4/ZDSMoQRtNl/2F8B0387VCKH9srzE=)
2: 3136302e32322e36362e302f32332d3233203d3e20313534343130.roa (hash: x+Zmass52e0XiEEcxmz35DHW32ZXdCP/lp7OD4a3w4Y=)
3: 0FB62F1F0D10C5EC7D72410E5637525B621C4870.crl (hash: H1YFJIS3J9z+Fvqbohh3wQXylnLXho/NJCS1Q0hrbT4=)
4: 3136302e32322e36372e302f32342d3234203d3e20313532383134.roa (hash: ChO0wv9yKUM7ukCp9cBiuF/qy0Q/8i0Sz7WEvpLu0oo=)
5: 3136302e32322e36362e302f32332d3233203d3e20313532383134.roa (hash: DVbfArMTlg+UHrMZklDTYc3fTbYxFUjdyjuDCut72nE=)
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.crl
rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.mft
rsync://rpki-rsync.idnic.net/repo/IDNIC/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.cer
rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 18 Jul 2026 22:39:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:78:ca:ec:f3:ba:8c:10:4c:49:70:6a:2a:0e:ec:0a:74:45:c9:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0FB62F1F0D10C5EC7D72410E5637525B621C4870
Validity
Not Before: Jul 18 00:38:17 2026 GMT
Not After : Jul 19 02:59:17 2026 GMT
Subject: CN=68D9D3C391BB0B34BE1461E9ACE1F5D22CABF63C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b4:e0:13:1f:31:45:15:e1:97:c8:4e:31:0f:
1b:1d:f7:eb:e1:32:5b:e2:b7:26:98:a4:40:7d:52:
e9:b6:81:e9:2d:6d:b5:29:b9:ef:ef:01:64:74:c6:
1c:08:be:76:03:a8:a4:ab:45:7b:3f:41:96:1c:17:
83:ff:16:66:6b:87:35:cb:d2:d7:f4:1d:05:bd:ec:
65:0d:92:c3:08:41:8a:09:a2:ea:08:19:e8:75:4c:
98:f6:8a:d9:79:4d:32:e2:c2:81:5d:0b:7e:02:8b:
91:30:94:55:e7:bf:ed:6a:04:7e:06:9c:dc:25:e3:
c9:ae:c5:df:8a:96:d5:d6:5f:3b:5b:bc:df:b2:3a:
88:b8:33:56:2b:8e:6b:d5:08:dd:f7:c6:e3:1a:54:
32:74:41:b8:be:fb:38:1d:d5:e8:e7:0f:0f:11:e7:
8a:f5:04:a2:b6:ef:ca:c1:c2:c9:fe:9d:44:d3:72:
ec:4d:fc:5f:05:3d:fa:2a:c3:ee:2f:08:3a:6e:ed:
df:a4:10:ae:6f:79:34:a3:db:3a:24:ac:9a:ef:35:
8a:ff:8c:5c:8f:24:cc:4c:73:8e:a3:7b:20:1e:b9:
36:97:d6:bf:88:32:9f:29:1d:03:8c:d7:4b:c0:4b:
b9:9b:07:84:26:a4:c3:d6:15:2f:e8:b9:c8:82:fb:
75:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D9:D3:C3:91:BB:0B:34:BE:14:61:E9:AC:E1:F5:D2:2C:AB:F6:3C
X509v3 Authority Key Identifier:
keyid:0F:B6:2F:1F:0D:10:C5:EC:7D:72:41:0E:56:37:52:5B:62:1C:48:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/9db927df-bc9c-4be6-a1fa-2e125c469f71/0/0FB62F1F0D10C5EC7D72410E5637525B621C4870.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:e4:f8:b9:47:d1:2a:8e:2f:1f:04:64:82:5a:cd:80:aa:7d:
04:d3:6f:15:3f:52:b6:f1:d0:d7:a4:ac:08:69:9c:3d:c0:53:
69:be:c7:79:f6:11:52:7f:fc:18:b3:6f:19:89:fe:a3:40:79:
1f:bf:eb:6d:ce:70:c6:81:ab:bc:39:40:48:a1:c5:46:ca:2c:
da:de:67:95:90:c7:d1:8a:06:31:44:29:80:b3:d6:14:92:21:
7c:69:c7:f4:12:a9:fb:11:8c:f1:3e:0c:7e:86:64:0e:a6:95:
2b:a2:45:1b:d7:b5:a2:ae:0c:28:c8:e9:34:87:ca:6d:5c:e6:
4e:25:64:17:92:eb:2b:f6:fa:1c:17:f5:89:fd:98:c0:26:06:
a7:a5:73:0e:6b:8c:a5:ec:be:59:d8:ab:e4:7d:c0:4e:04:ec:
bb:64:2f:f3:ca:97:49:6c:5e:94:c1:86:63:22:b4:86:4a:c2:
ce:9c:6c:3c:1a:84:e8:f4:6b:a3:72:11:48:00:de:83:26:a0:
2b:55:e4:0b:bc:97:56:b2:aa:6a:7e:2a:81:7f:00:8b:c4:1f:
9c:cf:a1:b0:09:5e:d5:28:e8:4a:b3:f9:a3:05:ec:1f:1f:9b:
4b:52:2d:87:01:c6:61:28:a7:59:4e:84:b2:1d:4f:03:a9:29:
81:4e:04:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 03:28:12 2026 by rpki-client