$ rpki-client -vvf rpki-rsync.idnic.net/repo/b28626e0-29fe-4e86-84d6-68478c5cd9ed/0/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.mft File: 7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.mft (raw, json) Hash identifier: qEazqQ97EUcTdSlttfO3O8KazGXXd5KbTHkbEYYB2YU= Subject key identifier: D3:E2:DA:EA:5C:5F:D9:31:EF:B7:40:E5:4A:FB:9E:AA:AF:BD:A4:DC Authority key identifier: 76:78:F0:FD:24:58:E3:AA:0E:5D:09:9E:28:C0:59:4A:8D:85:52:D2 Certificate issuer: /CN=7678F0FD2458E3AA0E5D099E28C0594A8D8552D2 Certificate serial: 7DCE205AA8C0911F1D27A1B4BC47D976B68B0D63 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/b28626e0-29fe-4e86-84d6-68478c5cd9ed/0/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.mft Manifest number: 40 Signing time: Fri 19 Jun 2026 15:09:04 +0000 Manifest this update: Fri 19 Jun 2026 15:04:04 +0000 Manifest next update: Sat 20 Jun 2026 15:55:04 +0000 Files and hashes: 1: 7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.crl (hash: gaNuia+4IQq9B7lTAA5t9XhqL7/VUUUOtvDHw4wKG1I=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/b28626e0-29fe-4e86-84d6-68478c5cd9ed/0/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.crl rsync://rpki-rsync.idnic.net/repo/b28626e0-29fe-4e86-84d6-68478c5cd9ed/0/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 15:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ce:20:5a:a8:c0:91:1f:1d:27:a1:b4:bc:47:d9:76:b6:8b:0d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7678F0FD2458E3AA0E5D099E28C0594A8D8552D2 Validity Not Before: Jun 19 15:04:04 2026 GMT Not After : Jun 20 15:55:04 2026 GMT Subject: CN=D3E2DAEA5C5FD931EFB740E54AFB9EAAAFBDA4DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b5:6c:4f:e0:f3:10:f9:62:e1:43:28:f7:dc: 20:df:58:9d:51:c9:58:01:e0:97:00:c5:d9:52:4f: 41:f2:53:7e:f8:01:a0:5f:40:d9:d2:b5:b2:66:9d: 4d:26:ef:4e:fd:d8:75:40:b5:8f:f1:53:d7:c3:14: 86:a4:b7:1f:69:db:79:0c:48:d6:84:5b:62:29:90: fe:99:16:9c:05:6b:f5:d5:23:fb:28:b0:81:cb:d1: 0d:4d:74:28:aa:d8:f8:d2:54:d4:23:d4:10:42:a4: e8:f9:6e:ec:f5:d1:5c:fe:6e:e2:ff:28:f5:c9:48: 0c:87:fc:8c:29:03:24:8d:e9:af:5e:94:41:85:a0: ec:c6:fe:2a:d5:0e:c3:fb:52:ef:3a:9c:3b:ca:5f: 63:db:4d:3a:ce:34:cb:1e:0d:bd:a9:54:19:f1:e9: 5b:f5:3f:66:6f:33:34:77:b9:27:04:66:17:a2:14: 48:cb:b0:5c:3c:d1:3b:ad:3c:fe:c9:ce:d9:81:0b: 0f:41:08:3f:8b:e1:9d:c5:e5:f4:97:3c:8a:c1:18: 78:37:53:78:90:73:1a:e6:ec:f5:e9:38:5e:5e:32: 89:8a:03:28:b8:a6:9e:24:5b:97:46:75:5b:3c:47: 19:5b:de:0d:0c:e9:20:90:34:a9:e8:26:b4:19:01: a7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:E2:DA:EA:5C:5F:D9:31:EF:B7:40:E5:4A:FB:9E:AA:AF:BD:A4:DC X509v3 Authority Key Identifier: keyid:76:78:F0:FD:24:58:E3:AA:0E:5D:09:9E:28:C0:59:4A:8D:85:52:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/b28626e0-29fe-4e86-84d6-68478c5cd9ed/0/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/b28626e0-29fe-4e86-84d6-68478c5cd9ed/0/7678F0FD2458E3AA0E5D099E28C0594A8D8552D2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:05:a9:cd:8f:64:b0:21:ab:94:ca:2a:b7:e5:0d:ec:22:f1: d1:08:f7:b4:9f:53:96:76:b3:f2:1c:80:7d:20:e3:89:56:31: 76:89:7a:9a:5e:ef:83:63:c0:42:97:b3:e8:c1:2c:50:9f:6a: 31:c2:3b:17:a8:12:49:43:a5:5e:3e:11:a0:b8:20:d6:8a:dd: 81:fa:cd:8c:97:00:41:aa:a8:4f:c8:4a:8b:3b:b4:5c:2c:24: 2a:eb:01:69:cf:06:23:4e:fd:d2:73:14:04:77:22:2d:2d:20: f3:e6:bd:da:3b:ac:d4:91:2e:8b:74:53:ae:d8:8d:2f:4a:87: 32:0b:c6:f4:72:dd:b1:f2:6b:19:50:51:e2:9b:03:98:71:d2: 27:79:a0:c7:9d:96:38:30:81:c2:07:1b:e1:08:3b:60:0a:0d: d5:f5:6f:b7:f3:e6:fc:69:f1:1d:db:1f:3a:ac:b1:5c:aa:81: 1c:19:5d:d3:fa:67:d9:93:ba:d8:6d:e1:e3:1c:76:0d:dd:50: d6:b8:ae:f4:e4:e4:64:61:b8:7a:cd:2e:e7:94:8e:34:db:77: 69:b7:32:ed:df:9b:c3:9f:da:c4:2a:69:1e:fa:30:49:84:ab: 84:97:ab:a6:16:f9:50:6a:fc:ec:54:b6:50:71:6d:4f:53:0b: bb:74:b4:03 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfc4gWqjAkR8dJ6G0vEfZdraLDWMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzY3OEYwRkQyNDU4RTNBQTBFNUQwOTlFMjhDMDU5NEE4 RDg1NTJEMjAeFw0yNjA2MTkxNTA0MDRaFw0yNjA2MjAxNTU1MDRaMDMxMTAvBgNV BAMTKEQzRTJEQUVBNUM1RkQ5MzFFRkI3NDBFNTRBRkI5RUFBQUZCREE0REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwtWxP4PMQ+WLhQyj33CDfWJ1R yVgB4JcAxdlST0HyU374AaBfQNnStbJmnU0m70792HVAtY/xU9fDFIaktx9p23kM SNaEW2IpkP6ZFpwFa/XVI/sosIHL0Q1NdCiq2PjSVNQj1BBCpOj5buz10Vz+buL/ KPXJSAyH/IwpAySN6a9elEGFoOzG/irVDsP7Uu86nDvKX2PbTTrONMseDb2pVBnx 6Vv1P2ZvMzR3uScEZheiFEjLsFw80TutPP7JztmBCw9BCD+L4Z3F5fSXPIrBGHg3 U3iQcxrm7PXpOF5eMomKAyi4pp4kW5dGdVs8Rxlb3g0M6SCQNKnoJrQZAaf9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0+La6lxf2THvt0DlSvueqq+9pNwwHwYDVR0j BBgwFoAUdnjw/SRY46oOXQmeKMBZSo2FUtIwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YjI4NjI2ZTAtMjlmZS00ZTg2LTg0ZDYtNjg0NzhjNWNkOWVkLzAvNzY3OEYwRkQy NDU4RTNBQTBFNUQwOTlFMjhDMDU5NEE4RDg1NTJEMi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS83Njc4RjBGRDI0NThFM0FBMEU1RDA5OUUyOEMwNTk0QThEODU1 MkQyLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYjI4NjI2ZTAtMjlmZS00ZTg2LTg0 ZDYtNjg0NzhjNWNkOWVkLzAvNzY3OEYwRkQyNDU4RTNBQTBFNUQwOTlFMjhDMDU5 NEE4RDg1NTJEMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF0Fqc2PZLAhq5TKKrflDewi8dEI97SfU5Z2 s/IcgH0g44lWMXaJeppe74NjwEKXs+jBLFCfajHCOxeoEklDpV4+EaC4INaK3YH6 zYyXAEGqqE/ISos7tFwsJCrrAWnPBiNO/dJzFAR3Ii0tIPPmvdo7rNSRLot0U67Y jS9KhzILxvRy3bHyaxlQUeKbA5hx0id5oMedljgwgcIHG+EIO2AKDdX1b7fz5vxp 8R3bHzqssVyqgRwZXdP6Z9mTutht4eMcdg3dUNa4rvTk5GRhuHrNLueUjjTbd2m3 Mu3fm8Of2sQqaR76MEmEq4SXq6YW+VBq/OxUtlBxbU9TC7t0tAM= -----END CERTIFICATE-----Generated at Sat Jun 20 09:17:19 2026 by rpki-client