$ rpki-client -vvf rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft File: 68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft (raw, json) Hash identifier: 05osXnttTYC3C35HABBnMtbqr2ukuGsQmDPYd6v2o4o= Subject key identifier: D0:EC:1C:F9:3A:5B:86:C4:44:8D:C8:C1:F9:75:99:9E:76:4C:B3:2E Authority key identifier: 68:B5:03:53:22:FF:DB:9C:8D:6E:EC:10:B5:D2:F1:A7:7D:FF:70:CF Certificate issuer: /CN=68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF Certificate serial: 2684B2AE340719E6FE1D6F660D0222CB6C57F507 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft Manifest number: 40 Signing time: Thu 18 Jun 2026 12:11:47 +0000 Manifest this update: Thu 18 Jun 2026 12:06:47 +0000 Manifest next update: Fri 19 Jun 2026 14:50:47 +0000 Files and hashes: 1: 3135372e31302e36332e302f32342d3234203d3e20313532303835.roa (hash: yL9CLlILHqLbQJKBIi0ABV5wanAH6ejKvh6ick9wGpY=) 2: 68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.crl (hash: TJOramVIlHMohP8FYE0ql+hvLNV1h4oF1qPO9tqTi1M=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.crl rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/0/7DF4349534441AF11A65DDD3588F74DC59C2D362.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ffQ0lTREGvEaZd3TWI903FnC02I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Jun 2026 08:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:84:b2:ae:34:07:19:e6:fe:1d:6f:66:0d:02:22:cb:6c:57:f5:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF Validity Not Before: Jun 18 12:06:47 2026 GMT Not After : Jun 19 14:50:47 2026 GMT Subject: CN=D0EC1CF93A5B86C4448DC8C1F975999E764CB32E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:65:f2:54:8c:9c:af:be:42:16:e8:91:5c:31: c2:e5:10:f7:2b:6c:2e:0a:63:0e:e5:07:db:a3:89: 0c:61:df:00:9c:2a:8b:22:7c:0d:54:8e:f8:b8:a4: 4b:c8:fd:19:89:74:87:a1:03:4d:5d:30:1b:b2:d5: 52:76:d8:bc:a5:0e:3d:f2:e9:8c:5d:6a:32:0b:9e: ea:77:3a:a3:f8:5f:33:af:c4:88:e7:df:5b:3b:e0: 3e:29:5d:9d:d2:d4:bb:4c:b0:da:71:33:5f:68:55: 8f:54:9f:1b:dd:b8:2a:15:91:f5:eb:21:3d:e1:38: a7:97:65:54:62:2d:86:d6:38:03:47:02:2d:4c:d6: d4:01:4a:89:aa:59:22:79:1d:3c:a3:b8:b3:0f:de: 11:f4:f5:01:a1:b9:e3:a6:5a:59:41:13:5e:1b:85: 0f:cb:d4:25:94:1d:fb:b1:67:0e:15:42:91:2f:9f: 98:b8:ed:83:61:fe:f8:a7:e5:a5:f1:21:b3:8b:67: a0:71:4a:fd:61:31:b4:df:cc:05:b2:d6:07:57:96: 8e:9a:54:62:e0:ae:29:bf:da:5c:0c:19:f4:dd:68: e8:bf:00:d3:1c:8b:fa:fc:49:b3:b0:80:24:db:ba: 2b:c7:c7:07:36:7b:ea:ae:b4:2c:41:80:74:e6:12: 03:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:EC:1C:F9:3A:5B:86:C4:44:8D:C8:C1:F9:75:99:9E:76:4C:B3:2E X509v3 Authority Key Identifier: keyid:68:B5:03:53:22:FF:DB:9C:8D:6E:EC:10:B5:D2:F1:A7:7D:FF:70:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/fd3a2fdf-bcba-4757-b366-e1a0ad2d374a/0/68B5035322FFDB9C8D6EEC10B5D2F1A77DFF70CF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:6b:21:65:b0:ee:1f:21:7c:b6:fe:d8:d0:40:77:c0:3b:2b: d9:ec:97:d6:ac:5b:77:1f:ae:7d:bf:d8:b3:10:d0:31:74:14: bd:4f:d3:d5:36:d6:1c:d5:cc:b4:50:8e:96:b3:ef:91:77:11: 50:69:e1:4b:d1:5b:f2:83:e3:88:86:4c:89:ed:73:f7:a9:33: 3d:44:30:c3:7c:d1:c0:dd:e0:05:c4:a2:a6:30:3b:71:d6:8b: 7c:01:3e:ca:11:3b:be:16:ee:c3:37:d4:61:7f:4b:fd:66:8d: 10:2c:e4:d0:9c:c2:9a:b6:aa:a0:0f:7b:0e:51:f4:64:68:6e: 23:f8:ce:04:3c:82:e2:31:0e:d5:77:97:ff:b3:21:4e:de:e5: bf:37:e0:54:74:9e:b5:4d:63:c5:5a:14:f7:a6:70:3d:61:5b: ca:4b:82:32:fd:03:ec:0b:97:37:05:1b:d4:5d:9a:aa:18:57: a4:1a:5e:0e:cf:5f:ed:56:37:f8:a2:29:91:dd:7c:a3:25:ea: 37:54:2d:52:a2:ec:98:90:a7:7a:79:23:c6:30:e9:58:b0:37: 9d:38:99:d8:c6:1e:cb:be:ea:23:a0:1f:64:3e:62:b8:ae:e1: 35:32:f8:6c:2a:91:15:27:52:38:c1:c9:54:18:08:a8:d2:87: 15:10:e0:36 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJoSyrjQHGeb+HW9mDQIiy2xX9QcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhCNTAzNTMyMkZGREI5QzhENkVFQzEwQjVEMkYxQTc3 REZGNzBDRjAeFw0yNjA2MTgxMjA2NDdaFw0yNjA2MTkxNDUwNDdaMDMxMTAvBgNV BAMTKEQwRUMxQ0Y5M0E1Qjg2QzQ0NDhEQzhDMUY5NzU5OTlFNzY0Q0IzMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOZfJUjJyvvkIW6JFcMcLlEPcr bC4KYw7lB9ujiQxh3wCcKosifA1Ujvi4pEvI/RmJdIehA01dMBuy1VJ22LylDj3y 6YxdajILnup3OqP4XzOvxIjn31s74D4pXZ3S1LtMsNpxM19oVY9UnxvduCoVkfXr IT3hOKeXZVRiLYbWOANHAi1M1tQBSomqWSJ5HTyjuLMP3hH09QGhueOmWllBE14b hQ/L1CWUHfuxZw4VQpEvn5i47YNh/vin5aXxIbOLZ6BxSv1hMbTfzAWy1gdXlo6a VGLgrim/2lwMGfTdaOi/ANMci/r8SbOwgCTbuivHxwc2e+qutCxBgHTmEgMVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0Owc+TpbhsREjcjB+XWZnnZMsy4wHwYDVR0j BBgwFoAUaLUDUyL/25yNbuwQtdLxp33/cM8wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZmQzYTJmZGYtYmNiYS00NzU3LWIzNjYtZTFhMGFkMmQzNzRhLzAvNjhCNTAzNTMy MkZGREI5QzhENkVFQzEwQjVEMkYxQTc3REZGNzBDRi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMC82OEI1MDM1MzIyRkZEQjlDOEQ2RUVDMTBCNUQyRjFBNzdERkY3 MENGLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vZmQzYTJmZGYtYmNiYS00NzU3LWIz NjYtZTFhMGFkMmQzNzRhLzAvNjhCNTAzNTMyMkZGREI5QzhENkVFQzEwQjVEMkYx QTc3REZGNzBDRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABdrIWWw7h8hfLb+2NBAd8A7K9nsl9asW3cf rn2/2LMQ0DF0FL1P09U21hzVzLRQjpaz75F3EVBp4UvRW/KD44iGTIntc/epMz1E MMN80cDd4AXEoqYwO3HWi3wBPsoRO74W7sM31GF/S/1mjRAs5NCcwpq2qqAPew5R 9GRobiP4zgQ8guIxDtV3l/+zIU7e5b834FR0nrVNY8VaFPemcD1hW8pLgjL9A+wL lzcFG9RdmqoYV6QaXg7PX+1WN/iiKZHdfKMl6jdULVKi7JiQp3p5I8Yw6ViwN504 mdjGHsu+6iOgH2Q+Yriu4TUy+GwqkRUnUjjByVQYCKjShxUQ4DY= -----END CERTIFICATE-----Generated at Thu Jun 18 17:10:52 2026 by rpki-client