$ rpki-client -vvf rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft File: 8B43E14BD4588C4904A641356A5D07D628190CAB.mft (raw, json) Hash identifier: BaNHdCSVYJ+POSiLYudGcNygZNaSYMFC1UqHKQ/WCbc= Subject key identifier: 89:63:A3:4F:7D:19:4E:32:65:3C:4E:15:52:81:19:ED:C3:48:20:C9 Authority key identifier: 8B:43:E1:4B:D4:58:8C:49:04:A6:41:35:6A:5D:07:D6:28:19:0C:AB Certificate issuer: /CN=8B43E14BD4588C4904A641356A5D07D628190CAB Certificate serial: 6C8B50FDC67E4E97A834ED243E3CD1D46BFC3351 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft Manifest number: 2B Signing time: Tue 02 Jun 2026 11:08:49 +0000 Manifest this update: Tue 02 Jun 2026 11:03:49 +0000 Manifest next update: Wed 03 Jun 2026 14:44:49 +0000 Files and hashes: 1: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: 0flsrdaSAjsWCJEWyeVcLLzCVtlFqOFqVNzD5e/gcuA=) 2: 8B43E14BD4588C4904A641356A5D07D628190CAB.crl (hash: fBg4AuhFSx5PE1/QdRPFJzCyOf2u4oYpaaq02cAdGMA=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.crl rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jun 2026 10:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:8b:50:fd:c6:7e:4e:97:a8:34:ed:24:3e:3c:d1:d4:6b:fc:33:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B43E14BD4588C4904A641356A5D07D628190CAB Validity Not Before: Jun 2 11:03:49 2026 GMT Not After : Jun 3 14:44:49 2026 GMT Subject: CN=8963A34F7D194E32653C4E15528119EDC34820C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9d:17:36:d9:42:a3:f6:9d:a8:fd:c3:4e:73: dd:ae:04:a5:2a:7e:6d:34:47:7e:c5:cc:38:da:08: 7b:89:80:19:61:c5:e5:ae:b7:ce:ea:2f:82:41:fc: 43:a0:4d:d4:db:b2:55:de:a0:d9:53:b2:d9:f4:29: ef:66:95:eb:fb:e7:f3:9d:0f:8e:b5:99:83:cd:e4: 3a:2a:c7:75:09:ab:83:6f:55:2d:19:09:f6:83:0d: 98:ac:46:bb:b6:30:9a:28:70:1c:89:d0:33:4c:c4: e3:1b:78:b4:af:9d:39:81:11:21:55:02:77:ea:72: 76:2b:d9:e6:83:cd:cd:2c:2a:87:36:15:5a:1d:7c: 11:fc:a0:4f:9c:1a:fd:7e:0e:a9:2b:cc:37:03:82: ce:7b:70:5c:c0:1b:72:db:74:c3:4f:9c:2b:0e:22: b1:17:61:9f:41:d3:b2:6a:d7:5c:3c:6e:7b:04:96: 0c:dd:e7:a6:32:24:b7:78:d3:80:fa:8e:5f:c0:af: 8b:e0:e0:10:32:e6:95:b6:69:15:f8:e6:c4:bf:47: e8:2d:23:27:8a:07:ac:87:0e:0f:24:1c:3f:b0:8f: 85:4b:96:66:99:30:12:3b:19:d6:b3:a7:df:74:17: 09:b1:ea:c3:6a:f5:78:45:63:8c:5a:29:d7:9b:9b: 27:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:63:A3:4F:7D:19:4E:32:65:3C:4E:15:52:81:19:ED:C3:48:20:C9 X509v3 Authority Key Identifier: keyid:8B:43:E1:4B:D4:58:8C:49:04:A6:41:35:6A:5D:07:D6:28:19:0C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:89:67:f7:d5:2f:a3:85:2f:40:f6:4e:0f:21:54:8c:38:82: 86:f1:9e:cd:d3:ad:77:e4:2a:2f:2c:67:73:c8:b6:3c:6f:72: 99:bc:98:76:ab:36:c5:da:b8:9f:09:23:d1:64:ff:54:86:54: 4f:99:33:61:4e:6c:dd:c2:c9:98:0e:1e:94:ca:e6:71:1d:36: cb:23:4c:78:41:4a:76:53:43:c3:a6:fb:26:1c:d5:25:ba:52: 52:46:ec:1e:f7:44:79:3b:0b:78:1d:7f:3f:e9:cd:fa:14:c9: 98:14:ae:6e:31:03:3f:64:67:1e:4b:b9:c1:13:fc:2a:f5:b5: 4e:b6:31:5e:21:8b:b3:c0:58:f9:60:2a:9e:c6:92:3c:83:8f: bb:fa:38:bf:17:bd:fa:13:80:15:b3:27:3e:25:14:2e:dd:b3: a7:e5:f5:cb:1e:2b:1f:0f:00:7c:a7:17:85:54:75:46:a6:e3: af:c3:fb:8c:07:59:4a:cf:d3:00:78:ab:82:2c:a7:e2:fa:b5: a9:85:38:7f:44:60:63:d9:db:ec:bb:55:32:41:c5:0c:d5:74: 2e:46:d8:c0:4d:26:e4:22:11:56:2c:3c:9c:0f:89:ce:b6:a8: 11:cd:a3:a7:27:99:88:f4:43:68:b1:24:cc:9e:28:f9:74:47: fa:9e:27:c7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbItQ/cZ+TpeoNO0kPjzR1Gv8M1EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEI0M0UxNEJENDU4OEM0OTA0QTY0MTM1NkE1RDA3RDYy ODE5MENBQjAeFw0yNjA2MDIxMTAzNDlaFw0yNjA2MDMxNDQ0NDlaMDMxMTAvBgNV BAMTKDg5NjNBMzRGN0QxOTRFMzI2NTNDNEUxNTUyODExOUVEQzM0ODIwQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXnRc22UKj9p2o/cNOc92uBKUq fm00R37FzDjaCHuJgBlhxeWut87qL4JB/EOgTdTbslXeoNlTstn0Ke9mlev75/Od D461mYPN5Doqx3UJq4NvVS0ZCfaDDZisRru2MJoocByJ0DNMxOMbeLSvnTmBESFV AnfqcnYr2eaDzc0sKoc2FVodfBH8oE+cGv1+DqkrzDcDgs57cFzAG3LbdMNPnCsO IrEXYZ9B07Jq11w8bnsElgzd56YyJLd404D6jl/Ar4vg4BAy5pW2aRX45sS/R+gt IyeKB6yHDg8kHD+wj4VLlmaZMBI7Gdazp990Fwmx6sNq9XhFY4xaKdebmyenAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiWOjT30ZTjJlPE4VUoEZ7cNIIMkwHwYDVR0j BBgwFoAUi0PhS9RYjEkEpkE1al0H1igZDKswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzRhMjNjNGUtMzkzMi00M2JkLTgxNzYtZjYyNTFkZGVhODQyLzAvOEI0M0UxNEJE NDU4OEM0OTA0QTY0MTM1NkE1RDA3RDYyODE5MENBQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QjQzRTE0QkQ0NTg4QzQ5MDRBNjQxMzU2QTVEMDdENjI4MTkw Q0FCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvOEI0M0UxNEJENDU4OEM0OTA0QTY0MTM1NkE1RDA3 RDYyODE5MENBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGuJZ/fVL6OFL0D2Tg8hVIw4gobxns3TrXfk Ki8sZ3PItjxvcpm8mHarNsXauJ8JI9Fk/1SGVE+ZM2FObN3CyZgOHpTK5nEdNssj THhBSnZTQ8Om+yYc1SW6UlJG7B73RHk7C3gdfz/pzfoUyZgUrm4xAz9kZx5LucET /Cr1tU62MV4hi7PAWPlgKp7GkjyDj7v6OL8XvfoTgBWzJz4lFC7ds6fl9cseKx8P AHynF4VUdUam46/D+4wHWUrP0wB4q4Isp+L6tamFOH9EYGPZ2+y7VTJBxQzVdC5G 2MBNJuQiEVYsPJwPic62qBHNo6cnmYj0Q2ixJMyeKPl0R/qeJ8c= -----END CERTIFICATE-----Generated at Wed Jun 3 04:12:42 2026 by rpki-client