
$ rpki-client -vvf rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft
File: 8B43E14BD4588C4904A641356A5D07D628190CAB.mft (raw, json)
Hash identifier: gu5nw53yKc5v5CX8wlYgMtL1dJix7BSmpHij6hVjfCU=
Subject key identifier: 81:A0:59:20:83:AC:9A:74:11:8C:4A:E3:14:F4:41:B6:53:1C:76:C1
Authority key identifier: 8B:43:E1:4B:D4:58:8C:49:04:A6:41:35:6A:5D:07:D6:28:19:0C:AB
Certificate issuer: /CN=8B43E14BD4588C4904A641356A5D07D628190CAB
Certificate serial: 5328D72352A7DD3E3652B7ADB15418ABABB6A7A2
Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer
Subject info access: rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft
Manifest number: 69
Signing time: Sun 19 Jul 2026 08:27:28 +0000
Manifest this update: Sun 19 Jul 2026 08:22:28 +0000
Manifest next update: Mon 20 Jul 2026 09:33:28 +0000
Files and hashes: 1: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: 0flsrdaSAjsWCJEWyeVcLLzCVtlFqOFqVNzD5e/gcuA=)
2: 8B43E14BD4588C4904A641356A5D07D628190CAB.crl (hash: CgUHAWBAq18vdNhpOz6w9ZP3Cu2+1CX+JLjhSjXRYLQ=)
Validation: OK
Signature path: rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.crl
rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl
rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 20 Jul 2026 09:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:28:d7:23:52:a7:dd:3e:36:52:b7:ad:b1:54:18:ab:ab:b6:a7:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8B43E14BD4588C4904A641356A5D07D628190CAB
Validity
Not Before: Jul 19 08:22:28 2026 GMT
Not After : Jul 20 09:33:28 2026 GMT
Subject: CN=81A0592083AC9A74118C4AE314F441B6531C76C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:83:3b:39:37:de:57:db:39:85:34:70:f4:71:
56:d4:61:42:38:da:b8:bf:74:7a:1d:51:4d:7d:92:
e7:41:bb:38:a9:06:97:85:3f:28:4a:38:7e:70:c5:
ff:1e:4e:34:81:17:c3:71:da:88:2d:c8:6e:28:c6:
33:ca:a2:6e:a2:4d:a3:b9:84:cd:36:83:b4:f5:b2:
1a:13:24:ea:d9:23:41:8b:df:e6:f1:7d:7b:55:d9:
da:c4:dc:f5:77:b3:47:4d:f8:8f:7f:bf:8f:87:23:
cf:31:b3:01:52:68:42:e4:5c:fd:f0:96:8d:eb:e0:
f2:70:16:24:24:7a:f8:3c:a0:d1:2b:82:b5:c1:5b:
38:eb:f7:1a:68:82:71:b0:41:af:f0:91:c9:5c:4e:
28:04:ac:b9:a7:57:7f:07:3f:ae:f0:df:35:50:29:
a2:61:94:aa:54:5b:9f:87:ce:5c:f8:17:5e:64:85:
2c:23:b2:55:ac:bd:ae:40:b1:8f:4e:42:ea:cd:a9:
18:2b:43:15:9a:76:4b:4c:24:28:dc:62:39:e2:ce:
d4:f7:2d:34:10:9a:59:ea:4c:8a:ae:dd:f2:ae:21:
7f:f0:4c:38:79:09:50:7f:c1:85:38:4f:74:e5:a7:
11:8c:3b:e2:da:41:2b:49:89:0d:13:a1:46:23:c6:
a4:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:A0:59:20:83:AC:9A:74:11:8C:4A:E3:14:F4:41:B6:53:1C:76:C1
X509v3 Authority Key Identifier:
keyid:8B:43:E1:4B:D4:58:8C:49:04:A6:41:35:6A:5D:07:D6:28:19:0C:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:d2:94:ce:5b:16:9b:e2:a9:02:ab:4c:81:fe:d7:8f:2d:60:
6e:45:06:a5:49:44:23:ae:bb:60:52:e4:f3:07:c9:a0:b4:ee:
ef:39:c0:9d:5f:af:2f:07:32:5e:3b:88:28:6a:3c:a3:f2:f8:
29:03:ac:83:1c:dc:11:d9:27:a4:f7:11:3f:a0:59:a8:ad:4e:
2f:5c:a4:f0:1c:7f:2b:61:af:27:c2:95:fe:46:6b:0d:ea:7c:
9b:cc:42:df:f8:e8:ef:90:28:a4:ad:aa:6e:b6:41:54:a6:ad:
16:95:dd:da:37:8b:2e:6e:81:64:e7:20:0f:9a:2a:ed:f5:e4:
21:ce:32:87:27:ef:cf:66:c1:5d:eb:0e:75:c5:3b:bb:73:99:
4a:55:9b:a8:cb:ff:c3:20:bb:54:74:16:25:fa:f5:d9:03:dc:
38:3e:32:5b:9a:4b:60:8c:04:b0:92:5f:9f:fb:78:ae:e4:a8:
f8:12:88:c2:a7:11:ef:67:4d:07:4d:ee:c2:56:52:23:cc:42:
46:5f:e2:09:72:57:38:cb:d8:32:6e:48:ce:2a:32:7c:1a:a0:
04:53:55:62:7c:ee:58:af:76:d4:0f:30:7d:69:f8:a1:75:99:
ca:29:cf:9c:5d:ad:6b:45:36:35:b9:31:3e:34:77:ed:13:ec:
c3:da:7c:27
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUUyjXI1Kn3T42UretsVQYq6u2p6IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEI0M0UxNEJENDU4OEM0OTA0QTY0MTM1NkE1RDA3RDYy
ODE5MENBQjAeFw0yNjA3MTkwODIyMjhaFw0yNjA3MjAwOTMzMjhaMDMxMTAvBgNV
BAMTKDgxQTA1OTIwODNBQzlBNzQxMThDNEFFMzE0RjQ0MUI2NTMxQzc2QzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2gzs5N95X2zmFNHD0cVbUYUI4
2ri/dHodUU19kudBuzipBpeFPyhKOH5wxf8eTjSBF8Nx2ogtyG4oxjPKom6iTaO5
hM02g7T1shoTJOrZI0GL3+bxfXtV2drE3PV3s0dN+I9/v4+HI88xswFSaELkXP3w
lo3r4PJwFiQkevg8oNErgrXBWzjr9xpognGwQa/wkclcTigErLmnV38HP67w3zVQ
KaJhlKpUW5+Hzlz4F15khSwjslWsva5AsY9OQurNqRgrQxWadktMJCjcYjniztT3
LTQQmlnqTIqu3fKuIX/wTDh5CVB/wYU4T3TlpxGMO+LaQStJiQ0ToUYjxqQHAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQUgaBZIIOsmnQRjErjFPRBtlMcdsEwHwYDVR0j
BBgwFoAUi0PhS9RYjEkEpkE1al0H1igZDKswDgYDVR0PAQH/BAQDAgeAMIGGBgNV
HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v
MzRhMjNjNGUtMzkzMi00M2JkLTgxNzYtZjYyNTFkZGVhODQyLzAvOEI0M0UxNEJE
NDU4OEM0OTA0QTY0MTM1NkE1RDA3RDYyODE5MENBQi5jcmwwcgYIKwYBBQUHAQEE
ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl
cG8vSUROSUMvMS84QjQzRTE0QkQ0NTg4QzQ5MDRBNjQxMzU2QTVEMDdENjI4MTkw
Q0FCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov
L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx
NzYtZjYyNTFkZGVhODQyLzAvOEI0M0UxNEJENDU4OEM0OTA0QTY0MTM1NkE1RDA3
RDYyODE5MENBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBAInSlM5bFpviqQKrTIH+148tYG5FBqVJRCOu
u2BS5PMHyaC07u85wJ1fry8HMl47iChqPKPy+CkDrIMc3BHZJ6T3ET+gWaitTi9c
pPAcfythryfClf5Gaw3qfJvMQt/46O+QKKStqm62QVSmrRaV3do3iy5ugWTnIA+a
Ku315CHOMocn789mwV3rDnXFO7tzmUpVm6jL/8Mgu1R0FiX69dkD3Dg+MluaS2CM
BLCSX5/7eK7kqPgSiMKnEe9nTQdN7sJWUiPMQkZf4glyVzjL2DJuSM4qMnwaoART
VWJ87livdtQPMH1p+KF1mcopz5xdrWtFNjW5MT40d+0T7MPafCc=
-----END CERTIFICATE-----
Generated at Sun Jul 19 23:38:12 2026 by rpki-client