$ rpki-client -vvf rpki-rsync.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/43E7A30A597BB32973CB2B6179D9AD8969F4829E.mft File: 43E7A30A597BB32973CB2B6179D9AD8969F4829E.mft (raw, json) Hash identifier: nF1Q+pVTJyU1oztpSla+1OAw83tBNb8bVBnTr6VrwSY= Subject key identifier: B2:B2:43:F4:53:EC:40:FE:2F:C4:02:28:43:CE:C5:A5:2D:66:5A:27 Authority key identifier: 43:E7:A3:0A:59:7B:B3:29:73:CB:2B:61:79:D9:AD:89:69:F4:82:9E Certificate issuer: /CN=43E7A30A597BB32973CB2B6179D9AD8969F4829E Certificate serial: 7134C61669647BBE357AA0A5A1D59D8BA4BEFF68 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E7A30A597BB32973CB2B6179D9AD8969F4829E.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/43E7A30A597BB32973CB2B6179D9AD8969F4829E.mft Manifest number: 42 Signing time: Fri 19 Jun 2026 22:23:00 +0000 Manifest this update: Fri 19 Jun 2026 22:18:00 +0000 Manifest next update: Sat 20 Jun 2026 22:26:00 +0000 Files and hashes: 1: 3130332e3136382e3235312e302f32342d3234203d3e20313432333237.roa (hash: 6T6qe96D7zQgyFzklJ6iaQcLNZnBxADfp/QBK9mZ1I4=) 2: 43E7A30A597BB32973CB2B6179D9AD8969F4829E.crl (hash: 98MXOTiSpmH3Ayb6OJ02mlxKXqTqooV04TcH3t0G1I4=) 3: 3130332e3136382e3235302e302f32332d3233203d3e20313432333237.roa (hash: q99UPT0teezCe/Wtc8EBt8wiQOUmurJEflzD8Gd4ong=) 4: 3130332e3136382e3235302e302f32342d3234203d3e20313432333237.roa (hash: ZMjpq12yq0Ybu/ztv35lMr6v5CZiyWpAJWCedHpTXXc=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/43E7A30A597BB32973CB2B6179D9AD8969F4829E.crl rsync://rpki-rsync.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/43E7A30A597BB32973CB2B6179D9AD8969F4829E.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E7A30A597BB32973CB2B6179D9AD8969F4829E.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 22:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:34:c6:16:69:64:7b:be:35:7a:a0:a5:a1:d5:9d:8b:a4:be:ff:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43E7A30A597BB32973CB2B6179D9AD8969F4829E Validity Not Before: Jun 19 22:18:00 2026 GMT Not After : Jun 20 22:26:00 2026 GMT Subject: CN=B2B243F453EC40FE2FC4022843CEC5A52D665A27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0e:6d:2d:fb:e4:ad:ad:0e:73:a8:ac:32:1d: 71:d4:36:3d:73:44:63:fe:ac:38:f2:2f:2a:e4:79: 02:02:cb:fd:14:6a:d2:3a:c4:bb:8e:b0:23:c8:38: 5d:f1:db:8f:c0:89:a7:22:25:93:a1:a6:2e:0e:9d: 4f:0f:6b:3b:b4:2b:82:e9:63:60:bd:9a:26:9e:b9: 97:f0:db:99:78:82:bf:4e:10:e7:40:19:2c:25:0f: 74:28:a9:9e:29:d0:32:3b:f5:34:fc:32:ab:95:fe: 91:f9:d6:5c:eb:8a:cb:cf:64:ff:ce:26:67:ce:5a: 94:39:e1:a9:ff:ae:08:89:16:70:bd:80:05:c3:03: 56:28:7d:40:03:ce:f7:84:d9:38:2f:9d:86:3e:d9: 0f:2d:01:76:18:aa:36:ea:c3:f8:c3:50:f2:d0:ba: 8f:7f:47:55:f9:8b:2c:4e:c1:58:e7:cf:30:e6:c2: ca:d6:46:8b:43:11:69:32:44:fc:a6:1a:a0:89:98: 96:47:d8:48:93:df:7a:49:9d:63:c1:13:af:98:51: c5:03:c7:a1:79:57:e9:53:19:4d:95:05:1c:ff:43: 8a:b0:f2:41:64:7d:5b:ce:b1:9d:20:eb:12:97:be: 47:ec:c9:f8:6d:4e:e1:53:b9:bd:4d:3c:92:46:bc: 62:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B2:43:F4:53:EC:40:FE:2F:C4:02:28:43:CE:C5:A5:2D:66:5A:27 X509v3 Authority Key Identifier: keyid:43:E7:A3:0A:59:7B:B3:29:73:CB:2B:61:79:D9:AD:89:69:F4:82:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/43E7A30A597BB32973CB2B6179D9AD8969F4829E.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43E7A30A597BB32973CB2B6179D9AD8969F4829E.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/43E7A30A597BB32973CB2B6179D9AD8969F4829E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:40:a0:91:e5:27:66:1a:b3:f5:5c:0f:5d:3a:71:ba:35:dd: df:5b:07:da:f7:66:da:ed:fa:fa:f0:79:a7:74:e9:68:0c:bf: e9:ff:b3:ef:23:96:96:30:eb:46:77:e0:a3:85:92:95:16:4b: 92:5c:90:80:61:2e:4d:c9:36:e9:b4:96:f0:bf:40:9a:3c:52: ba:3b:06:d8:61:ed:82:57:2c:e9:15:bd:78:41:d6:0e:5f:dc: 08:ab:ff:32:95:e7:32:61:8a:55:4e:1d:d8:07:b7:35:f7:31: 76:7a:98:fa:7e:02:52:a0:ee:f5:b6:34:18:a5:05:eb:b7:63: d2:a5:bb:32:81:a4:94:c0:68:87:16:1d:de:ec:6f:0b:53:c3: 87:cd:35:00:56:99:ba:f2:47:b9:43:58:06:45:96:29:0d:63: 4d:74:c0:f9:97:47:54:ec:b7:aa:51:5d:1e:2e:be:62:e5:20: 47:aa:96:33:ec:5a:95:fe:32:bb:46:1d:66:8e:2b:b5:26:d6: b4:70:dc:1f:3c:bf:09:c3:81:73:ee:da:61:e4:f4:5a:e1:68: 43:3d:b5:99:4b:78:37:8f:c3:b1:41:52:2f:89:35:12:87:23: 5c:9e:a8:6b:e0:f3:76:de:7f:35:8e:9b:7f:29:a4:e6:b7:77: 4e:dc:f9:cd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcTTGFmlke741eqClodWdi6S+/2gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNFN0EzMEE1OTdCQjMyOTczQ0IyQjYxNzlEOUFEODk2 OUY0ODI5RTAeFw0yNjA2MTkyMjE4MDBaFw0yNjA2MjAyMjI2MDBaMDMxMTAvBgNV BAMTKEIyQjI0M0Y0NTNFQzQwRkUyRkM0MDIyODQzQ0VDNUE1MkQ2NjVBMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXDm0t++StrQ5zqKwyHXHUNj1z RGP+rDjyLyrkeQICy/0UatI6xLuOsCPIOF3x24/AiaciJZOhpi4OnU8Pazu0K4Lp Y2C9miaeuZfw25l4gr9OEOdAGSwlD3QoqZ4p0DI79TT8MquV/pH51lzrisvPZP/O JmfOWpQ54an/rgiJFnC9gAXDA1YofUADzveE2TgvnYY+2Q8tAXYYqjbqw/jDUPLQ uo9/R1X5iyxOwVjnzzDmwsrWRotDEWkyRPymGqCJmJZH2EiT33pJnWPBE6+YUcUD x6F5V+lTGU2VBRz/Q4qw8kFkfVvOsZ0g6xKXvkfsyfhtTuFTub1NPJJGvGJ/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsrJD9FPsQP4vxAIoQ87FpS1mWicwHwYDVR0j BBgwFoAUQ+ejCll7sylzyythedmtiWn0gp4wDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MDM4ZDU4MGItNDUyZS00MmQ3LWIwNDEtOTAxZGMzM2Q2ODU3LzAvNDNFN0EzMEE1 OTdCQjMyOTczQ0IyQjYxNzlEOUFEODk2OUY0ODI5RS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0U3QTMwQTU5N0JCMzI5NzNDQjJCNjE3OUQ5QUQ4OTY5RjQ4 MjlFLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMDM4ZDU4MGItNDUyZS00MmQ3LWIw NDEtOTAxZGMzM2Q2ODU3LzAvNDNFN0EzMEE1OTdCQjMyOTczQ0IyQjYxNzlEOUFE ODk2OUY0ODI5RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKFAoJHlJ2Yas/VcD106cbo13d9bB9r3Ztrt +vrwead06WgMv+n/s+8jlpYw60Z34KOFkpUWS5JckIBhLk3JNum0lvC/QJo8Uro7 Bthh7YJXLOkVvXhB1g5f3Air/zKV5zJhilVOHdgHtzX3MXZ6mPp+AlKg7vW2NBil Beu3Y9KluzKBpJTAaIcWHd7sbwtTw4fNNQBWmbryR7lDWAZFlikNY010wPmXR1Ts t6pRXR4uvmLlIEeqljPsWpX+MrtGHWaOK7Um1rRw3B88vwnDgXPu2mHk9FrhaEM9 tZlLeDePw7FBUi+JNRKHI1yeqGvg83befzWOm38ppOa3d07c+c0= -----END CERTIFICATE-----Generated at Sat Jun 20 09:21:12 2026 by rpki-client