$ rpki-client -vvf rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft File: 43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft (raw, json) Hash identifier: 7DFYtEEeXnGjMW0FjgDBo8Wo2mmaeIxLWvWutz1izW4= Subject key identifier: 8B:04:CA:6C:CF:8C:CF:87:E8:E4:B2:18:29:15:E2:A1:84:AB:9B:7F Authority key identifier: 43:F8:96:EE:B7:0F:2F:97:88:3F:F4:59:CA:E3:AC:B4:37:42:B3:BC Certificate issuer: /CN=43F896EEB70F2F97883FF459CAE3ACB43742B3BC Certificate serial: 5D6EDEC6AFE7D8F6249097CA61B40EDC61D16BA5 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft Manifest number: 42 Signing time: Fri 19 Jun 2026 18:07:37 +0000 Manifest this update: Fri 19 Jun 2026 18:02:37 +0000 Manifest next update: Sat 20 Jun 2026 21:43:37 +0000 Files and hashes: 1: 323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa (hash: 8so5gt5H9uGwMpnvmuPmOphhipCyfITSegbgfqUMLB8=) 2: 3130332e3135312e39342e302f32342d3234203d3e203137353338.roa (hash: zK6cRL88GJh6m3ulXU/23rYWx1uCoF/U17/Vb4bnDxI=) 3: 43F896EEB70F2F97883FF459CAE3ACB43742B3BC.crl (hash: J2L9AprZzR+KzJdQ7gxCCafY5s1C322sPB5yKUS+By4=) 4: 3130332e3135312e39352e302f32342d3234203d3e203137353338.roa (hash: zJ5Jgen43BSfgth1+Wx2KQ4rMgZaYS8tSCDudAuawmM=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.crl rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Jun 2026 21:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:6e:de:c6:af:e7:d8:f6:24:90:97:ca:61:b4:0e:dc:61:d1:6b:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43F896EEB70F2F97883FF459CAE3ACB43742B3BC Validity Not Before: Jun 19 18:02:37 2026 GMT Not After : Jun 20 21:43:37 2026 GMT Subject: CN=8B04CA6CCF8CCF87E8E4B2182915E2A184AB9B7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d4:16:ee:3d:c8:d3:0d:26:05:ae:56:4a:97: d4:cb:76:e2:d8:bc:5c:73:6e:58:4e:d1:34:d6:01: 51:8d:1d:40:aa:29:45:17:88:42:c3:9d:a0:27:05: 4a:11:93:06:f0:5f:31:fa:40:fe:51:25:ab:03:17: 78:45:75:c4:17:ed:84:62:af:69:c3:bc:da:86:b0: 93:50:20:73:64:7e:ea:54:d5:5f:68:74:10:0c:97: ad:f7:e1:3a:14:17:e3:c6:95:bb:ff:48:81:d6:ed: 30:87:ef:8c:5f:33:03:d4:b1:af:b1:5a:5e:52:1e: 66:20:9e:c9:65:39:04:e6:56:f6:98:4b:81:1c:70: d2:be:4b:b2:d1:cf:a6:cd:99:5c:07:b7:cf:f1:8b: d4:4c:46:14:56:10:e3:a8:4f:30:7d:02:d4:88:1f: 52:b4:e4:45:14:f0:cf:4f:34:b3:9b:cd:89:51:60: 8f:46:95:30:be:c3:6b:88:1b:3f:f0:27:35:b4:97: 90:38:de:e5:a8:e0:0e:2f:41:47:4b:e7:db:8e:76: 66:a8:e9:2b:2c:47:76:3b:d5:a2:a8:18:98:32:63: dc:b5:a4:5f:01:2f:9a:55:44:54:86:57:3b:07:85: 3a:55:5d:c2:04:a8:73:20:2c:30:02:19:84:e2:6f: 51:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:04:CA:6C:CF:8C:CF:87:E8:E4:B2:18:29:15:E2:A1:84:AB:9B:7F X509v3 Authority Key Identifier: keyid:43:F8:96:EE:B7:0F:2F:97:88:3F:F4:59:CA:E3:AC:B4:37:42:B3:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f7:0d:91:16:db:ae:cd:a1:87:ef:26:46:11:ed:26:c9:00: 3e:c1:f3:3f:79:a8:86:99:39:72:27:49:0a:bf:af:a2:45:2a: b5:da:fb:c7:4d:34:7c:e2:c5:b5:a1:54:f7:ea:cf:7f:9d:78: 88:21:33:56:9f:d1:b8:26:2d:eb:53:0f:93:d6:0d:c3:8c:66: 7b:99:7b:28:6c:1a:eb:b0:1b:3e:5d:8c:35:fa:bd:69:3c:b9: 21:c3:f3:08:26:0e:30:f2:0d:4b:a5:98:b9:97:db:fd:f5:ec: 65:e7:45:48:86:f4:53:e7:f6:c7:6f:e1:62:21:1d:2a:fa:c8: 00:7d:44:8e:d6:c8:0d:1f:f0:1f:5b:aa:5a:42:3f:fa:62:84: fe:76:92:88:50:c4:53:59:ea:6a:2d:9b:76:52:7c:60:1c:68: be:41:0e:85:5d:2b:24:b7:49:a1:38:90:52:02:d7:4a:d3:33: 23:32:c3:97:ec:d9:1f:cf:f4:a0:2c:63:09:32:e6:fb:0e:fd: 57:55:89:a9:b8:ae:40:57:5c:13:ef:ed:cf:71:71:11:d5:fc: 39:bf:a2:cd:2e:54:67:a0:15:9f:32:eb:fc:19:02:84:4f:f2: 6a:d0:c9:6e:04:56:c7:fe:3a:cf:2a:9d:ea:7f:74:95:bd:36: ba:01:ec:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXW7exq/n2PYkkJfKYbQO3GHRa6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNGODk2RUVCNzBGMkY5Nzg4M0ZGNDU5Q0FFM0FDQjQz NzQyQjNCQzAeFw0yNjA2MTkxODAyMzdaFw0yNjA2MjAyMTQzMzdaMDMxMTAvBgNV BAMTKDhCMDRDQTZDQ0Y4Q0NGODdFOEU0QjIxODI5MTVFMkExODRBQjlCN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb1BbuPcjTDSYFrlZKl9TLduLY vFxzblhO0TTWAVGNHUCqKUUXiELDnaAnBUoRkwbwXzH6QP5RJasDF3hFdcQX7YRi r2nDvNqGsJNQIHNkfupU1V9odBAMl6334ToUF+PGlbv/SIHW7TCH74xfMwPUsa+x Wl5SHmYgnsllOQTmVvaYS4EccNK+S7LRz6bNmVwHt8/xi9RMRhRWEOOoTzB9AtSI H1K05EUU8M9PNLObzYlRYI9GlTC+w2uIGz/wJzW0l5A43uWo4A4vQUdL59uOdmao 6SssR3Y71aKoGJgyY9y1pF8BL5pVRFSGVzsHhTpVXcIEqHMgLDACGYTib1E1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiwTKbM+Mz4fo5LIYKRXioYSrm38wHwYDVR0j BBgwFoAUQ/iW7rcPL5eIP/RZyuOstDdCs7wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWE0MzM5MzQtMzg0NC00NjUzLThmYWMtMTg1OGIyODIzZDFjLzAvNDNGODk2RUVC NzBGMkY5Nzg4M0ZGNDU5Q0FFM0FDQjQzNzQyQjNCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0Y4OTZFRUI3MEYyRjk3ODgzRkY0NTlDQUUzQUNCNDM3NDJC M0JDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWE0MzM5MzQtMzg0NC00NjUzLThm YWMtMTg1OGIyODIzZDFjLzAvNDNGODk2RUVCNzBGMkY5Nzg4M0ZGNDU5Q0FFM0FD QjQzNzQyQjNCQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEv3DZEW267NoYfvJkYR7SbJAD7B8z95qIaZ OXInSQq/r6JFKrXa+8dNNHzixbWhVPfqz3+deIghM1af0bgmLetTD5PWDcOMZnuZ eyhsGuuwGz5djDX6vWk8uSHD8wgmDjDyDUulmLmX2/317GXnRUiG9FPn9sdv4WIh HSr6yAB9RI7WyA0f8B9bqlpCP/pihP52kohQxFNZ6motm3ZSfGAcaL5BDoVdKyS3 SaE4kFIC10rTMyMyw5fs2R/P9KAsYwky5vsO/VdViam4rkBXXBPv7c9xcRHV/Dm/ os0uVGegFZ8y6/wZAoRP8mrQyW4EVsf+Os8qnep/dJW9NroB7OY= -----END CERTIFICATE-----Generated at Sat Jun 20 08:38:03 2026 by rpki-client