$ rpki-client -vvf rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft File: 43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft (raw, json) Hash identifier: +Kg25QxoNGTCMQhbjNNWcBQtZpF6fAsVqrnO6RlK0sI= Subject key identifier: 94:99:59:C7:62:6E:50:2A:A1:F3:48:FB:4B:F6:08:A2:18:AD:D5:50 Authority key identifier: 43:F8:96:EE:B7:0F:2F:97:88:3F:F4:59:CA:E3:AC:B4:37:42:B3:BC Certificate issuer: /CN=43F896EEB70F2F97883FF459CAE3ACB43742B3BC Certificate serial: 45F25F4BAB899E8B3F93AAE9806A3EC2261B6FBA Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft Manifest number: 3E Signing time: Tue 16 Jun 2026 20:28:56 +0000 Manifest this update: Tue 16 Jun 2026 20:23:56 +0000 Manifest next update: Wed 17 Jun 2026 20:51:56 +0000 Files and hashes: 1: 3130332e3135312e39342e302f32342d3234203d3e203137353338.roa (hash: zK6cRL88GJh6m3ulXU/23rYWx1uCoF/U17/Vb4bnDxI=) 2: 323030313a6466333a623838303a3a2f34382d3438203d3e203137353338.roa (hash: 8so5gt5H9uGwMpnvmuPmOphhipCyfITSegbgfqUMLB8=) 3: 3130332e3135312e39352e302f32342d3234203d3e203137353338.roa (hash: zJ5Jgen43BSfgth1+Wx2KQ4rMgZaYS8tSCDudAuawmM=) 4: 43F896EEB70F2F97883FF459CAE3ACB43742B3BC.crl (hash: dlXNtJqLZoxQrKAz0MC0zPKyfwb4DnIy0V5lz0LsCtI=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.crl rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 20:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f2:5f:4b:ab:89:9e:8b:3f:93:aa:e9:80:6a:3e:c2:26:1b:6f:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43F896EEB70F2F97883FF459CAE3ACB43742B3BC Validity Not Before: Jun 16 20:23:56 2026 GMT Not After : Jun 17 20:51:56 2026 GMT Subject: CN=949959C7626E502AA1F348FB4BF608A218ADD550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7e:ad:a7:a0:7a:5c:20:54:a0:01:39:4e:5d: f7:39:fa:bc:ec:82:10:96:b7:27:a4:5e:f6:a1:b6: 12:d7:d4:74:9f:3a:4f:57:42:71:39:bd:49:d2:10: 92:14:33:8e:be:8a:cd:a9:61:61:08:30:78:20:8e: 06:2b:da:de:b9:72:84:d5:53:80:24:73:d9:47:40: e5:d4:44:0d:c1:4a:56:ac:0a:5d:1c:48:31:21:2b: e6:f4:fb:67:be:69:8b:bd:fa:ec:10:0e:28:7a:d2: 36:21:9f:75:de:a3:cb:38:3a:32:f5:af:6e:40:ef: 42:1f:ee:7f:1a:ff:12:0c:f1:79:4d:53:5f:d9:f5: 46:2e:19:34:6c:bc:b3:de:bf:3e:96:02:a2:0a:c7: bb:f7:0d:3d:94:48:2b:1e:da:75:c2:41:f0:dd:38: a9:58:3c:66:64:31:83:94:71:4d:00:62:95:17:16: 59:7c:d3:e1:93:9f:4b:85:d2:dd:24:ce:83:a7:2a: aa:7a:8c:e1:6c:90:4d:86:6c:c2:34:c4:44:89:30: 79:16:79:cf:a0:92:be:77:63:ce:51:41:e9:5b:3b: 94:fc:25:27:89:e5:1c:76:cd:7e:e5:0f:13:97:df: 19:81:ea:e7:dc:39:1e:bb:15:5b:7b:4a:8d:ef:bb: 86:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:99:59:C7:62:6E:50:2A:A1:F3:48:FB:4B:F6:08:A2:18:AD:D5:50 X509v3 Authority Key Identifier: keyid:43:F8:96:EE:B7:0F:2F:97:88:3F:F4:59:CA:E3:AC:B4:37:42:B3:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aa433934-3844-4653-8fac-1858b2823d1c/0/43F896EEB70F2F97883FF459CAE3ACB43742B3BC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:41:ea:08:f0:31:52:d4:47:57:b1:2a:d0:47:43:05:68:e1: df:17:d5:c8:0b:e5:dc:58:d3:1c:6b:0e:31:ca:19:a7:12:50: b5:71:63:60:94:7b:d0:1b:52:30:a6:c3:06:be:52:91:74:01: 3f:96:2e:3d:b8:a9:22:f0:c9:25:ce:5b:ad:ae:57:33:ab:e7: f7:5f:ce:5e:83:91:83:3b:04:4a:50:13:0d:19:8c:94:42:c9: fc:af:ad:e7:97:ea:6c:77:09:80:df:93:e0:bf:9e:38:eb:96: 8c:ba:cf:84:28:a5:b0:21:c9:9f:7a:59:65:04:34:9a:c1:10: 8f:7b:2c:72:56:5e:70:24:10:47:63:68:3c:3a:64:38:76:84: 11:b5:18:6e:0e:82:4e:6d:50:54:6d:3b:54:e3:5e:21:c8:83: 09:96:8d:e8:7e:64:b3:7d:ef:9f:30:78:97:2d:00:01:69:15: 64:97:f4:3d:a2:d2:75:54:28:81:87:09:2f:94:e3:11:57:8c: 80:a0:40:1c:0d:3f:98:db:64:65:68:f7:ab:f8:32:74:df:9c: d0:c9:7b:19:bc:76:8e:73:0f:b4:0e:64:76:5e:9a:59:49:78: f8:3d:c4:f4:60:ef:67:5a:4a:f1:f4:49:03:b5:08:fc:e4:f2: 0d:b5:a9:f0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURfJfS6uJnos/k6rpgGo+wiYbb7owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDNGODk2RUVCNzBGMkY5Nzg4M0ZGNDU5Q0FFM0FDQjQz NzQyQjNCQzAeFw0yNjA2MTYyMDIzNTZaFw0yNjA2MTcyMDUxNTZaMDMxMTAvBgNV BAMTKDk0OTk1OUM3NjI2RTUwMkFBMUYzNDhGQjRCRjYwOEEyMThBREQ1NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPfq2noHpcIFSgATlOXfc5+rzs ghCWtyekXvahthLX1HSfOk9XQnE5vUnSEJIUM46+is2pYWEIMHggjgYr2t65coTV U4Akc9lHQOXURA3BSlasCl0cSDEhK+b0+2e+aYu9+uwQDih60jYhn3Xeo8s4OjL1 r25A70If7n8a/xIM8XlNU1/Z9UYuGTRsvLPevz6WAqIKx7v3DT2USCse2nXCQfDd OKlYPGZkMYOUcU0AYpUXFll80+GTn0uF0t0kzoOnKqp6jOFskE2GbMI0xESJMHkW ec+gkr53Y85RQelbO5T8JSeJ5Rx2zX7lDxOX3xmB6ufcOR67FVt7So3vu4bVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlJlZx2JuUCqh80j7S/YIohit1VAwHwYDVR0j BBgwFoAUQ/iW7rcPL5eIP/RZyuOstDdCs7wwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWE0MzM5MzQtMzg0NC00NjUzLThmYWMtMTg1OGIyODIzZDFjLzAvNDNGODk2RUVC NzBGMkY5Nzg4M0ZGNDU5Q0FFM0FDQjQzNzQyQjNCQy5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS80M0Y4OTZFRUI3MEYyRjk3ODgzRkY0NTlDQUUzQUNCNDM3NDJC M0JDLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWE0MzM5MzQtMzg0NC00NjUzLThm YWMtMTg1OGIyODIzZDFjLzAvNDNGODk2RUVCNzBGMkY5Nzg4M0ZGNDU5Q0FFM0FD QjQzNzQyQjNCQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABBB6gjwMVLUR1exKtBHQwVo4d8X1cgL5dxY 0xxrDjHKGacSULVxY2CUe9AbUjCmwwa+UpF0AT+WLj24qSLwySXOW62uVzOr5/df zl6DkYM7BEpQEw0ZjJRCyfyvreeX6mx3CYDfk+C/njjrloy6z4QopbAhyZ96WWUE NJrBEI97LHJWXnAkEEdjaDw6ZDh2hBG1GG4Ogk5tUFRtO1TjXiHIgwmWjeh+ZLN9 758weJctAAFpFWSX9D2i0nVUKIGHCS+U4xFXjICgQBwNP5jbZGVo96v4MnTfnNDJ exm8do5zD7QOZHZemllJePg9xPRg72daSvH0SQO1CPzk8g21qfA= -----END CERTIFICATE-----Generated at Wed Jun 17 11:13:27 2026 by rpki-client