$ rpki-client -vvf rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft File: 2843C420C9538DE003DB96047ACE7F2FE1B83454.mft (raw, json) Hash identifier: BWA2334w+fi+nmWEbRhVXCYEpr2FaCrOY7Oe9VwMpa0= Subject key identifier: E8:9E:83:EA:50:FF:10:22:8D:33:50:05:58:5D:BF:FB:A2:D7:80:12 Authority key identifier: 28:43:C4:20:C9:53:8D:E0:03:DB:96:04:7A:CE:7F:2F:E1:B8:34:54 Certificate issuer: /CN=2843C420C9538DE003DB96047ACE7F2FE1B83454 Certificate serial: 1B01F7EA39E6FBCED43D75AAA05E4B1415103E95 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft Manifest number: 3D Signing time: Tue 16 Jun 2026 22:06:03 +0000 Manifest this update: Tue 16 Jun 2026 22:01:03 +0000 Manifest next update: Wed 17 Jun 2026 22:07:03 +0000 Files and hashes: 1: 2843C420C9538DE003DB96047ACE7F2FE1B83454.crl (hash: dAzaialF8jh8qy6/lcEigSLJY0sYnV4R/++aucT5f6I=) 2: 3130332e36362e36322e302f32342d3234203d3e20313339393832.roa (hash: ZmQheHX1MZV/oBZW9LIfogQSYln7HG4CQMJRL8sFUs4=) 3: 3130332e36362e36322e302f32332d3233203d3e20313339393832.roa (hash: Ekh2cRoP3jEu4ToqLXfO3pEmBPqQ1/HiAdtyj75YlY4=) 4: 3130332e36362e36332e302f32342d3234203d3e20313339393832.roa (hash: Gs+snvngtmEUYMerL8umS66cdNSbHO+hqLt5UBqYHqk=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.crl rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 22:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:01:f7:ea:39:e6:fb:ce:d4:3d:75:aa:a0:5e:4b:14:15:10:3e:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2843C420C9538DE003DB96047ACE7F2FE1B83454 Validity Not Before: Jun 16 22:01:03 2026 GMT Not After : Jun 17 22:07:03 2026 GMT Subject: CN=E89E83EA50FF10228D335005585DBFFBA2D78012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a0:2d:5c:80:27:eb:c9:d0:e2:98:f9:49:59: b5:10:60:99:b9:fb:ea:36:66:36:98:e9:e5:62:83: d0:99:69:7b:9f:79:54:f0:d2:0e:58:93:22:2b:bb: cf:05:19:4a:34:4e:a3:27:a7:3e:52:87:cb:c2:2e: 4d:06:b5:15:2b:5e:fe:ae:c8:2f:4b:ec:99:25:5c: 20:5b:4b:3d:e9:5c:22:07:2a:09:8d:fa:9f:c6:74: 30:8e:12:05:24:aa:29:3a:a2:87:60:bd:c3:bb:a9: 6b:42:ee:8b:f0:0d:f9:3b:65:3f:aa:72:49:0d:0e: 80:44:0d:94:27:96:fd:98:34:38:c0:2d:3c:87:b0: da:86:84:42:7b:bc:d4:2d:45:c4:8a:b2:62:45:eb: 04:bb:83:a2:ab:99:c5:b7:c1:23:c2:79:ff:5a:c0: 51:c5:11:36:ef:3c:72:79:07:b9:db:07:24:c6:a1: 04:06:ee:39:08:fe:1b:a0:5c:25:b7:72:94:55:d3: ec:ce:cd:8c:04:5a:01:94:fc:67:7c:7b:74:a7:98: 3f:82:9c:8a:1d:e5:7c:2c:f9:ff:f5:be:46:8f:b0: 3f:ce:e8:27:15:05:17:6b:e5:6d:d2:44:fa:c7:49: 8c:c6:13:79:72:1b:56:aa:1a:16:99:85:f6:62:d7: 98:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:9E:83:EA:50:FF:10:22:8D:33:50:05:58:5D:BF:FB:A2:D7:80:12 X509v3 Authority Key Identifier: keyid:28:43:C4:20:C9:53:8D:E0:03:DB:96:04:7A:CE:7F:2F:E1:B8:34:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:9f:1e:e2:a2:1b:fd:65:3a:29:be:2b:1d:d7:3c:47:89:32: ba:8a:6a:e6:da:c9:a6:c5:af:1a:cc:1f:17:a9:75:f2:05:a1: b2:d6:1d:5e:44:9b:76:f1:2d:f6:32:b7:7f:2e:cd:be:f3:c4: 23:89:c2:f5:a1:dc:fb:c1:25:18:10:d8:96:3a:1e:5a:a5:ec: ec:fb:b7:79:55:c5:db:e3:64:5b:e3:18:16:3d:05:d3:2d:00: 45:79:3d:17:d1:77:6f:84:70:b6:6a:cd:ef:0d:6c:35:e4:a0: 13:ff:e0:ae:82:ef:0a:da:43:87:25:b2:bb:37:15:61:98:78: ce:b6:fa:08:e8:47:3d:79:e2:71:2d:ef:be:8f:b9:bf:9c:bc: 59:46:0f:fa:b6:1b:2b:21:0b:ea:66:85:4c:87:05:2b:a0:d9: cc:2a:b5:94:58:4e:1f:b7:96:ee:7b:55:a5:57:37:16:15:8a: 1c:52:d1:56:4d:cd:cd:8b:4c:2a:08:75:b1:40:b5:af:e2:01: cd:4e:07:d2:49:a6:d5:7f:d1:d4:ef:62:87:a1:49:7c:da:0d: 7f:22:f1:3a:a3:bf:ae:e3:cb:ed:59:16:60:1f:99:ad:40:a5: e2:67:d5:aa:7e:b6:ef:7a:56:94:a8:60:67:d8:56:1b:8a:78: eb:bd:e7:19 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGwH36jnm+87UPXWqoF5LFBUQPpUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0M0M0MjBDOTUzOERFMDAzREI5NjA0N0FDRTdGMkZF MUI4MzQ1NDAeFw0yNjA2MTYyMjAxMDNaFw0yNjA2MTcyMjA3MDNaMDMxMTAvBgNV BAMTKEU4OUU4M0VBNTBGRjEwMjI4RDMzNTAwNTU4NURCRkZCQTJENzgwMTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkoC1cgCfrydDimPlJWbUQYJm5 ++o2ZjaY6eVig9CZaXufeVTw0g5YkyIru88FGUo0TqMnpz5Sh8vCLk0GtRUrXv6u yC9L7JklXCBbSz3pXCIHKgmN+p/GdDCOEgUkqik6oodgvcO7qWtC7ovwDfk7ZT+q ckkNDoBEDZQnlv2YNDjALTyHsNqGhEJ7vNQtRcSKsmJF6wS7g6KrmcW3wSPCef9a wFHFETbvPHJ5B7nbByTGoQQG7jkI/hugXCW3cpRV0+zOzYwEWgGU/Gd8e3SnmD+C nIod5Xws+f/1vkaPsD/O6CcVBRdr5W3SRPrHSYzGE3lyG1aqGhaZhfZi15hLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6J6D6lD/ECKNM1AFWF2/+6LXgBIwHwYDVR0j BBgwFoAUKEPEIMlTjeAD25YEes5/L+G4NFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWJhOTA5NDQtNjU2ZC00YWE3LTkxNzMtNTkxMjgwODMzZjgxLzAvMjg0M0M0MjBD OTUzOERFMDAzREI5NjA0N0FDRTdGMkZFMUI4MzQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yODQzQzQyMEM5NTM4REUwMDNEQjk2MDQ3QUNFN0YyRkUxQjgz NDU0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWJhOTA5NDQtNjU2ZC00YWE3LTkx NzMtNTkxMjgwODMzZjgxLzAvMjg0M0M0MjBDOTUzOERFMDAzREI5NjA0N0FDRTdG MkZFMUI4MzQ1NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGafHuKiG/1lOim+Kx3XPEeJMrqKaubayabF rxrMHxepdfIFobLWHV5Em3bxLfYyt38uzb7zxCOJwvWh3PvBJRgQ2JY6Hlql7Oz7 t3lVxdvjZFvjGBY9BdMtAEV5PRfRd2+EcLZqze8NbDXkoBP/4K6C7wraQ4clsrs3 FWGYeM62+gjoRz154nEt776Pub+cvFlGD/q2GyshC+pmhUyHBSug2cwqtZRYTh+3 lu57VaVXNxYVihxS0VZNzc2LTCoIdbFAta/iAc1OB9JJptV/0dTvYoehSXzaDX8i 8Tqjv67jy+1ZFmAfma1ApeJn1ap+tu96VpSoYGfYVhuKeOu95xk= -----END CERTIFICATE-----Generated at Wed Jun 17 10:01:30 2026 by rpki-client