$ rpki-client -vvf rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft File: 8B43E14BD4588C4904A641356A5D07D628190CAB.mft (raw, json) Hash identifier: GO+kdaJ5lqSQCreYPiI60yOsmwltFpc88w0vcUzMxSc= Subject key identifier: BB:09:DD:95:15:14:02:94:59:B9:A9:EA:67:08:39:41:DF:00:A2:F2 Authority key identifier: 8B:43:E1:4B:D4:58:8C:49:04:A6:41:35:6A:5D:07:D6:28:19:0C:AB Certificate issuer: /CN=8B43E14BD4588C4904A641356A5D07D628190CAB Certificate serial: 04B0AB4EB6D36FDFAF103357C7B9353F162095F8 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft Manifest number: 10 Signing time: Wed 13 May 2026 07:45:11 +0000 Manifest this update: Wed 13 May 2026 07:40:11 +0000 Manifest next update: Thu 14 May 2026 08:59:11 +0000 Files and hashes: 1: 8B43E14BD4588C4904A641356A5D07D628190CAB.crl (hash: 2jqiZd+Y6qfaYCD2/LUjdr6u9tRAQQPmXtCxbxQojvA=) 2: 3130332e3137342e33362e302f32332d3234203d3e20313331313131.roa (hash: 0flsrdaSAjsWCJEWyeVcLLzCVtlFqOFqVNzD5e/gcuA=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.crl rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:b0:ab:4e:b6:d3:6f:df:af:10:33:57:c7:b9:35:3f:16:20:95:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8B43E14BD4588C4904A641356A5D07D628190CAB Validity Not Before: May 13 07:40:11 2026 GMT Not After : May 14 08:59:11 2026 GMT Subject: CN=BB09DD951514029459B9A9EA67083941DF00A2F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:58:8a:f5:69:f1:03:36:16:4d:db:da:5c:f2: 62:7b:85:ec:cc:cc:75:86:e8:50:05:96:01:4a:3d: eb:91:4d:cf:a2:84:95:86:c3:37:63:a3:84:6d:5f: e6:59:00:8e:c4:84:96:41:10:11:1b:8e:2d:d2:ea: a3:36:ce:1e:e8:61:01:f6:92:66:d1:6a:9d:9d:d2: 42:f2:26:1b:0b:1f:49:92:7d:f1:af:06:40:ba:72: 17:b1:c7:94:05:df:d1:a9:ab:f9:7a:be:41:df:e2: 94:d2:53:21:b5:48:a2:07:52:da:c6:74:f5:60:9d: 7a:d5:61:12:cb:57:58:a8:a0:e6:65:96:ab:aa:51: 3f:87:b7:2d:f5:f5:ff:2d:d4:78:ff:7c:52:c1:d1: 2f:97:ce:f4:07:b4:8a:f5:b0:df:43:00:3a:3b:d6: 49:f0:34:8d:b0:4a:fb:4e:16:64:06:9f:da:2b:ea: 91:6c:be:37:6f:a7:97:9d:8e:5e:d6:dc:21:44:a6: bb:fe:06:79:bf:ca:5b:56:62:53:62:d0:fc:41:04: 5f:ca:8d:66:84:49:f6:29:48:25:fb:ae:23:4e:04: 97:5f:12:c8:42:7f:11:01:57:cc:d7:1c:8c:97:11: 90:cc:c0:0c:48:dc:39:ca:54:fe:fe:1f:c4:f6:28: 61:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:09:DD:95:15:14:02:94:59:B9:A9:EA:67:08:39:41:DF:00:A2:F2 X509v3 Authority Key Identifier: keyid:8B:43:E1:4B:D4:58:8C:49:04:A6:41:35:6A:5D:07:D6:28:19:0C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/8B43E14BD4588C4904A641356A5D07D628190CAB.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/34a23c4e-3932-43bd-8176-f6251ddea842/0/8B43E14BD4588C4904A641356A5D07D628190CAB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:b6:64:ca:c4:72:2f:a2:e9:e5:3c:b2:7b:c3:5d:f1:25:34: f3:f7:ae:fc:3c:55:fc:ec:1f:95:bc:fa:c0:f5:8d:1b:21:58: 06:6e:1b:06:0f:5e:2e:a2:3e:1b:19:2c:dd:2e:f8:ee:d5:db: 02:b2:96:ba:67:57:d1:39:02:3a:c2:bd:10:71:a0:0e:2c:1b: e8:fe:cf:8f:93:99:d7:e0:9a:00:f1:08:14:05:6e:be:be:13: 25:27:7f:2b:84:a7:e2:97:8c:7e:3d:57:36:64:30:0c:0b:63: 18:76:ca:04:4c:38:83:91:26:18:c7:b7:6e:46:4a:cb:0c:1e: c9:47:73:c9:15:75:c8:00:c7:de:f8:32:1e:9e:a8:62:76:f4: a7:cd:64:07:fa:44:93:52:39:90:51:31:9f:7b:64:f5:2a:63: de:86:46:ea:4d:ab:a1:99:4e:5c:99:03:b2:f6:fc:84:0c:fe: e9:ba:8e:b7:74:96:b2:f0:f6:55:40:4a:63:bd:27:4b:2f:4e: c9:19:12:3e:dd:99:5f:91:ea:0a:8b:b9:bb:d8:80:79:74:c7: 75:a4:44:40:cf:ee:e3:e4:21:f0:3b:9b:1c:56:8e:09:e9:ef: d7:68:d2:ad:c8:47:3c:56:9a:25:42:7b:d8:91:cf:87:30:2b: 78:85:fa:42 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBLCrTrbTb9+vEDNXx7k1PxYglfgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEI0M0UxNEJENDU4OEM0OTA0QTY0MTM1NkE1RDA3RDYy ODE5MENBQjAeFw0yNjA1MTMwNzQwMTFaFw0yNjA1MTQwODU5MTFaMDMxMTAvBgNV BAMTKEJCMDlERDk1MTUxNDAyOTQ1OUI5QTlFQTY3MDgzOTQxREYwMEEyRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzWIr1afEDNhZN29pc8mJ7hezM zHWG6FAFlgFKPeuRTc+ihJWGwzdjo4RtX+ZZAI7EhJZBEBEbji3S6qM2zh7oYQH2 kmbRap2d0kLyJhsLH0mSffGvBkC6chexx5QF39Gpq/l6vkHf4pTSUyG1SKIHUtrG dPVgnXrVYRLLV1iooOZllquqUT+Hty319f8t1Hj/fFLB0S+XzvQHtIr1sN9DADo7 1knwNI2wSvtOFmQGn9or6pFsvjdvp5edjl7W3CFEprv+Bnm/yltWYlNi0PxBBF/K jWaESfYpSCX7riNOBJdfEshCfxEBV8zXHIyXEZDMwAxI3DnKVP7+H8T2KGGjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuwndlRUUApRZuanqZwg5Qd8AovIwHwYDVR0j BBgwFoAUi0PhS9RYjEkEpkE1al0H1igZDKswDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v MzRhMjNjNGUtMzkzMi00M2JkLTgxNzYtZjYyNTFkZGVhODQyLzAvOEI0M0UxNEJE NDU4OEM0OTA0QTY0MTM1NkE1RDA3RDYyODE5MENBQi5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS84QjQzRTE0QkQ0NTg4QzQ5MDRBNjQxMzU2QTVEMDdENjI4MTkw Q0FCLmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vMzRhMjNjNGUtMzkzMi00M2JkLTgx NzYtZjYyNTFkZGVhODQyLzAvOEI0M0UxNEJENDU4OEM0OTA0QTY0MTM1NkE1RDA3 RDYyODE5MENBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACS2ZMrEci+i6eU8snvDXfElNPP3rvw8Vfzs H5W8+sD1jRshWAZuGwYPXi6iPhsZLN0u+O7V2wKylrpnV9E5AjrCvRBxoA4sG+j+ z4+TmdfgmgDxCBQFbr6+EyUnfyuEp+KXjH49VzZkMAwLYxh2ygRMOIORJhjHt25G SssMHslHc8kVdcgAx974Mh6eqGJ29KfNZAf6RJNSOZBRMZ97ZPUqY96GRupNq6GZ TlyZA7L2/IQM/um6jrd0lrLw9lVASmO9J0svTskZEj7dmV+R6gqLubvYgHl0x3Wk REDP7uPkIfA7mxxWjgnp79do0q3IRzxWmiVCe9iRz4cwK3iF+kI= -----END CERTIFICATE-----Generated at Wed May 13 11:35:52 2026 by rpki-client