$ rpki-client -vvf rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft File: 2843C420C9538DE003DB96047ACE7F2FE1B83454.mft (raw, json) Hash identifier: qKYva2x18exLsz0/cfMaBNxQwiJwnRefSr07fkFfb/8= Subject key identifier: D7:0F:BC:E0:3B:3F:79:14:B3:76:D9:DD:48:0F:D7:CE:B3:10:1D:91 Authority key identifier: 28:43:C4:20:C9:53:8D:E0:03:DB:96:04:7A:CE:7F:2F:E1:B8:34:54 Certificate issuer: /CN=2843C420C9538DE003DB96047ACE7F2FE1B83454 Certificate serial: 670F932A74308703B3C1989D8C4118F96DA2F893 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft Manifest number: 0E Signing time: Tue 12 May 2026 11:22:05 +0000 Manifest this update: Tue 12 May 2026 11:17:05 +0000 Manifest next update: Wed 13 May 2026 13:10:05 +0000 Files and hashes: 1: 2843C420C9538DE003DB96047ACE7F2FE1B83454.crl (hash: s942sRQaAG+uI7s5OSLKViFYiPFJSCtDfMEHGhrqKkY=) 2: 3130332e36362e36322e302f32342d3234203d3e20313339393832.roa (hash: ZmQheHX1MZV/oBZW9LIfogQSYln7HG4CQMJRL8sFUs4=) 3: 3130332e36362e36322e302f32332d3233203d3e20313339393832.roa (hash: Ekh2cRoP3jEu4ToqLXfO3pEmBPqQ1/HiAdtyj75YlY4=) 4: 3130332e36362e36332e302f32342d3234203d3e20313339393832.roa (hash: Gs+snvngtmEUYMerL8umS66cdNSbHO+hqLt5UBqYHqk=) Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.crl rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:0f:93:2a:74:30:87:03:b3:c1:98:9d:8c:41:18:f9:6d:a2:f8:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2843C420C9538DE003DB96047ACE7F2FE1B83454 Validity Not Before: May 12 11:17:05 2026 GMT Not After : May 13 13:10:05 2026 GMT Subject: CN=D70FBCE03B3F7914B376D9DD480FD7CEB3101D91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:80:4a:90:01:26:fb:4f:66:b9:57:9f:a8:28: 70:98:e8:18:02:2c:5e:a9:c6:94:4b:7b:e9:93:e4: 5f:06:19:1a:37:cb:63:03:29:95:9e:46:97:44:dd: d0:33:ce:ae:b1:35:1c:a1:47:da:4a:b9:6f:d7:a4: 79:0d:5b:73:fd:05:66:a6:c9:fa:50:96:1f:8d:51: 97:08:d9:3b:ee:a4:73:06:d1:27:8e:34:d1:b0:df: 51:60:9f:e6:ca:0b:5a:21:54:3b:1e:d3:aa:d9:e1: 66:10:38:79:e1:19:6a:1c:03:e6:b5:39:2f:3d:85: fe:b7:d7:c7:3f:d2:10:18:c9:31:ca:16:b1:98:1f: 9a:85:8d:06:d9:a6:f9:c5:b4:56:38:b1:da:00:ce: f0:6c:7a:c9:8f:77:86:e5:e3:f9:08:d8:c7:d6:79: a9:0e:f9:9f:2a:ac:d4:ae:af:68:3a:05:0d:69:3f: 24:72:05:73:52:15:9b:9e:f9:65:0c:0d:93:f4:82: 51:b1:0e:f4:ab:c0:f1:28:c2:20:86:6c:ec:2e:10: 73:38:09:25:95:d5:2e:11:98:39:e0:8a:78:c9:a2: 07:04:28:31:c5:74:f4:22:d2:86:2e:fe:2d:01:b9: 88:d2:5e:6d:9d:ee:64:b1:9e:3c:f2:46:e6:cb:fd: 17:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0F:BC:E0:3B:3F:79:14:B3:76:D9:DD:48:0F:D7:CE:B3:10:1D:91 X509v3 Authority Key Identifier: keyid:28:43:C4:20:C9:53:8D:E0:03:DB:96:04:7A:CE:7F:2F:E1:B8:34:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/2843C420C9538DE003DB96047ACE7F2FE1B83454.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/aba90944-656d-4aa7-9173-591280833f81/0/2843C420C9538DE003DB96047ACE7F2FE1B83454.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:0f:00:3b:49:85:78:77:14:8d:77:0d:34:88:69:8c:d3:45: f1:ee:72:5c:78:f7:2b:b6:88:da:eb:5d:5f:42:80:8c:1f:97: 6d:27:c2:ca:ed:31:0e:8d:82:db:27:51:22:0f:a2:23:e8:e6: f1:38:b3:6d:7c:56:cc:0f:24:43:84:2c:a0:1f:8e:fb:2b:6e: 2c:16:a3:27:ed:d6:6a:10:59:b5:f5:8a:a2:ea:52:f9:2a:dc: de:fa:6b:a1:02:c9:f3:4c:80:27:6e:ff:9a:ea:93:e8:01:f7: 3a:a6:ab:64:11:8f:a3:9d:bd:7f:fb:45:ed:19:5a:a3:b5:e0: a0:e5:48:87:8f:2e:0f:92:c2:8c:2c:af:8a:e0:cd:11:2f:e3: 2e:79:6b:70:29:92:83:30:31:69:66:3a:8b:ae:d3:ac:85:05: 7a:2a:c7:47:cc:1f:97:5f:22:85:92:5d:09:6a:77:bd:70:b7: 9a:14:bc:e3:2e:90:6e:be:49:04:1c:5d:5f:be:d0:78:9e:45: 86:d2:1c:8e:35:a4:bf:6a:a5:d1:82:3c:5a:67:f1:3b:07:41: 76:f8:ba:4e:81:6e:ff:de:d2:6b:99:12:dd:c2:c0:74:07:3d: cf:61:39:8d:90:66:a6:76:8a:0b:09:2d:15:15:2a:27:e6:02: ae:f3:91:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZw+TKnQwhwOzwZidjEEY+W2i+JMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg0M0M0MjBDOTUzOERFMDAzREI5NjA0N0FDRTdGMkZF MUI4MzQ1NDAeFw0yNjA1MTIxMTE3MDVaFw0yNjA1MTMxMzEwMDVaMDMxMTAvBgNV BAMTKEQ3MEZCQ0UwM0IzRjc5MTRCMzc2RDlERDQ4MEZEN0NFQjMxMDFEOTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2gEqQASb7T2a5V5+oKHCY6BgC LF6pxpRLe+mT5F8GGRo3y2MDKZWeRpdE3dAzzq6xNRyhR9pKuW/XpHkNW3P9BWam yfpQlh+NUZcI2TvupHMG0SeONNGw31Fgn+bKC1ohVDse06rZ4WYQOHnhGWocA+a1 OS89hf6318c/0hAYyTHKFrGYH5qFjQbZpvnFtFY4sdoAzvBsesmPd4bl4/kI2MfW eakO+Z8qrNSur2g6BQ1pPyRyBXNSFZue+WUMDZP0glGxDvSrwPEowiCGbOwuEHM4 CSWV1S4RmDnginjJogcEKDHFdPQi0oYu/i0BuYjSXm2d7mSxnjzyRubL/RcnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1w+84Ds/eRSzdtndSA/XzrMQHZEwHwYDVR0j BBgwFoAUKEPEIMlTjeAD25YEes5/L+G4NFQwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v YWJhOTA5NDQtNjU2ZC00YWE3LTkxNzMtNTkxMjgwODMzZjgxLzAvMjg0M0M0MjBD OTUzOERFMDAzREI5NjA0N0FDRTdGMkZFMUI4MzQ1NC5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS8yODQzQzQyMEM5NTM4REUwMDNEQjk2MDQ3QUNFN0YyRkUxQjgz NDU0LmNlcjCBlAYIKwYBBQUHAQsEgYcwgYQwgYEGCCsGAQUFBzALhnVyc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vYWJhOTA5NDQtNjU2ZC00YWE3LTkx NzMtNTkxMjgwODMzZjgxLzAvMjg0M0M0MjBDOTUzOERFMDAzREI5NjA0N0FDRTdG MkZFMUI4MzQ1NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABoPADtJhXh3FI13DTSIaYzTRfHuclx49yu2 iNrrXV9CgIwfl20nwsrtMQ6NgtsnUSIPoiPo5vE4s218VswPJEOELKAfjvsrbiwW oyft1moQWbX1iqLqUvkq3N76a6ECyfNMgCdu/5rqk+gB9zqmq2QRj6OdvX/7Re0Z WqO14KDlSIePLg+Swowsr4rgzREv4y55a3ApkoMwMWlmOouu06yFBXoqx0fMH5df IoWSXQlqd71wt5oUvOMukG6+SQQcXV++0HieRYbSHI41pL9qpdGCPFpn8TsHQXb4 uk6Bbv/e0muZEt3CwHQHPc9hOY2QZqZ2igsJLRUVKifmAq7zkW8= -----END CERTIFICATE-----Generated at Tue May 12 22:47:03 2026 by rpki-client