$ rpki-client -vvf repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft File: 20ABF702057AD5F01207F6C578160654EB44C914.mft (raw, json) Hash identifier: SP1DCw+8B8ujeQXBIN7EPxBFHK/iQLNXuvnVz0rtQU4= Subject key identifier: 9B:05:64:0D:A3:00:A6:AD:33:57:09:91:04:B0:EE:8D:77:7B:6E:84 Authority key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Certificate issuer: /CN=20ABF702057AD5F01207F6C578160654EB44C914 Certificate serial: 33E66FAA44766FABD0BF43091FC30CC8C0037E35 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft Manifest number: 021B Signing time: Sat 28 Feb 2026 20:40:43 +0000 Manifest this update: Sat 28 Feb 2026 20:35:43 +0000 Manifest next update: Wed 04 Mar 2026 02:07:43 +0000 Files and hashes: 1: 3130332e3136342e38302e302f32342d3234203d3e20313334363530.roa (hash: iIgboqPAZcJ6GkgIoGNtSVY4wHjrhyWezE3yGK9cDpI=) 2: 20ABF702057AD5F01207F6C578160654EB44C914.crl (hash: 9K7z/MEs407d38WsjDEqprTUH5Zh65xAXfactHTeG4E=) 3: 3130332e3230392e312e302f32342d3234203d3e20313334363530.roa (hash: xRwGFhgxeu1CAV1+gFeCQMhm4YDhoZJE8bg+uNmVg2o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:e6:6f:aa:44:76:6f:ab:d0:bf:43:09:1f:c3:0c:c8:c0:03:7e:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ABF702057AD5F01207F6C578160654EB44C914 Validity Not Before: Feb 28 20:35:43 2026 GMT Not After : Mar 4 02:07:43 2026 GMT Subject: CN=9B05640DA300A6AD3357099104B0EE8D777B6E84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0a:2d:c8:0b:42:8c:10:bd:dd:71:c4:fb:99: 27:6b:01:7f:f6:32:c6:94:7e:ce:00:96:15:a6:6a: aa:88:79:07:8b:61:82:3b:c4:da:7a:c0:fa:af:e8: e9:c8:26:02:2b:cc:f9:42:ac:1d:35:a3:27:08:68: b4:3f:05:0a:a8:e6:1d:6a:c7:0f:60:e4:15:db:90: 45:f4:87:0a:8c:71:70:81:0d:8a:bc:41:f7:fb:ee: 7f:fa:69:5c:71:00:69:9c:81:be:84:b3:fa:93:4b: a8:55:75:53:00:e7:3e:82:98:50:fd:61:61:3f:31: b7:20:9e:b3:32:c5:50:28:20:98:7a:f4:5f:4d:32: 8c:c5:02:2e:91:21:cc:7e:ec:2b:9e:38:ed:89:dd: ce:fd:da:c9:f2:df:05:9e:73:32:19:2a:7c:6a:85: f5:13:f9:0f:48:0d:d2:da:e8:d0:ab:74:db:d6:18: de:56:45:47:d8:16:19:eb:ff:ac:13:d0:07:e9:a2: 71:8c:c6:40:21:4f:60:82:1c:eb:3b:e0:6a:81:3a: 7d:d8:c3:c7:70:67:5e:23:65:7e:e1:9c:74:e5:41: 7e:e3:b8:6e:57:bf:5b:d7:ab:53:12:a1:f6:90:7a: 11:f0:de:34:8e:dd:75:d4:da:75:e0:a2:56:01:59: 03:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:05:64:0D:A3:00:A6:AD:33:57:09:91:04:B0:EE:8D:77:7B:6E:84 X509v3 Authority Key Identifier: keyid:20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:a6:bb:79:77:73:a2:b6:b6:93:5e:c4:0e:c4:38:2f:7e:cd: 51:c2:d5:eb:83:61:9a:31:8d:a5:c7:42:04:14:b6:4a:83:af: 4d:e9:b7:fd:85:0a:f0:c9:2f:c0:1f:ca:90:03:8b:18:43:42: 93:3d:48:7e:82:5b:9a:45:6c:d2:6c:f0:c5:fd:61:81:51:75: 7a:c1:dd:10:ef:8c:0b:20:a4:42:92:36:2e:29:19:ca:67:e6: 66:b1:76:71:86:33:76:9e:12:06:ad:33:3c:9b:c6:1e:2a:0d: fc:ab:05:22:e1:2c:00:f7:55:aa:69:c7:02:26:a7:c8:06:fb: 49:20:a2:cc:a6:2d:00:ef:f5:08:fc:b1:79:04:68:77:e1:2a: 4c:1c:28:3d:4c:e8:64:47:de:d9:80:35:82:7c:53:bb:e3:da: 1b:e5:91:71:e9:64:e9:9c:d1:27:eb:02:bd:2f:aa:5a:d9:ac: 82:1a:1d:97:28:b4:ca:07:b4:a7:ad:8a:8b:51:ec:1e:54:09: 29:c3:e2:41:9e:b2:b8:17:69:92:ef:9e:c7:7b:8f:f6:f0:33: c5:5f:cd:ca:77:ce:8c:e7:8a:8a:d6:96:50:2b:60:51:76:2c: 3d:55:2b:19:40:e2:d3:5f:00:d9:27:fe:49:1b:59:55:37:c9: cb:fe:a1:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUM+ZvqkR2b6vQv0MJH8MMyMADfjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRF QjQ0QzkxNDAeFw0yNjAyMjgyMDM1NDNaFw0yNjAzMDQwMjA3NDNaMDMxMTAvBgNV BAMTKDlCMDU2NDBEQTMwMEE2QUQzMzU3MDk5MTA0QjBFRThENzc3QjZFODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3Ci3IC0KMEL3dccT7mSdrAX/2 MsaUfs4AlhWmaqqIeQeLYYI7xNp6wPqv6OnIJgIrzPlCrB01oycIaLQ/BQqo5h1q xw9g5BXbkEX0hwqMcXCBDYq8Qff77n/6aVxxAGmcgb6Es/qTS6hVdVMA5z6CmFD9 YWE/MbcgnrMyxVAoIJh69F9NMozFAi6RIcx+7CueOO2J3c792sny3wWeczIZKnxq hfUT+Q9IDdLa6NCrdNvWGN5WRUfYFhnr/6wT0AfponGMxkAhT2CCHOs74GqBOn3Y w8dwZ14jZX7hnHTlQX7juG5Xv1vXq1MSofaQehHw3jSO3XXU2nXgolYBWQO5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmwVkDaMApq0zVwmRBLDujXd7boQwHwYDVR0j BBgwFoAUIKv3AgV61fASB/bFeBYGVOtEyRQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMC8yMEFCRjcwMjA1 N0FENUYwMTIwN0Y2QzU3ODE2MDY1NEVCNDRDOTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRFQjQ0 QzkxNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdkYjIzYjctOTE1OS00NmM3LTg4 NTMtMDY2NTRhZTQ3YWVkLzAvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2 NTRFQjQ0QzkxNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAqmu3l3c6K2tpNexA7EOC9+zVHC1euDYZox jaXHQgQUtkqDr03pt/2FCvDJL8AfypADixhDQpM9SH6CW5pFbNJs8MX9YYFRdXrB 3RDvjAsgpEKSNi4pGcpn5maxdnGGM3aeEgatMzybxh4qDfyrBSLhLAD3VappxwIm p8gG+0kgosymLQDv9Qj8sXkEaHfhKkwcKD1M6GRH3tmANYJ8U7vj2hvlkXHpZOmc 0SfrAr0vqlrZrIIaHZcotMoHtKetiotR7B5UCSnD4kGesrgXaZLvnsd7j/bwM8Vf zcp3zozniorWllArYFF2LD1VKxlA4tNfANkn/kkbWVU3ycv+ofI= -----END CERTIFICATE-----Generated at Mon Mar 2 11:46:14 2026 by rpki-client