$ rpki-client -vvf repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft File: 20ABF702057AD5F01207F6C578160654EB44C914.mft (raw, json) Hash identifier: lo33q2tCBRfna+L4JMor2yFH2TrmVWMkSn8xcbpUatI= Subject key identifier: BB:6B:8A:E6:D4:6A:CA:35:50:2E:B8:31:57:EA:75:34:85:4D:FF:0E Authority key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Certificate issuer: /CN=20ABF702057AD5F01207F6C578160654EB44C914 Certificate serial: 2779C4FED982FBF98521DDC7E43C0BF1322FD507 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft Manifest number: 0193 Signing time: Tue 29 Apr 2025 21:00:36 +0000 Manifest this update: Tue 29 Apr 2025 20:55:36 +0000 Manifest next update: Fri 02 May 2025 23:17:36 +0000 Files and hashes: 1: 20ABF702057AD5F01207F6C578160654EB44C914.crl (hash: Yx3Q6mISqjpv3X8kNLVZwD66vltfqMmCyZSw8oACX+k=) 2: 3130332e3230392e312e302f32342d3234203d3e20313334363530.roa (hash: giWrIN8j+wY4pRI/HaMvfZbbTtdidSjlnNRfZ7I7NOU=) 3: 3130332e3136342e38302e302f32342d3234203d3e20313334363530.roa (hash: OD/D5T7a6GncQciIiADZaQN4vuFZ+yDbdXQnN4HIA9Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 18:52:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:79:c4:fe:d9:82:fb:f9:85:21:dd:c7:e4:3c:0b:f1:32:2f:d5:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ABF702057AD5F01207F6C578160654EB44C914 Validity Not Before: Apr 29 20:55:36 2025 GMT Not After : May 2 23:17:36 2025 GMT Subject: CN=BB6B8AE6D46ACA35502EB83157EA7534854DFF0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:35:35:40:bc:ee:e5:9f:c9:81:0c:e6:fc:ed: 30:4d:08:57:b6:e3:e4:e3:a9:df:cc:a7:d2:77:89: d1:a2:cd:00:fa:7c:a3:5b:a6:9f:e9:1d:64:da:5b: 30:3f:63:ec:00:61:59:4e:f1:ab:ce:d4:25:12:10: 8b:cd:94:79:d9:8b:aa:3d:90:62:f2:15:fd:a6:2a: c7:05:af:14:21:9d:ba:f7:d3:1b:a0:e2:32:f5:8a: ed:b7:c1:c2:34:92:e1:6b:cc:12:22:34:27:9c:aa: 1b:06:80:0e:5e:98:9e:e5:fa:c5:8e:45:d2:6a:5d: 8c:23:e0:e9:bf:53:f2:dc:72:7e:c3:38:fe:6d:98: 72:93:ad:45:4c:fa:0f:62:68:6a:e0:86:7d:1d:7c: 93:97:9b:f0:f6:39:5e:a5:86:f5:2b:f9:87:e5:fc: 41:87:36:9e:09:b3:3d:48:00:70:25:cd:9f:ca:37: a4:3f:54:d3:ad:a6:80:37:93:c8:37:e6:fd:d0:15: 68:0e:d8:a3:6b:4a:99:bc:e4:12:85:c8:31:5c:11: 91:ba:b8:29:6c:10:03:72:ff:05:b9:43:d2:06:6e: 8d:e0:cc:d5:17:af:65:0f:b0:26:05:de:2f:27:a8: a4:69:3a:42:c7:e3:c8:54:12:3e:ac:11:27:ca:da: 2c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6B:8A:E6:D4:6A:CA:35:50:2E:B8:31:57:EA:75:34:85:4D:FF:0E X509v3 Authority Key Identifier: keyid:20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:42:8e:6a:d0:f7:fa:fb:36:a5:48:5c:bd:54:01:ee:50:4e: a9:19:d5:c1:51:50:3e:b5:89:99:c7:ef:54:ab:cd:bf:c8:e7: c5:6d:83:7f:27:e5:01:bd:be:a1:47:77:48:d6:2b:22:97:27: 89:8b:08:88:a9:2a:81:83:c2:c9:a5:b0:88:f3:74:ae:f2:19: c8:e2:07:b8:29:35:38:d4:e2:14:ff:3c:ef:da:3b:53:a2:dd: fd:3f:c4:07:c7:b3:77:8a:db:60:23:2c:70:55:21:76:eb:e7: 38:a3:01:34:2d:76:21:cf:d9:ed:8a:5d:f6:b2:a0:bb:01:4e: 59:b2:93:42:c5:fb:17:67:23:43:7a:52:b8:66:19:f7:d4:cc: 14:28:4e:9e:92:d4:36:8a:97:29:0c:9f:24:f9:11:43:68:81: 71:2a:04:b8:c6:f5:72:db:66:35:41:71:d4:ba:d3:ff:3d:64: d7:56:fd:0d:bb:c2:02:0c:a5:b7:80:43:eb:dc:bb:8a:82:ee: 91:10:92:67:de:2a:93:76:c7:9d:b2:b6:58:89:f3:49:aa:28: 3b:7a:09:9a:b7:44:33:b5:14:93:6c:8f:c5:77:b8:79:76:6b: b0:a3:c1:fb:42:12:d2:27:26:f7:de:0c:ea:24:03:4e:bf:a5: 02:e0:48:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ3nE/tmC+/mFId3H5DwL8TIv1QcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRF QjQ0QzkxNDAeFw0yNTA0MjkyMDU1MzZaFw0yNTA1MDIyMzE3MzZaMDMxMTAvBgNV BAMTKEJCNkI4QUU2RDQ2QUNBMzU1MDJFQjgzMTU3RUE3NTM0ODU0REZGMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/NTVAvO7ln8mBDOb87TBNCFe2 4+Tjqd/Mp9J3idGizQD6fKNbpp/pHWTaWzA/Y+wAYVlO8avO1CUSEIvNlHnZi6o9 kGLyFf2mKscFrxQhnbr30xug4jL1iu23wcI0kuFrzBIiNCecqhsGgA5emJ7l+sWO RdJqXYwj4Om/U/Lccn7DOP5tmHKTrUVM+g9iaGrghn0dfJOXm/D2OV6lhvUr+Yfl /EGHNp4Jsz1IAHAlzZ/KN6Q/VNOtpoA3k8g35v3QFWgO2KNrSpm85BKFyDFcEZG6 uClsEANy/wW5Q9IGbo3gzNUXr2UPsCYF3i8nqKRpOkLH48hUEj6sESfK2ixPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUu2uK5tRqyjVQLrgxV+p1NIVN/w4wHwYDVR0j BBgwFoAUIKv3AgV61fASB/bFeBYGVOtEyRQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMC8yMEFCRjcwMjA1 N0FENUYwMTIwN0Y2QzU3ODE2MDY1NEVCNDRDOTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRFQjQ0 QzkxNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdkYjIzYjctOTE1OS00NmM3LTg4 NTMtMDY2NTRhZTQ3YWVkLzAvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2 NTRFQjQ0QzkxNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALlCjmrQ9/r7NqVIXL1UAe5QTqkZ1cFRUD61 iZnH71Srzb/I58Vtg38n5QG9vqFHd0jWKyKXJ4mLCIipKoGDwsmlsIjzdK7yGcji B7gpNTjU4hT/PO/aO1Oi3f0/xAfHs3eK22AjLHBVIXbr5zijATQtdiHP2e2KXfay oLsBTlmyk0LF+xdnI0N6UrhmGffUzBQoTp6S1DaKlykMnyT5EUNogXEqBLjG9XLb ZjVBcdS60/89ZNdW/Q27wgIMpbeAQ+vcu4qC7pEQkmfeKpN2x52ytliJ80mqKDt6 CZq3RDO1FJNsj8V3uHl2a7CjwftCEtInJvfeDOokA06/pQLgSOw= -----END CERTIFICATE-----Generated at Wed Apr 30 02:56:00 2025 by rpki-client