$ rpki-client -vvf repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft File: 20ABF702057AD5F01207F6C578160654EB44C914.mft (raw, json) Hash identifier: wfnUPeEmhSoEuRACMhBATJlnYo91hHQCLyr+FmnXo6U= Subject key identifier: BE:23:E7:C9:F6:A0:FE:FB:28:58:B1:DE:06:7F:61:45:61:5F:7F:68 Authority key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Certificate issuer: /CN=20ABF702057AD5F01207F6C578160654EB44C914 Certificate serial: 7D994D7DA122894D139D98F40C285E068AEE5F04 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft Manifest number: 01BE Signing time: Tue 05 Aug 2025 21:40:38 +0000 Manifest this update: Tue 05 Aug 2025 21:35:38 +0000 Manifest next update: Sat 09 Aug 2025 05:26:38 +0000 Files and hashes: 1: 20ABF702057AD5F01207F6C578160654EB44C914.crl (hash: IPBmwQvz6m9m7Yg0YTt1xAEWxKx5iw9EEqLJiw1MSkU=) 2: 3130332e3136342e38302e302f32342d3234203d3e20313334363530.roa (hash: OD/D5T7a6GncQciIiADZaQN4vuFZ+yDbdXQnN4HIA9Q=) 3: 3130332e3230392e312e302f32342d3234203d3e20313334363530.roa (hash: giWrIN8j+wY4pRI/HaMvfZbbTtdidSjlnNRfZ7I7NOU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 05:26:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:99:4d:7d:a1:22:89:4d:13:9d:98:f4:0c:28:5e:06:8a:ee:5f:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ABF702057AD5F01207F6C578160654EB44C914 Validity Not Before: Aug 5 21:35:38 2025 GMT Not After : Aug 9 05:26:38 2025 GMT Subject: CN=BE23E7C9F6A0FEFB2858B1DE067F6145615F7F68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:eb:76:2d:aa:42:d5:4a:11:5c:1f:5d:d3:36: 92:43:72:22:49:9e:54:90:7f:b5:ca:60:18:42:4c: 1b:e4:43:4a:1b:b6:b9:3a:2c:21:23:7b:1d:21:14: 14:f7:43:2b:71:86:7a:78:49:b0:53:60:38:00:5d: a3:bf:59:38:31:40:45:5d:a2:be:8d:71:39:55:ad: 2a:e7:8a:36:b8:91:ed:4a:bc:76:89:ff:7a:d7:9c: 87:3a:4e:1e:60:a0:2d:39:31:1c:91:23:e7:03:97: 15:4f:5e:27:71:f8:c5:a8:64:a2:67:ba:68:07:b3: 43:c9:08:f5:a0:e0:c8:60:15:6e:f9:73:be:92:9b: cc:2e:39:81:6b:70:be:83:9d:95:9c:c3:90:d8:f0: e4:f9:9a:cc:48:9e:3a:51:06:56:b1:bb:02:f6:98: c7:87:fb:3d:9e:58:bc:f6:69:ce:6c:a7:89:93:33: 61:e6:a7:55:01:6a:17:39:f0:39:c4:b7:5c:77:b6: bb:5f:98:22:6e:4f:1c:d5:ba:d9:5e:07:fb:8f:3f: 11:c5:c3:26:7f:0b:b2:0e:54:b7:68:21:8b:42:5d: 67:73:28:f4:48:de:50:ac:d5:d7:43:9e:b1:5e:2a: 29:48:7d:d1:b5:68:40:74:c2:41:7d:7b:68:9e:8d: 21:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:23:E7:C9:F6:A0:FE:FB:28:58:B1:DE:06:7F:61:45:61:5F:7F:68 X509v3 Authority Key Identifier: keyid:20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:46:98:aa:8d:df:63:81:1a:a4:07:7e:49:9c:fd:8f:aa:13: 09:5b:de:96:23:5f:25:dd:88:1b:9a:ae:a0:5a:33:16:5a:dd: 03:61:85:24:4f:3a:35:d4:df:47:0f:b7:b3:4c:f0:1e:8b:fc: 99:75:0b:e4:26:c4:ad:21:b9:23:dc:b0:bb:8f:ab:41:09:10: 87:1a:68:17:27:b8:52:66:2c:e9:1f:d9:43:54:31:d2:d0:47: a3:83:ad:28:7c:e9:b9:67:8d:94:0f:06:e5:22:57:07:b0:d7: 0b:e2:f4:d3:53:e7:d3:81:70:b8:1b:c3:e4:db:dd:67:3a:9b: 62:1d:3c:cd:d5:34:0a:fb:3e:27:eb:c3:24:bd:bd:7f:8a:ec: e1:7f:21:8a:d1:9c:eb:09:59:7c:78:cd:24:8d:aa:19:bd:57: fe:83:87:d4:9a:c9:cd:f0:9d:8e:ba:86:06:50:43:6b:e1:ea: 27:ee:44:8b:d8:03:b7:53:02:5a:73:0c:1e:c6:70:94:f5:0c: 68:c6:5f:b7:7a:d7:5c:36:c9:47:cc:cc:a5:1a:a4:1f:bd:f9: 68:0d:cb:22:67:dc:82:fb:ed:4f:86:0e:38:e1:5f:de:2c:8e: 4a:d8:51:d0:f8:18:24:e4:9e:e2:19:8d:f5:13:af:50:cc:78: 0f:c4:29:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfZlNfaEiiU0TnZj0DCheBoruXwQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRF QjQ0QzkxNDAeFw0yNTA4MDUyMTM1MzhaFw0yNTA4MDkwNTI2MzhaMDMxMTAvBgNV BAMTKEJFMjNFN0M5RjZBMEZFRkIyODU4QjFERTA2N0Y2MTQ1NjE1RjdGNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH63YtqkLVShFcH13TNpJDciJJ nlSQf7XKYBhCTBvkQ0obtrk6LCEjex0hFBT3Qytxhnp4SbBTYDgAXaO/WTgxQEVd or6NcTlVrSrnija4ke1KvHaJ/3rXnIc6Th5goC05MRyRI+cDlxVPXidx+MWoZKJn umgHs0PJCPWg4MhgFW75c76Sm8wuOYFrcL6DnZWcw5DY8OT5msxInjpRBlaxuwL2 mMeH+z2eWLz2ac5sp4mTM2Hmp1UBahc58DnEt1x3trtfmCJuTxzVutleB/uPPxHF wyZ/C7IOVLdoIYtCXWdzKPRI3lCs1ddDnrFeKilIfdG1aEB0wkF9e2iejSFXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUviPnyfag/vsoWLHeBn9hRWFff2gwHwYDVR0j BBgwFoAUIKv3AgV61fASB/bFeBYGVOtEyRQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMC8yMEFCRjcwMjA1 N0FENUYwMTIwN0Y2QzU3ODE2MDY1NEVCNDRDOTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRFQjQ0 QzkxNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdkYjIzYjctOTE1OS00NmM3LTg4 NTMtMDY2NTRhZTQ3YWVkLzAvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2 NTRFQjQ0QzkxNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACpGmKqN32OBGqQHfkmc/Y+qEwlb3pYjXyXd iBuarqBaMxZa3QNhhSRPOjXU30cPt7NM8B6L/Jl1C+QmxK0huSPcsLuPq0EJEIca aBcnuFJmLOkf2UNUMdLQR6ODrSh86blnjZQPBuUiVwew1wvi9NNT59OBcLgbw+Tb 3Wc6m2IdPM3VNAr7PifrwyS9vX+K7OF/IYrRnOsJWXx4zSSNqhm9V/6Dh9Sayc3w nY66hgZQQ2vh6ifuRIvYA7dTAlpzDB7GcJT1DGjGX7d611w2yUfMzKUapB+9+WgN yyJn3IL77U+GDjjhX94sjkrYUdD4GCTknuIZjfUTr1DMeA/EKbk= -----END CERTIFICATE-----Generated at Thu Aug 7 04:29:46 2025 by rpki-client