$ rpki-client -vvf repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft File: 20ABF702057AD5F01207F6C578160654EB44C914.mft (raw, json) Hash identifier: QegSvngkifxPDLvhFeC65YFYHfomvehGIr+igFvwZsM= Subject key identifier: 7A:71:D0:C9:56:61:8B:B0:C9:BE:DC:04:5D:E3:66:1F:91:88:A1:4D Authority key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Certificate issuer: /CN=20ABF702057AD5F01207F6C578160654EB44C914 Certificate serial: 01BEF22AC0C8B622A5E76E2AF2D4D1886C2B07D7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft Manifest number: 0230 Signing time: Fri 17 Apr 2026 18:50:44 +0000 Manifest this update: Fri 17 Apr 2026 18:45:44 +0000 Manifest next update: Tue 21 Apr 2026 06:41:44 +0000 Files and hashes: 1: 3130332e3136342e38302e302f32342d3234203d3e20313334363530.roa (hash: iIgboqPAZcJ6GkgIoGNtSVY4wHjrhyWezE3yGK9cDpI=) 2: 20ABF702057AD5F01207F6C578160654EB44C914.crl (hash: jz51+JnCyNZOin+9Bp5+HEREZenCpN3H2FXQRh+GDrk=) 3: 3130332e3230392e312e302f32342d3234203d3e20313334363530.roa (hash: xRwGFhgxeu1CAV1+gFeCQMhm4YDhoZJE8bg+uNmVg2o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Apr 2026 06:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:be:f2:2a:c0:c8:b6:22:a5:e7:6e:2a:f2:d4:d1:88:6c:2b:07:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ABF702057AD5F01207F6C578160654EB44C914 Validity Not Before: Apr 17 18:45:44 2026 GMT Not After : Apr 21 06:41:44 2026 GMT Subject: CN=7A71D0C956618BB0C9BEDC045DE3661F9188A14D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:94:bf:b4:d0:ca:f8:a7:5c:7b:f6:08:59:34: 97:2d:58:7a:c3:e6:17:a3:0a:93:71:95:34:6f:ff: 97:69:22:1a:4c:26:38:e2:1a:4f:a7:62:c0:23:f1: d6:77:50:9b:1b:ca:2f:4c:df:72:9f:48:18:29:d6: fe:83:ae:4d:d7:79:f9:5b:7c:ed:29:81:e9:5a:b7: b2:6b:50:96:b9:72:39:77:9d:f8:2f:a9:d3:2a:32: ca:33:d8:3c:6a:21:84:79:2f:63:54:89:f9:79:ad: 31:0a:83:f9:b2:fb:2f:d9:7b:f1:f6:87:94:2b:74: d3:f9:e8:f8:47:bc:b9:73:fa:da:0b:96:09:ea:e3: d6:f7:7a:00:96:68:e2:04:30:fe:6a:b9:aa:77:6a: aa:d8:a6:45:c8:5b:c6:8d:7a:b4:ae:a0:cb:dd:49: c6:3c:3f:da:db:07:a9:0a:67:04:1a:6c:78:d6:2e: a9:c7:d5:50:8c:28:55:a4:76:6c:39:6d:7b:9a:dd: d5:07:85:71:61:70:0e:40:df:93:e7:e8:56:7c:c6: 50:6c:64:ee:46:a8:40:ab:cc:ae:db:b8:ae:77:a5: fd:fd:45:b8:30:55:7e:e6:20:19:ed:46:7f:7b:f0: 11:2f:8d:d1:40:ee:cc:1b:2c:17:bc:07:f2:e3:70: 75:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:71:D0:C9:56:61:8B:B0:C9:BE:DC:04:5D:E3:66:1F:91:88:A1:4D X509v3 Authority Key Identifier: keyid:20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cc:4f:bf:0b:94:68:fe:9f:52:a3:53:f7:80:d9:0c:ae:55:92: f7:73:08:30:42:af:16:88:da:3d:e5:5b:8d:e9:42:f5:1b:bc: c1:74:23:20:26:bd:dc:d9:18:7f:21:2f:98:4a:bc:19:40:96: 72:0f:bc:7a:5c:ec:d6:6d:c2:12:96:d7:57:6d:b7:f8:aa:53: c0:e9:8c:7d:58:b7:b1:fc:ed:c0:dd:3b:95:d9:d7:26:6a:b5: 3a:fb:b1:db:dd:43:e4:ac:b4:bf:cc:04:b9:3e:3b:a1:0f:16: 1e:bb:d7:8b:dd:38:2c:90:6b:05:57:56:d7:a8:0a:66:67:c0: 6b:4c:8b:6b:59:bd:c7:27:3d:4d:36:c3:a7:27:62:e4:d9:98: 6c:4f:53:76:a8:98:9e:3d:b7:22:ab:d0:bc:48:b6:33:fe:1c: fd:7b:d7:02:15:64:88:4d:6e:01:df:2b:65:14:a8:61:da:4b: 7c:51:93:de:03:9e:2e:3f:33:d9:7f:ea:a4:34:f5:6a:41:de: f9:93:1c:4c:ca:6a:4d:5b:f2:06:45:6d:0d:18:b5:88:a8:4e: 74:f3:f0:32:cf:0b:a2:ab:c1:74:f9:27:a0:81:b9:21:22:5d: ce:54:2f:b6:03:ab:48:2b:b7:fb:13:cf:b8:29:15:da:2b:20: db:0a:8c:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAb7yKsDItiKl524q8tTRiGwrB9cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRF QjQ0QzkxNDAeFw0yNjA0MTcxODQ1NDRaFw0yNjA0MjEwNjQxNDRaMDMxMTAvBgNV BAMTKDdBNzFEMEM5NTY2MThCQjBDOUJFREMwNDVERTM2NjFGOTE4OEExNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVlL+00Mr4p1x79ghZNJctWHrD 5hejCpNxlTRv/5dpIhpMJjjiGk+nYsAj8dZ3UJsbyi9M33KfSBgp1v6Drk3Xeflb fO0pgelat7JrUJa5cjl3nfgvqdMqMsoz2DxqIYR5L2NUifl5rTEKg/my+y/Ze/H2 h5QrdNP56PhHvLlz+toLlgnq49b3egCWaOIEMP5quap3aqrYpkXIW8aNerSuoMvd ScY8P9rbB6kKZwQabHjWLqnH1VCMKFWkdmw5bXua3dUHhXFhcA5A35Pn6FZ8xlBs ZO5GqECrzK7buK53pf39RbgwVX7mIBntRn978BEvjdFA7swbLBe8B/LjcHVrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUenHQyVZhi7DJvtwEXeNmH5GIoU0wHwYDVR0j BBgwFoAUIKv3AgV61fASB/bFeBYGVOtEyRQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMC8yMEFCRjcwMjA1 N0FENUYwMTIwN0Y2QzU3ODE2MDY1NEVCNDRDOTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRFQjQ0 QzkxNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdkYjIzYjctOTE1OS00NmM3LTg4 NTMtMDY2NTRhZTQ3YWVkLzAvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2 NTRFQjQ0QzkxNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMxPvwuUaP6fUqNT94DZDK5VkvdzCDBCrxaI 2j3lW43pQvUbvMF0IyAmvdzZGH8hL5hKvBlAlnIPvHpc7NZtwhKW11dtt/iqU8Dp jH1Yt7H87cDdO5XZ1yZqtTr7sdvdQ+SstL/MBLk+O6EPFh6714vdOCyQawVXVteo CmZnwGtMi2tZvccnPU02w6cnYuTZmGxPU3aomJ49tyKr0LxItjP+HP171wIVZIhN bgHfK2UUqGHaS3xRk94Dni4/M9l/6qQ09WpB3vmTHEzKak1b8gZFbQ0YtYioTnTz 8DLPC6KrwXT5J6CBuSEiXc5UL7YDq0grt/sTz7gpFdorINsKjJM= -----END CERTIFICATE-----Generated at Sun Apr 19 14:23:30 2026 by rpki-client