$ rpki-client -vvf repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft File: 20ABF702057AD5F01207F6C578160654EB44C914.mft (raw, json) Hash identifier: w+SPQr9ZmeCRQMlhP44W/TFW/+lFWARXCGqwU/wFkAI= Subject key identifier: AA:E1:A3:67:71:17:C6:6D:26:8B:25:B8:8C:20:20:94:2E:41:D1:93 Authority key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Certificate issuer: /CN=20ABF702057AD5F01207F6C578160654EB44C914 Certificate serial: 4C6B8054AB2276257F3ACB407A20266ACF69BE5F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject info access: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft Manifest number: 01E6 Signing time: Tue 04 Nov 2025 06:00:38 +0000 Manifest this update: Tue 04 Nov 2025 05:55:38 +0000 Manifest next update: Fri 07 Nov 2025 09:28:38 +0000 Files and hashes: 1: 3130332e3136342e38302e302f32342d3234203d3e20313334363530.roa (hash: OD/D5T7a6GncQciIiADZaQN4vuFZ+yDbdXQnN4HIA9Q=) 2: 3130332e3230392e312e302f32342d3234203d3e20313334363530.roa (hash: giWrIN8j+wY4pRI/HaMvfZbbTtdidSjlnNRfZ7I7NOU=) 3: 20ABF702057AD5F01207F6C578160654EB44C914.crl (hash: eur7rTEgvcJ+HjzivFYfwOQVa+/z+I7JUIovb2BaDQw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 09:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:6b:80:54:ab:22:76:25:7f:3a:cb:40:7a:20:26:6a:cf:69:be:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ABF702057AD5F01207F6C578160654EB44C914 Validity Not Before: Nov 4 05:55:38 2025 GMT Not After : Nov 7 09:28:38 2025 GMT Subject: CN=AAE1A3677117C66D268B25B88C2020942E41D193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2f:95:dc:d4:76:fd:b8:15:ad:b7:f0:58:03: df:ed:4e:b3:87:33:72:25:cb:c8:69:37:d2:6c:b7: c5:88:f8:8f:b2:f2:2d:a5:06:90:f5:06:ab:de:cb: ae:84:55:95:8b:fb:6f:3c:72:66:29:9b:39:78:f3: aa:7e:6f:05:5f:85:c9:d1:17:d4:0f:95:16:5b:bf: 95:87:06:51:27:c0:bb:09:fe:ef:3c:82:ba:b2:ed: c8:cc:b5:97:a6:bf:a0:51:94:71:81:64:a5:37:02: 3a:8e:ce:c6:c4:7a:04:e0:43:d4:f1:ab:95:16:bd: c4:35:4d:d2:51:85:eb:80:a5:68:3a:ca:32:9c:84: 18:da:d4:93:11:e5:d9:f6:1e:cc:78:26:9e:8c:25: 48:39:fa:49:5e:d1:87:c7:b6:a3:2a:8a:53:69:7a: fe:9f:0c:0a:cf:8a:8b:cf:4d:99:65:9b:e3:d1:a9: 5c:49:1c:ff:d8:ad:49:d9:91:73:6a:6b:24:93:79: fb:40:77:c6:d0:c0:80:f6:59:f8:e6:9f:5b:bf:55: d2:e2:8d:dc:f7:9f:d4:54:ef:ec:80:1f:a7:ab:4b: c8:6b:fa:89:ee:59:ba:d7:5f:ac:0b:35:cf:fd:b8: cb:7f:f6:a8:e2:87:99:96:5a:f1:e0:69:57:51:31: 26:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E1:A3:67:71:17:C6:6D:26:8B:25:B8:8C:20:20:94:2E:41:D1:93 X509v3 Authority Key Identifier: keyid:20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:de:7b:03:3d:97:7b:f2:0c:08:f3:77:7b:c9:ce:eb:3d:65: 65:a8:74:47:6c:29:e9:50:7e:0c:2a:56:89:2b:aa:cf:3a:da: 4c:38:2d:f7:38:b7:34:3b:ba:28:82:07:b8:95:64:80:6e:a3: 94:19:a3:f4:f6:95:97:b8:02:1c:ad:fb:18:1b:56:49:dd:ab: 4b:12:ff:75:64:1d:c2:3b:30:fe:c8:ec:ed:f1:d9:be:7f:89: 90:3a:bf:16:6c:81:8e:74:5c:73:0e:b1:a0:e8:ae:db:94:bb: ed:ef:92:a7:e3:5e:c1:fd:1e:8e:35:1f:d7:af:c7:4e:85:f5: 5d:32:6c:52:3c:09:73:c2:e1:47:23:9a:46:dd:e4:10:fa:a7: f9:df:c4:e5:66:b3:bf:57:25:c4:59:e6:06:bd:d0:47:71:12: 29:2d:a0:56:1f:53:18:bd:dd:dd:1b:d6:02:0d:51:d6:0c:12: 0f:ac:b9:45:67:40:aa:1b:fe:8f:7e:0b:92:8d:74:b0:85:ad: 06:d1:0a:70:32:3b:7f:31:e7:7a:34:5d:07:0d:b1:d3:6b:27: ca:be:f0:ee:99:34:5b:85:20:d7:8d:a5:e2:56:b1:21:40:23: 47:58:5e:60:bd:01:95:ff:97:65:4d:19:4b:ae:f6:66:dc:e7: ac:4b:4d:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTGuAVKsidiV/OstAeiAmas9pvl8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRF QjQ0QzkxNDAeFw0yNTExMDQwNTU1MzhaFw0yNTExMDcwOTI4MzhaMDMxMTAvBgNV BAMTKEFBRTFBMzY3NzExN0M2NkQyNjhCMjVCODhDMjAyMDk0MkU0MUQxOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZL5Xc1Hb9uBWtt/BYA9/tTrOH M3Ily8hpN9Jst8WI+I+y8i2lBpD1Bqvey66EVZWL+288cmYpmzl486p+bwVfhcnR F9QPlRZbv5WHBlEnwLsJ/u88grqy7cjMtZemv6BRlHGBZKU3AjqOzsbEegTgQ9Tx q5UWvcQ1TdJRheuApWg6yjKchBja1JMR5dn2Hsx4Jp6MJUg5+kle0YfHtqMqilNp ev6fDArPiovPTZllm+PRqVxJHP/YrUnZkXNqaySTeftAd8bQwID2Wfjmn1u/VdLi jdz3n9RU7+yAH6erS8hr+onuWbrXX6wLNc/9uMt/9qjih5mWWvHgaVdRMSZNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUquGjZ3EXxm0miyW4jCAglC5B0ZMwHwYDVR0j BBgwFoAUIKv3AgV61fASB/bFeBYGVOtEyRQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMC8yMEFCRjcwMjA1 N0FENUYwMTIwN0Y2QzU3ODE2MDY1NEVCNDRDOTE0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2NTRFQjQ0 QzkxNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjdkYjIzYjctOTE1OS00NmM3LTg4 NTMtMDY2NTRhZTQ3YWVkLzAvMjBBQkY3MDIwNTdBRDVGMDEyMDdGNkM1NzgxNjA2 NTRFQjQ0QzkxNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI7eewM9l3vyDAjzd3vJzus9ZWWodEdsKelQ fgwqVokrqs862kw4Lfc4tzQ7uiiCB7iVZIBuo5QZo/T2lZe4Ahyt+xgbVkndq0sS /3VkHcI7MP7I7O3x2b5/iZA6vxZsgY50XHMOsaDortuUu+3vkqfjXsH9Ho41H9ev x06F9V0ybFI8CXPC4Ucjmkbd5BD6p/nfxOVms79XJcRZ5ga90EdxEiktoFYfUxi9 3d0b1gINUdYMEg+suUVnQKob/o9+C5KNdLCFrQbRCnAyO38x53o0XQcNsdNrJ8q+ 8O6ZNFuFINeNpeJWsSFAI0dYXmC9AZX/l2VNGUuu9mbc56xLTSU= -----END CERTIFICATE-----Generated at Tue Nov 4 16:30:52 2025 by rpki-client