$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft File: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft (raw, json) Hash identifier: c+dw4ywYtkgRxnnfKITcdHiHCtghrz11tcEFEdPz2Ko= Subject key identifier: 1E:57:B1:9E:8C:C4:C0:B4:79:05:06:82:AD:FF:D8:E0:78:F2:65:7A Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 21AC3C47E721D3169F5602E0038EDDE6D16BA5C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft Manifest number: 01D3 Signing time: Mon 16 Jun 2025 14:50:46 +0000 Manifest this update: Mon 16 Jun 2025 14:45:46 +0000 Manifest next update: Thu 19 Jun 2025 17:39:46 +0000 Files and hashes: 1: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (hash: m4Ck3HJw6h63iOESyQS/p69JGf3Gj+AMerXfQa9rjpw=) 2: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl (hash: 2zZy3+7eTGRcT6IoctEjAEKcWs/+ACeqwC22SE77LJ4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 17:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ac:3c:47:e7:21:d3:16:9f:56:02:e0:03:8e:dd:e6:d1:6b:a5:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Jun 16 14:45:46 2025 GMT Not After : Jun 19 17:39:46 2025 GMT Subject: CN=1E57B19E8CC4C0B479050682ADFFD8E078F2657A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:48:6f:26:e6:d9:d7:75:36:f2:8e:6a:8c:08: 81:95:e7:e6:b2:c3:d0:db:ea:1d:ca:16:e5:1b:7b: b8:0d:f4:bd:2b:7f:e3:82:dd:92:17:cd:87:61:12: 69:84:85:a5:23:c9:a9:ea:d5:cb:d8:e3:64:21:97: e3:e6:c1:cb:90:e7:f7:8b:29:63:45:51:95:d3:e1: 8b:f8:8c:2e:4a:89:f5:3b:b7:40:32:fa:f0:18:30: 73:1b:57:b6:53:e6:4b:55:5a:3d:48:31:f4:85:9e: 9c:10:99:d1:33:01:40:8f:42:d6:74:77:c9:ad:ca: f3:78:fb:6c:7f:f4:c3:06:72:be:bc:29:ed:d6:2b: 24:31:be:c0:2c:38:f9:c7:c6:28:ed:b9:3b:6f:20: 47:96:38:15:0f:2e:5c:5e:d9:15:42:74:c0:68:c7: c0:68:18:5a:15:a6:08:1d:a0:0f:18:5e:73:64:6a: 23:b6:b9:ee:23:40:39:b8:ec:30:17:c5:1e:53:75: 2b:a3:7d:bc:77:e9:aa:41:ea:5f:55:72:75:a3:b5: 08:6b:1a:d8:5f:3d:89:ea:81:94:03:8e:3d:0b:c5: a7:c0:23:23:84:1f:41:dc:64:d5:89:39:ce:22:20: ab:24:b8:0a:bc:aa:93:9c:92:bd:0a:e8:62:3e:c7: 1b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:57:B1:9E:8C:C4:C0:B4:79:05:06:82:AD:FF:D8:E0:78:F2:65:7A X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:67:a3:79:3a:9a:62:7a:8d:56:d6:52:b4:05:c5:27:7e:f5: 94:5e:6e:07:40:c9:cc:67:83:6f:56:14:50:1b:24:7c:e9:01: af:7b:8d:58:2e:26:4f:f3:d9:6d:d0:38:3b:e6:77:77:8a:4e: 35:2d:4b:61:1a:a3:02:1a:2f:80:34:54:a0:f1:d8:45:04:43: 3f:67:68:f6:48:24:b2:e5:5b:2c:65:86:80:ca:80:bd:d9:22: 18:0f:55:d6:58:a1:8e:ab:97:c2:64:09:14:a7:01:18:ba:47: 7b:9c:91:e0:fa:55:5f:55:f7:6c:82:49:35:95:56:20:24:04: f2:7b:15:c8:da:cf:8d:06:44:d6:8f:d5:a7:0b:22:fc:ed:51: 46:47:cb:32:a6:10:77:12:aa:ea:74:41:3c:36:b6:82:e5:bc: 73:f4:85:cb:1f:c8:7f:d5:8b:da:f2:8d:b1:b6:0f:be:4d:a2: f6:f1:85:f1:79:47:5b:6c:06:df:2e:f7:4f:e6:79:ad:53:17: 38:bf:b0:ae:ef:24:70:20:37:5d:af:de:07:0e:96:50:9c:e8: 80:6c:1c:8d:6d:f1:ef:08:c5:30:87:77:d2:2b:d5:29:85:88: 51:51:b2:56:36:a8:3c:e0:89:c6:fb:92:11:24:84:d6:a9:5b: 9b:28:8e:b0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIaw8R+ch0xafVgLgA47d5tFrpcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNTA2MTYxNDQ1NDZaFw0yNTA2MTkxNzM5NDZaMDMxMTAvBgNV BAMTKDFFNTdCMTlFOENDNEMwQjQ3OTA1MDY4MkFERkZEOEUwNzhGMjY1N0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtSG8m5tnXdTbyjmqMCIGV5+ay w9Db6h3KFuUbe7gN9L0rf+OC3ZIXzYdhEmmEhaUjyanq1cvY42Qhl+PmwcuQ5/eL KWNFUZXT4Yv4jC5KifU7t0Ay+vAYMHMbV7ZT5ktVWj1IMfSFnpwQmdEzAUCPQtZ0 d8mtyvN4+2x/9MMGcr68Ke3WKyQxvsAsOPnHxijtuTtvIEeWOBUPLlxe2RVCdMBo x8BoGFoVpggdoA8YXnNkaiO2ue4jQDm47DAXxR5TdSujfbx36apB6l9VcnWjtQhr GthfPYnqgZQDjj0LxafAIyOEH0HcZNWJOc4iIKskuAq8qpOckr0K6GI+xxs3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHlexnozEwLR5BQaCrf/Y4HjyZXowHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjg5OWExNWItZDVhZS00NWVjLTgw MTItYTZjYWFiM2RkODhiLzAvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQy MDNDNUQ5QUJFRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIxno3k6mmJ6jVbWUrQFxSd+9ZRebgdAycxn g29WFFAbJHzpAa97jVguJk/z2W3QODvmd3eKTjUtS2EaowIaL4A0VKDx2EUEQz9n aPZIJLLlWyxlhoDKgL3ZIhgPVdZYoY6rl8JkCRSnARi6R3uckeD6VV9V92yCSTWV ViAkBPJ7Fcjaz40GRNaP1acLIvztUUZHyzKmEHcSqup0QTw2toLlvHP0hcsfyH/V i9ryjbG2D75NovbxhfF5R1tsBt8u90/mea1TFzi/sK7vJHAgN12v3gcOllCc6IBs HI1t8e8IxTCHd9Ir1SmFiFFRslY2qDzgicb7khEkhNapW5sojrA= -----END CERTIFICATE-----Generated at Tue Jun 17 11:14:58 2025 by rpki-client