$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft File: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft (raw, json) Hash identifier: Vl4VpsxzS/P1r7fIcgYmEFJYxV0x2lNR1GJjxcUy9Uc= Subject key identifier: A9:CA:EA:14:D2:13:B0:05:33:C8:EC:5D:53:C1:4F:F1:C2:38:E5:76 Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 0BD1D748EC4D6B0E5214A7B147F3A5C296023794 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft Manifest number: 01EA Signing time: Tue 05 Aug 2025 21:30:46 +0000 Manifest this update: Tue 05 Aug 2025 21:25:46 +0000 Manifest next update: Sat 09 Aug 2025 05:13:46 +0000 Files and hashes: 1: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (hash: m4Ck3HJw6h63iOESyQS/p69JGf3Gj+AMerXfQa9rjpw=) 2: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl (hash: jTZJnHj2yLEYWksdh/Z+r2iR95chVSmGMS29ZyVQEiM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 05:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d1:d7:48:ec:4d:6b:0e:52:14:a7:b1:47:f3:a5:c2:96:02:37:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Aug 5 21:25:46 2025 GMT Not After : Aug 9 05:13:46 2025 GMT Subject: CN=A9CAEA14D213B00533C8EC5D53C14FF1C238E576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1a:60:0f:41:53:36:58:43:ad:8c:8a:6c:a3: 9d:d3:fe:12:63:ad:09:ca:33:f2:7a:55:17:3a:9a: f9:f0:0e:b2:3c:02:27:93:4d:36:77:fa:d3:ca:d0: 9f:9d:1b:0b:42:99:11:f0:cd:f6:e0:a0:8a:9a:77: f0:82:ee:f6:09:e4:1e:d1:ae:9e:3d:2b:2a:b4:f3: 9d:ba:4d:b5:29:52:41:8c:0c:b7:f1:72:51:2a:be: e1:79:7c:1f:29:8a:2f:cc:84:ee:f0:0b:6b:00:a5: fe:e1:10:3c:9e:35:f9:16:80:39:d9:4f:5d:fe:e0: d5:36:3e:12:09:22:c2:81:ff:3b:8f:f8:f5:78:d0: d5:92:69:19:51:e3:49:4d:c8:d6:c1:04:53:e8:1f: 01:e6:eb:46:2c:07:6e:9b:80:e3:21:be:73:21:b7: 23:5f:34:c1:b4:36:b6:de:31:98:9a:44:ac:8d:79: 53:31:35:c2:3f:c0:3c:b6:5f:cd:f2:5f:72:30:f5: 8d:6e:7d:28:ee:43:6c:7b:59:ad:bb:b8:0e:03:16: 01:37:3d:da:df:ff:d9:78:5f:23:d1:24:dd:a0:b0: 34:5d:d7:e0:d6:07:07:eb:ee:3f:60:82:30:c0:21: c9:0c:68:d1:68:02:fb:22:5d:f4:30:c4:4e:54:fa: f2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:CA:EA:14:D2:13:B0:05:33:C8:EC:5D:53:C1:4F:F1:C2:38:E5:76 X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:db:09:32:6d:91:e1:2d:ef:d8:34:b3:c1:d0:0c:46:77:4c: 66:80:b5:81:fa:8a:6a:50:06:31:59:13:10:13:bf:35:d2:b8: 78:cd:08:93:59:ac:96:a2:82:0e:62:17:e9:79:2c:36:93:a6: b1:bd:60:90:04:91:40:f5:fc:4e:6a:b4:6d:8c:1a:0d:f7:67: b0:a9:62:f6:78:46:b2:72:03:08:88:be:6c:bc:1e:3f:57:4e: c2:96:9f:55:f0:3d:0b:74:1d:b4:7f:61:b8:da:48:22:cd:89: 6a:d9:53:c0:31:b7:70:17:1e:25:d1:37:fa:60:8d:0e:4b:4a: 45:1d:a7:06:35:9b:fa:f6:66:cb:b0:d3:c9:e3:89:eb:7b:7e: d8:dd:a1:fc:98:63:6e:c3:80:a3:2c:91:00:86:a7:5d:44:b3: 34:25:74:e6:98:0f:d9:90:32:60:ba:1c:3b:c5:0d:80:83:4d: 3a:92:29:bb:18:35:bc:c6:41:9f:32:50:e2:84:5a:5f:0f:2b: a2:a5:bc:72:17:04:2e:20:59:42:7d:d6:b6:9a:3a:d6:fc:78: 6a:cd:1c:a0:8c:14:1b:2e:17:e0:c3:9d:f3:3f:ca:21:bb:e7: b2:ac:e1:28:92:d6:f7:d9:b6:7e:4d:7b:2b:72:f9:c7:2f:62: cb:92:0a:50 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC9HXSOxNaw5SFKexR/OlwpYCN5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNTA4MDUyMTI1NDZaFw0yNTA4MDkwNTEzNDZaMDMxMTAvBgNV BAMTKEE5Q0FFQTE0RDIxM0IwMDUzM0M4RUM1RDUzQzE0RkYxQzIzOEU1NzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtGmAPQVM2WEOtjIpso53T/hJj rQnKM/J6VRc6mvnwDrI8AieTTTZ3+tPK0J+dGwtCmRHwzfbgoIqad/CC7vYJ5B7R rp49Kyq08526TbUpUkGMDLfxclEqvuF5fB8pii/MhO7wC2sApf7hEDyeNfkWgDnZ T13+4NU2PhIJIsKB/zuP+PV40NWSaRlR40lNyNbBBFPoHwHm60YsB26bgOMhvnMh tyNfNMG0NrbeMZiaRKyNeVMxNcI/wDy2X83yX3Iw9Y1ufSjuQ2x7Wa27uA4DFgE3 Pdrf/9l4XyPRJN2gsDRd1+DWBwfr7j9ggjDAIckMaNFoAvsiXfQwxE5U+vK7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqcrqFNITsAUzyOxdU8FP8cI45XYwHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjg5OWExNWItZDVhZS00NWVjLTgw MTItYTZjYWFiM2RkODhiLzAvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQy MDNDNUQ5QUJFRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHjbCTJtkeEt79g0s8HQDEZ3TGaAtYH6impQ BjFZExATvzXSuHjNCJNZrJaigg5iF+l5LDaTprG9YJAEkUD1/E5qtG2MGg33Z7Cp YvZ4RrJyAwiIvmy8Hj9XTsKWn1XwPQt0HbR/YbjaSCLNiWrZU8Axt3AXHiXRN/pg jQ5LSkUdpwY1m/r2Zsuw08njiet7ftjdofyYY27DgKMskQCGp11EszQldOaYD9mQ MmC6HDvFDYCDTTqSKbsYNbzGQZ8yUOKEWl8PK6KlvHIXBC4gWUJ91raaOtb8eGrN HKCMFBsuF+DDnfM/yiG757Ks4SiS1vfZtn5Neyty+ccvYsuSClA= -----END CERTIFICATE-----Generated at Wed Aug 6 16:15:12 2025 by rpki-client