$ rpki-client -vvf repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft File: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft (raw, json) Hash identifier: Pk1Lma/T2G4suvBLTIfth1np35Z+5WMIjmuuJaMjOFg= Subject key identifier: C6:98:55:7A:23:0B:2D:46:CA:72:58:DA:9C:CF:72:93:F9:58:8B:2E Authority key identifier: 20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE Certificate issuer: /CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Certificate serial: 21707D71BA05A60E4C10B17D48C616F96CEC6BB1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft Manifest number: 025C Signing time: Thu 16 Apr 2026 04:50:53 +0000 Manifest this update: Thu 16 Apr 2026 04:45:53 +0000 Manifest next update: Sun 19 Apr 2026 05:45:53 +0000 Files and hashes: 1: 3130332e3135362e3134362e302f32332d3234203d3e20313431303933.roa (hash: m4Ck3HJw6h63iOESyQS/p69JGf3Gj+AMerXfQa9rjpw=) 2: 20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl (hash: rAxVyDPDH6TiJryt+OvEsZcEkTahAmzVTDgP3UbryzI=) 3: 3130332e3135362e3134372e302f32342d3234203d3e20313338383130.roa (hash: OxuN/KCMHtMTDCyaI0bgtvQy256j5b/74mmzW3WQvFc=) 4: 3130332e3135362e3134362e302f32342d3234203d3e20313431303933.roa (hash: Cy07xYSyUWFjvR0x0kDQ3HZDqKe9RyYBEeT67hsabqg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 05:45:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:70:7d:71:ba:05:a6:0e:4c:10:b1:7d:48:c6:16:f9:6c:ec:6b:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20FD166550369352D6C4C8AB8E9E4203C5D9ABEE Validity Not Before: Apr 16 04:45:53 2026 GMT Not After : Apr 19 05:45:53 2026 GMT Subject: CN=C698557A230B2D46CA7258DA9CCF7293F9588B2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:41:e9:05:bc:8c:ec:9c:99:1e:4b:c9:7b:19: 35:75:2e:ec:f2:c6:6c:6e:65:5e:e7:bd:89:16:21: 70:ba:7c:b5:2c:54:54:57:31:a1:53:1a:73:f4:e7: 2a:e5:f3:dd:49:75:5c:a1:44:7a:ec:44:6f:95:a6: 35:13:7f:34:35:24:2a:f3:61:fb:dc:6f:b3:d8:53: 6e:6f:8c:f5:58:9f:83:b2:0c:23:21:54:ef:ac:47: 1a:d6:c1:35:e4:ea:c4:ba:59:b8:ab:e7:6e:f7:42: 24:e7:7b:2f:2a:9d:6f:e6:5c:f5:32:2b:83:31:e9: 03:24:d1:f8:c1:a5:73:1c:e3:c4:ec:c3:d4:02:55: 1a:1d:e8:1b:da:fa:6b:3a:1d:68:69:84:1f:3e:b8: 57:09:74:c6:f8:2c:7b:d6:c1:63:a8:d6:d6:22:ce: da:21:d1:21:00:7b:9c:f3:36:f9:c5:d5:85:93:0c: 4a:04:ab:79:aa:c3:ba:46:90:71:6d:e0:79:bc:cb: 2a:cf:2a:5e:66:90:96:93:db:d8:95:c2:a0:87:1f: 9a:02:ef:59:1b:f9:d9:f9:aa:c0:05:2f:a8:24:2b: 0c:a0:51:58:f4:06:18:6a:e4:8f:bb:ab:f1:ca:ea: f2:36:fa:18:3e:6f:2f:c3:88:1b:92:46:9f:12:8d: ad:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:98:55:7A:23:0B:2D:46:CA:72:58:DA:9C:CF:72:93:F9:58:8B:2E X509v3 Authority Key Identifier: keyid:20:FD:16:65:50:36:93:52:D6:C4:C8:AB:8E:9E:42:03:C5:D9:AB:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b899a15b-d5ae-45ec-8012-a6caab3dd88b/0/20FD166550369352D6C4C8AB8E9E4203C5D9ABEE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:c0:5c:71:fb:35:89:b8:f0:46:68:ce:08:f8:0e:2c:37:9e: a3:9c:f6:28:8a:c1:d5:18:c5:b8:85:40:a8:c5:56:1b:27:96: 40:df:ec:50:d1:e1:9d:db:c5:1d:0d:c4:c8:dc:a7:0d:ca:29: 7f:9b:77:fe:5b:3c:16:55:27:7e:e6:35:f9:7c:b3:93:8d:91: 9e:90:81:81:3a:58:0b:28:f7:e0:ff:a5:b1:13:eb:94:87:a2: 85:85:e9:ac:6e:c5:11:3e:49:ea:f7:9d:fc:ee:1c:57:d2:11: ef:ac:62:91:ad:49:e5:9e:f6:ca:e1:93:17:d7:1b:98:64:15: 34:09:46:7d:3a:0d:f2:5a:d8:ad:25:01:93:a4:89:fd:d1:b2: b0:07:8c:12:4a:14:2c:64:0d:d7:42:72:61:a2:39:0e:71:ba: 00:ba:ef:95:b0:6b:b9:58:05:73:22:a0:e9:10:bc:87:93:54: 27:46:75:7e:de:7c:1c:ac:5f:ce:15:75:b4:54:67:8d:98:93: 6d:73:98:a9:f9:2c:7f:e6:ba:e0:d1:ff:52:bc:3a:5a:dd:f6: 28:74:10:d9:1d:d0:35:de:23:42:83:c6:b5:1b:3d:92:8a:f9: 7f:09:af:fa:3a:ba:46:3f:44:77:40:52:a6:6d:0a:95:86:8c: 4b:b5:fb:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIXB9cboFpg5MELF9SMYW+Wzsa7EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDND NUQ5QUJFRTAeFw0yNjA0MTYwNDQ1NTNaFw0yNjA0MTkwNTQ1NTNaMDMxMTAvBgNV BAMTKEM2OTg1NTdBMjMwQjJENDZDQTcyNThEQTlDQ0Y3MjkzRjk1ODhCMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIQekFvIzsnJkeS8l7GTV1Luzy xmxuZV7nvYkWIXC6fLUsVFRXMaFTGnP05yrl891JdVyhRHrsRG+VpjUTfzQ1JCrz Yfvcb7PYU25vjPVYn4OyDCMhVO+sRxrWwTXk6sS6Wbir5273QiTney8qnW/mXPUy K4Mx6QMk0fjBpXMc48Tsw9QCVRod6Bva+ms6HWhphB8+uFcJdMb4LHvWwWOo1tYi ztoh0SEAe5zzNvnF1YWTDEoEq3mqw7pGkHFt4Hm8yyrPKl5mkJaT29iVwqCHH5oC 71kb+dn5qsAFL6gkKwygUVj0Bhhq5I+7q/HK6vI2+hg+by/DiBuSRp8Sja0FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxphVeiMLLUbKcljanM9yk/lYiy4wHwYDVR0j BBgwFoAUIP0WZVA2k1LWxMirjp5CA8XZq+4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ODk5YTE1Yi1kNWFlLTQ1ZWMtODAxMi1hNmNhYWIzZGQ4OGIvMC8yMEZEMTY2NTUw MzY5MzUyRDZDNEM4QUI4RTlFNDIwM0M1RDlBQkVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQyMDNDNUQ5 QUJFRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjg5OWExNWItZDVhZS00NWVjLTgw MTItYTZjYWFiM2RkODhiLzAvMjBGRDE2NjU1MDM2OTM1MkQ2QzRDOEFCOEU5RTQy MDNDNUQ5QUJFRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGLAXHH7NYm48EZozgj4Diw3nqOc9iiKwdUY xbiFQKjFVhsnlkDf7FDR4Z3bxR0NxMjcpw3KKX+bd/5bPBZVJ37mNfl8s5ONkZ6Q gYE6WAso9+D/pbET65SHooWF6axuxRE+Ser3nfzuHFfSEe+sYpGtSeWe9srhkxfX G5hkFTQJRn06DfJa2K0lAZOkif3RsrAHjBJKFCxkDddCcmGiOQ5xugC675Wwa7lY BXMioOkQvIeTVCdGdX7efBysX84VdbRUZ42Yk21zmKn5LH/muuDR/1K8Olrd9ih0 ENkd0DXeI0KDxrUbPZKK+X8Jr/o6ukY/RHdAUqZtCpWGjEu1++0= -----END CERTIFICATE-----Generated at Fri Apr 17 22:17:24 2026 by rpki-client