$ rpki-client -vvf repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft File: 20EF9BB996F984E995F9FF0658F0B90CB903B897.mft (raw, json) Hash identifier: p9qGhC9CEN1doVZyKIkwKjuK5xPK/6QAB5No7noqqFE= Subject key identifier: F9:1E:42:D6:65:CF:A2:01:66:ED:D6:98:28:1F:A2:4F:1D:DC:39:EF Authority key identifier: 20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 Certificate issuer: /CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Certificate serial: 0B34D681DB62E0083F9C12FC1D399984A770E89D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft Manifest number: 0203 Signing time: Thu 07 Aug 2025 04:41:56 +0000 Manifest this update: Thu 07 Aug 2025 04:36:56 +0000 Manifest next update: Sun 10 Aug 2025 09:53:56 +0000 Files and hashes: 1: 3130332e3138392e3131302e302f32342d3234203d3e20313439373439.roa (hash: vEIWSBdkXeXYMMZ1JkgEqdYq9VUkjPtTYb4B2b9jIwo=) 2: 3130332e3138392e3131312e302f32342d3234203d3e20313439373439.roa (hash: gtfNgouP3xqwRZMc2rLq5YYKkcJUcC8NmXsS5NHSV5Y=) 3: 20EF9BB996F984E995F9FF0658F0B90CB903B897.crl (hash: AkScg9ahLLSaAm+FydzFqvX/gnFzY1uFo7srAfmsV04=) 4: 3130332e3138392e3131302e302f32332d3233203d3e20313439373439.roa (hash: iDioe3jjxT7o8WJUfZMX4dcAtJo9aoi+lZoEhp66IbU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 09:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:34:d6:81:db:62:e0:08:3f:9c:12:fc:1d:39:99:84:a7:70:e8:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20EF9BB996F984E995F9FF0658F0B90CB903B897 Validity Not Before: Aug 7 04:36:56 2025 GMT Not After : Aug 10 09:53:56 2025 GMT Subject: CN=F91E42D665CFA20166EDD698281FA24F1DDC39EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:51:93:34:81:5f:75:e7:1b:bb:6a:78:d0:01: 42:69:04:0d:fb:94:6c:c7:aa:84:66:2b:01:6d:6f: f2:7b:fa:5b:9d:30:af:25:f9:ab:ae:c9:69:be:63: 98:73:ae:ae:af:1a:4a:6c:19:28:ae:a7:e4:a5:dc: 11:ac:68:0c:0b:a8:0f:49:ce:bb:ce:f8:05:74:7b: 75:d6:96:c3:c0:5e:8b:8e:76:bc:bb:99:17:66:b2: 10:7f:4f:45:f6:79:f7:0f:7e:a7:15:3f:66:04:fd: 83:ef:c0:63:d4:fa:78:4f:82:f3:e4:32:b8:8a:91: 37:5f:fb:d0:31:63:c5:36:5b:cc:2d:96:c9:26:08: a3:3e:62:ff:0a:71:d2:1e:fc:bd:f6:57:84:7e:f8: 2e:79:59:57:d2:af:43:b9:78:ad:c5:01:36:c7:77: ce:47:c3:90:df:2f:d0:17:20:c6:4e:c5:87:c1:7c: 84:9d:29:b8:68:d3:08:76:b2:8d:f1:cf:85:bc:4f: 56:ea:51:00:9e:44:36:6b:ba:92:da:67:c4:bc:1e: 5a:e8:45:ec:03:99:2e:40:5f:e9:d7:ab:18:b5:d8: 46:14:f5:6d:a7:7d:3c:62:2f:ff:c4:1a:3b:10:50: b5:73:2d:60:02:6a:68:92:ef:df:bc:09:65:2c:dd: 5d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1E:42:D6:65:CF:A2:01:66:ED:D6:98:28:1F:A2:4F:1D:DC:39:EF X509v3 Authority Key Identifier: keyid:20:EF:9B:B9:96:F9:84:E9:95:F9:FF:06:58:F0:B9:0C:B9:03:B8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20EF9BB996F984E995F9FF0658F0B90CB903B897.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d05e5a30-0802-4c5c-947e-98ef285f4f6b/0/20EF9BB996F984E995F9FF0658F0B90CB903B897.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:76:b7:da:24:65:00:f6:b7:76:1f:af:b5:e5:fb:2c:b0:da: 2d:53:37:5b:31:72:1c:b0:3d:c9:8a:15:b0:10:bb:b6:5a:d2: 65:c2:c4:b0:dc:06:7b:8b:28:e1:e1:f8:d8:d7:a5:dd:a0:bc: cc:fd:1d:fa:17:4f:79:f9:ed:4f:7e:5f:e4:d6:37:95:ee:01: e8:fd:ad:25:48:87:bb:e9:e1:e1:90:24:99:02:69:ba:8f:37: e5:e1:23:54:25:ea:f0:3d:bf:6b:13:6d:af:5e:51:44:b4:77: 38:5f:bc:a3:34:bc:c3:1b:d7:03:38:bb:32:54:46:9f:9e:5a: d7:2f:bf:4f:7e:42:3d:34:7e:6d:dc:62:ad:26:7c:db:32:ac: be:45:6c:18:40:a3:78:3c:9a:b3:ed:0b:2e:7c:5f:a9:80:52: 9a:d5:dd:1b:a7:92:8c:44:4c:b1:a4:da:a2:c2:91:64:57:18: 81:1e:3a:32:4e:27:95:93:ae:0b:ec:e8:01:13:86:1a:4a:04: 14:af:19:c0:cb:b5:be:ec:e0:c1:1c:ba:6c:c8:6a:dd:90:36: 31:7f:3d:8d:de:a4:7b:5c:62:2a:b0:b0:ee:4e:bb:1f:bf:e9: 24:ed:1a:a6:f8:a6:15:4a:18:38:f6:c5:25:d2:27:10:c1:d6: 1b:0e:b3:fa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCzTWgdti4Ag/nBL8HTmZhKdw6J0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENC OTAzQjg5NzAeFw0yNTA4MDcwNDM2NTZaFw0yNTA4MTAwOTUzNTZaMDMxMTAvBgNV BAMTKEY5MUU0MkQ2NjVDRkEyMDE2NkVERDY5ODI4MUZBMjRGMUREQzM5RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAUZM0gV915xu7anjQAUJpBA37 lGzHqoRmKwFtb/J7+ludMK8l+auuyWm+Y5hzrq6vGkpsGSiup+Sl3BGsaAwLqA9J zrvO+AV0e3XWlsPAXouOdry7mRdmshB/T0X2efcPfqcVP2YE/YPvwGPU+nhPgvPk MriKkTdf+9AxY8U2W8wtlskmCKM+Yv8KcdIe/L32V4R++C55WVfSr0O5eK3FATbH d85Hw5DfL9AXIMZOxYfBfISdKbho0wh2so3xz4W8T1bqUQCeRDZrupLaZ8S8Hlro RewDmS5AX+nXqxi12EYU9W2nfTxiL//EGjsQULVzLWACamiS79+8CWUs3V2bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+R5C1mXPogFm7daYKB+iTx3cOe8wHwYDVR0j BBgwFoAUIO+buZb5hOmV+f8GWPC5DLkDuJcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDVlNWEzMC0wODAyLTRjNWMtOTQ3ZS05OGVmMjg1ZjRmNmIvMC8yMEVGOUJCOTk2 Rjk4NEU5OTVGOUZGMDY1OEYwQjkwQ0I5MDNCODk3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5MENCOTAz Qjg5Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA1ZTVhMzAtMDgwMi00YzVjLTk0 N2UtOThlZjI4NWY0ZjZiLzAvMjBFRjlCQjk5NkY5ODRFOTk1RjlGRjA2NThGMEI5 MENCOTAzQjg5Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC12t9okZQD2t3Yfr7Xl+yyw2i1TN1sxchyw PcmKFbAQu7Za0mXCxLDcBnuLKOHh+NjXpd2gvMz9HfoXT3n57U9+X+TWN5XuAej9 rSVIh7vp4eGQJJkCabqPN+XhI1Ql6vA9v2sTba9eUUS0dzhfvKM0vMMb1wM4uzJU Rp+eWtcvv09+Qj00fm3cYq0mfNsyrL5FbBhAo3g8mrPtCy58X6mAUprV3RunkoxE TLGk2qLCkWRXGIEeOjJOJ5WTrgvs6AEThhpKBBSvGcDLtb7s4MEcumzIat2QNjF/ PY3epHtcYiqwsO5Oux+/6STtGqb4phVKGDj2xSXSJxDB1hsOs/o= -----END CERTIFICATE-----Generated at Sat Aug 9 05:34:38 2025 by rpki-client