$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft File: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft (raw, json) Hash identifier: fLQ+EB1JLz51ji4kTJspn1gVSfrBFMeYrUCzDNb/yTU= Subject key identifier: 2A:4C:1F:DB:6F:7F:A1:CB:DA:B1:DF:37:AC:E3:2E:BE:FF:A8:EA:00 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 5EC3512A2A4FAA6450AC121FFE3599BAAE5232AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft Manifest number: 04EE Signing time: Thu 16 Apr 2026 23:10:55 +0000 Manifest this update: Thu 16 Apr 2026 23:05:55 +0000 Manifest next update: Mon 20 Apr 2026 10:48:55 +0000 Files and hashes: 1: 3130332e3136322e312e302f32342d3234203d3e2036393339.roa (hash: U7NnTgw4+RWSqCZvvYrAIpdq9+m5qm4ziARKzADWCYw=) 2: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (hash: BUWXw4dtky6u3IS1OVmdebvECXrPIBW5iPpOPegzgSU=) 3: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (hash: mrVcWkYKkNNL+5Z0dua06HvGJVSXAbMBn3dbcArjm/g=) 4: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (hash: qNe08ONmrtJrbqnJHhzOzL4yLMKznA4CGtzFIsSxWok=) 5: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl (hash: D8LtT99Q0P3XPDQCClHpBepSeNv2uXOh88cGL8p4HPw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 10:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:c3:51:2a:2a:4f:aa:64:50:ac:12:1f:fe:35:99:ba:ae:52:32:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Apr 16 23:05:55 2026 GMT Not After : Apr 20 10:48:55 2026 GMT Subject: CN=2A4C1FDB6F7FA1CBDAB1DF37ACE32EBEFFA8EA00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9d:ae:e0:8f:db:25:7a:3c:f7:0c:aa:ed:99: 17:a4:18:69:52:af:57:0c:40:53:3f:60:ad:7a:1f: f9:2f:c6:8c:ee:10:05:55:35:24:a4:be:b8:be:a8: c8:ed:8f:11:5c:de:ff:04:95:75:3e:95:0b:5a:f0: 9b:05:1b:c8:d8:4c:de:39:85:d3:54:44:51:e1:d8: db:e0:46:9b:02:8b:2e:3b:ed:04:eb:51:6d:62:62: 6f:2b:f0:59:0f:a2:a1:ad:0d:30:d4:80:da:55:e3: b3:3c:e0:92:80:21:df:60:99:bc:ad:3d:e2:74:c4: 77:b6:f0:dc:67:b6:ed:26:be:12:b0:23:2e:2d:19: 58:c5:3a:87:1a:cb:42:b1:dc:14:cc:2d:18:1e:00: 64:9c:e9:bb:93:9e:f7:be:b5:f4:d3:b9:fc:8b:ed: fe:b5:03:3d:c9:b1:df:2b:4d:53:13:5f:b8:d1:1d: 59:f4:93:af:4a:ac:32:37:4b:2f:fc:63:be:20:1a: 36:67:8f:cd:73:16:db:ec:58:dc:f1:c3:90:d1:5a: b4:cb:0f:4a:37:97:6a:dd:30:aa:ba:53:a9:03:02: 4c:9c:ea:97:5a:71:e6:e6:f0:3c:86:e2:9e:1b:31: af:fd:08:66:27:5b:69:2b:cb:63:15:6b:b8:3f:0b: 1c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:4C:1F:DB:6F:7F:A1:CB:DA:B1:DF:37:AC:E3:2E:BE:FF:A8:EA:00 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:1a:8d:33:4f:da:e0:57:01:59:49:22:f0:e1:7b:cf:34:b8: c0:73:69:b8:e1:bd:df:b9:b2:6b:3d:9a:e7:5b:47:50:38:cd: e7:1a:b3:7b:c7:ce:95:4f:ed:09:6e:fa:6e:97:6c:d1:1a:d2: 04:aa:7f:b9:bb:0c:2a:1a:dc:d0:a5:f8:f6:de:13:cc:bc:26: bd:5f:62:01:94:80:c1:07:27:a2:93:1a:02:03:9d:98:61:bd: 9f:68:35:38:88:a0:31:32:c4:ca:f1:52:7d:70:2a:f1:95:03: 47:c1:15:c9:e2:3d:2a:96:5d:ac:ce:c1:23:d5:12:0a:7a:40: 8d:af:bb:5c:5a:fd:45:b5:7f:bc:c4:4a:53:cb:17:49:47:e9: 43:15:87:3b:2f:59:7c:40:b5:15:dd:61:94:05:e2:d8:2c:58: 83:28:26:95:7c:76:4e:dc:7f:05:0c:78:b4:2c:89:0d:10:12: b6:14:de:de:87:9b:a0:94:b8:cf:5b:55:39:63:a7:e0:be:18: f2:39:8a:1d:36:5f:d9:e9:fe:7a:a2:4e:ef:7d:da:84:3e:e7: f6:dd:e9:61:5e:7b:75:ae:ea:7c:15:82:b6:2c:b6:89:21:c7: 65:b3:07:28:d2:70:30:9f:e0:20:aa:ec:10:c8:48:79:ba:d3: 41:ef:67:32 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXsNRKipPqmRQrBIf/jWZuq5SMqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNjA0MTYyMzA1NTVaFw0yNjA0MjAxMDQ4NTVaMDMxMTAvBgNV BAMTKDJBNEMxRkRCNkY3RkExQ0JEQUIxREYzN0FDRTMyRUJFRkZBOEVBMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7na7gj9slejz3DKrtmRekGGlS r1cMQFM/YK16H/kvxozuEAVVNSSkvri+qMjtjxFc3v8ElXU+lQta8JsFG8jYTN45 hdNURFHh2NvgRpsCiy477QTrUW1iYm8r8FkPoqGtDTDUgNpV47M84JKAId9gmbyt PeJ0xHe28Nxntu0mvhKwIy4tGVjFOocay0Kx3BTMLRgeAGSc6buTnve+tfTTufyL 7f61Az3Jsd8rTVMTX7jRHVn0k69KrDI3Sy/8Y74gGjZnj81zFtvsWNzxw5DRWrTL D0o3l2rdMKq6U6kDAkyc6pdacebm8DyG4p4bMa/9CGYnW2kry2MVa7g/Cxx9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKkwf229/ocvasd83rOMuvv+o6gAwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE0MTkzYzQtNGFiZC00ZTJjLWEx ZDAtMWI1Y2UzMmU0MjBiLzAvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlF Q0QyODlBQkZGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGsajTNP2uBXAVlJIvDhe880uMBzabjhvd+5 sms9mudbR1A4zecas3vHzpVP7Qlu+m6XbNEa0gSqf7m7DCoa3NCl+PbeE8y8Jr1f YgGUgMEHJ6KTGgIDnZhhvZ9oNTiIoDEyxMrxUn1wKvGVA0fBFcniPSqWXazOwSPV Egp6QI2vu1xa/UW1f7zESlPLF0lH6UMVhzsvWXxAtRXdYZQF4tgsWIMoJpV8dk7c fwUMeLQsiQ0QErYU3t6Hm6CUuM9bVTljp+C+GPI5ih02X9np/nqiTu992oQ+5/bd 6WFee3Wu6nwVgrYstokhx2WzByjScDCf4CCq7BDISHm600HvZzI= -----END CERTIFICATE-----Generated at Fri Apr 17 14:06:40 2026 by rpki-client