$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft File: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft (raw, json) Hash identifier: KGveCiTTcADHyJlY7+oolVx48zldG/7Nl8NpraYIFUw= Subject key identifier: D5:6F:6F:62:8A:0B:01:0C:2A:DE:1E:AE:FF:37:1B:D9:74:44:A6:3C Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 1CD38C3A80A3F6DFDE1CCF34E0A6F045E6CB0F39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft Manifest number: 0463 Signing time: Sat 14 Jun 2025 01:42:27 +0000 Manifest this update: Sat 14 Jun 2025 01:37:27 +0000 Manifest next update: Tue 17 Jun 2025 09:52:27 +0000 Files and hashes: 1: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (hash: 3OXjddu9GYm+pnGIRRvw8uTtgTnaQOQocX2ZWf81HfA=) 2: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (hash: UmfhnL8RZYJSndBdwe7iI677EbidAY8O+tflsfoU+/Y=) 3: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl (hash: 4v64RmDzlwPHDYP9sDjO/BhbJ7AxzL2aJsRpADDD+2Y=) 4: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (hash: WZEcRoBw5pAR5VSb916+kaVDUlS4wq/ib5rS3X/sotw=) 5: 3130332e3136322e312e302f32342d3234203d3e2036393339.roa (hash: fzXYj+/Wlk2+pHJ1gJZrQ6X0Tnu8HMMmPoocnHTOJ8E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 09:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:d3:8c:3a:80:a3:f6:df:de:1c:cf:34:e0:a6:f0:45:e6:cb:0f:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Jun 14 01:37:27 2025 GMT Not After : Jun 17 09:52:27 2025 GMT Subject: CN=D56F6F628A0B010C2ADE1EAEFF371BD97444A63C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:12:5f:e2:c0:71:e4:c0:90:36:91:36:c6:92: c3:30:10:49:da:b9:20:e3:b8:25:26:cc:7e:53:29: 60:88:1c:ab:74:e0:a2:8f:db:cf:c0:61:60:5c:84: 7a:54:15:d9:cc:68:05:bf:cd:9a:ba:ab:d4:97:43: c9:0b:df:02:7d:f6:f1:a9:c5:2a:39:6e:56:1f:c1: 55:e6:a1:f3:f9:9d:49:e0:fe:c5:d6:f9:83:0f:25: 4f:60:8b:8e:8e:29:99:d4:67:57:ba:da:ab:64:06: b2:5b:11:69:bf:02:97:7d:83:27:d7:95:4d:08:79: 0c:5b:56:10:85:d3:74:06:e2:45:d5:10:a7:16:6f: 79:c4:d2:ff:f4:19:ca:52:79:ae:98:80:f4:da:fd: 90:73:9a:0a:ac:25:14:8c:ce:f8:7b:ca:95:6d:30: 52:25:8e:a0:5e:eb:b9:67:9d:9c:bc:cd:f9:67:27: 65:7a:02:e9:14:39:96:c2:ab:d8:4f:57:db:ea:cb: 51:d9:d3:10:d1:c7:1d:13:8a:bf:28:48:83:21:fe: fe:62:a4:c5:4c:ae:92:43:8f:a7:e8:8b:6d:e4:e1: 88:43:38:09:3d:4f:3d:ff:56:06:27:50:ae:e4:40: 77:9b:04:40:6e:f7:18:43:45:dd:0a:02:02:4f:17: 1f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:6F:6F:62:8A:0B:01:0C:2A:DE:1E:AE:FF:37:1B:D9:74:44:A6:3C X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:31:cc:f3:b7:41:95:aa:69:96:d9:08:29:67:e9:2b:57:56: b1:cc:db:ea:f9:a2:57:76:cf:e7:f0:6b:26:53:58:da:84:e4: 09:5a:d3:22:93:a6:1b:a5:e2:7b:b8:c7:2a:ba:a0:b7:70:4d: c1:69:7a:be:f9:06:f5:de:ef:5f:82:6d:25:c8:80:50:9b:31: d2:f6:8a:b8:d3:4a:49:90:ec:68:4d:da:57:98:db:4b:50:4c: 2b:eb:a5:61:fd:29:a3:6b:6f:7d:25:0f:ac:2b:ed:36:6d:f5: f8:87:fb:d1:b2:b7:00:a1:ff:3c:3e:1e:38:a2:95:ba:af:a3: 9f:34:d9:39:9c:d0:44:ea:eb:51:75:39:b8:50:23:80:e0:66: ce:7c:08:c8:8f:55:08:a4:b1:4e:6d:d0:1e:09:b6:cf:c3:91: 15:87:45:77:ae:08:36:85:06:b4:4f:7f:54:44:8b:fd:04:3a: a0:9d:3f:83:2d:f9:6b:80:72:1d:d3:a9:6e:fe:93:c4:36:b2: dc:46:bd:a0:27:da:2f:f4:c4:19:68:66:c4:47:73:ff:90:7f: 2a:73:21:b3:b0:50:8f:7d:15:76:c3:93:7f:c2:b1:fa:e7:8a: f8:e8:e1:b3:cf:89:0c:f4:02:c6:b3:db:61:65:d0:2e:e9:bf: 9e:34:87:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHNOMOoCj9t/eHM804KbwRebLDzkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNTA2MTQwMTM3MjdaFw0yNTA2MTcwOTUyMjdaMDMxMTAvBgNV BAMTKEQ1NkY2RjYyOEEwQjAxMEMyQURFMUVBRUZGMzcxQkQ5NzQ0NEE2M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNEl/iwHHkwJA2kTbGksMwEEna uSDjuCUmzH5TKWCIHKt04KKP28/AYWBchHpUFdnMaAW/zZq6q9SXQ8kL3wJ99vGp xSo5blYfwVXmofP5nUng/sXW+YMPJU9gi46OKZnUZ1e62qtkBrJbEWm/Apd9gyfX lU0IeQxbVhCF03QG4kXVEKcWb3nE0v/0GcpSea6YgPTa/ZBzmgqsJRSMzvh7ypVt MFIljqBe67lnnZy8zflnJ2V6AukUOZbCq9hPV9vqy1HZ0xDRxx0Tir8oSIMh/v5i pMVMrpJDj6foi23k4YhDOAk9Tz3/VgYnUK7kQHebBEBu9xhDRd0KAgJPFx/FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1W9vYooLAQwq3h6u/zcb2XREpjwwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE0MTkzYzQtNGFiZC00ZTJjLWEx ZDAtMWI1Y2UzMmU0MjBiLzAvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlF Q0QyODlBQkZGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGUxzPO3QZWqaZbZCCln6StXVrHM2+r5old2 z+fwayZTWNqE5Ala0yKTphul4nu4xyq6oLdwTcFper75BvXe71+CbSXIgFCbMdL2 irjTSkmQ7GhN2leY20tQTCvrpWH9KaNrb30lD6wr7TZt9fiH+9GytwCh/zw+Hjii lbqvo5802Tmc0ETq61F1ObhQI4DgZs58CMiPVQiksU5t0B4Jts/DkRWHRXeuCDaF BrRPf1REi/0EOqCdP4Mt+WuAch3TqW7+k8Q2stxGvaAn2i/0xBloZsRHc/+Qfypz IbOwUI99FXbDk3/Csfrnivjo4bPPiQz0Asaz22Fl0C7pv540h84= -----END CERTIFICATE-----Generated at Mon Jun 16 01:30:36 2025 by rpki-client