$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft File: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft (raw, json) Hash identifier: 7SyHlxL0gRl6h30AzfN3VTye6UWBdVgORHdBJAYZt5A= Subject key identifier: 27:9E:7B:29:23:DB:00:60:20:9A:11:72:9C:AA:F8:28:14:F4:44:06 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 1E6561B9A4F236B292698B94F489F2FA4D3A1DC6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft Manifest number: 047A Signing time: Sun 03 Aug 2025 20:10:47 +0000 Manifest this update: Sun 03 Aug 2025 20:05:47 +0000 Manifest next update: Thu 07 Aug 2025 03:06:47 +0000 Files and hashes: 1: 3130332e3136322e312e302f32342d3234203d3e2036393339.roa (hash: fzXYj+/Wlk2+pHJ1gJZrQ6X0Tnu8HMMmPoocnHTOJ8E=) 2: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (hash: UmfhnL8RZYJSndBdwe7iI677EbidAY8O+tflsfoU+/Y=) 3: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl (hash: ujp73syMVu3PIuBJSyAeZcBBUOCrz/dNYozyyCTjQ5Y=) 4: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (hash: 3OXjddu9GYm+pnGIRRvw8uTtgTnaQOQocX2ZWf81HfA=) 5: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (hash: WZEcRoBw5pAR5VSb916+kaVDUlS4wq/ib5rS3X/sotw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 03:06:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:65:61:b9:a4:f2:36:b2:92:69:8b:94:f4:89:f2:fa:4d:3a:1d:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Aug 3 20:05:47 2025 GMT Not After : Aug 7 03:06:47 2025 GMT Subject: CN=279E7B2923DB0060209A11729CAAF82814F44406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7a:28:83:c8:a8:02:bf:bc:87:7e:9c:e9:a9: 53:b7:26:4e:e2:99:9e:03:44:58:00:2e:cc:f5:5f: f6:31:39:fe:91:50:55:7c:9b:d8:d1:78:54:3d:ae: b0:07:2e:fc:30:15:43:c3:02:7e:4f:18:04:f2:6a: 25:f7:30:ad:2f:f2:d4:a6:54:7d:79:f8:e9:99:50: 0c:fe:10:7f:98:19:68:83:52:52:80:f1:39:00:78: 2a:1f:25:73:b7:1c:c7:ed:76:80:14:c7:c9:ae:15: 55:50:35:8b:d1:ac:ce:6a:8e:34:be:e4:79:f9:38: 72:ad:f2:e8:7d:17:6a:14:d0:bc:14:cc:e2:a4:d2: 40:4a:61:17:4e:da:0e:98:33:e2:a2:16:bd:3d:c4: 7d:e0:9f:13:cb:ad:47:55:04:77:d8:d7:84:b5:f1: e0:9c:82:eb:5d:33:c1:76:e2:ce:10:87:58:ec:63: be:ef:65:4d:d9:db:87:02:4f:e6:b9:fc:91:a1:4a: 43:c8:85:e6:f5:4d:b9:90:8b:b5:6a:da:77:73:98: 0e:cb:c1:75:f5:23:4b:82:3a:77:88:fd:63:06:c8: 01:63:49:ca:2f:ff:af:e3:48:36:cc:18:c3:7d:7d: a0:7b:eb:c4:28:56:5f:48:63:b2:4d:e9:aa:ba:77: fd:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:9E:7B:29:23:DB:00:60:20:9A:11:72:9C:AA:F8:28:14:F4:44:06 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:ee:f5:50:f6:c0:b7:84:c2:4a:f6:fa:34:44:56:0f:92:3c: 3c:5d:cd:0d:ed:96:12:2f:e9:29:8e:d1:6c:a5:96:12:fe:e4: 05:1e:a3:83:14:7c:27:49:a2:57:45:0e:3a:5c:31:08:fe:91: d2:f8:2b:2e:26:b8:61:14:33:be:e6:94:1c:a4:6c:2e:60:3a: d6:e4:2c:8b:f9:b2:ce:80:42:d1:8d:3b:1f:8a:bb:45:3c:b0: 14:02:d0:b3:fc:39:8b:c9:15:f4:00:9d:c9:b3:d5:ec:c4:bd: 43:9f:49:45:a7:87:3f:b6:28:12:49:9f:83:e6:82:65:a1:f7: ea:0f:c4:58:ab:9b:17:27:b8:0f:b4:f8:79:4c:8e:1e:c1:5a: b5:81:14:e4:81:81:eb:d9:9b:ad:39:e7:00:cc:c1:76:1c:86: 90:ac:33:21:5b:a9:79:ad:03:5f:64:0c:7a:3b:50:b5:02:34: 79:ed:26:5a:54:6f:ab:b7:79:84:2c:7c:81:4f:c0:e8:93:e9: 2e:2a:cc:e0:3b:57:2b:65:52:9d:5b:78:9f:71:8f:e9:03:83: ae:eb:4f:1d:f3:fd:59:f2:3e:0e:51:9d:c0:09:76:02:6b:cf: 34:65:45:dd:ad:0d:11:08:35:11:35:cc:9c:4b:9b:a6:50:05: 9c:19:27:8d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHmVhuaTyNrKSaYuU9Iny+k06HcYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNTA4MDMyMDA1NDdaFw0yNTA4MDcwMzA2NDdaMDMxMTAvBgNV BAMTKDI3OUU3QjI5MjNEQjAwNjAyMDlBMTE3MjlDQUFGODI4MTRGNDQ0MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTeiiDyKgCv7yHfpzpqVO3Jk7i mZ4DRFgALsz1X/YxOf6RUFV8m9jReFQ9rrAHLvwwFUPDAn5PGATyaiX3MK0v8tSm VH15+OmZUAz+EH+YGWiDUlKA8TkAeCofJXO3HMftdoAUx8muFVVQNYvRrM5qjjS+ 5Hn5OHKt8uh9F2oU0LwUzOKk0kBKYRdO2g6YM+KiFr09xH3gnxPLrUdVBHfY14S1 8eCcgutdM8F24s4Qh1jsY77vZU3Z24cCT+a5/JGhSkPIheb1TbmQi7Vq2ndzmA7L wXX1I0uCOneI/WMGyAFjScov/6/jSDbMGMN9faB768QoVl9IY7JN6aq6d/1bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJ557KSPbAGAgmhFynKr4KBT0RAYwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE0MTkzYzQtNGFiZC00ZTJjLWEx ZDAtMWI1Y2UzMmU0MjBiLzAvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlF Q0QyODlBQkZGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD3u9VD2wLeEwkr2+jREVg+SPDxdzQ3tlhIv 6SmO0WyllhL+5AUeo4MUfCdJoldFDjpcMQj+kdL4Ky4muGEUM77mlBykbC5gOtbk LIv5ss6AQtGNOx+Ku0U8sBQC0LP8OYvJFfQAncmz1ezEvUOfSUWnhz+2KBJJn4Pm gmWh9+oPxFirmxcnuA+0+HlMjh7BWrWBFOSBgevZm6055wDMwXYchpCsMyFbqXmt A19kDHo7ULUCNHntJlpUb6u3eYQsfIFPwOiT6S4qzOA7VytlUp1beJ9xj+kDg67r Tx3z/VnyPg5RncAJdgJrzzRlRd2tDREINRE1zJxLm6ZQBZwZJ40= -----END CERTIFICATE-----Generated at Mon Aug 4 18:20:30 2025 by rpki-client