$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft File: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft (raw, json) Hash identifier: rOhZPwz2JbPc7wbVX5nw+5baiXgh9uek+ZyFuAxGgzg= Subject key identifier: 55:0A:4E:D5:62:1F:13:86:C6:0F:2A:96:30:D8:8D:41:36:B3:00:FF Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 6E0FF00DC294FF1408699683760F151FDDD72B38 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft Manifest number: 04A3 Signing time: Mon 03 Nov 2025 03:41:18 +0000 Manifest this update: Mon 03 Nov 2025 03:36:18 +0000 Manifest next update: Thu 06 Nov 2025 06:40:18 +0000 Files and hashes: 1: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl (hash: iWztgbqECqmk/VAftiesSZ3NSJGwJD6s7ROwh6Hbkgs=) 2: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (hash: mrVcWkYKkNNL+5Z0dua06HvGJVSXAbMBn3dbcArjm/g=) 3: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (hash: qNe08ONmrtJrbqnJHhzOzL4yLMKznA4CGtzFIsSxWok=) 4: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (hash: BUWXw4dtky6u3IS1OVmdebvECXrPIBW5iPpOPegzgSU=) 5: 3130332e3136322e312e302f32342d3234203d3e2036393339.roa (hash: fzXYj+/Wlk2+pHJ1gJZrQ6X0Tnu8HMMmPoocnHTOJ8E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 06:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:0f:f0:0d:c2:94:ff:14:08:69:96:83:76:0f:15:1f:dd:d7:2b:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Nov 3 03:36:18 2025 GMT Not After : Nov 6 06:40:18 2025 GMT Subject: CN=550A4ED5621F1386C60F2A9630D88D4136B300FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c5:06:97:04:a2:eb:69:38:30:9e:6d:02:61: 90:ef:c5:ea:67:42:a3:2a:f2:a2:cf:3b:ff:e1:6c: 01:59:60:a9:e9:33:e2:ed:1c:f9:7e:26:1e:ee:2d: 04:fe:ee:15:14:fe:7c:b7:7e:2f:be:e8:bd:b7:b9: 84:d7:03:f7:1f:6c:d5:a6:f9:3a:e5:b9:a6:c5:c6: c5:e2:a6:d4:91:16:c6:15:5a:a7:96:9a:7e:d2:01: 8b:2c:1e:de:ec:de:69:b3:6a:dc:45:8b:06:42:15: 61:ed:82:19:22:0a:68:5f:23:72:1d:48:a7:8d:32: 09:12:ea:29:91:a1:4b:3d:0c:dd:8c:6b:3c:d0:dd: 90:4e:81:cb:16:5b:f5:0e:87:56:6f:e5:47:e3:c3: d5:56:b5:bf:dd:32:0f:a8:a2:5e:cc:9a:8f:ff:69: 53:50:91:ce:32:d9:57:40:29:10:ce:83:af:b6:97: cb:dd:78:90:11:ee:75:35:33:82:4d:ed:7d:16:fd: db:f4:09:15:98:e3:6b:a0:a3:fa:36:84:24:19:dd: b2:8c:3f:9a:cc:9c:32:30:93:30:88:4c:f8:be:1a: 31:2b:18:64:2e:13:17:fb:7e:c4:40:d7:07:e2:8c: cb:6a:f9:94:c1:d5:f1:f9:04:c9:4f:b5:e4:25:0b: d0:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:0A:4E:D5:62:1F:13:86:C6:0F:2A:96:30:D8:8D:41:36:B3:00:FF X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:5a:c6:0d:33:62:42:55:6c:9c:d4:b6:42:35:23:12:a9:90: ae:07:85:52:ca:6d:94:6a:c5:09:9e:64:05:7b:54:9a:cf:e9: de:ab:ea:b9:34:66:d9:fd:78:f7:01:d8:8b:a6:df:04:19:9a: 6d:a5:4a:b9:fd:b5:71:71:a2:f7:f6:64:94:a2:c0:8c:76:fc: f7:03:7b:9c:75:00:8d:a3:8a:c7:0f:88:b0:3e:5e:37:20:b4: 51:c5:68:f6:2f:0b:8e:67:f1:78:6b:3d:df:84:bc:65:5b:8a: 0d:d2:21:f0:b0:84:00:e3:6f:e7:73:fb:1c:5d:a6:40:71:90: 72:da:ce:30:cf:8a:01:1e:e7:f5:1e:b2:db:85:0f:2c:e8:4a: c5:45:62:5b:98:42:13:12:db:9b:8b:14:72:83:7d:7a:18:3c: 76:0f:c9:d0:e8:1d:cb:3e:5c:37:2c:65:61:29:eb:a4:84:5c: 04:d9:bb:5e:38:1d:27:3a:9c:7a:fe:48:b3:bd:86:7b:c5:af: 47:4b:fc:0c:b5:9a:83:bf:fd:86:30:28:df:25:0d:00:a5:1b: 69:e4:cf:37:f1:7e:68:e8:2b:11:24:72:d7:8a:bb:40:55:0c: 2c:c2:03:d1:76:98:2f:81:5b:b7:ae:50:ae:1a:be:cf:fb:b9: cf:4e:6b:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbg/wDcKU/xQIaZaDdg8VH93XKzgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNTExMDMwMzM2MThaFw0yNTExMDYwNjQwMThaMDMxMTAvBgNV BAMTKDU1MEE0RUQ1NjIxRjEzODZDNjBGMkE5NjMwRDg4RDQxMzZCMzAwRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpxQaXBKLraTgwnm0CYZDvxepn QqMq8qLPO//hbAFZYKnpM+LtHPl+Jh7uLQT+7hUU/ny3fi++6L23uYTXA/cfbNWm +TrluabFxsXiptSRFsYVWqeWmn7SAYssHt7s3mmzatxFiwZCFWHtghkiCmhfI3Id SKeNMgkS6imRoUs9DN2MazzQ3ZBOgcsWW/UOh1Zv5Ufjw9VWtb/dMg+ool7Mmo// aVNQkc4y2VdAKRDOg6+2l8vdeJAR7nU1M4JN7X0W/dv0CRWY42ugo/o2hCQZ3bKM P5rMnDIwkzCITPi+GjErGGQuExf7fsRA1wfijMtq+ZTB1fH5BMlPteQlC9BLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVQpO1WIfE4bGDyqWMNiNQTazAP8wHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE0MTkzYzQtNGFiZC00ZTJjLWEx ZDAtMWI1Y2UzMmU0MjBiLzAvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlF Q0QyODlBQkZGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALpaxg0zYkJVbJzUtkI1IxKpkK4HhVLKbZRq xQmeZAV7VJrP6d6r6rk0Ztn9ePcB2Ium3wQZmm2lSrn9tXFxovf2ZJSiwIx2/PcD e5x1AI2jiscPiLA+XjcgtFHFaPYvC45n8XhrPd+EvGVbig3SIfCwhADjb+dz+xxd pkBxkHLazjDPigEe5/UestuFDyzoSsVFYluYQhMS25uLFHKDfXoYPHYPydDoHcs+ XDcsZWEp66SEXATZu144HSc6nHr+SLO9hnvFr0dL/Ay1moO//YYwKN8lDQClG2nk zzfxfmjoKxEkcteKu0BVDCzCA9F2mC+BW7euUK4avs/7uc9Oa28= -----END CERTIFICATE-----Generated at Tue Nov 4 08:12:54 2025 by rpki-client