$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft File: 20566897603B029812606C25ABC972BAC5BF4AFB.mft (raw, json) Hash identifier: g622rRkYEvvneYr1Y3RsWjRBbOZMMW/oDYwOdfFHc6c= Subject key identifier: A0:07:06:87:41:9A:AD:20:9D:6F:6C:2C:D4:80:C8:EF:C4:BF:32:26 Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 04186577EB20CB09E37EE7C11B20EE0EBF7E36B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft Manifest number: 0260 Signing time: Sat 18 Oct 2025 09:02:18 +0000 Manifest this update: Sat 18 Oct 2025 08:57:18 +0000 Manifest next update: Tue 21 Oct 2025 13:05:18 +0000 Files and hashes: 1: 323430363a316230303a3a2f33322d3438203d3e203435333137.roa (hash: TjP7GmHfPb+wwoosrfBI6nsarX9S8cjrwBDpRp71p84=) 2: 20566897603B029812606C25ABC972BAC5BF4AFB.crl (hash: zErbseS3YpkHs2kMxarbCDCf90VqazPfbPBRZsh5Uy0=) 3: 3230332e3139302e34302e302f32312d3234203d3e203435333137.roa (hash: 5MoEibiXvb7uNHyN+SG4htpl+K7LW+4UjrfmIpwFKTE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 13:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:18:65:77:eb:20:cb:09:e3:7e:e7:c1:1b:20:ee:0e:bf:7e:36:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: Oct 18 08:57:18 2025 GMT Not After : Oct 21 13:05:18 2025 GMT Subject: CN=A0070687419AAD209D6F6C2CD480C8EFC4BF3226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:2b:8b:ed:a5:07:c8:05:35:2a:e5:4f:a3:89: c3:40:15:c0:45:3c:a3:b9:1e:6e:87:8f:ff:3d:dc: 13:a1:44:52:f7:8c:9d:ee:bc:f3:16:eb:c2:95:93: 10:34:f2:b4:49:c9:e5:5a:12:e7:3c:1e:df:40:3b: a2:34:80:c6:99:fa:07:5f:c4:c8:4c:1f:39:24:66: fc:77:96:cf:d0:03:cd:d3:6c:7b:59:26:46:05:4c: 52:c3:a8:77:28:95:96:3f:a7:f6:ed:d8:d6:4a:80: f8:7f:75:90:d9:6e:61:af:5a:b9:f2:27:cd:fa:c4: b0:a5:97:bd:94:5d:ea:e2:ce:22:58:2b:d2:e7:76: bb:d1:c0:d0:cb:4e:e8:87:85:34:32:53:4c:bf:0a: 6a:fe:39:30:82:54:74:d7:6d:ba:eb:32:32:15:74: 9b:fd:d7:4c:b4:93:bd:dd:89:bf:79:d4:09:d3:3b: b4:58:9d:cd:a4:7f:3c:b5:f2:3a:fa:c4:d7:8c:bd: a9:86:6b:09:9b:80:94:c5:0d:c2:5f:7b:44:4e:d7: cf:bc:ce:56:da:a4:23:51:ae:71:15:ab:f0:36:6d: b5:a5:2f:c4:dd:20:ed:84:a2:41:aa:7f:80:4f:45: 43:53:51:3b:40:0f:46:38:1e:60:e1:f9:69:83:71: 13:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:07:06:87:41:9A:AD:20:9D:6F:6C:2C:D4:80:C8:EF:C4:BF:32:26 X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:e5:1a:a7:64:0a:31:76:15:12:6b:e4:7b:83:20:0f:c8:2c: 27:b3:8d:7e:68:d2:fc:db:61:c1:dd:f8:c2:5c:94:33:7d:58: 7d:81:90:56:7d:6d:a1:4c:54:15:4f:f8:74:52:12:5f:fd:d3: 8e:27:e7:1f:9c:13:9a:c3:57:12:dd:16:b8:34:f5:5d:8d:a9: 13:20:85:96:7c:c9:62:c0:e6:33:fe:03:90:30:85:fe:aa:0f: ea:80:47:f7:dc:9b:a1:06:28:50:ba:8f:33:ba:f9:88:df:92: 10:04:e6:3f:40:a9:00:d6:24:33:15:07:2c:18:0b:59:e2:5c: ef:00:a4:69:23:61:9d:88:35:d0:d6:63:6e:45:b9:31:2f:63: 99:3f:ba:50:42:e6:c2:15:4e:aa:67:2a:0a:4f:8c:5c:7c:d5: 25:38:bc:a0:7a:c1:b6:22:7f:ec:9b:91:2d:f2:49:be:fa:ad: 38:0d:e8:5c:5c:25:ac:cc:0a:d5:b7:bc:f8:a1:7d:38:00:5b: ff:ba:af:80:cf:94:59:3e:fc:53:9e:27:2e:e2:91:28:a2:b4: f5:41:da:da:ad:f1:91:12:ec:19:25:60:2d:4d:41:cd:4b:49: 56:8d:fb:d5:1e:20:8d:d9:5b:5d:21:f2:d1:fd:f9:00:0a:0d: 00:69:5a:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBBhld+sgywnjfufBGyDuDr9+NrMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNTEwMTgwODU3MThaFw0yNTEwMjExMzA1MThaMDMxMTAvBgNV BAMTKEEwMDcwNjg3NDE5QUFEMjA5RDZGNkMyQ0Q0ODBDOEVGQzRCRjMyMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfK4vtpQfIBTUq5U+jicNAFcBF PKO5Hm6Hj/893BOhRFL3jJ3uvPMW68KVkxA08rRJyeVaEuc8Ht9AO6I0gMaZ+gdf xMhMHzkkZvx3ls/QA83TbHtZJkYFTFLDqHcolZY/p/bt2NZKgPh/dZDZbmGvWrny J836xLCll72UXeriziJYK9LndrvRwNDLTuiHhTQyU0y/Cmr+OTCCVHTXbbrrMjIV dJv910y0k73dib951AnTO7RYnc2kfzy18jr6xNeMvamGawmbgJTFDcJfe0RO18+8 zlbapCNRrnEVq/A2bbWlL8TdIO2EokGqf4BPRUNTUTtAD0Y4HmDh+WmDcRONAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoAcGh0GarSCdb2ws1IDI78S/MiYwHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWRhY2MzNjUtZTE5NC00YWMwLTk1 M2EtNGRmM2E1OTAwYjE0LzAvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcy QkFDNUJGNEFGQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD3lGqdkCjF2FRJr5HuDIA/ILCezjX5o0vzb YcHd+MJclDN9WH2BkFZ9baFMVBVP+HRSEl/9044n5x+cE5rDVxLdFrg09V2NqRMg hZZ8yWLA5jP+A5Awhf6qD+qAR/fcm6EGKFC6jzO6+YjfkhAE5j9AqQDWJDMVBywY C1niXO8ApGkjYZ2INdDWY25FuTEvY5k/ulBC5sIVTqpnKgpPjFx81SU4vKB6wbYi f+ybkS3ySb76rTgN6FxcJazMCtW3vPihfTgAW/+6r4DPlFk+/FOeJy7ikSiitPVB 2tqt8ZES7BklYC1NQc1LSVaN+9UeII3ZW10h8tH9+QAKDQBpWts= -----END CERTIFICATE-----Generated at Mon Oct 20 07:45:19 2025 by rpki-client