$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft File: 20566897603B029812606C25ABC972BAC5BF4AFB.mft (raw, json) Hash identifier: f5KdhlbNGLVTghtMKheSwPWShafo8BcobWOZPBYM2PE= Subject key identifier: BC:0E:FB:DB:16:E1:C3:BE:7E:8A:9B:99:3E:35:9C:03:21:DA:0B:42 Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 414ACA528805CCBB2DC5DCF167CEFF7B0AA22E88 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft Manifest number: 0218 Signing time: Fri 09 May 2025 12:52:13 +0000 Manifest this update: Fri 09 May 2025 12:47:13 +0000 Manifest next update: Mon 12 May 2025 17:34:13 +0000 Files and hashes: 1: 20566897603B029812606C25ABC972BAC5BF4AFB.crl (hash: AaN8wb1JKNxqKiJJa24a4yfFcicOqnDN7qSrRL98l/Q=) 2: 3230332e3139302e34302e302f32312d3234203d3e203435333137.roa (hash: 5MoEibiXvb7uNHyN+SG4htpl+K7LW+4UjrfmIpwFKTE=) 3: 323430363a316230303a3a2f33322d3438203d3e203435333137.roa (hash: /EXeKzU1Ad6DuHV8qtDgsoCpXIHLKoTVOdUlzIGDL4k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 17:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:4a:ca:52:88:05:cc:bb:2d:c5:dc:f1:67:ce:ff:7b:0a:a2:2e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: May 9 12:47:13 2025 GMT Not After : May 12 17:34:13 2025 GMT Subject: CN=BC0EFBDB16E1C3BE7E8A9B993E359C0321DA0B42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:04:61:70:04:b4:f0:63:f3:4f:25:3c:0e: 31:1a:84:fb:dd:5e:aa:09:6a:3a:fd:bc:42:c6:68: 66:12:79:a5:81:1f:7e:e1:79:a4:96:bf:93:12:e0: b4:fe:dc:af:57:16:ab:73:3d:c2:6d:8c:c1:e5:7c: ec:48:7a:1a:31:74:13:0a:7d:61:76:e3:6f:12:13: 85:08:6a:37:71:86:64:05:75:8f:a3:23:4c:aa:3c: 03:05:f1:55:1e:68:92:f1:63:f6:a8:90:ea:8d:cd: 12:76:bf:3c:72:41:7b:c0:87:01:0c:b3:1c:f6:1b: 73:02:54:14:a0:ad:bc:c2:02:d5:88:b4:d2:63:91: 99:8b:d1:b3:e5:ea:1a:87:85:86:48:86:98:92:4d: d3:95:77:81:cd:6f:41:54:11:aa:7a:02:fd:7d:d8: dc:f0:7a:24:00:36:ca:8e:c2:00:fe:3a:56:bf:24: f3:7f:3a:d8:4f:30:05:76:ca:c0:9c:bf:00:e2:6b: b8:2c:46:dc:53:91:06:53:55:21:83:80:a2:d8:a4: ef:a0:83:5f:5d:b5:db:81:28:cc:af:69:ba:3c:e5: 36:80:0a:be:01:cb:6c:d0:b6:f5:ef:b1:d8:d9:7c: 2a:5d:52:d4:8f:51:1d:cf:f5:79:26:73:9b:f6:da: 42:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0E:FB:DB:16:E1:C3:BE:7E:8A:9B:99:3E:35:9C:03:21:DA:0B:42 X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:63:e0:fd:3b:bd:15:ae:02:1c:cb:0c:cb:52:51:09:27:73: 60:53:27:e6:d1:2b:8f:4a:24:fa:48:ea:d9:8a:5a:27:8a:94: 99:1a:17:a9:36:47:e1:d3:94:88:01:af:5b:66:1b:d8:35:6a: f7:f9:47:17:46:dd:82:d7:56:3d:3d:14:56:b0:5f:52:41:be: 70:ad:6a:b0:7c:b3:20:33:52:98:ed:1e:6b:61:80:94:83:66: a2:7f:26:b0:84:c1:0e:3d:5c:13:9f:5f:92:35:24:d0:ed:25: e6:3d:fd:e6:8b:0e:97:cf:73:53:30:1c:49:e5:e0:05:fc:6f: 93:a5:ab:91:bb:5a:35:0f:a8:9a:ac:8a:2d:48:8a:9a:e2:f1: 82:27:7e:fc:af:08:a6:4d:a0:9b:ab:9d:f6:a5:8f:92:82:62: b6:55:3b:a8:f2:03:03:22:81:8e:3a:96:f9:8a:ab:e9:dd:41: 9c:c2:28:55:53:40:b2:d3:be:10:ef:da:90:92:45:c6:a3:21: 46:f8:df:99:07:7a:44:d2:bd:d8:6f:1b:d1:03:9e:bc:12:98: 29:4c:b6:f4:7c:21:ae:75:1d:62:5d:58:90:16:28:1f:f2:62: 2a:66:0e:c2:b8:93:71:c7:ec:35:e0:a7:5b:15:82:49:6d:df: 0c:d9:e8:ba -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQUrKUogFzLstxdzxZ87/ewqiLogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNTA1MDkxMjQ3MTNaFw0yNTA1MTIxNzM0MTNaMDMxMTAvBgNV BAMTKEJDMEVGQkRCMTZFMUMzQkU3RThBOUI5OTNFMzU5QzAzMjFEQTBCNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtswRhcAS08GPzTyU8DjEahPvd XqoJajr9vELGaGYSeaWBH37heaSWv5MS4LT+3K9XFqtzPcJtjMHlfOxIehoxdBMK fWF2428SE4UIajdxhmQFdY+jI0yqPAMF8VUeaJLxY/aokOqNzRJ2vzxyQXvAhwEM sxz2G3MCVBSgrbzCAtWItNJjkZmL0bPl6hqHhYZIhpiSTdOVd4HNb0FUEap6Av19 2NzweiQANsqOwgD+Ola/JPN/OthPMAV2ysCcvwDia7gsRtxTkQZTVSGDgKLYpO+g g19dtduBKMyvabo85TaACr4By2zQtvXvsdjZfCpdUtSPUR3P9Xkmc5v22kKhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvA772xbhw75+ipuZPjWcAyHaC0IwHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWRhY2MzNjUtZTE5NC00YWMwLTk1 M2EtNGRmM2E1OTAwYjE0LzAvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcy QkFDNUJGNEFGQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEJj4P07vRWuAhzLDMtSUQknc2BTJ+bRK49K JPpI6tmKWieKlJkaF6k2R+HTlIgBr1tmG9g1avf5RxdG3YLXVj09FFawX1JBvnCt arB8syAzUpjtHmthgJSDZqJ/JrCEwQ49XBOfX5I1JNDtJeY9/eaLDpfPc1MwHEnl 4AX8b5Olq5G7WjUPqJqsii1Iipri8YInfvyvCKZNoJurnfalj5KCYrZVO6jyAwMi gY46lvmKq+ndQZzCKFVTQLLTvhDv2pCSRcajIUb435kHekTSvdhvG9EDnrwSmClM tvR8Ia51HWJdWJAWKB/yYipmDsK4k3HH7DXgp1sVgklt3wzZ6Lo= -----END CERTIFICATE-----Generated at Sun May 11 04:54:22 2025 by rpki-client