$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft File: 20566897603B029812606C25ABC972BAC5BF4AFB.mft (raw, json) Hash identifier: j9aXUfedt2cMsbernrsvsSLXqXoH1SFsB7RrP5qlktk= Subject key identifier: 29:3A:B2:6A:88:E2:CA:62:50:62:44:50:5F:6A:43:D9:03:46:B7:5E Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 5E56B25199244BDF24190A32BA37861ACB34438B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft Manifest number: 022F Signing time: Mon 30 Jun 2025 08:12:14 +0000 Manifest this update: Mon 30 Jun 2025 08:07:14 +0000 Manifest next update: Thu 03 Jul 2025 14:11:14 +0000 Files and hashes: 1: 323430363a316230303a3a2f33322d3438203d3e203435333137.roa (hash: TjP7GmHfPb+wwoosrfBI6nsarX9S8cjrwBDpRp71p84=) 2: 20566897603B029812606C25ABC972BAC5BF4AFB.crl (hash: dq+QgKKMAyCv3EWJ91T1umlDbvtfY0GmN3MiJyxxGWs=) 3: 3230332e3139302e34302e302f32312d3234203d3e203435333137.roa (hash: 5MoEibiXvb7uNHyN+SG4htpl+K7LW+4UjrfmIpwFKTE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 14:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:56:b2:51:99:24:4b:df:24:19:0a:32:ba:37:86:1a:cb:34:43:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: Jun 30 08:07:14 2025 GMT Not After : Jul 3 14:11:14 2025 GMT Subject: CN=293AB26A88E2CA62506244505F6A43D90346B75E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f6:06:aa:de:b2:ce:b8:91:29:16:9b:3e:ca: e0:70:bf:05:30:5d:cb:34:4a:34:42:a9:2f:b9:0a: 2b:6f:fb:fd:01:0b:31:ee:fa:b3:9d:7a:00:8c:d9: 2b:01:f7:57:f1:ca:ce:97:47:9f:f5:38:0c:e0:ea: ab:4d:c5:fb:0a:c1:e3:47:42:7a:40:a8:5b:e9:39: 4a:2c:60:b3:16:9c:7f:ed:7e:9a:7a:ce:93:ae:1b: 65:86:43:5a:19:bb:7c:28:6e:d6:9b:2f:8c:aa:bd: b2:81:fe:77:38:68:eb:2c:45:16:48:9c:92:8d:ba: bc:13:70:d8:d2:1e:a7:97:ee:01:ef:bd:1b:de:45: bc:8a:40:6b:80:6a:91:f6:e4:f6:62:c6:4c:6c:3b: 30:54:e3:d6:03:2a:30:3a:00:8d:b1:6c:b4:53:3e: ee:4f:a3:2b:a6:b1:95:b6:dc:b5:a5:d4:b9:29:37: 63:88:d8:e5:9c:c3:a4:10:ba:b7:44:1e:48:ba:18: 15:d5:38:7e:54:f8:0f:82:c5:69:eb:cb:b2:c9:02: 0b:f3:39:20:41:66:60:30:04:5f:64:9f:15:44:96: d7:a8:c6:67:9c:48:5b:09:c7:f9:da:45:56:98:d7: dd:ca:ac:31:a2:37:4a:97:2f:e1:96:49:5e:cd:4e: 5d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3A:B2:6A:88:E2:CA:62:50:62:44:50:5F:6A:43:D9:03:46:B7:5E X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:c6:67:97:ff:f4:3e:a2:fb:6e:9a:ba:04:29:52:f2:5c:0d: 6a:39:33:7f:9f:56:c1:f6:a7:bb:eb:1a:dd:46:15:ae:18:9c: 1f:aa:ed:a4:da:21:17:87:1a:1e:ca:a8:42:7c:c9:3f:4c:4c: 10:15:7a:33:a5:6f:c6:88:dd:0f:97:4f:a6:a1:98:41:16:e5: a2:b6:db:b2:d2:fd:f6:11:b1:9f:13:15:90:af:9a:a4:1d:0e: 7d:0c:22:9c:66:20:7d:03:f6:19:e5:b2:a8:48:c4:8f:55:17: 2b:06:4a:a3:16:d8:22:46:3b:a1:02:72:f5:f6:b5:37:87:78: 0b:ad:04:e5:3e:25:72:fe:f0:e9:01:68:ff:05:49:c7:3e:41: 4d:25:4b:0a:4c:df:27:b0:ba:0b:36:ca:66:f0:a9:1f:4b:8e: 51:78:4d:56:a6:94:2c:0e:79:5d:c2:7b:a1:56:9e:cb:1e:46: 3b:3c:d2:47:63:22:c8:e6:c5:3a:2f:2c:81:a2:01:cc:76:c3: d2:d5:86:01:30:a7:d0:a5:30:7f:39:08:01:c0:bc:13:d6:83: 44:22:2f:f1:3b:cb:d1:17:1f:0d:74:92:0c:45:a3:3d:b8:e5: 22:1d:d8:4c:f5:7e:cd:b1:9f:ae:26:38:4b:38:12:e8:8e:b1: 69:0c:be:68 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXlayUZkkS98kGQoyujeGGss0Q4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNTA2MzAwODA3MTRaFw0yNTA3MDMxNDExMTRaMDMxMTAvBgNV BAMTKDI5M0FCMjZBODhFMkNBNjI1MDYyNDQ1MDVGNkE0M0Q5MDM0NkI3NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO9gaq3rLOuJEpFps+yuBwvwUw Xcs0SjRCqS+5Citv+/0BCzHu+rOdegCM2SsB91fxys6XR5/1OAzg6qtNxfsKweNH QnpAqFvpOUosYLMWnH/tfpp6zpOuG2WGQ1oZu3wobtabL4yqvbKB/nc4aOssRRZI nJKNurwTcNjSHqeX7gHvvRveRbyKQGuAapH25PZixkxsOzBU49YDKjA6AI2xbLRT Pu5PoyumsZW23LWl1LkpN2OI2OWcw6QQurdEHki6GBXVOH5U+A+CxWnry7LJAgvz OSBBZmAwBF9knxVElteoxmecSFsJx/naRVaY193KrDGiN0qXL+GWSV7NTl1JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKTqyaojiymJQYkRQX2pD2QNGt14wHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWRhY2MzNjUtZTE5NC00YWMwLTk1 M2EtNGRmM2E1OTAwYjE0LzAvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcy QkFDNUJGNEFGQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD3GZ5f/9D6i+26augQpUvJcDWo5M3+fVsH2 p7vrGt1GFa4YnB+q7aTaIReHGh7KqEJ8yT9MTBAVejOlb8aI3Q+XT6ahmEEW5aK2 27LS/fYRsZ8TFZCvmqQdDn0MIpxmIH0D9hnlsqhIxI9VFysGSqMW2CJGO6ECcvX2 tTeHeAutBOU+JXL+8OkBaP8FScc+QU0lSwpM3yewugs2ymbwqR9LjlF4TVamlCwO eV3Ce6FWnsseRjs80kdjIsjmxTovLIGiAcx2w9LVhgEwp9ClMH85CAHAvBPWg0Qi L/E7y9EXHw10kgxFoz245SId2Ez1fs2xn64mOEs4EuiOsWkMvmg= -----END CERTIFICATE-----Generated at Tue Jul 1 17:15:46 2025 by rpki-client