$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft File: 20566897603B029812606C25ABC972BAC5BF4AFB.mft (raw, json) Hash identifier: wSpJQRdvUJ2SjlNvGv2aKQam36FS6bH8d8M4pEYXlk8= Subject key identifier: C7:3D:A0:2F:47:2C:D2:7D:46:68:2E:34:C5:12:06:32:95:11:AD:CF Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 308A8026585052753A57A6F49CE9D7387780DE57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft Manifest number: 0246 Signing time: Thu 21 Aug 2025 04:22:19 +0000 Manifest this update: Thu 21 Aug 2025 04:17:19 +0000 Manifest next update: Sun 24 Aug 2025 14:25:19 +0000 Files and hashes: 1: 20566897603B029812606C25ABC972BAC5BF4AFB.crl (hash: 0M5Wi9LanatJ01kf0gIN18wjgdzCddgBFwLf4AD5FJM=) 2: 3230332e3139302e34302e302f32312d3234203d3e203435333137.roa (hash: 5MoEibiXvb7uNHyN+SG4htpl+K7LW+4UjrfmIpwFKTE=) 3: 323430363a316230303a3a2f33322d3438203d3e203435333137.roa (hash: TjP7GmHfPb+wwoosrfBI6nsarX9S8cjrwBDpRp71p84=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 14:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:8a:80:26:58:50:52:75:3a:57:a6:f4:9c:e9:d7:38:77:80:de:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: Aug 21 04:17:19 2025 GMT Not After : Aug 24 14:25:19 2025 GMT Subject: CN=C73DA02F472CD27D46682E34C51206329511ADCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:eb:06:28:8d:13:5f:6c:e1:76:9d:f1:fb:49: 82:15:20:18:3e:06:9a:22:e2:b2:b5:ba:20:1f:b4: e5:78:23:47:b0:6c:a3:cb:a5:8b:33:18:8a:21:de: 76:73:e9:7b:03:90:8d:be:57:cd:37:a3:be:16:5a: 49:91:f1:3b:b9:74:a5:ef:ec:ff:c2:56:d0:6f:bf: 90:23:56:17:4c:c3:f6:1b:ad:21:d5:5d:d9:62:97: 0d:19:42:cc:06:8b:2c:4d:25:2d:ad:28:99:12:31: c8:03:f6:57:1a:82:2c:79:af:c2:6f:70:c9:61:89: 6f:09:74:52:14:91:31:d2:5c:4c:c7:f8:98:83:82: 49:a2:91:cb:25:79:a0:63:e7:c8:02:2b:02:6c:83: bf:d1:64:a3:9a:e3:d5:0d:50:da:8b:db:3e:de:ed: e5:e5:28:4a:c3:b4:67:3b:8b:0f:3f:f9:c0:f4:67: 53:fa:e1:9f:c6:41:b9:d8:f4:53:2b:5e:20:e5:c2: ba:f9:ca:46:9a:a1:32:43:a3:d6:43:b1:85:f3:78: ee:00:c2:1d:09:73:ec:43:14:40:c1:c3:11:f9:43: 06:47:4c:b3:de:43:6d:03:8e:eb:c6:d8:6f:6d:e7: 5d:f7:4b:39:3e:98:4e:cf:5f:12:09:44:1b:73:41: 53:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:3D:A0:2F:47:2C:D2:7D:46:68:2E:34:C5:12:06:32:95:11:AD:CF X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:7c:b7:9a:4f:66:be:cc:a0:7f:ce:51:19:6e:b0:0e:c2:40: b3:d0:8d:74:e1:c3:70:ca:91:2b:ac:a4:57:c7:8e:6c:24:b5: 84:18:92:63:7d:75:72:06:da:77:fc:f9:07:12:cf:61:71:f8: af:96:87:aa:a5:3a:78:37:50:02:d1:68:4f:57:2e:f5:c1:66: 97:80:b8:69:a2:9d:ef:51:9a:76:d5:41:be:e6:52:76:be:a0: be:6c:6b:5d:78:c2:18:6a:38:86:56:4b:e1:f9:59:5b:37:cb: c7:e2:d4:bd:82:6e:76:13:55:cc:45:a3:8a:a0:d0:ec:2a:69: b0:21:be:81:16:3d:bb:54:b4:ec:4e:a9:74:0b:48:99:55:8b: 95:5e:9b:5f:be:2a:f5:67:8c:c3:4a:2b:17:e6:df:a1:44:f7: f2:67:2a:2c:9f:e4:21:ea:dd:be:63:80:bf:87:d5:8b:9b:f4: d8:00:ee:7c:b0:da:43:db:f2:65:b1:0e:7a:29:f1:b1:ee:98: ed:39:b9:65:21:0c:a7:ae:67:38:a8:7e:3a:55:dc:f4:b3:1f: 6c:e9:86:85:ba:61:40:75:5c:3a:14:cf:0b:80:36:1a:76:6f: b1:cb:34:d0:12:b4:bb:68:71:c7:2a:76:8d:f7:f1:2b:8d:bf: e0:a3:c1:07 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMIqAJlhQUnU6V6b0nOnXOHeA3lcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNTA4MjEwNDE3MTlaFw0yNTA4MjQxNDI1MTlaMDMxMTAvBgNV BAMTKEM3M0RBMDJGNDcyQ0QyN0Q0NjY4MkUzNEM1MTIwNjMyOTUxMUFEQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj6wYojRNfbOF2nfH7SYIVIBg+ Bpoi4rK1uiAftOV4I0ewbKPLpYszGIoh3nZz6XsDkI2+V803o74WWkmR8Tu5dKXv 7P/CVtBvv5AjVhdMw/YbrSHVXdlilw0ZQswGiyxNJS2tKJkSMcgD9lcagix5r8Jv cMlhiW8JdFIUkTHSXEzH+JiDgkmikcsleaBj58gCKwJsg7/RZKOa49UNUNqL2z7e 7eXlKErDtGc7iw8/+cD0Z1P64Z/GQbnY9FMrXiDlwrr5ykaaoTJDo9ZDsYXzeO4A wh0Jc+xDFEDBwxH5QwZHTLPeQ20DjuvG2G9t5133Szk+mE7PXxIJRBtzQVP3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxz2gL0cs0n1GaC40xRIGMpURrc8wHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWRhY2MzNjUtZTE5NC00YWMwLTk1 M2EtNGRmM2E1OTAwYjE0LzAvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcy QkFDNUJGNEFGQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIV8t5pPZr7MoH/OURlusA7CQLPQjXThw3DK kSuspFfHjmwktYQYkmN9dXIG2nf8+QcSz2Fx+K+Wh6qlOng3UALRaE9XLvXBZpeA uGmine9RmnbVQb7mUna+oL5sa114whhqOIZWS+H5WVs3y8fi1L2CbnYTVcxFo4qg 0OwqabAhvoEWPbtUtOxOqXQLSJlVi5Vem1++KvVnjMNKKxfm36FE9/JnKiyf5CHq 3b5jgL+H1Yub9NgA7nyw2kPb8mWxDnop8bHumO05uWUhDKeuZziofjpV3PSzH2zp hoW6YUB1XDoUzwuANhp2b7HLNNAStLtocccqdo338SuNv+CjwQc= -----END CERTIFICATE-----Generated at Sat Aug 23 14:23:03 2025 by rpki-client