$ rpki-client -vvf repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft File: 20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft (raw, json) Hash identifier: pOGIjEJBiJxCgokZBWYTXEeLwej1pCrC//HjyYmbdOI= Subject key identifier: 5B:C1:E4:E5:F3:1A:A8:29:C0:A2:B4:45:9D:5E:64:9B:3C:7E:05:F0 Authority key identifier: 20:A4:A2:CE:A0:09:88:40:AF:6A:1C:5B:F3:D8:4E:41:5D:7F:18:D5 Certificate issuer: /CN=20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5 Certificate serial: 1FB30A2E7F5B97A160060BADFF10B3BD6BE4112D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft Manifest number: 83 Signing time: Sun 29 Jun 2025 08:30:00 +0000 Manifest this update: Sun 29 Jun 2025 08:25:00 +0000 Manifest next update: Wed 02 Jul 2025 16:20:00 +0000 Files and hashes: 1: 20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl (hash: VeP5XiWAfaRdC5FRXTKcsKANxW8Dig8AF8EN2/eznaM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b3:0a:2e:7f:5b:97:a1:60:06:0b:ad:ff:10:b3:bd:6b:e4:11:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5 Validity Not Before: Jun 29 08:25:00 2025 GMT Not After : Jul 2 16:20:00 2025 GMT Subject: CN=5BC1E4E5F31AA829C0A2B4459D5E649B3C7E05F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:58:35:76:c4:27:ff:5e:30:d6:79:23:37: 69:cb:c5:fb:53:72:0f:50:62:5c:d6:18:b8:27:b4: 55:1a:3e:da:b3:cb:55:3f:28:59:4b:13:b3:67:2a: 1a:8a:2f:2a:15:bb:05:c4:ab:db:eb:95:5c:1b:60: 75:1e:5d:05:e0:7f:39:30:3a:89:41:6b:7e:d7:5b: ff:a1:ae:0f:f4:1e:fe:8a:d3:35:b3:34:c0:09:ee: b0:7f:5a:a9:dd:c8:08:bc:1a:14:09:5a:a2:c2:62: 93:2b:f9:af:4a:ba:ee:26:bc:e3:4f:39:5b:ef:cf: 89:59:ed:6c:9e:ed:25:50:a4:de:c1:a3:ab:56:89: f5:a4:51:ec:b0:45:c0:52:a6:fc:a1:6e:36:ba:76: 80:a5:1a:d1:96:e7:6e:f5:4a:67:9a:6c:d6:9a:3b: b1:20:89:7f:0c:03:4c:79:80:8e:e0:e2:e7:40:1a: 70:99:56:81:bf:b5:f4:53:b3:ef:fd:0b:ff:42:4d: 0f:68:3a:dd:aa:40:73:95:37:b9:88:2e:3e:9f:73: 8c:5e:e4:ad:82:9c:40:3c:9f:fb:0f:f9:9b:77:4d: 8e:59:7a:64:ac:80:81:53:2a:32:74:64:ca:05:c7: 7a:21:77:83:03:df:7d:c6:6b:b2:78:bf:85:33:a1: 50:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:C1:E4:E5:F3:1A:A8:29:C0:A2:B4:45:9D:5E:64:9B:3C:7E:05:F0 X509v3 Authority Key Identifier: keyid:20:A4:A2:CE:A0:09:88:40:AF:6A:1C:5B:F3:D8:4E:41:5D:7F:18:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:19:54:df:54:15:3b:e6:3c:5e:e8:22:7e:f8:d4:56:95:61: 65:66:0f:72:a4:cd:35:54:1f:01:b2:28:69:c6:be:8c:a7:6e: 8d:51:21:de:40:b1:5f:68:02:2c:5f:f6:39:c5:7d:11:be:ec: 7e:c0:b9:9b:af:ac:24:78:18:51:15:8a:00:70:aa:a7:f3:e2: c9:1c:d7:a3:e9:4c:42:3e:ef:c9:af:eb:1c:54:ad:f2:cf:ee: 1d:e6:5c:e0:84:dc:b5:e4:e6:ec:31:0b:24:68:30:af:d8:90: 81:b6:32:ef:9f:26:e9:e9:75:47:2a:42:00:3f:41:9b:4c:09: 1b:71:01:00:65:20:34:24:34:0a:35:79:e8:07:82:a6:5f:4e: cb:de:fd:56:0a:f2:45:33:ea:16:43:82:28:a1:7d:97:8d:40: 22:95:ef:73:96:0e:3d:83:f7:22:c5:0a:a5:c4:db:3f:36:7e: 5c:9c:89:82:38:76:37:2a:06:cb:38:ca:de:f1:fe:a1:fa:2a: 81:e7:c6:d1:b8:97:c6:07:0b:98:cf:30:0e:dd:1c:d9:33:59: 16:d6:19:76:a0:88:26:65:ef:1d:51:6c:90:8b:4b:02:be:49: 23:aa:9c:a6:64:64:39:f3:5d:38:76:bc:54:8f:a9:c1:33:69: a1:f5:93:64 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH7MKLn9bl6FgBgut/xCzvWvkES0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRFNDE1 RDdGMThENTAeFw0yNTA2MjkwODI1MDBaFw0yNTA3MDIxNjIwMDBaMDMxMTAvBgNV BAMTKDVCQzFFNEU1RjMxQUE4MjlDMEEyQjQ0NTlENUU2NDlCM0M3RTA1RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9t1g1dsQn/14w1nkjN2nLxftT cg9QYlzWGLgntFUaPtqzy1U/KFlLE7NnKhqKLyoVuwXEq9vrlVwbYHUeXQXgfzkw OolBa37XW/+hrg/0Hv6K0zWzNMAJ7rB/WqndyAi8GhQJWqLCYpMr+a9Kuu4mvONP OVvvz4lZ7Wye7SVQpN7Bo6tWifWkUeywRcBSpvyhbja6doClGtGW5271SmeabNaa O7EgiX8MA0x5gI7g4udAGnCZVoG/tfRTs+/9C/9CTQ9oOt2qQHOVN7mILj6fc4xe 5K2CnEA8n/sP+Zt3TY5ZemSsgIFTKjJ0ZMoFx3ohd4MD333Ga7J4v4UzoVALAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUW8Hk5fMaqCnAorRFnV5kmzx+BfAwHwYDVR0j BBgwFoAUIKSizqAJiECvahxb89hOQV1/GNUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzgxZTZlYy1jODdiLTRmZGItYTJmYS1lY2M0NzBjNDFkNTMvMC8yMEE0QTJDRUEw MDk4ODQwQUY2QTFDNUJGM0Q4NEU0MTVEN0YxOEQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRFNDE1RDdG MThENS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWM4MWU2ZWMtYzg3Yi00ZmRiLWEy ZmEtZWNjNDcwYzQxZDUzLzAvMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRF NDE1RDdGMThENS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFwZVN9UFTvmPF7oIn741FaVYWVmD3KkzTVU HwGyKGnGvoynbo1RId5AsV9oAixf9jnFfRG+7H7AuZuvrCR4GFEVigBwqqfz4skc 16PpTEI+78mv6xxUrfLP7h3mXOCE3LXk5uwxCyRoMK/YkIG2Mu+fJunpdUcqQgA/ QZtMCRtxAQBlIDQkNAo1eegHgqZfTsve/VYK8kUz6hZDgiihfZeNQCKV73OWDj2D 9yLFCqXE2z82flyciYI4djcqBss4yt7x/qH6KoHnxtG4l8YHC5jPMA7dHNkzWRbW GXagiCZl7x1RbJCLSwK+SSOqnKZkZDnzXTh2vFSPqcEzaaH1k2Q= -----END CERTIFICATE-----Generated at Sun Jun 29 21:25:46 2025 by rpki-client