$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft File: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft (raw, json) Hash identifier: GTP5N+SgrLaopI6S47Ml9NLlfmvSrW1mBx21jGjfp7w= Subject key identifier: 14:76:22:DD:82:88:E4:2C:54:42:73:04:36:26:08:A7:01:B8:5E:EF Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 6E1366C7364CB392FC64577FAFFBE710E9B1F0AB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft Manifest number: 0469 Signing time: Fri 27 Jun 2025 06:30:46 +0000 Manifest this update: Fri 27 Jun 2025 06:25:46 +0000 Manifest next update: Mon 30 Jun 2025 17:17:46 +0000 Files and hashes: 1: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (hash: WZEcRoBw5pAR5VSb916+kaVDUlS4wq/ib5rS3X/sotw=) 2: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (hash: 3OXjddu9GYm+pnGIRRvw8uTtgTnaQOQocX2ZWf81HfA=) 3: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (hash: UmfhnL8RZYJSndBdwe7iI677EbidAY8O+tflsfoU+/Y=) 4: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl (hash: DHZu9a3GeI4p1Wpcz+OrLPEP2X9wzikk9bA/UEsIbHY=) 5: 3130332e3136322e312e302f32342d3234203d3e2036393339.roa (hash: fzXYj+/Wlk2+pHJ1gJZrQ6X0Tnu8HMMmPoocnHTOJ8E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:13:66:c7:36:4c:b3:92:fc:64:57:7f:af:fb:e7:10:e9:b1:f0:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Jun 27 06:25:46 2025 GMT Not After : Jun 30 17:17:46 2025 GMT Subject: CN=147622DD8288E42C54427304362608A701B85EEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:fb:8c:1e:31:7d:e9:13:9d:90:61:30:81:9c: 5e:cd:1a:60:6b:d9:ee:42:ca:fe:31:37:bd:9a:87: 90:80:fd:f6:aa:d5:15:b8:c9:8a:84:49:e0:a8:81: 4d:14:a6:6d:45:2b:af:6e:93:75:c7:01:23:c4:19: f7:5f:e2:16:1e:76:e3:1e:36:4a:7d:8c:ad:f8:ba: 5f:45:eb:b3:e8:43:79:e6:7a:dc:7f:dd:21:56:6c: 78:0f:d0:8b:43:30:ef:2f:0f:e5:18:5c:77:c1:74: cd:2a:e4:77:b1:69:43:0f:6a:63:1a:c6:23:42:88: ab:90:2f:7e:db:12:69:fc:a7:dc:7c:14:c1:a9:86: 2f:61:4d:c7:c6:e2:e7:f2:f5:1d:39:b5:ad:7a:93: 7a:42:ed:10:9d:ec:ab:5a:f6:f5:87:46:c3:63:30: 35:a9:66:9c:4e:60:6b:04:a0:b5:f4:5a:6c:0b:f1: 7a:1e:65:ab:fd:17:73:0a:f6:db:01:71:4a:f9:82: e5:9f:f0:21:13:46:74:bc:d1:2a:8b:e0:98:29:7e: 74:3a:94:15:d0:fe:f0:20:32:83:dc:0d:a5:76:06: 34:c2:f0:d3:bc:20:49:ca:5d:5d:81:71:7a:12:f1: c4:2f:38:e3:e5:80:98:94:63:4d:18:5f:1e:5f:e1: 5c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:76:22:DD:82:88:E4:2C:54:42:73:04:36:26:08:A7:01:B8:5E:EF X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ba:ea:52:29:13:3f:fe:19:15:86:45:b5:bc:9f:22:ca:d6:bc: 2f:48:27:07:61:98:ea:32:1a:e4:73:53:d4:9f:69:9e:f8:08: 07:1b:9e:b0:c2:dc:73:a8:ce:1c:94:81:06:99:0b:97:56:9d: c3:9e:52:69:29:b8:5b:7e:fe:92:57:dd:41:d9:ca:ca:a5:a5: 4d:0e:08:04:15:04:2c:1f:ab:9f:c5:ca:0f:60:f4:c0:d3:81: 04:a3:a7:c2:d7:92:e1:52:97:99:ea:9b:04:19:7a:33:9d:73: 35:39:f3:84:52:a1:b3:32:47:7d:08:ae:3e:e6:d4:22:73:b4: 69:f0:b1:fe:ef:86:03:17:ae:b0:05:4d:58:56:46:d2:a8:db: f8:52:23:6b:29:96:4d:bd:f4:db:3f:fd:57:f7:72:e6:65:b8: 3d:76:0d:4d:55:9b:6a:27:82:27:53:64:54:d1:d8:50:17:2c: 56:0f:f1:67:7b:be:48:ae:a1:50:6d:31:92:8f:ce:1e:42:14: 19:1e:b6:0e:df:07:f3:17:83:f0:ad:c3:5a:16:9f:b5:d0:e6: 43:43:ec:23:4e:1c:cb:62:4b:e7:b9:0f:ba:be:8a:c0:8d:2f: 30:16:23:68:a8:83:9b:9a:51:4c:c5:75:01:7d:70:b2:72:67: 0b:3f:78:59 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbhNmxzZMs5L8ZFd/r/vnEOmx8KswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNTA2MjcwNjI1NDZaFw0yNTA2MzAxNzE3NDZaMDMxMTAvBgNV BAMTKDE0NzYyMkREODI4OEU0MkM1NDQyNzMwNDM2MjYwOEE3MDFCODVFRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDt+4weMX3pE52QYTCBnF7NGmBr 2e5Cyv4xN72ah5CA/faq1RW4yYqESeCogU0Upm1FK69uk3XHASPEGfdf4hYeduMe Nkp9jK34ul9F67PoQ3nmetx/3SFWbHgP0ItDMO8vD+UYXHfBdM0q5HexaUMPamMa xiNCiKuQL37bEmn8p9x8FMGphi9hTcfG4ufy9R05ta16k3pC7RCd7Kta9vWHRsNj MDWpZpxOYGsEoLX0WmwL8XoeZav9F3MK9tsBcUr5guWf8CETRnS80SqL4JgpfnQ6 lBXQ/vAgMoPcDaV2BjTC8NO8IEnKXV2BcXoS8cQvOOPlgJiUY00YXx5f4VxnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFHYi3YKI5CxUQnMENiYIpwG4Xu8wHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE0MTkzYzQtNGFiZC00ZTJjLWEx ZDAtMWI1Y2UzMmU0MjBiLzAvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlF Q0QyODlBQkZGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALrqUikTP/4ZFYZFtbyfIsrWvC9IJwdhmOoy GuRzU9SfaZ74CAcbnrDC3HOozhyUgQaZC5dWncOeUmkpuFt+/pJX3UHZysqlpU0O CAQVBCwfq5/Fyg9g9MDTgQSjp8LXkuFSl5nqmwQZejOdczU584RSobMyR30Irj7m 1CJztGnwsf7vhgMXrrAFTVhWRtKo2/hSI2splk299Ns//Vf3cuZluD12DU1Vm2on gidTZFTR2FAXLFYP8Wd7vkiuoVBtMZKPzh5CFBketg7fB/MXg/Ctw1oWn7XQ5kND 7CNOHMtiS+e5D7q+isCNLzAWI2iog5uaUUzFdQF9cLJyZws/eFk= -----END CERTIFICATE-----Generated at Sun Jun 29 18:23:29 2025 by rpki-client