$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft File: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft (raw, json) Hash identifier: U+Cnkrbv8H88pzYfQg+bCen9zHiBM6pO1GaILICoXbI= Subject key identifier: 38:46:97:31:E6:3D:F8:96:55:A9:5E:02:1D:10:11:59:E2:0A:03:D1 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 2F95F7B05129C00F51858D8BB9B5853F97BE032F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft Manifest number: 0451 Signing time: Sun 04 May 2025 06:10:47 +0000 Manifest this update: Sun 04 May 2025 06:05:47 +0000 Manifest next update: Wed 07 May 2025 17:32:47 +0000 Files and hashes: 1: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl (hash: Kb0BtMHOCSSTJFUtci2OUMEHNr1PLdTdPRA4zdnfV5o=) 2: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (hash: 3OXjddu9GYm+pnGIRRvw8uTtgTnaQOQocX2ZWf81HfA=) 3: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (hash: WZEcRoBw5pAR5VSb916+kaVDUlS4wq/ib5rS3X/sotw=) 4: 3130332e3136322e312e302f32342d3234203d3e2036393339.roa (hash: fzXYj+/Wlk2+pHJ1gJZrQ6X0Tnu8HMMmPoocnHTOJ8E=) 5: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (hash: UmfhnL8RZYJSndBdwe7iI677EbidAY8O+tflsfoU+/Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 17:32:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:95:f7:b0:51:29:c0:0f:51:85:8d:8b:b9:b5:85:3f:97:be:03:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: May 4 06:05:47 2025 GMT Not After : May 7 17:32:47 2025 GMT Subject: CN=38469731E63DF89655A95E021D101159E20A03D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:83:00:b5:30:f3:bf:b8:17:fe:01:eb:0e:55: f6:46:b6:c0:63:76:1d:4f:bc:74:dc:3f:ad:be:ac: 69:c5:d5:05:b0:19:94:02:f5:92:4a:17:8e:f1:82: d4:5c:c0:4f:33:f2:c3:ba:89:b7:ea:f5:50:a8:37: 03:88:01:85:e3:ec:f1:e1:50:fc:a3:95:20:cf:06: a0:22:96:50:4e:85:4a:4c:c1:ba:87:04:01:52:8b: b6:ae:0f:07:44:f5:d1:0e:4f:2e:53:5f:90:29:bc: 8b:a0:00:9a:6a:d7:9e:0c:4d:9c:a0:fc:46:62:78: f4:80:c9:03:64:09:21:d3:06:85:ae:9e:96:63:9b: 68:61:33:47:d3:74:3e:5f:60:53:09:f7:c7:52:0c: ae:ac:85:58:55:51:73:f3:43:cb:16:e0:83:f2:a4: 7e:d5:32:50:43:3e:31:5f:46:1c:01:d2:e0:20:cd: f0:07:3c:e0:9a:69:a0:97:c5:b8:2b:15:05:08:73: 3a:91:50:83:4d:b4:c9:37:66:a7:c0:16:23:6f:46: f1:f6:59:31:19:01:06:98:30:2e:6b:ba:bf:3f:dd: 01:a2:61:e8:26:38:56:6a:c9:85:f1:51:14:79:0c: f9:fa:74:e0:80:7f:f4:a7:cb:6b:b1:e5:bf:61:e6: 2b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:46:97:31:E6:3D:F8:96:55:A9:5E:02:1D:10:11:59:E2:0A:03:D1 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:90:83:07:43:54:68:f5:4d:34:d8:02:f4:20:9a:c5:53:7c: a3:7c:47:19:64:19:1b:11:45:55:c2:61:38:9d:7d:c1:f3:a9: 09:0c:d1:ac:b5:a7:86:9e:c4:53:b1:14:dd:3f:6d:a0:8b:ee: 11:48:e3:18:8d:aa:68:18:14:a0:63:26:a1:ff:68:10:80:62: 16:39:13:1b:31:c3:1e:e0:6d:b9:7a:f3:bb:f0:49:05:79:9d: 8d:a0:f1:6f:f5:af:36:ad:49:e0:26:4a:4a:c3:4c:c2:9d:7c: b7:81:fd:5e:b7:8f:ff:06:14:8b:ee:93:13:6c:ec:f8:fe:14: fc:6d:f5:2b:a2:9a:da:10:f8:e3:61:16:82:65:6d:3f:cc:6c: 96:f6:ff:91:4d:c5:c7:67:1a:dc:c1:f7:2c:3c:ad:ad:78:85: af:ce:4f:a2:0d:72:c2:fb:57:b6:2c:d6:e2:62:af:45:a0:b6: 0e:46:a1:8f:ed:5e:ac:7a:2e:86:cb:86:f7:17:17:2f:f4:88: 35:5e:21:c2:17:74:b1:6e:97:b4:73:b5:e6:1e:d5:3a:e9:27: b8:a8:80:10:06:0e:8b:1b:42:2a:91:64:29:9f:6d:6e:e7:49: 22:10:03:16:43:d5:02:01:f3:36:1f:b9:a2:d2:06:d7:e5:b7: 6f:bd:3d:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL5X3sFEpwA9RhY2LubWFP5e+Ay8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNTA1MDQwNjA1NDdaFw0yNTA1MDcxNzMyNDdaMDMxMTAvBgNV BAMTKDM4NDY5NzMxRTYzREY4OTY1NUE5NUUwMjFEMTAxMTU5RTIwQTAzRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhgwC1MPO/uBf+AesOVfZGtsBj dh1PvHTcP62+rGnF1QWwGZQC9ZJKF47xgtRcwE8z8sO6ibfq9VCoNwOIAYXj7PHh UPyjlSDPBqAillBOhUpMwbqHBAFSi7auDwdE9dEOTy5TX5ApvIugAJpq154MTZyg /EZiePSAyQNkCSHTBoWunpZjm2hhM0fTdD5fYFMJ98dSDK6shVhVUXPzQ8sW4IPy pH7VMlBDPjFfRhwB0uAgzfAHPOCaaaCXxbgrFQUIczqRUINNtMk3ZqfAFiNvRvH2 WTEZAQaYMC5rur8/3QGiYegmOFZqyYXxURR5DPn6dOCAf/Sny2ux5b9h5ivfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOEaXMeY9+JZVqV4CHRARWeIKA9EwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE0MTkzYzQtNGFiZC00ZTJjLWEx ZDAtMWI1Y2UzMmU0MjBiLzAvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlF Q0QyODlBQkZGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFeQgwdDVGj1TTTYAvQgmsVTfKN8RxlkGRsR RVXCYTidfcHzqQkM0ay1p4aexFOxFN0/baCL7hFI4xiNqmgYFKBjJqH/aBCAYhY5 Exsxwx7gbbl687vwSQV5nY2g8W/1rzatSeAmSkrDTMKdfLeB/V63j/8GFIvukxNs 7Pj+FPxt9SuimtoQ+ONhFoJlbT/MbJb2/5FNxcdnGtzB9yw8ra14ha/OT6INcsL7 V7Ys1uJir0Wgtg5GoY/tXqx6LobLhvcXFy/0iDVeIcIXdLFul7RzteYe1TrpJ7io gBAGDosbQiqRZCmfbW7nSSIQAxZD1QIB8zYfuaLSBtflt2+9PeY= -----END CERTIFICATE-----Generated at Tue May 6 17:19:10 2025 by rpki-client