$ rpki-client -vvf repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft File: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft (raw, json) Hash identifier: nH8KY8IpzL+GpzGsUQOTbpIfA/Wos3lm1LqgLwG3Zt8= Subject key identifier: 87:31:4C:F7:4B:C7:7E:BA:D6:93:70:0B:7C:13:A4:94:E5:54:17:30 Authority key identifier: 20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 Certificate issuer: /CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Certificate serial: 22DE35A7C00DAD7D8848F0AF0C8579A2BD7D83F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft Manifest number: 0482 Signing time: Fri 22 Aug 2025 09:40:47 +0000 Manifest this update: Fri 22 Aug 2025 09:35:47 +0000 Manifest next update: Mon 25 Aug 2025 21:02:47 +0000 Files and hashes: 1: 3130332e3136322e302e302f32332d3233203d3e20313431363334.roa (hash: 3OXjddu9GYm+pnGIRRvw8uTtgTnaQOQocX2ZWf81HfA=) 2: 3130332e3136322e312e302f32342d3234203d3e2036393339.roa (hash: fzXYj+/Wlk2+pHJ1gJZrQ6X0Tnu8HMMmPoocnHTOJ8E=) 3: 20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl (hash: PdQMJLYRWPJFrfUQbWcBlh1FjPG7vaIeE7FpalmRLOs=) 4: 3130332e3136322e302e302f32342d3234203d3e20313431363334.roa (hash: UmfhnL8RZYJSndBdwe7iI677EbidAY8O+tflsfoU+/Y=) 5: 3130332e3136322e312e302f32342d3234203d3e20313431363334.roa (hash: WZEcRoBw5pAR5VSb916+kaVDUlS4wq/ib5rS3X/sotw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 21:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:de:35:a7:c0:0d:ad:7d:88:48:f0:af:0c:85:79:a2:bd:7d:83:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B15C95FA3351402D60E968AD1D9ECD289ABFF9 Validity Not Before: Aug 22 09:35:47 2025 GMT Not After : Aug 25 21:02:47 2025 GMT Subject: CN=87314CF74BC77EBAD693700B7C13A494E5541730 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9b:3d:46:ad:a6:b7:56:47:c4:e2:ab:7b:43: 68:17:fa:9f:90:36:67:7a:a6:4f:80:73:62:94:49: e3:2e:a8:81:37:1e:2f:65:fa:0a:a7:2c:4e:c3:eb: 21:0c:bf:c0:8b:44:1e:50:fb:16:84:a4:83:17:52: 7b:4c:ff:36:72:db:38:22:2c:5b:75:28:44:00:83: 3e:0f:49:88:06:f1:79:e6:f9:7b:fd:d0:5d:4e:6c: 85:80:fe:60:8b:4b:db:f2:c2:c3:3a:21:b9:4e:35: f1:e1:71:d3:c9:d3:e5:d8:bf:18:47:8c:9e:4f:0a: 68:94:a5:d8:ab:0d:40:20:35:ed:db:2b:ee:3c:95: 1f:54:d4:d0:5c:fa:e7:b9:69:d9:d4:e8:1c:b7:87: 94:87:50:ca:b9:a3:70:71:9d:6d:a1:96:9b:3f:22: cb:91:9d:63:9b:14:92:4d:e7:75:8c:aa:27:b4:55: 20:27:03:98:02:fa:94:08:95:a2:bc:22:c1:14:95: 51:7a:1f:e1:73:16:2e:22:88:ed:5f:a4:15:c1:36: 6a:c0:e6:dd:70:eb:5e:a6:cf:81:e5:b5:99:2e:3f: 2a:d6:c9:b5:46:2a:7e:08:01:3a:d2:cd:93:ac:e4: 26:eb:de:56:28:52:e2:3d:45:19:28:5b:85:e5:fe: ab:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:31:4C:F7:4B:C7:7E:BA:D6:93:70:0B:7C:13:A4:94:E5:54:17:30 X509v3 Authority Key Identifier: keyid:20:B1:5C:95:FA:33:51:40:2D:60:E9:68:AD:1D:9E:CD:28:9A:BF:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d14193c4-4abd-4e2c-a1d0-1b5ce32e420b/0/20B15C95FA3351402D60E968AD1D9ECD289ABFF9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:1e:fe:51:6a:22:a8:70:12:ee:4a:13:2e:69:e7:24:a3:16: 09:5d:2d:7d:f9:69:07:bc:ce:f1:52:5b:cd:91:b8:45:f3:a4: 22:0b:ea:ec:9c:54:40:86:5f:1c:b7:53:2f:c0:06:cd:0f:a4: eb:94:57:8e:94:6f:cd:6d:61:ce:e6:dd:b3:9f:f5:22:c5:eb: a4:ae:41:ac:11:26:b9:40:61:72:c8:37:b6:73:46:85:6c:2d: 6d:fb:ad:b3:cc:4f:e6:3f:af:11:13:7b:88:5b:49:81:5b:cb: f8:f0:0a:2f:de:26:c2:72:91:36:d9:4d:09:73:f3:41:67:4b: 98:3b:16:ae:24:8e:d7:7b:f8:49:0b:36:80:b6:c5:b7:b0:0e: ce:32:0e:df:05:be:15:53:b8:91:64:14:91:f3:33:55:ec:41: cc:cb:59:29:87:17:4a:98:c8:54:28:65:19:d7:70:d3:c4:f1: 71:a4:50:3d:81:5c:88:81:60:26:9e:24:73:22:13:75:e8:e5: 1f:70:31:80:3b:76:90:1c:09:3c:56:d0:62:4a:d6:9e:72:e3: 82:9e:25:94:36:8c:0e:1f:a1:48:48:15:a4:e1:7d:f1:bf:a5: 83:68:5a:4d:1d:fb:a2:7d:49:6a:38:7b:e2:cd:80:aa:b7:bb: e1:4c:52:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIt41p8ANrX2ISPCvDIV5or19g/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0Qy ODlBQkZGOTAeFw0yNTA4MjIwOTM1NDdaFw0yNTA4MjUyMTAyNDdaMDMxMTAvBgNV BAMTKDg3MzE0Q0Y3NEJDNzdFQkFENjkzNzAwQjdDMTNBNDk0RTU1NDE3MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVmz1Graa3VkfE4qt7Q2gX+p+Q Nmd6pk+Ac2KUSeMuqIE3Hi9l+gqnLE7D6yEMv8CLRB5Q+xaEpIMXUntM/zZy2zgi LFt1KEQAgz4PSYgG8Xnm+Xv90F1ObIWA/mCLS9vywsM6IblONfHhcdPJ0+XYvxhH jJ5PCmiUpdirDUAgNe3bK+48lR9U1NBc+ue5adnU6By3h5SHUMq5o3BxnW2hlps/ IsuRnWObFJJN53WMqie0VSAnA5gC+pQIlaK8IsEUlVF6H+FzFi4iiO1fpBXBNmrA 5t1w616mz4HltZkuPyrWybVGKn4IATrSzZOs5Cbr3lYoUuI9RRkoW4Xl/qtjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhzFM90vHfrrWk3ALfBOklOVUFzAwHwYDVR0j BBgwFoAUILFclfozUUAtYOlorR2ezSiav/kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MTQxOTNjNC00YWJkLTRlMmMtYTFkMC0xYjVjZTMyZTQyMGIvMC8yMEIxNUM5NUZB MzM1MTQwMkQ2MEU5NjhBRDFEOUVDRDI4OUFCRkY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlFQ0QyODlB QkZGOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDE0MTkzYzQtNGFiZC00ZTJjLWEx ZDAtMWI1Y2UzMmU0MjBiLzAvMjBCMTVDOTVGQTMzNTE0MDJENjBFOTY4QUQxRDlF Q0QyODlBQkZGOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEoe/lFqIqhwEu5KEy5p5ySjFgldLX35aQe8 zvFSW82RuEXzpCIL6uycVECGXxy3Uy/ABs0PpOuUV46Ub81tYc7m3bOf9SLF66Su QawRJrlAYXLIN7ZzRoVsLW37rbPMT+Y/rxETe4hbSYFby/jwCi/eJsJykTbZTQlz 80FnS5g7Fq4kjtd7+EkLNoC2xbewDs4yDt8FvhVTuJFkFJHzM1XsQczLWSmHF0qY yFQoZRnXcNPE8XGkUD2BXIiBYCaeJHMiE3Xo5R9wMYA7dpAcCTxW0GJK1p5y44Ke JZQ2jA4foUhIFaThffG/pYNoWk0d+6J9SWo4e+LNgKq3u+FMUqw= -----END CERTIFICATE-----Generated at Sat Aug 23 22:49:40 2025 by rpki-client