$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft File: 20B00D67B048DAE581FE60A498995A27878149A7.mft (raw, json) Hash identifier: L83uXPNEXdvrb3I128YDLQKI3Yq0JzfwV4BTBgdVlw4= Subject key identifier: 06:2E:3B:9E:A5:E4:FB:F4:4D:18:61:DD:66:85:E9:4B:75:F7:BD:43 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 1041DCD7721A20C221614E1F00CEE299D80AE42F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft Manifest number: 01C4 Signing time: Thu 18 Sep 2025 13:51:02 +0000 Manifest this update: Thu 18 Sep 2025 13:46:02 +0000 Manifest next update: Mon 22 Sep 2025 01:24:02 +0000 Files and hashes: 1: 323430313a383234303a3a2f33322d3438203d3e203338373834.roa (hash: FKopsjmhu2ZpwkHZKTS2a2cSATg1lZ109SObjsmNTcI=) 2: 323430313a383234303a3a2f33322d3438203d3e203233393438.roa (hash: LQahwQ72kro/LJH779tBFmRDGBJ/aQ/cw7AFn3KwUxg=) 3: 3230322e37352e32382e302f32332d3234203d3e20313338383731.roa (hash: vRq65LfzwGz4j+oEbqBPQ82wtT1KDumkC2L75cgO4WQ=) 4: 3230322e37352e31362e302f32302d3234203d3e203233393438.roa (hash: SDDT76sB5fD/qwKD2c7jZ56T2/zb4XIJfGohnMvEips=) 5: 3230322e37352e31362e302f32302d3234203d3e203338373834.roa (hash: C3Y5TVjlMMx3bj7loYa7CuUDY/TXp19dghaSZKbxk0g=) 6: 20B00D67B048DAE581FE60A498995A27878149A7.crl (hash: EUnM3znlZl4Yz1+cLSYBLButsTBjS2aTfIxWHhYMbmg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 01:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:41:dc:d7:72:1a:20:c2:21:61:4e:1f:00:ce:e2:99:d8:0a:e4:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Sep 18 13:46:02 2025 GMT Not After : Sep 22 01:24:02 2025 GMT Subject: CN=062E3B9EA5E4FBF44D1861DD6685E94B75F7BD43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:66:af:e2:2e:29:a0:49:3f:58:d0:c5:46:c6: 63:da:d3:87:a9:db:7d:b2:51:4b:9c:6c:6b:fd:d5: 96:5c:70:24:21:c0:04:5d:6a:eb:8c:b1:7d:57:f3: 38:d0:e7:df:9b:db:af:1d:1e:ce:c4:e6:ca:2c:48: a5:c6:30:31:b4:b5:95:fe:9f:c3:cb:66:84:76:d5: a9:7e:53:2d:9b:a9:60:07:ed:92:77:98:de:f6:8a: 9b:be:5a:17:ce:63:e4:5e:70:ea:8d:f9:a2:88:89: f9:f1:85:e8:f9:da:af:71:1c:16:39:fa:e0:b4:5a: 7f:30:29:88:1e:b3:73:f3:c6:07:fb:6a:d0:db:3a: 5e:d6:20:56:2c:6b:8e:29:3d:df:cb:7f:cf:4f:bf: b6:d8:4b:0e:e4:bf:d2:4a:ef:3b:d8:e0:6a:f7:ff: 49:a3:54:48:40:cf:d7:bc:0d:e2:ab:45:76:49:d2: 3d:19:6e:55:b8:1c:f0:0c:f2:3e:e5:97:aa:d0:2f: 05:92:56:03:f1:9c:88:2e:18:6b:3b:17:f3:5e:ac: f1:41:74:c4:45:d7:65:9c:d3:09:1d:67:7a:1b:75: a8:ca:cb:94:38:64:75:c9:1f:c2:e7:0f:0a:72:a6: ba:84:f5:1b:97:ba:7d:6f:7c:44:62:ae:4c:54:1f: e7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:2E:3B:9E:A5:E4:FB:F4:4D:18:61:DD:66:85:E9:4B:75:F7:BD:43 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:79:11:d1:66:98:f2:0e:e9:6e:9a:3d:9d:57:15:0e:4a:61: d7:64:22:24:0d:96:2f:8a:bd:51:58:9d:99:aa:dc:f1:ad:fb: 43:3d:42:60:20:da:8e:7e:d2:fb:c0:10:90:c0:7e:19:4f:90: e0:14:6b:06:46:fb:93:13:5e:25:5d:cf:3f:c3:8f:0c:19:73: de:8c:34:3f:21:97:ff:21:13:60:55:9a:4e:3b:38:72:0c:4b: fe:52:cd:60:1f:2a:98:86:c8:db:7a:15:1c:b0:fa:35:3a:58: 06:93:72:a1:45:57:b9:48:b8:fc:a6:50:89:a3:e2:e6:7a:33: 1c:a7:5c:95:6e:a9:ac:0e:d8:30:e7:0d:9b:3c:f9:69:ed:2c: 1a:6c:52:39:7d:ed:f3:ba:35:bf:e9:ae:dd:36:16:b0:a8:13: 93:f3:29:a5:9d:ab:78:ec:43:20:d9:0d:ae:00:2b:76:9b:a0: 2b:c0:5a:1f:11:1f:a2:5c:ed:b0:c8:be:6a:c9:77:94:fd:7b: 4c:4f:84:7b:48:ec:82:85:f4:ae:3c:35:dd:b6:a1:13:da:be: 04:32:aa:67:6d:37:60:db:ab:07:4a:b8:cd:a6:57:1e:88:a1: d8:99:ae:e2:d8:32:3e:ae:c1:c4:1a:27:04:b8:2a:18:57:f4: e5:eb:55:d4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEEHc13IaIMIhYU4fAM7imdgK5C8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNTA5MTgxMzQ2MDJaFw0yNTA5MjIwMTI0MDJaMDMxMTAvBgNV BAMTKDA2MkUzQjlFQTVFNEZCRjQ0RDE4NjFERDY2ODVFOTRCNzVGN0JENDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Zq/iLimgST9Y0MVGxmPa04ep 232yUUucbGv91ZZccCQhwARdauuMsX1X8zjQ59+b268dHs7E5sosSKXGMDG0tZX+ n8PLZoR21al+Uy2bqWAH7ZJ3mN72ipu+WhfOY+RecOqN+aKIifnxhej52q9xHBY5 +uC0Wn8wKYges3Pzxgf7atDbOl7WIFYsa44pPd/Lf89Pv7bYSw7kv9JK7zvY4Gr3 /0mjVEhAz9e8DeKrRXZJ0j0ZblW4HPAM8j7ll6rQLwWSVgPxnIguGGs7F/NerPFB dMRF12Wc0wkdZ3obdajKy5Q4ZHXJH8LnDwpyprqE9RuXun1vfERirkxUH+ffAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUBi47nqXk+/RNGGHdZoXpS3X3vUMwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzQ1NDcxMDQtOTM5ZS00MGUzLThm YzgtNDI1MjI2NDIwNDRiLzAvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVB Mjc4NzgxNDlBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKl5EdFmmPIO6W6aPZ1XFQ5KYddkIiQNli+K vVFYnZmq3PGt+0M9QmAg2o5+0vvAEJDAfhlPkOAUawZG+5MTXiVdzz/DjwwZc96M ND8hl/8hE2BVmk47OHIMS/5SzWAfKpiGyNt6FRyw+jU6WAaTcqFFV7lIuPymUImj 4uZ6MxynXJVuqawO2DDnDZs8+WntLBpsUjl97fO6Nb/prt02FrCoE5PzKaWdq3js QyDZDa4AK3aboCvAWh8RH6Jc7bDIvmrJd5T9e0xPhHtI7IKF9K48Nd22oRPavgQy qmdtN2DbqwdKuM2mVx6IodiZruLYMj6uwcQaJwS4KhhX9OXrVdQ= -----END CERTIFICATE-----Generated at Sat Sep 20 08:08:06 2025 by rpki-client