$ rpki-client -vvf repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft File: 20B00D67B048DAE581FE60A498995A27878149A7.mft (raw, json) Hash identifier: IWrzslQ76pir5rdXWp9aUa+vvrGvHehRCdKnxgroimc= Subject key identifier: FD:70:11:4A:7E:F1:0C:2E:78:59:BE:60:8D:01:AD:EB:43:E1:9F:B8 Authority key identifier: 20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 Certificate issuer: /CN=20B00D67B048DAE581FE60A498995A27878149A7 Certificate serial: 2542E9EC0BAEFBF359AC45FEC94BC7BA0468F5F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft Manifest number: 0196 Signing time: Thu 05 Jun 2025 17:31:02 +0000 Manifest this update: Thu 05 Jun 2025 17:26:02 +0000 Manifest next update: Mon 09 Jun 2025 00:35:02 +0000 Files and hashes: 1: 20B00D67B048DAE581FE60A498995A27878149A7.crl (hash: MomrtlY3lzJnGxO8ZA/uRBEZfp8byuv7mVuogpqWkmc=) 2: 3230322e37352e31362e302f32302d3234203d3e203338373834.roa (hash: C3Y5TVjlMMx3bj7loYa7CuUDY/TXp19dghaSZKbxk0g=) 3: 323430313a383234303a3a2f33322d3438203d3e203233393438.roa (hash: LQahwQ72kro/LJH779tBFmRDGBJ/aQ/cw7AFn3KwUxg=) 4: 323430313a383234303a3a2f33322d3438203d3e203338373834.roa (hash: FKopsjmhu2ZpwkHZKTS2a2cSATg1lZ109SObjsmNTcI=) 5: 3230322e37352e31362e302f32302d3234203d3e203233393438.roa (hash: SDDT76sB5fD/qwKD2c7jZ56T2/zb4XIJfGohnMvEips=) 6: 3230322e37352e32382e302f32332d3234203d3e20313338383731.roa (hash: vRq65LfzwGz4j+oEbqBPQ82wtT1KDumkC2L75cgO4WQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 21:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:42:e9:ec:0b:ae:fb:f3:59:ac:45:fe:c9:4b:c7:ba:04:68:f5:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20B00D67B048DAE581FE60A498995A27878149A7 Validity Not Before: Jun 5 17:26:02 2025 GMT Not After : Jun 9 00:35:02 2025 GMT Subject: CN=FD70114A7EF10C2E7859BE608D01ADEB43E19FB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ee:03:b7:e6:3a:77:34:24:ce:e5:5d:53:e8: a4:bd:a5:7d:d3:12:df:47:e6:65:12:34:dc:f8:0a: 38:2b:d4:a1:8b:29:b6:89:22:ad:4d:00:df:fe:1a: a7:32:de:f0:0a:8b:f1:a5:03:3a:72:77:3c:89:51: 62:f2:93:87:0d:b0:f6:5c:b3:38:2a:f5:08:22:e8: 56:ef:6f:a3:38:ce:70:4f:b3:92:c9:35:1e:4d:a0: fe:5f:eb:60:2f:f2:e9:03:a9:bf:c4:c1:3c:50:fa: 2c:d9:5c:67:27:a1:f1:86:5f:dd:a5:34:f3:8b:29: 69:8b:36:44:c8:df:b5:1f:0f:14:1e:1f:92:94:5c: 10:e9:b2:fb:f4:44:8c:6c:1c:95:59:d6:93:92:24: 07:57:1f:71:b3:e0:bb:05:ef:9d:46:ef:5b:f6:56: fb:09:f7:3c:9a:dd:a1:2c:62:38:14:99:47:f1:a9: 37:77:72:41:96:7f:62:fb:27:f8:dd:1c:68:6a:5b: eb:93:a4:b5:42:ba:50:9a:9f:27:f0:58:e1:33:45: e9:b0:a1:4b:f5:78:2f:55:4d:65:d5:d3:a4:8b:0a: ee:23:eb:d2:00:2d:f9:85:65:82:e4:c7:c5:b8:5b: 35:7f:46:10:96:0c:d0:7d:f7:a9:ce:bf:2a:e4:56: e3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:70:11:4A:7E:F1:0C:2E:78:59:BE:60:8D:01:AD:EB:43:E1:9F:B8 X509v3 Authority Key Identifier: keyid:20:B0:0D:67:B0:48:DA:E5:81:FE:60:A4:98:99:5A:27:87:81:49:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20B00D67B048DAE581FE60A498995A27878149A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c4547104-939e-40e3-8fc8-42522642044b/0/20B00D67B048DAE581FE60A498995A27878149A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:bc:2d:20:d4:d6:90:13:eb:30:67:b2:ca:bc:0e:80:5b:49: 6f:e4:41:c3:fe:5c:e9:2e:3b:c6:34:a1:d1:f7:31:44:3a:db: c3:9d:c9:5d:45:c6:2c:a0:92:a5:01:d6:22:b9:30:61:37:29: 25:b3:b7:6d:c7:85:57:c7:8a:44:c0:dd:76:b6:8b:d8:4e:db: 18:56:13:b1:42:ae:7e:a0:30:89:ba:b4:07:08:f1:b9:6f:73: 21:2f:5e:c8:80:ce:ea:1a:c7:07:f4:43:d0:41:9d:7c:24:cd: 11:8e:76:40:ca:4b:47:1a:ba:78:8c:86:71:35:dd:6b:5d:d7: fd:1d:91:79:f4:c7:a8:a6:5b:d9:5d:07:f7:9b:81:00:a0:4a: f0:1c:69:bc:1b:71:64:7b:29:b7:6b:29:d2:d6:05:25:dd:43: df:e7:45:7f:39:ab:a0:14:28:18:5f:a0:8f:8d:84:ac:b5:20: af:6e:ec:a2:44:c1:08:a3:66:0a:43:4d:9e:a9:93:e3:d8:2d: 4f:05:9f:59:c1:ce:ca:b9:67:04:4f:0b:9f:cf:72:2b:c5:f1: 26:8c:24:af:05:8c:6d:e0:ee:f9:45:6d:f5:8e:9e:87:56:be: 5b:f8:06:a7:73:90:eb:6b:30:92:1c:7a:af:0f:4f:79:7e:7c: b2:d8:6b:ff -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJULp7Auu+/NZrEX+yUvHugRo9fkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4 NzgxNDlBNzAeFw0yNTA2MDUxNzI2MDJaFw0yNTA2MDkwMDM1MDJaMDMxMTAvBgNV BAMTKEZENzAxMTRBN0VGMTBDMkU3ODU5QkU2MDhEMDFBREVCNDNFMTlGQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj7gO35jp3NCTO5V1T6KS9pX3T Et9H5mUSNNz4Cjgr1KGLKbaJIq1NAN/+Gqcy3vAKi/GlAzpydzyJUWLyk4cNsPZc szgq9Qgi6Fbvb6M4znBPs5LJNR5NoP5f62Av8ukDqb/EwTxQ+izZXGcnofGGX92l NPOLKWmLNkTI37UfDxQeH5KUXBDpsvv0RIxsHJVZ1pOSJAdXH3Gz4LsF751G71v2 VvsJ9zya3aEsYjgUmUfxqTd3ckGWf2L7J/jdHGhqW+uTpLVCulCanyfwWOEzRemw oUv1eC9VTWXV06SLCu4j69IALfmFZYLkx8W4WzV/RhCWDNB996nOvyrkVuNLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/XARSn7xDC54Wb5gjQGt60Phn7gwHwYDVR0j BBgwFoAUILANZ7BI2uWB/mCkmJlaJ4eBSacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NDU0NzEwNC05MzllLTQwZTMtOGZjOC00MjUyMjY0MjA0NGIvMC8yMEIwMEQ2N0Iw NDhEQUU1ODFGRTYwQTQ5ODk5NUEyNzg3ODE0OUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVBMjc4Nzgx NDlBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzQ1NDcxMDQtOTM5ZS00MGUzLThm YzgtNDI1MjI2NDIwNDRiLzAvMjBCMDBENjdCMDQ4REFFNTgxRkU2MEE0OTg5OTVB Mjc4NzgxNDlBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALK8LSDU1pAT6zBnssq8DoBbSW/kQcP+XOku O8Y0odH3MUQ628OdyV1FxiygkqUB1iK5MGE3KSWzt23HhVfHikTA3Xa2i9hO2xhW E7FCrn6gMIm6tAcI8blvcyEvXsiAzuoaxwf0Q9BBnXwkzRGOdkDKS0cauniMhnE1 3Wtd1/0dkXn0x6imW9ldB/ebgQCgSvAcabwbcWR7KbdrKdLWBSXdQ9/nRX85q6AU KBhfoI+NhKy1IK9u7KJEwQijZgpDTZ6pk+PYLU8Fn1nBzsq5ZwRPC5/PcivF8SaM JK8FjG3g7vlFbfWOnodWvlv4BqdzkOtrMJIceq8PT3l+fLLYa/8= -----END CERTIFICATE-----Generated at Thu Jun 5 19:47:34 2025 by rpki-client