$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: jA9YDJP2z+FcGDCeWKfCm+80mkPO5jCJ7fKTdQym+DU= Subject key identifier: 0D:DA:8D:C6:12:1F:F8:7B:81:AA:70:88:8F:44:22:89:C6:64:6E:66 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 62FF7728FEF3DBAF809CCFFB7944EF5018E73F31 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 04E3 Signing time: Fri 06 Jun 2025 04:21:20 +0000 Manifest this update: Fri 06 Jun 2025 04:16:20 +0000 Manifest next update: Mon 09 Jun 2025 15:02:20 +0000 Files and hashes: 1: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: 7PxedSipsNTZyiV9fxG1frgwTkAEJ+zZ1V+jTL4oKzQ=) 2: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (hash: 8j0jRsDzFx9gAhfck8T4zhTfxl09chfxnR3KSNz+QGw=) 3: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: BlERiRMKFqkgyqTsj7YKl6ODg1kHmptUNWRLGRCZ1OE=) 4: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: gYHVPoWM8M35t/j7RrT26k9s0WU9EcND6GsD+lYFx1I=) 5: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps=) 6: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: vPGDL5Uz+m1Ri6z0hdVmq01za5aH2UUg8pKyvgRNgpw=) 7: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: JGFlFhH6nweNzgQ11TLkyB/qqq3QQSYaNP8bQViVV64=) 8: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: pbhhW/T4QYFpANmSbko4Pn15Hrxc5CLsjrjH+moakkM=) 9: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: v92EWX5PrX2ocfEiVVqNZStsTUP7VHqvGQh9Jsm+CN4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:02:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:ff:77:28:fe:f3:db:af:80:9c:cf:fb:79:44:ef:50:18:e7:3f:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Jun 6 04:16:20 2025 GMT Not After : Jun 9 15:02:20 2025 GMT Subject: CN=0DDA8DC6121FF87B81AA70888F442289C6646E66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c4:54:7c:46:8c:72:75:40:89:40:ef:c0:5d: b2:03:6e:93:3e:96:db:0c:f8:d9:fc:5c:5d:37:ad: bf:da:00:c5:df:9c:03:f9:35:0f:d9:8b:c3:fc:fd: 7e:2a:92:93:b7:b1:88:1a:be:02:3e:93:23:66:55: 2f:f6:27:06:85:86:97:3f:cb:65:78:5f:9a:08:5f: 57:07:e6:a4:6f:fa:06:15:70:26:8b:30:38:91:81: 1f:52:a3:de:69:dd:73:75:24:ea:f9:c4:3d:31:bc: ed:eb:00:b6:cb:85:3b:0f:e4:ee:06:28:0b:82:d0: f7:d0:dc:3f:66:05:bf:a7:fd:83:13:45:7a:08:fa: 11:62:cb:ad:8d:33:58:a9:41:0e:b1:9c:2e:1d:d1: 5c:4b:4f:db:b5:b6:27:91:fe:22:91:60:58:d6:ac: 40:e8:9a:4f:ac:db:95:fe:44:25:30:3d:6d:90:b2: 4b:7c:63:00:8c:9e:0d:34:eb:a8:f7:99:6f:bd:28: b1:ce:64:58:0d:7b:a1:cd:ea:a0:d4:e3:60:fe:4a: 66:52:8a:40:a8:d2:d7:21:a8:e1:26:ae:8c:89:80: a7:87:89:56:94:34:c8:12:f1:11:fb:71:df:44:26: 5e:dd:ff:7a:1a:cf:c9:ea:b6:b1:75:ef:e6:87:60: 14:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DA:8D:C6:12:1F:F8:7B:81:AA:70:88:8F:44:22:89:C6:64:6E:66 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:91:90:f0:4b:73:65:e2:9e:83:b4:06:08:32:bd:45:64:eb: d6:a7:e9:a2:94:64:f6:40:c8:56:a6:b5:9c:78:b8:0a:b7:9d: 96:7f:a5:4a:0d:08:a8:86:6a:3f:63:68:8b:10:58:53:92:d9: 7f:c0:36:0b:54:a3:e1:38:53:f9:21:c8:87:e9:30:0b:3a:8d: 02:55:e3:7e:ac:ec:51:aa:6c:69:e1:68:55:28:f3:1e:a8:83: 85:6f:73:3c:ab:98:a5:f4:19:53:32:29:e5:17:1a:ee:8d:2a: 24:e5:c5:e0:28:33:3d:f9:b4:7c:1e:f7:23:40:e5:87:ba:cc: 6e:7f:05:d5:18:a6:80:bb:d9:a2:c1:54:e4:29:b5:1c:63:27: 54:7f:63:10:00:a5:ad:68:b9:a4:d9:2b:49:2e:51:09:3a:44: 2e:30:4f:0f:04:31:10:c8:47:98:21:7f:9b:d0:fb:76:e7:64: 32:88:30:93:72:e0:8a:be:9d:28:9c:32:0e:a5:6a:b1:96:e7: bd:03:82:97:98:03:b1:32:e9:44:d2:b0:48:5b:95:a5:04:e6: e4:67:c6:0a:10:fb:07:21:a6:f6:65:55:a1:f6:c9:b7:ea:bc: 9c:04:5b:0d:95:df:04:ab:79:d6:bb:27:f6:cb:17:d3:3f:da: 78:c4:9d:41 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYv93KP7z26+AnM/7eUTvUBjnPzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTA2MDYwNDE2MjBaFw0yNTA2MDkxNTAyMjBaMDMxMTAvBgNV BAMTKDBEREE4REM2MTIxRkY4N0I4MUFBNzA4ODhGNDQyMjg5QzY2NDZFNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGxFR8RoxydUCJQO/AXbIDbpM+ ltsM+Nn8XF03rb/aAMXfnAP5NQ/Zi8P8/X4qkpO3sYgavgI+kyNmVS/2JwaFhpc/ y2V4X5oIX1cH5qRv+gYVcCaLMDiRgR9So95p3XN1JOr5xD0xvO3rALbLhTsP5O4G KAuC0PfQ3D9mBb+n/YMTRXoI+hFiy62NM1ipQQ6xnC4d0VxLT9u1tieR/iKRYFjW rEDomk+s25X+RCUwPW2Qskt8YwCMng0066j3mW+9KLHOZFgNe6HN6qDU42D+SmZS ikCo0tchqOEmroyJgKeHiVaUNMgS8RH7cd9EJl7d/3oaz8nqtrF17+aHYBT3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDdqNxhIf+HuBqnCIj0QiicZkbmYwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABCRkPBLc2XinoO0BggyvUVk69an6aKUZPZA yFamtZx4uAq3nZZ/pUoNCKiGaj9jaIsQWFOS2X/ANgtUo+E4U/khyIfpMAs6jQJV 436s7FGqbGnhaFUo8x6og4VvczyrmKX0GVMyKeUXGu6NKiTlxeAoMz35tHwe9yNA 5Ye6zG5/BdUYpoC72aLBVOQptRxjJ1R/YxAApa1ouaTZK0kuUQk6RC4wTw8EMRDI R5ghf5vQ+3bnZDKIMJNy4Iq+nSicMg6larGW570DgpeYA7Ey6UTSsEhblaUE5uRn xgoQ+wchpvZlVaH2ybfqvJwEWw2V3wSreda7J/bLF9M/2njEnUE= -----END CERTIFICATE-----Generated at Sat Jun 7 21:59:38 2025 by rpki-client