$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: ljGBdRCQFx0gZq3eYwKxDa4dFNKsCv1gxlt8ZOO2gTo= Subject key identifier: 84:00:F7:CE:E3:00:3A:0B:B5:B9:19:1A:B6:76:17:0B:42:5D:D9:A1 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 6449D59D224D5C026E000B7C3C35E30045692A0D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 050A Signing time: Mon 01 Sep 2025 03:51:20 +0000 Manifest this update: Mon 01 Sep 2025 03:46:20 +0000 Manifest next update: Thu 04 Sep 2025 05:38:20 +0000 Files and hashes: 1: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps=) 2: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: 7PxedSipsNTZyiV9fxG1frgwTkAEJ+zZ1V+jTL4oKzQ=) 3: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (hash: 8j0jRsDzFx9gAhfck8T4zhTfxl09chfxnR3KSNz+QGw=) 4: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: v92EWX5PrX2ocfEiVVqNZStsTUP7VHqvGQh9Jsm+CN4=) 5: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: vPGDL5Uz+m1Ri6z0hdVmq01za5aH2UUg8pKyvgRNgpw=) 6: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: BlERiRMKFqkgyqTsj7YKl6ODg1kHmptUNWRLGRCZ1OE=) 7: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: JGFlFhH6nweNzgQ11TLkyB/qqq3QQSYaNP8bQViVV64=) 8: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: pbhhW/T4QYFpANmSbko4Pn15Hrxc5CLsjrjH+moakkM=) 9: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: Uyq7RhfGQGyvyAfYud4zuD3DilgJbL3jvhz+33uCMOc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Sep 2025 05:38:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:49:d5:9d:22:4d:5c:02:6e:00:0b:7c:3c:35:e3:00:45:69:2a:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Sep 1 03:46:20 2025 GMT Not After : Sep 4 05:38:20 2025 GMT Subject: CN=8400F7CEE3003A0BB5B9191AB676170B425DD9A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fb:2b:cf:7a:11:2e:c6:30:47:ff:47:64:6f: d0:c2:12:45:a1:cd:1c:7f:c8:cb:c6:d2:02:89:cd: 3f:83:1c:d3:70:86:73:c5:9f:54:8a:2b:ef:8a:3a: 46:16:da:51:48:6f:04:02:d0:d9:3e:3a:a2:98:23: 0c:c2:5d:02:82:a4:cd:ff:e3:7b:26:55:75:6f:63: 58:af:95:30:43:f2:e2:ae:b8:bd:bc:19:af:11:df: 0b:df:58:88:d9:6e:2a:1c:79:85:65:2d:4e:e7:21: 01:98:34:d2:08:03:b3:b5:71:fc:32:f3:c7:ef:9a: 68:1d:cc:88:c4:32:8d:0c:d9:06:f1:2b:64:6c:d5: 02:4c:9c:30:8e:4c:91:93:29:ee:4b:67:e7:ba:cf: 64:ad:5a:95:2e:b2:b7:3d:97:e8:6f:e0:a4:f9:34: 13:13:c8:53:f1:2a:4c:18:fa:45:62:c7:38:78:11: 7f:94:01:e2:bb:cb:df:3d:45:57:5a:60:ff:5a:30: 02:b8:68:2d:03:23:88:82:f0:2c:89:f9:a4:97:e6: 9a:26:9d:8b:45:68:05:21:70:4e:13:32:ee:ad:09: 9f:a8:7b:10:73:b3:e3:4a:37:7b:84:02:4d:d2:2f: 96:e9:f8:fc:cf:cc:ab:94:34:a7:75:1d:42:f9:42: 29:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:00:F7:CE:E3:00:3A:0B:B5:B9:19:1A:B6:76:17:0B:42:5D:D9:A1 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:5c:82:b1:70:a0:fb:a3:44:cf:04:d3:6e:73:1a:d5:08:b5: 51:89:53:7d:ab:a3:4c:b2:b2:cb:82:47:60:f2:86:29:19:cc: ff:d2:41:6a:4f:34:f0:4b:77:41:53:43:7b:90:b4:a0:65:c1: cd:05:c3:91:69:7d:9e:3b:a3:4a:3e:47:31:dd:ff:ff:34:fd: 89:e5:9f:e6:0c:e5:8f:1c:2c:45:2e:84:42:c8:49:7c:55:a9: 23:e6:ef:4f:ba:7a:e7:d4:1f:95:59:a2:2a:19:70:90:ed:d9: b5:82:64:57:5a:c0:95:66:2f:bc:9c:b2:43:0e:e6:7c:c5:ed: ce:98:9c:22:43:bc:75:73:46:c6:9d:83:79:44:3d:c7:42:06: 9e:42:b7:04:68:a8:5d:43:f7:aa:27:7d:32:01:f6:c6:9b:6d: 9f:42:dc:83:ed:62:ff:c3:bd:25:e5:2d:8c:ec:00:0b:5e:77: 23:01:4f:ba:21:4b:4e:ad:31:ef:df:5f:3a:1a:7a:7e:a2:20: 31:c8:93:a4:90:96:97:a6:59:45:50:5c:83:07:e2:ff:20:c5: 1f:60:bd:80:09:1c:0d:d2:62:86:7f:07:e7:a0:11:7c:a7:c1: a8:d5:22:40:f5:4b:69:9b:9a:ea:39:d2:4a:68:88:84:9b:b2: 9f:7d:40:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZEnVnSJNXAJuAAt8PDXjAEVpKg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTA5MDEwMzQ2MjBaFw0yNTA5MDQwNTM4MjBaMDMxMTAvBgNV BAMTKDg0MDBGN0NFRTMwMDNBMEJCNUI5MTkxQUI2NzYxNzBCNDI1REQ5QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy+yvPehEuxjBH/0dkb9DCEkWh zRx/yMvG0gKJzT+DHNNwhnPFn1SKK++KOkYW2lFIbwQC0Nk+OqKYIwzCXQKCpM3/ 43smVXVvY1ivlTBD8uKuuL28Ga8R3wvfWIjZbioceYVlLU7nIQGYNNIIA7O1cfwy 88fvmmgdzIjEMo0M2QbxK2Rs1QJMnDCOTJGTKe5LZ+e6z2StWpUusrc9l+hv4KT5 NBMTyFPxKkwY+kVixzh4EX+UAeK7y989RVdaYP9aMAK4aC0DI4iC8CyJ+aSX5pom nYtFaAUhcE4TMu6tCZ+oexBzs+NKN3uEAk3SL5bp+PzPzKuUNKd1HUL5QikrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhAD3zuMAOgu1uRkatnYXC0Jd2aEwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB5cgrFwoPujRM8E025zGtUItVGJU32ro0yy ssuCR2DyhikZzP/SQWpPNPBLd0FTQ3uQtKBlwc0Fw5FpfZ47o0o+RzHd//80/Ynl n+YM5Y8cLEUuhELISXxVqSPm70+6eufUH5VZoioZcJDt2bWCZFdawJVmL7ycskMO 5nzF7c6YnCJDvHVzRsadg3lEPcdCBp5CtwRoqF1D96onfTIB9sabbZ9C3IPtYv/D vSXlLYzsAAtedyMBT7ohS06tMe/fXzoaen6iIDHIk6SQlpemWUVQXIMH4v8gxR9g vYAJHA3SYoZ/B+egEXynwajVIkD1S2mbmuo50kpoiISbsp99QLw= -----END CERTIFICATE-----Generated at Mon Sep 1 12:56:46 2025 by rpki-client