$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: hmoj8ZQMxVEyUzU31NwnIytnHtpfL888U+iTQUa/ObM= Subject key identifier: 96:D9:60:2A:DA:9B:4C:AC:08:EA:29:87:FB:CD:B0:08:6A:0E:96:91 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 5F80EB58AF078F525D33DB9075D8D7CF59C85326 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 0521 Signing time: Sat 18 Oct 2025 20:21:21 +0000 Manifest this update: Sat 18 Oct 2025 20:16:21 +0000 Manifest next update: Tue 21 Oct 2025 23:35:21 +0000 Files and hashes: 1: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (hash: 8j0jRsDzFx9gAhfck8T4zhTfxl09chfxnR3KSNz+QGw=) 2: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: 36UPIWK5uDf45bKOCaOZ+x0buIdoxjJ3nqO3NBNSMuI=) 3: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: ifILYerUDcpRe223pMC/3xtPqhg84IovzTQC0ym+UNg=) 4: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: 2/e1df75ZuB0mlztIUau/nvIcUBCoLK27iXCpZBorYA=) 5: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: lE9s+BoEY5gwrvlaGT630nudod/SJ6QnowFtOuZG/F8=) 6: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: gB/Q187la6gm8qsp2Yv6/zuENtxXbTAl8b+QHinNe0w=) 7: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: JGFlFhH6nweNzgQ11TLkyB/qqq3QQSYaNP8bQViVV64=) 8: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps=) 9: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: T+xAmOcrpikrQh6BNR+E6JFDb4uNhHPoQy2Ve9WHYks=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 23:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:80:eb:58:af:07:8f:52:5d:33:db:90:75:d8:d7:cf:59:c8:53:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Oct 18 20:16:21 2025 GMT Not After : Oct 21 23:35:21 2025 GMT Subject: CN=96D9602ADA9B4CAC08EA2987FBCDB0086A0E9691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:15:4b:08:b9:07:59:42:39:38:93:1f:c4:e2: 6f:70:0f:ea:51:7d:47:14:ac:3b:87:b0:e5:4e:8a: 4a:ce:26:9d:ff:6e:11:a6:64:d6:f0:9f:de:d6:d2: bc:10:c2:67:61:01:ac:a1:0c:c8:cc:bc:e9:87:34: 0e:2d:c9:1b:59:94:9f:48:56:48:4b:7e:bc:1c:b7: c5:2e:f4:1c:9d:00:d9:a3:74:7d:d8:d4:34:8d:93: f2:c3:ae:05:9a:cf:77:0b:6e:30:63:ba:99:ad:fc: 5a:fc:68:6e:4a:a2:2a:00:e9:15:e3:36:e9:41:a6: 11:bf:8e:43:07:bd:7e:23:f0:7e:f2:dc:f9:e5:26: d1:59:82:b4:46:c4:49:63:9f:1c:f5:11:83:1a:95: 68:c5:99:8b:8d:7c:fa:80:55:08:5b:3d:d1:52:27: cd:d9:40:4f:81:d4:a9:29:bc:1e:39:98:28:12:5d: 4f:ca:e7:3e:ca:7b:41:02:32:fc:94:f9:80:cc:75: fb:36:43:21:5f:b0:a6:8f:ab:a6:e8:f0:67:e3:fe: 3c:db:d3:92:bd:a0:fe:cf:68:bc:c1:c8:d5:51:dd: d5:dd:9e:5e:08:71:74:02:a0:30:80:71:aa:24:f5: 8e:c6:b1:cf:9c:5a:3a:da:c8:d9:e8:34:66:5b:b5: 16:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D9:60:2A:DA:9B:4C:AC:08:EA:29:87:FB:CD:B0:08:6A:0E:96:91 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:ea:07:e4:27:46:69:be:87:7e:19:37:8a:8f:47:43:ec:2b: c0:c5:3e:7a:2c:1e:1e:75:f6:74:5e:c5:69:58:e0:30:96:6b: 11:fa:a3:bd:e3:63:d4:29:34:8d:6b:dc:ae:fd:68:b9:9f:32: e9:8a:5e:2e:5d:ab:b1:80:9c:d1:2f:7c:d8:fd:d9:32:5b:b6: 8b:60:78:92:ff:07:3f:51:e2:ae:08:ac:73:98:a8:e3:3d:8b: 6f:6e:d7:f2:12:b5:47:24:db:eb:46:8c:cc:97:7d:39:e4:cc: 62:02:75:5f:49:c8:a5:14:bb:ed:5c:e3:81:60:c9:40:e5:40: 5b:0f:95:18:95:4d:0e:5c:4c:35:92:4f:6a:36:8f:c5:50:fb: 04:d2:5f:79:4f:3b:17:76:6c:c7:17:66:3a:e0:43:5b:06:0c: dc:e0:52:d4:7c:38:14:a8:69:8b:26:2c:8e:9e:17:f6:d4:9f: b2:b2:ce:40:5e:09:d3:80:5a:3c:5e:0e:f7:4b:f5:5b:f7:a5: 85:ea:cd:d8:37:b2:48:13:cd:8e:c0:f8:02:e1:81:48:6e:44: 39:3a:82:a0:cd:2d:b4:83:de:d2:e5:1d:9a:ee:64:64:3d:07: 22:0a:27:11:d5:28:8a:55:0a:cb:30:2e:26:3c:46:a0:4d:05: 32:99:da:ca -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX4DrWK8Hj1JdM9uQddjXz1nIUyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTEwMTgyMDE2MjFaFw0yNTEwMjEyMzM1MjFaMDMxMTAvBgNV BAMTKDk2RDk2MDJBREE5QjRDQUMwOEVBMjk4N0ZCQ0RCMDA4NkEwRTk2OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEFUsIuQdZQjk4kx/E4m9wD+pR fUcUrDuHsOVOikrOJp3/bhGmZNbwn97W0rwQwmdhAayhDMjMvOmHNA4tyRtZlJ9I VkhLfrwct8Uu9BydANmjdH3Y1DSNk/LDrgWaz3cLbjBjupmt/Fr8aG5KoioA6RXj NulBphG/jkMHvX4j8H7y3PnlJtFZgrRGxEljnxz1EYMalWjFmYuNfPqAVQhbPdFS J83ZQE+B1KkpvB45mCgSXU/K5z7Ke0ECMvyU+YDMdfs2QyFfsKaPq6bo8Gfj/jzb 05K9oP7PaLzByNVR3dXdnl4IcXQCoDCAcaok9Y7Gsc+cWjrayNnoNGZbtRYFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUltlgKtqbTKwI6imH+82wCGoOlpEwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEHqB+QnRmm+h34ZN4qPR0PsK8DFPnosHh51 9nRexWlY4DCWaxH6o73jY9QpNI1r3K79aLmfMumKXi5dq7GAnNEvfNj92TJbtotg eJL/Bz9R4q4IrHOYqOM9i29u1/IStUck2+tGjMyXfTnkzGICdV9JyKUUu+1c44Fg yUDlQFsPlRiVTQ5cTDWST2o2j8VQ+wTSX3lPOxd2bMcXZjrgQ1sGDNzgUtR8OBSo aYsmLI6eF/bUn7KyzkBeCdOAWjxeDvdL9Vv3pYXqzdg3skgTzY7A+ALhgUhuRDk6 gqDNLbSD3tLlHZruZGQ9ByIKJxHVKIpVCsswLiY8RqBNBTKZ2so= -----END CERTIFICATE-----Generated at Sun Oct 19 12:51:28 2025 by rpki-client