$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: runsC77GaPjQxPjt0jnvyOUki2dJgpS//VEc8ur3MBI= Subject key identifier: C7:00:07:24:40:57:65:CB:54:AC:67:8F:6D:68:78:CD:F2:A5:D4:98 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 35C6D972D440021A805534BFE95D66A9C7C62783 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 0571 Signing time: Wed 15 Apr 2026 20:01:33 +0000 Manifest this update: Wed 15 Apr 2026 19:56:33 +0000 Manifest next update: Sun 19 Apr 2026 05:22:33 +0000 Files and hashes: 1: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: lE9s+BoEY5gwrvlaGT630nudod/SJ6QnowFtOuZG/F8=) 2: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: T+xAmOcrpikrQh6BNR+E6JFDb4uNhHPoQy2Ve9WHYks=) 3: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: 2/e1df75ZuB0mlztIUau/nvIcUBCoLK27iXCpZBorYA=) 4: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: JGFlFhH6nweNzgQ11TLkyB/qqq3QQSYaNP8bQViVV64=) 5: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: ifILYerUDcpRe223pMC/3xtPqhg84IovzTQC0ym+UNg=) 6: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps=) 7: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: 56d07BSeTqUh0D8mNnf+uwyCnEuMum6uXXUIynArp0M=) 8: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: gB/Q187la6gm8qsp2Yv6/zuENtxXbTAl8b+QHinNe0w=) 9: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (hash: 9n83xrlqClU8EreC5b0A1VtR+6Td1JPgQy3YDNhy7m8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 05:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c6:d9:72:d4:40:02:1a:80:55:34:bf:e9:5d:66:a9:c7:c6:27:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Apr 15 19:56:33 2026 GMT Not After : Apr 19 05:22:33 2026 GMT Subject: CN=C7000724405765CB54AC678F6D6878CDF2A5D498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:72:34:a4:61:0b:55:31:89:33:61:19:76:b8: 75:5c:3d:1f:8c:59:50:af:ff:1b:5a:cf:7c:55:9b: 7d:56:81:0c:e9:ea:88:8f:0a:5f:d5:d5:d4:4e:ee: 7c:b7:9a:04:4f:8f:48:25:99:97:c5:e5:59:83:de: 8c:f3:ba:55:06:87:9e:66:c9:15:fd:3d:6b:69:52: 55:7a:87:ab:ab:76:ff:f7:43:97:11:fa:37:b1:64: e0:73:ad:6e:5a:2c:2f:b6:82:86:72:6b:e6:58:cf: 4b:ae:87:3f:57:0c:cc:e3:b6:bf:a8:a4:c9:0d:2d: eb:24:6e:6a:cc:bd:70:b6:d9:5c:49:ec:a0:b6:22: 9f:f3:83:3f:27:e9:ab:99:54:65:53:c0:75:e0:d8: a3:07:d2:29:6b:76:16:fc:87:04:96:10:ff:b4:a0: f9:a5:f6:68:a6:25:82:7b:f2:49:13:1c:ee:41:08: 34:eb:a8:f1:37:a4:f4:1a:d1:fe:5e:1e:df:7c:52: 09:96:57:3d:ea:04:69:15:b0:e1:35:56:96:66:2b: 8e:27:70:b2:2f:a5:9c:8f:6b:29:78:76:76:90:74: 7e:4a:a2:95:98:03:45:25:0c:e4:6e:a3:cc:70:95: 39:94:6a:85:62:c5:9e:02:9b:1f:21:8f:37:56:83: e1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:00:07:24:40:57:65:CB:54:AC:67:8F:6D:68:78:CD:F2:A5:D4:98 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:66:b4:ca:07:6b:34:66:d5:11:f1:03:76:13:4b:fa:51:3b: dd:6e:cb:9c:45:d7:e6:df:94:28:cc:b7:b0:32:4e:4d:cb:58: 89:05:3c:62:65:b5:57:d6:0c:72:53:f0:c7:d6:93:99:09:05: 46:3f:fb:f8:b0:33:3b:3e:b6:a0:87:31:69:8a:0d:93:55:8e: cf:01:3e:8a:48:4b:2c:98:3e:1a:fa:fe:53:7c:99:3c:ae:40: 19:07:93:32:4e:d6:2b:39:dd:00:e7:2f:d7:68:8a:83:e3:e8: 4e:34:5a:84:d7:7a:b6:83:95:e3:06:c2:7e:46:de:4c:5f:6c: 73:7d:9e:f3:47:95:29:b9:08:b5:eb:4e:a9:a6:dd:d0:12:0f: 2c:69:26:96:d1:07:46:9a:fa:15:fa:e9:3a:f4:cd:10:7f:9d: c9:ff:3f:aa:55:f6:cc:23:bd:1f:fc:72:4c:26:50:cc:20:4a: c3:5a:7d:2b:78:47:34:9d:ae:21:4b:b0:c8:7f:2b:8e:bc:5e: 84:c0:e6:ac:5c:06:62:eb:0d:c2:74:e4:71:25:e4:af:75:ee: 8a:3d:c1:9a:fa:37:94:29:83:18:fe:00:0c:f9:f6:3f:3c:42: 17:d5:03:7b:f2:ea:2a:ef:0e:b0:cb:df:60:ca:2e:84:07:dd: e4:66:51:90 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNcbZctRAAhqAVTS/6V1mqcfGJ4MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNjA0MTUxOTU2MzNaFw0yNjA0MTkwNTIyMzNaMDMxMTAvBgNV BAMTKEM3MDAwNzI0NDA1NzY1Q0I1NEFDNjc4RjZENjg3OENERjJBNUQ0OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtcjSkYQtVMYkzYRl2uHVcPR+M WVCv/xtaz3xVm31WgQzp6oiPCl/V1dRO7ny3mgRPj0glmZfF5VmD3ozzulUGh55m yRX9PWtpUlV6h6urdv/3Q5cR+jexZOBzrW5aLC+2goZya+ZYz0uuhz9XDMzjtr+o pMkNLeskbmrMvXC22VxJ7KC2Ip/zgz8n6auZVGVTwHXg2KMH0ilrdhb8hwSWEP+0 oPml9mimJYJ78kkTHO5BCDTrqPE3pPQa0f5eHt98UgmWVz3qBGkVsOE1VpZmK44n cLIvpZyPayl4dnaQdH5KopWYA0UlDORuo8xwlTmUaoVixZ4Cmx8hjzdWg+FdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxwAHJEBXZctUrGePbWh4zfKl1JgwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABpmtMoHazRm1RHxA3YTS/pRO91uy5xF1+bf lCjMt7AyTk3LWIkFPGJltVfWDHJT8MfWk5kJBUY/+/iwMzs+tqCHMWmKDZNVjs8B PopISyyYPhr6/lN8mTyuQBkHkzJO1is53QDnL9doioPj6E40WoTXeraDleMGwn5G 3kxfbHN9nvNHlSm5CLXrTqmm3dASDyxpJpbRB0aa+hX66Tr0zRB/ncn/P6pV9swj vR/8ckwmUMwgSsNafSt4RzSdriFLsMh/K468XoTA5qxcBmLrDcJ05HEl5K917oo9 wZr6N5Qpgxj+AAz59j88QhfVA3vy6irvDrDL32DKLoQH3eRmUZA= -----END CERTIFICATE-----Generated at Fri Apr 17 13:12:51 2026 by rpki-client