$ rpki-client -vvf repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft File: BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft (raw, json) Hash identifier: 099P16PWY6FsHYjfsEmsHUXb3b/9MtSR4Zjjngr+5Zk= Subject key identifier: FB:9F:A2:FF:A3:92:79:2F:8A:2A:EA:19:E4:F5:FE:1E:00:8E:7B:E1 Authority key identifier: BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB Certificate issuer: /CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Certificate serial: 714526C8EA9CC07770402A423B7BF992CF1D61F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft Manifest number: 58 Signing time: Wed 04 Jun 2025 21:21:03 +0000 Manifest this update: Wed 04 Jun 2025 21:16:03 +0000 Manifest next update: Sun 08 Jun 2025 02:22:03 +0000 Files and hashes: 1: 3136302e32322e39322e302f32342d3234203d3e20313532383335.roa (hash: oo6mbVmnsw7e/0gjMVSA14EiHwAIiPeTDgFb+zR54Og=) 2: 3136302e32322e39332e302f32342d3234203d3e20313532383335.roa (hash: WHnXa3+l2BVF9pDA34p2y5MPrgNJ1xOLxXqgijc3bbM=) 3: BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl (hash: S504kQs32DfGC/RNY6OuVNkUZwcRq5nH11m58G5JQgY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:45:26:c8:ea:9c:c0:77:70:40:2a:42:3b:7b:f9:92:cf:1d:61:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Validity Not Before: Jun 4 21:16:03 2025 GMT Not After : Jun 8 02:22:03 2025 GMT Subject: CN=FB9FA2FFA392792F8A2AEA19E4F5FE1E008E7BE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c8:fd:75:4a:f0:6b:e3:38:99:59:4c:93:89: 19:06:ef:8a:a7:32:0b:e1:7e:bc:3d:0b:70:0b:c5: b9:f3:e4:24:d7:59:db:48:94:50:0e:df:e6:2a:60: 53:fd:78:f7:72:61:fc:60:14:40:d2:81:e8:b8:f6: f7:9e:2d:23:e5:a1:5d:ca:54:18:47:c2:85:14:ac: 8e:02:ab:5d:7a:91:d9:4a:5c:bc:37:15:ae:aa:99: 21:99:b7:94:12:3b:c0:92:c7:c0:45:44:2d:47:a9: d6:e5:1d:6a:38:7c:de:dc:bd:5c:e1:b5:fe:e0:2e: c1:1a:31:28:d9:3e:75:8a:46:84:d2:28:ee:c6:59: 43:b4:28:ce:06:17:91:ca:96:05:c9:29:43:f1:cf: b3:05:9e:92:65:99:cf:b1:b4:73:14:86:e5:e7:99: 60:7b:bf:f5:7a:29:f9:69:92:45:52:ff:f3:e6:e1: 29:a0:5b:91:22:2d:2d:8d:fa:26:17:25:57:34:02: 22:63:27:67:4d:ff:a2:2a:0c:66:ee:3d:7c:d5:f0: e4:f8:36:bf:d1:84:4c:cc:cf:33:7d:9f:a8:83:e0: d1:8e:dd:96:c1:2a:a1:e0:2d:79:86:87:02:a2:02: d0:ce:4a:de:83:38:5e:42:44:9b:14:68:c1:2c:df: 00:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:9F:A2:FF:A3:92:79:2F:8A:2A:EA:19:E4:F5:FE:1E:00:8E:7B:E1 X509v3 Authority Key Identifier: keyid:BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:40:28:d6:f9:25:20:75:a9:a6:84:9d:80:2e:91:a8:ec:6c: a9:9c:00:52:39:cb:2d:4b:c4:5c:95:d0:54:0d:36:4e:8f:91: bf:04:5b:fa:26:78:fd:4e:6b:25:a5:dc:5f:04:e7:e0:df:a4: 0a:eb:bf:a7:1c:d1:1b:5a:a5:62:40:e0:7d:38:bc:5e:04:0d: e2:4b:40:7e:1c:ab:af:34:de:32:cb:59:7b:d3:b6:71:1d:5f: a0:84:e7:20:b5:4b:de:dc:e2:56:ea:53:b9:ea:a7:6c:c3:a3: ed:b5:9f:15:f0:df:f0:85:0f:22:c9:96:59:74:ce:29:c8:28: f9:7e:bf:af:ba:75:74:5e:ba:73:73:0c:83:cd:07:ab:43:14: ff:bd:1e:20:c4:92:16:a7:e6:5a:50:40:89:2e:43:be:14:df: 05:f9:31:ed:43:1d:11:b0:16:43:96:66:57:36:1e:38:31:84: e2:c0:ec:71:3f:c1:a1:f3:b0:06:16:15:b3:b9:96:20:7b:9b: 40:d3:ba:7b:e3:2f:49:d6:03:d6:f5:fe:33:5f:bc:06:42:48: 42:63:fe:61:78:bc:40:cf:42:a7:86:a1:d2:5e:6b:63:fa:f3: eb:00:8d:dd:2e:17:48:93:36:8f:15:e4:ee:e6:43:70:f5:ac: d2:96:4f:d9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcUUmyOqcwHdwQCpCO3v5ks8dYfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEz RUYwRjVFQjAeFw0yNTA2MDQyMTE2MDNaFw0yNTA2MDgwMjIyMDNaMDMxMTAvBgNV BAMTKEZCOUZBMkZGQTM5Mjc5MkY4QTJBRUExOUU0RjVGRTFFMDA4RTdCRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3yP11SvBr4ziZWUyTiRkG74qn Mgvhfrw9C3ALxbnz5CTXWdtIlFAO3+YqYFP9ePdyYfxgFEDSgei49veeLSPloV3K VBhHwoUUrI4Cq116kdlKXLw3Fa6qmSGZt5QSO8CSx8BFRC1HqdblHWo4fN7cvVzh tf7gLsEaMSjZPnWKRoTSKO7GWUO0KM4GF5HKlgXJKUPxz7MFnpJlmc+xtHMUhuXn mWB7v/V6KflpkkVS//Pm4SmgW5EiLS2N+iYXJVc0AiJjJ2dN/6IqDGbuPXzV8OT4 Nr/RhEzMzzN9n6iD4NGO3ZbBKqHgLXmGhwKiAtDOSt6DOF5CRJsUaMEs3wDJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+5+i/6OSeS+KKuoZ5PX+HgCOe+EwHwYDVR0j BBgwFoAUvWcx0FzWGBW8CnEcZZ8XMT7w9eswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmQyOWIzMi0zYTI5LTRhMTQtYmM5Yi1jNzZhMDA3Y2EwMzIvMC9CRDY3MzFEMDVD RDYxODE1QkMwQTcxMUM2NTlGMTczMTNFRjBGNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEzRUYw RjVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjJkMjliMzItM2EyOS00YTE0LWJj OWItYzc2YTAwN2NhMDMyLzAvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3 MzEzRUYwRjVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAElAKNb5JSB1qaaEnYAukajsbKmcAFI5yy1L xFyV0FQNNk6Pkb8EW/omeP1OayWl3F8E5+DfpArrv6cc0RtapWJA4H04vF4EDeJL QH4cq6803jLLWXvTtnEdX6CE5yC1S97c4lbqU7nqp2zDo+21nxXw3/CFDyLJlll0 zinIKPl+v6+6dXReunNzDIPNB6tDFP+9HiDEkhan5lpQQIkuQ74U3wX5Me1DHRGw FkOWZlc2HjgxhOLA7HE/waHzsAYWFbO5liB7m0DTunvjL0nWA9b1/jNfvAZCSEJj /mF4vEDPQqeGodJea2P68+sAjd0uF0iTNo8V5O7mQ3D1rNKWT9k= -----END CERTIFICATE-----Generated at Fri Jun 6 19:16:37 2025 by rpki-client