$ rpki-client -vvf repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft File: BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft (raw, json) Hash identifier: Qj7wlNUVw0J/M+gqJ28iik6ryLcpZUsgmljEDrONcpY= Subject key identifier: 2D:E5:1D:51:72:6F:60:E5:38:B5:32:E1:9C:33:3B:1C:B4:B6:1A:C5 Authority key identifier: BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB Certificate issuer: /CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Certificate serial: 5E34A93FAD622DD9070ADB0CA2D0F90D694404AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft Manifest number: 43 Signing time: Fri 18 Apr 2025 08:30:59 +0000 Manifest this update: Fri 18 Apr 2025 08:25:59 +0000 Manifest next update: Mon 21 Apr 2025 10:51:59 +0000 Files and hashes: 1: 3136302e32322e39332e302f32342d3234203d3e20313532383335.roa (hash: WHnXa3+l2BVF9pDA34p2y5MPrgNJ1xOLxXqgijc3bbM=) 2: BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl (hash: QPW49fqnC3vFxkBdFp/+ULJklBFnWglg/JmKKjtZUfQ=) 3: 3136302e32322e39322e302f32342d3234203d3e20313532383335.roa (hash: oo6mbVmnsw7e/0gjMVSA14EiHwAIiPeTDgFb+zR54Og=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 21 Apr 2025 10:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:34:a9:3f:ad:62:2d:d9:07:0a:db:0c:a2:d0:f9:0d:69:44:04:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Validity Not Before: Apr 18 08:25:59 2025 GMT Not After : Apr 21 10:51:59 2025 GMT Subject: CN=2DE51D51726F60E538B532E19C333B1CB4B61AC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:87:4f:8a:9d:52:ce:56:a8:87:c9:56:9f:7f: 23:97:2c:2a:e8:4e:cf:7b:e7:2e:37:e7:53:d6:49: d2:97:0b:77:6c:bc:e5:51:b7:2b:2d:80:cb:12:7e: 4d:7b:f7:4f:49:b9:f1:4e:13:07:55:cb:32:6c:d7: 83:9b:de:c0:bf:b1:cc:4d:51:3d:21:21:21:7d:03: 46:2e:15:27:59:80:6f:53:9e:01:1f:55:66:2c:9d: fa:28:58:d9:00:6d:7c:ad:a0:7d:3f:86:25:0d:68: d4:aa:68:5a:a8:f5:4f:1e:23:5c:f9:d2:67:17:7c: 60:88:57:c3:98:94:11:b3:a6:0e:6f:92:46:af:c1: 7e:c2:62:6c:94:25:1b:3f:32:2e:12:3e:ac:f3:fc: cc:2b:ad:9a:86:58:6e:9b:f1:ba:ef:20:2f:2f:04: 8b:7f:35:69:8a:90:85:0a:75:b8:3f:55:f6:08:7f: d1:a0:9a:96:56:af:d4:c2:4e:0a:67:fa:2c:26:62: 60:6e:2e:0e:ae:48:e7:a2:14:4e:b6:65:2b:4c:29: cc:59:e0:c1:e8:26:63:36:ae:50:e2:e3:e5:be:bd: 50:32:b4:cc:9f:f4:d5:d9:3e:79:89:d0:5a:b0:20: 5c:ac:c0:71:a7:90:73:66:95:9e:bd:12:13:ff:f2: 5e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E5:1D:51:72:6F:60:E5:38:B5:32:E1:9C:33:3B:1C:B4:B6:1A:C5 X509v3 Authority Key Identifier: keyid:BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:13:40:fc:a6:ca:32:9e:80:c2:e7:39:2c:db:7e:71:b7:e8: 76:c5:d0:17:4a:18:19:f8:d3:05:6a:03:69:cc:1e:75:a2:61: dc:ed:f9:40:54:67:b8:a2:f1:7a:16:bc:fc:be:eb:8f:a1:92: 77:df:59:92:8c:3e:5b:18:ed:30:89:66:16:2d:a4:f7:23:25: 6b:d0:0c:3c:7b:07:81:94:e3:73:d3:6d:37:ae:49:b8:ca:9e: 53:a4:ec:b3:c6:30:34:9b:2f:42:41:fc:2c:f2:b7:41:23:a0: fb:e9:77:a4:6e:bc:39:5f:95:b9:f2:12:e6:70:7d:1b:61:c1: 5a:14:95:a4:cd:6c:d4:93:bd:e1:44:e5:06:d5:e2:f9:1d:05: f1:63:f0:83:4d:a7:68:c8:c7:ad:19:f3:4f:dd:0c:ae:72:e1: cc:02:9e:15:f4:3c:db:e7:34:53:5c:ab:0f:75:2c:7b:4a:4e: b6:62:a6:cb:1f:5d:0a:9d:4d:55:5d:5d:2d:a9:29:af:cd:34: 6a:ab:0e:7a:17:4d:3a:c8:66:1b:6d:2f:63:36:f5:30:c1:26: 7a:96:91:f3:b1:22:df:8e:04:4c:ec:7b:64:5f:61:c2:e2:a1: a4:02:52:31:71:39:02:8a:7d:52:f4:0d:c1:85:ac:e4:a0:44: ec:d2:fd:9f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXjSpP61iLdkHCtsMotD5DWlEBK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEz RUYwRjVFQjAeFw0yNTA0MTgwODI1NTlaFw0yNTA0MjExMDUxNTlaMDMxMTAvBgNV BAMTKDJERTUxRDUxNzI2RjYwRTUzOEI1MzJFMTlDMzMzQjFDQjRCNjFBQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfh0+KnVLOVqiHyVaffyOXLCro Ts975y4351PWSdKXC3dsvOVRtystgMsSfk17909JufFOEwdVyzJs14Ob3sC/scxN UT0hISF9A0YuFSdZgG9TngEfVWYsnfooWNkAbXytoH0/hiUNaNSqaFqo9U8eI1z5 0mcXfGCIV8OYlBGzpg5vkkavwX7CYmyUJRs/Mi4SPqzz/MwrrZqGWG6b8brvIC8v BIt/NWmKkIUKdbg/VfYIf9GgmpZWr9TCTgpn+iwmYmBuLg6uSOeiFE62ZStMKcxZ 4MHoJmM2rlDi4+W+vVAytMyf9NXZPnmJ0FqwIFyswHGnkHNmlZ69EhP/8l4lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULeUdUXJvYOU4tTLhnDM7HLS2GsUwHwYDVR0j BBgwFoAUvWcx0FzWGBW8CnEcZZ8XMT7w9eswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmQyOWIzMi0zYTI5LTRhMTQtYmM5Yi1jNzZhMDA3Y2EwMzIvMC9CRDY3MzFEMDVD RDYxODE1QkMwQTcxMUM2NTlGMTczMTNFRjBGNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEzRUYw RjVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjJkMjliMzItM2EyOS00YTE0LWJj OWItYzc2YTAwN2NhMDMyLzAvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3 MzEzRUYwRjVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADMTQPymyjKegMLnOSzbfnG36HbF0BdKGBn4 0wVqA2nMHnWiYdzt+UBUZ7ii8XoWvPy+64+hknffWZKMPlsY7TCJZhYtpPcjJWvQ DDx7B4GU43PTbTeuSbjKnlOk7LPGMDSbL0JB/Czyt0EjoPvpd6RuvDlflbnyEuZw fRthwVoUlaTNbNSTveFE5QbV4vkdBfFj8INNp2jIx60Z80/dDK5y4cwCnhX0PNvn NFNcqw91LHtKTrZipssfXQqdTVVdXS2pKa/NNGqrDnoXTTrIZhttL2M29TDBJnqW kfOxIt+OBEzse2RfYcLioaQCUjFxOQKKfVL0DcGFrOSgROzS/Z8= -----END CERTIFICATE-----Generated at Sat Apr 19 12:14:46 2025 by rpki-client