$ rpki-client -vvf repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft File: BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft (raw, json) Hash identifier: tsWwuPkpQW3E/BhHjMS8h83XLBCb/mg8ShAz+Kho+68= Subject key identifier: A2:4D:3D:92:A0:32:06:14:9A:84:0E:2A:F9:A2:23:29:42:A1:AC:DD Authority key identifier: BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB Certificate issuer: /CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Certificate serial: 2A41021DEE31DD5D2BC7F78FFB71B1C24FCC246C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft Manifest number: D2 Signing time: Thu 05 Mar 2026 14:51:09 +0000 Manifest this update: Thu 05 Mar 2026 14:46:09 +0000 Manifest next update: Mon 09 Mar 2026 01:20:09 +0000 Files and hashes: 1: BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl (hash: WydaeuXTswCl/rcv0cg5DNXCRNA/l75QkSas/sh7w/c=) 2: 3136302e32322e39332e302f32342d3234203d3e20313532383335.roa (hash: SeJIZiTXDjba/24vDFwUassgzTgVWzwJ94ejAOzdpPE=) 3: 3136302e32322e39322e302f32342d3234203d3e20313532383335.roa (hash: +o6+ngIFA4hU6bMKlAFkTNxS1BaRiBEB0UhCbvig7rE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 01:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:41:02:1d:ee:31:dd:5d:2b:c7:f7:8f:fb:71:b1:c2:4f:cc:24:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Validity Not Before: Mar 5 14:46:09 2026 GMT Not After : Mar 9 01:20:09 2026 GMT Subject: CN=A24D3D92A03206149A840E2AF9A2232942A1ACDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ce:ca:c8:df:28:39:5d:bf:69:0d:e7:84:8f: c9:bc:ca:81:f4:9b:40:f2:2b:3e:d0:a5:e2:c2:ae: ef:55:3e:bc:5e:7b:62:f2:ed:fd:2e:4a:2c:9e:b1: 08:09:0d:68:4d:8a:94:31:56:22:d3:fe:ea:e2:e2: 2d:21:b4:2e:d0:32:67:9f:73:3e:47:34:61:d0:a0: 9d:58:0e:41:ea:4f:a8:0c:cf:82:3b:36:2d:9b:3f: e9:f2:6c:0f:01:b5:b2:64:d6:2e:0e:a0:93:87:fd: 81:86:95:85:a7:8f:f2:07:68:94:d6:e1:f7:aa:38: 84:0c:d1:37:78:82:24:f1:58:bc:47:a1:65:91:ca: c7:31:df:d7:2a:12:a3:5a:ea:80:2d:f7:d5:19:7b: a1:e0:29:db:18:65:52:59:be:7e:e2:d4:da:9c:4d: 82:d7:94:12:b3:8f:57:4d:9d:64:b5:55:0e:09:47: 6c:bf:a0:0e:5d:5f:85:0f:2e:17:69:b8:a3:02:b1: 20:34:77:49:2d:1b:c6:8f:87:4f:a8:2b:f6:44:ef: a7:af:e7:9c:55:8d:27:df:12:25:8a:06:92:30:fa: 01:72:51:ef:be:75:f2:72:02:b0:26:15:77:75:d5: 00:c9:4f:4d:3f:81:07:3e:13:26:17:3b:3d:bc:f7: 67:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4D:3D:92:A0:32:06:14:9A:84:0E:2A:F9:A2:23:29:42:A1:AC:DD X509v3 Authority Key Identifier: keyid:BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:f6:31:fa:ca:25:e4:a3:40:6c:a3:9d:0b:c7:06:7f:7c:63: a5:b6:61:df:f8:28:67:75:13:f9:2d:80:c0:6c:2c:4f:6d:df: b4:78:d4:9f:7c:5c:2e:8e:d6:7b:61:ec:a7:46:c3:15:c9:da: 35:7b:7c:ea:07:bd:ec:18:11:d9:61:a9:73:ea:27:a6:48:29: 7b:2a:bc:9f:aa:ec:47:16:80:17:f0:89:49:e2:b3:3a:3a:5f: 38:bc:56:75:b4:36:32:29:6e:07:33:7f:f4:b8:10:76:0a:0f: ab:ff:bc:18:76:c9:d8:3f:74:62:a6:07:44:79:56:7d:52:a8: 1d:9b:58:8d:ed:e2:d3:88:f4:bd:e5:ad:a1:f3:7d:96:d1:b9: 5f:2a:35:ad:26:11:2c:db:5e:85:29:8f:c1:32:0d:88:1d:4d: 03:ca:78:89:98:c9:68:a4:37:d8:6c:98:c5:b5:dd:79:43:85: 4f:3d:8b:2d:45:98:61:35:63:64:52:4c:8b:06:c1:3c:65:af: fe:0f:b0:9b:05:72:f4:e3:0b:76:e2:bb:df:16:50:23:6f:50: 94:da:54:58:c2:7f:e2:b5:94:dc:14:55:37:4b:8b:2a:c1:73: 00:25:46:73:46:4e:27:f4:d1:41:85:3a:de:0b:e4:97:9b:96: 37:7c:d3:6c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKkECHe4x3V0rx/eP+3Gxwk/MJGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEz RUYwRjVFQjAeFw0yNjAzMDUxNDQ2MDlaFw0yNjAzMDkwMTIwMDlaMDMxMTAvBgNV BAMTKEEyNEQzRDkyQTAzMjA2MTQ5QTg0MEUyQUY5QTIyMzI5NDJBMUFDREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9zsrI3yg5Xb9pDeeEj8m8yoH0 m0DyKz7QpeLCru9VPrxee2Ly7f0uSiyesQgJDWhNipQxViLT/uri4i0htC7QMmef cz5HNGHQoJ1YDkHqT6gMz4I7Ni2bP+nybA8BtbJk1i4OoJOH/YGGlYWnj/IHaJTW 4feqOIQM0Td4giTxWLxHoWWRyscx39cqEqNa6oAt99UZe6HgKdsYZVJZvn7i1Nqc TYLXlBKzj1dNnWS1VQ4JR2y/oA5dX4UPLhdpuKMCsSA0d0ktG8aPh0+oK/ZE76ev 55xVjSffEiWKBpIw+gFyUe++dfJyArAmFXd11QDJT00/gQc+EyYXOz2892fzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUok09kqAyBhSahA4q+aIjKUKhrN0wHwYDVR0j BBgwFoAUvWcx0FzWGBW8CnEcZZ8XMT7w9eswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmQyOWIzMi0zYTI5LTRhMTQtYmM5Yi1jNzZhMDA3Y2EwMzIvMC9CRDY3MzFEMDVD RDYxODE1QkMwQTcxMUM2NTlGMTczMTNFRjBGNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEzRUYw RjVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjJkMjliMzItM2EyOS00YTE0LWJj OWItYzc2YTAwN2NhMDMyLzAvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3 MzEzRUYwRjVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJj2MfrKJeSjQGyjnQvHBn98Y6W2Yd/4KGd1 E/ktgMBsLE9t37R41J98XC6O1nth7KdGwxXJ2jV7fOoHvewYEdlhqXPqJ6ZIKXsq vJ+q7EcWgBfwiUniszo6Xzi8VnW0NjIpbgczf/S4EHYKD6v/vBh2ydg/dGKmB0R5 Vn1SqB2bWI3t4tOI9L3lraHzfZbRuV8qNa0mESzbXoUpj8EyDYgdTQPKeImYyWik N9hsmMW13XlDhU89iy1FmGE1Y2RSTIsGwTxlr/4PsJsFcvTjC3biu98WUCNvUJTa VFjCf+K1lNwUVTdLiyrBcwAlRnNGTif00UGFOt4L5Jebljd802w= -----END CERTIFICATE-----Generated at Sat Mar 7 17:50:34 2026 by rpki-client