$ rpki-client -vvf repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft File: BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft (raw, json) Hash identifier: DARpXb9l7bK0yvDarZsZh11eCcswAoZt8LnWsk3wQJI= Subject key identifier: EF:8C:68:CD:FE:A3:E5:D9:F1:BD:73:C7:4C:C7:D5:8F:0D:5E:80:25 Authority key identifier: BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB Certificate issuer: /CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Certificate serial: 31B53046B9D243365E17FBC1C09A8DBDF4249FD3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft Manifest number: 7E Signing time: Fri 29 Aug 2025 22:41:05 +0000 Manifest this update: Fri 29 Aug 2025 22:36:05 +0000 Manifest next update: Tue 02 Sep 2025 08:27:05 +0000 Files and hashes: 1: BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl (hash: H/NguJgC5moAmzjtNDzhleXCGXsufzyJXXzIk8IZdn0=) 2: 3136302e32322e39322e302f32342d3234203d3e20313532383335.roa (hash: oo6mbVmnsw7e/0gjMVSA14EiHwAIiPeTDgFb+zR54Og=) 3: 3136302e32322e39332e302f32342d3234203d3e20313532383335.roa (hash: WHnXa3+l2BVF9pDA34p2y5MPrgNJ1xOLxXqgijc3bbM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Sep 2025 02:27:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:b5:30:46:b9:d2:43:36:5e:17:fb:c1:c0:9a:8d:bd:f4:24:9f:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD6731D05CD61815BC0A711C659F17313EF0F5EB Validity Not Before: Aug 29 22:36:05 2025 GMT Not After : Sep 2 08:27:05 2025 GMT Subject: CN=EF8C68CDFEA3E5D9F1BD73C74CC7D58F0D5E8025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b6:e3:6c:fb:f6:a0:a0:f7:b5:57:53:57:86: bd:3d:b8:35:8c:63:ed:8c:62:17:26:b8:28:20:5f: 62:a4:94:0e:56:9f:bf:02:e5:8f:a2:7c:9f:79:f2: 9a:d7:d0:ca:ab:ac:cd:de:ae:54:16:67:93:39:90: 9a:c9:c6:c4:73:39:9b:c0:c0:1f:3c:61:aa:e3:38: 7e:f0:af:cf:93:c6:9c:37:c4:6f:af:ee:ef:fb:9e: be:73:87:0a:2d:ff:04:02:66:d4:5f:0b:fe:4d:21: 8b:96:7a:31:82:e7:a8:d6:01:b0:ec:fd:8f:1d:65: aa:e3:e0:25:04:96:d7:53:57:bc:93:c3:3d:f5:df: e9:89:be:4c:5c:26:6f:24:b0:ce:61:6a:1e:9c:9b: c5:ba:52:15:af:76:7e:d6:4f:c6:3e:91:4b:a2:bc: a5:25:5a:31:85:f9:2c:11:93:1c:49:85:04:46:3d: 1e:d2:55:f3:99:59:f9:8e:5d:00:53:6f:e1:30:4e: 2a:a4:47:41:de:95:ea:54:67:0b:2c:36:60:d7:00: 6a:fc:5e:01:e1:1f:6d:a3:eb:5e:1d:de:a9:75:9d: 72:37:ed:25:8e:ad:21:24:8b:b1:6d:e6:1d:a3:81: a4:5a:30:56:28:ca:75:1e:db:5b:b1:01:b1:ed:f0: b9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8C:68:CD:FE:A3:E5:D9:F1:BD:73:C7:4C:C7:D5:8F:0D:5E:80:25 X509v3 Authority Key Identifier: keyid:BD:67:31:D0:5C:D6:18:15:BC:0A:71:1C:65:9F:17:31:3E:F0:F5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD6731D05CD61815BC0A711C659F17313EF0F5EB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/62d29b32-3a29-4a14-bc9b-c76a007ca032/0/BD6731D05CD61815BC0A711C659F17313EF0F5EB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:a1:5e:14:2a:5d:9b:f0:55:7a:8d:6d:cb:0c:83:c5:e7:bc: 58:d2:87:9a:29:7e:5c:90:bb:f4:23:8e:53:4c:39:36:cd:f8: ee:23:21:98:ae:5c:33:71:d7:2f:dd:47:99:c0:43:2d:dd:8a: d4:d7:cd:7c:7f:ba:e0:d8:b6:39:5e:eb:66:73:57:1e:6f:60: d4:a3:b3:e6:4d:31:49:c5:0e:9f:52:3e:ae:b1:80:c4:64:6c: b3:c6:d1:34:63:22:6a:6b:5c:96:62:3e:9b:da:7c:a2:9f:e8: d7:ad:d9:0a:13:56:b4:81:49:c0:ec:04:1e:24:0a:62:72:0a: 6e:df:cc:ba:85:de:6f:2b:9d:5c:9f:60:44:47:85:4c:eb:c1: 79:fe:21:71:43:85:27:d1:65:47:78:2c:cb:e0:99:95:83:a8: c6:f0:2e:ca:bf:31:09:f6:cc:5b:ea:34:48:83:dd:d7:8c:11: 54:ae:06:cb:a6:83:7c:d2:c4:57:64:a1:78:0d:6f:c4:11:4a: 6c:3d:99:9e:c1:db:f5:09:05:40:c3:3e:b9:d8:93:92:43:4d: 27:8b:3a:50:56:94:69:a4:54:c9:28:2f:ee:ac:cc:d2:65:9c: 5c:46:65:97:1f:df:50:9c:f9:d0:30:8a:f1:2f:2b:32:e7:d3: 92:d6:64:9e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMbUwRrnSQzZeF/vBwJqNvfQkn9MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEz RUYwRjVFQjAeFw0yNTA4MjkyMjM2MDVaFw0yNTA5MDIwODI3MDVaMDMxMTAvBgNV BAMTKEVGOEM2OENERkVBM0U1RDlGMUJENzNDNzRDQzdENThGMEQ1RTgwMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFtuNs+/agoPe1V1NXhr09uDWM Y+2MYhcmuCggX2KklA5Wn78C5Y+ifJ958prX0MqrrM3erlQWZ5M5kJrJxsRzOZvA wB88YarjOH7wr8+Txpw3xG+v7u/7nr5zhwot/wQCZtRfC/5NIYuWejGC56jWAbDs /Y8dZarj4CUEltdTV7yTwz313+mJvkxcJm8ksM5hah6cm8W6UhWvdn7WT8Y+kUui vKUlWjGF+SwRkxxJhQRGPR7SVfOZWfmOXQBTb+EwTiqkR0HelepUZwssNmDXAGr8 XgHhH22j614d3ql1nXI37SWOrSEki7Ft5h2jgaRaMFYoynUe21uxAbHt8LkjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU74xozf6j5dnxvXPHTMfVjw1egCUwHwYDVR0j BBgwFoAUvWcx0FzWGBW8CnEcZZ8XMT7w9eswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MmQyOWIzMi0zYTI5LTRhMTQtYmM5Yi1jNzZhMDA3Y2EwMzIvMC9CRDY3MzFEMDVD RDYxODE1QkMwQTcxMUM2NTlGMTczMTNFRjBGNUVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3MzEzRUYw RjVFQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjJkMjliMzItM2EyOS00YTE0LWJj OWItYzc2YTAwN2NhMDMyLzAvQkQ2NzMxRDA1Q0Q2MTgxNUJDMEE3MTFDNjU5RjE3 MzEzRUYwRjVFQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE+hXhQqXZvwVXqNbcsMg8XnvFjSh5opflyQ u/QjjlNMOTbN+O4jIZiuXDNx1y/dR5nAQy3ditTXzXx/uuDYtjle62ZzVx5vYNSj s+ZNMUnFDp9SPq6xgMRkbLPG0TRjImprXJZiPpvafKKf6Net2QoTVrSBScDsBB4k CmJyCm7fzLqF3m8rnVyfYERHhUzrwXn+IXFDhSfRZUd4LMvgmZWDqMbwLsq/MQn2 zFvqNEiD3deMEVSuBsumg3zSxFdkoXgNb8QRSmw9mZ7B2/UJBUDDPrnYk5JDTSeL OlBWlGmkVMkoL+6szNJlnFxGZZcf31Cc+dAwivEvKzLn05LWZJ4= -----END CERTIFICATE-----Generated at Sun Aug 31 00:58:30 2025 by rpki-client