$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft File: BCDF6D8F5670257F852914E87D552983AA37A3A3.mft (raw, json) Hash identifier: VHT4zulwrP2Pt7KECL7bKkeZU5yNvvkWav16LeniWVg= Subject key identifier: E5:5B:24:53:DC:1E:EB:58:B4:F5:3C:4F:57:26:ED:39:39:91:38:96 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 2018B97DF25A6AE0F7852BEF15D31394DE46569F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft Manifest number: 04AD Signing time: Fri 06 Mar 2026 22:21:04 +0000 Manifest this update: Fri 06 Mar 2026 22:16:04 +0000 Manifest next update: Tue 10 Mar 2026 08:01:04 +0000 Files and hashes: 1: BCDF6D8F5670257F852914E87D552983AA37A3A3.crl (hash: Lmex6jT4gCSCaJZe7yy7GAorI9t2sqxcOuCDPbZ1/hg=) 2: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (hash: ZtfrmcdIDZFk5FXV0vrgffSS//LC3R042y4pGOoRFVw=) 3: 3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa (hash: 2JYulwUxi2T/jzgAmBWLWpOPU3Z1C06NLPJ2YJd9h44=) 4: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (hash: gks4E4RAlqsYzpMbY7s86LphrkEHlbXfODEV9a6VKSU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 22:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:18:b9:7d:f2:5a:6a:e0:f7:85:2b:ef:15:d3:13:94:de:46:56:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Mar 6 22:16:04 2026 GMT Not After : Mar 10 08:01:04 2026 GMT Subject: CN=E55B2453DC1EEB58B4F53C4F5726ED3939913896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ef:2b:4f:db:50:75:1d:cd:5d:41:7e:ab:7b: a6:d3:68:69:97:a3:7f:25:03:ed:61:6b:dc:a2:38: 4c:87:4e:c3:b2:f4:78:3c:e5:2e:64:8c:82:93:4b: 77:53:54:d1:18:13:55:f9:91:f6:f3:ee:39:b9:7b: ae:a7:f0:54:08:da:a7:c5:6e:fa:ce:a1:f6:82:dc: ca:54:ad:da:36:c8:0b:43:01:bf:a0:86:07:c6:fb: 9c:aa:c9:0d:b4:8d:b1:ab:78:60:40:fd:76:25:40: cc:eb:f1:01:f7:8f:d4:1c:2b:54:ee:fa:09:85:5f: 44:49:0b:16:4d:38:d6:f7:02:9b:ab:27:9f:f7:78: 70:54:a7:25:4f:75:42:64:d7:8e:4c:78:19:06:ac: b8:13:4d:2f:85:1e:56:32:03:19:70:1d:1d:3a:cd: 54:fd:92:6b:fc:8f:0a:19:2b:79:f7:84:ba:80:f2: 99:1f:5a:51:e9:95:fa:43:78:04:01:e7:1f:56:79: 6d:d0:07:7a:cd:6f:c6:09:d5:6d:74:b1:61:aa:e7: da:c0:4a:be:2d:7d:34:f5:a9:47:6e:e9:c8:5c:6a: 97:e0:5e:9a:b9:05:ad:f7:24:f5:9e:f4:f0:ec:28: e7:3d:45:e3:06:db:8e:d5:ba:60:17:b3:19:5c:bc: 66:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5B:24:53:DC:1E:EB:58:B4:F5:3C:4F:57:26:ED:39:39:91:38:96 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ac:93:50:d9:64:90:58:51:05:16:ce:6d:55:2c:aa:bd:74: 60:4b:61:fa:a3:f5:e8:55:a2:5f:c4:06:3d:45:31:28:f3:25: 4c:d3:74:43:b9:23:66:4a:5f:70:9c:ef:35:2c:a5:64:aa:0a: 5b:86:29:5e:5a:63:0d:2b:31:31:03:31:4c:16:c8:86:3c:0d: 55:80:a3:70:0a:a9:5b:2b:25:57:b2:46:c0:c4:3f:8d:df:61: f7:56:5f:b9:e0:f7:8e:37:c6:00:e1:29:15:2c:91:8d:50:a1: 7a:a3:e5:ef:2c:c7:4c:85:da:40:49:ac:41:c4:6c:96:96:9b: f0:e8:7a:92:77:06:ae:2e:56:2d:eb:6c:90:ae:f7:78:0f:11: 88:91:1e:c1:35:0e:e6:e9:e4:17:45:0d:59:75:70:77:17:07: a2:4c:69:1a:bb:19:20:3e:a5:cc:e2:8b:d7:51:20:50:3e:f4: e5:84:8d:08:1d:d0:ef:02:5c:8b:4e:79:66:23:b5:74:ef:a2: 23:43:d2:56:fe:b6:6c:87:ae:64:f5:be:8e:33:19:3c:a1:6e: 70:02:0c:89:c2:c0:13:0c:00:0b:e5:6e:11:77:b0:68:6b:b6: 40:70:de:19:5f:a7:ec:1a:2c:7b:ef:ba:03:ec:97:12:a1:9c: 94:44:65:c6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIBi5ffJaauD3hSvvFdMTlN5GVp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNjAzMDYyMjE2MDRaFw0yNjAzMTAwODAxMDRaMDMxMTAvBgNV BAMTKEU1NUIyNDUzREMxRUVCNThCNEY1M0M0RjU3MjZFRDM5Mzk5MTM4OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD7ytP21B1Hc1dQX6re6bTaGmX o38lA+1ha9yiOEyHTsOy9Hg85S5kjIKTS3dTVNEYE1X5kfbz7jm5e66n8FQI2qfF bvrOofaC3MpUrdo2yAtDAb+ghgfG+5yqyQ20jbGreGBA/XYlQMzr8QH3j9QcK1Tu +gmFX0RJCxZNONb3ApurJ5/3eHBUpyVPdUJk145MeBkGrLgTTS+FHlYyAxlwHR06 zVT9kmv8jwoZK3n3hLqA8pkfWlHplfpDeAQB5x9WeW3QB3rNb8YJ1W10sWGq59rA Sr4tfTT1qUdu6chcapfgXpq5Ba33JPWe9PDsKOc9ReMG247VumAXsxlcvGYXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5VskU9we61i09TxPVybtOTmROJYwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODc3YjAxY2YtYjFjOS00NTBmLTg1 NTEtNGRjYjRjYmQ0MjYyLzAvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5 ODNBQTM3QTNBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIusk1DZZJBYUQUWzm1VLKq9dGBLYfqj9ehV ol/EBj1FMSjzJUzTdEO5I2ZKX3Cc7zUspWSqCluGKV5aYw0rMTEDMUwWyIY8DVWA o3AKqVsrJVeyRsDEP43fYfdWX7ng9443xgDhKRUskY1QoXqj5e8sx0yF2kBJrEHE bJaWm/DoepJ3Bq4uVi3rbJCu93gPEYiRHsE1Dubp5BdFDVl1cHcXB6JMaRq7GSA+ pczii9dRIFA+9OWEjQgd0O8CXItOeWYjtXTvoiND0lb+tmyHrmT1vo4zGTyhbnAC DInCwBMMAAvlbhF3sGhrtkBw3hlfp+waLHvvugPslxKhnJREZcY= -----END CERTIFICATE-----Generated at Sat Mar 7 21:20:55 2026 by rpki-client