$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft File: BCDF6D8F5670257F852914E87D552983AA37A3A3.mft (raw, json) Hash identifier: U9lMebzMFUS6BTOL4KQlJy5nK2JG2OO7iEoI4M64E7I= Subject key identifier: 2A:D6:63:41:9C:FC:DB:75:9F:F1:20:B2:CF:19:82:BA:20:68:51:92 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 6E4D569CA33508D42B0664EFDAB4266ED86FFE67 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft Manifest number: 0417 Signing time: Thu 03 Apr 2025 18:10:56 +0000 Manifest this update: Thu 03 Apr 2025 18:05:56 +0000 Manifest next update: Sun 06 Apr 2025 23:54:56 +0000 Files and hashes: 1: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (hash: 0N5j+ZERhxA6Ar8dT9/oyVhTL5hECc6nE7wFownHGuo=) 2: BCDF6D8F5670257F852914E87D552983AA37A3A3.crl (hash: XGqq8LuI4vQg78Ymtez6g+2GN34gRh+HH3wMFiSbpYc=) 3: 3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa (hash: bwkHoMcFkTxg1cprLBeFyt3e6yMZZa8kwMNQMpEMTkk=) 4: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (hash: wXlkmxwi7/34ddrk854GfkHymHTZJQyn7AeLJRM2mj8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 23:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4d:56:9c:a3:35:08:d4:2b:06:64:ef:da:b4:26:6e:d8:6f:fe:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Apr 3 18:05:56 2025 GMT Not After : Apr 6 23:54:56 2025 GMT Subject: CN=2AD663419CFCDB759FF120B2CF1982BA20685192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:09:1b:f2:58:a4:28:35:26:cd:c3:69:5b:b8: 12:65:35:f2:af:55:5d:ab:0e:f7:7f:f3:dd:c9:08: f7:a6:43:9e:fc:2f:ca:79:c4:19:bd:74:a0:6a:07: 89:81:c0:51:74:74:1f:26:bf:00:93:4a:c3:51:17: 08:f0:84:e3:2b:e3:ac:9d:b0:af:9f:df:c6:96:a1: c7:91:83:25:70:6d:05:66:bf:a2:11:ce:12:46:61: 09:02:2f:9c:76:d7:b2:d6:9e:e8:4d:ee:52:35:93: 76:67:dc:d8:21:70:1e:c9:91:24:54:2b:49:c7:62: f9:d0:74:c9:1d:d6:67:c0:bf:3c:9b:e4:69:47:10: be:7b:8d:17:32:6a:5f:da:c5:16:74:b8:aa:bb:35: 08:58:dc:1b:22:67:eb:82:9f:e7:93:6f:08:69:50: b4:4d:05:27:a3:eb:c0:ef:75:31:a8:eb:4c:82:d2: fd:dd:69:b6:58:d9:b8:2a:40:f0:b2:7a:e7:3b:0c: af:24:34:d4:cf:18:6f:c1:0f:c6:00:80:2c:f6:b3: 36:06:f4:0c:84:f9:c9:e3:f5:45:0b:92:63:9e:3c: e4:33:f7:4b:52:e7:64:dc:d8:98:51:af:54:24:7d: 08:5b:a2:c1:e9:85:20:29:7e:8e:72:b5:5a:39:14: d9:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D6:63:41:9C:FC:DB:75:9F:F1:20:B2:CF:19:82:BA:20:68:51:92 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:a6:7e:6b:a2:cd:14:cb:8f:22:5d:42:29:0f:51:28:f1:e4: 92:68:73:a7:3a:d9:2b:31:4a:f4:79:4d:fe:ae:98:06:aa:11: f9:13:4c:fd:84:c6:26:12:b2:99:87:bd:1c:50:7c:55:5c:69: 5e:28:bf:a6:29:fe:4c:f6:2a:bb:4d:6d:5e:38:11:2e:25:c4: bb:f7:c4:bf:cd:3a:1f:97:5b:fb:9e:29:40:c4:08:30:70:c6: fb:b0:7c:2d:fc:8a:60:25:5d:d4:1f:59:2f:60:ed:cb:f2:b0: 2e:70:83:c0:d4:ed:3a:c1:23:7c:a6:0a:9b:cf:d7:35:90:b9: d5:c7:6f:97:03:d0:47:ab:fd:7e:ea:1f:5f:5c:37:c1:d3:ff: b1:28:1f:f7:c6:16:bd:fe:c5:15:30:9c:e0:d6:b2:28:4d:1c: f0:8a:18:7f:3b:fc:30:a6:26:5c:7f:db:27:c8:58:38:20:8f: 2c:cd:3d:3c:63:f4:6c:9f:2c:1f:bc:29:35:5a:d0:d1:03:2f: 2b:f0:7c:de:01:03:cf:91:fa:c3:89:32:71:5e:8a:fc:f7:8e: 49:89:9b:49:3b:aa:03:89:0a:a5:cb:eb:eb:84:84:f5:88:07: 27:b6:e4:0b:2b:5f:3b:2c:d8:5a:e9:07:8c:80:0b:fd:df:bf: f4:a3:e1:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbk1WnKM1CNQrBmTv2rQmbthv/mcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNTA0MDMxODA1NTZaFw0yNTA0MDYyMzU0NTZaMDMxMTAvBgNV BAMTKDJBRDY2MzQxOUNGQ0RCNzU5RkYxMjBCMkNGMTk4MkJBMjA2ODUxOTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbCRvyWKQoNSbNw2lbuBJlNfKv VV2rDvd/893JCPemQ578L8p5xBm9dKBqB4mBwFF0dB8mvwCTSsNRFwjwhOMr46yd sK+f38aWoceRgyVwbQVmv6IRzhJGYQkCL5x217LWnuhN7lI1k3Zn3NghcB7JkSRU K0nHYvnQdMkd1mfAvzyb5GlHEL57jRcyal/axRZ0uKq7NQhY3BsiZ+uCn+eTbwhp ULRNBSej68DvdTGo60yC0v3dabZY2bgqQPCyeuc7DK8kNNTPGG/BD8YAgCz2szYG 9AyE+cnj9UULkmOePOQz90tS52Tc2JhRr1QkfQhbosHphSApfo5ytVo5FNmRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKtZjQZz823Wf8SCyzxmCuiBoUZIwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODc3YjAxY2YtYjFjOS00NTBmLTg1 NTEtNGRjYjRjYmQ0MjYyLzAvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5 ODNBQTM3QTNBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIKmfmuizRTLjyJdQikPUSjx5JJoc6c62Ssx SvR5Tf6umAaqEfkTTP2ExiYSspmHvRxQfFVcaV4ov6Yp/kz2KrtNbV44ES4lxLv3 xL/NOh+XW/ueKUDECDBwxvuwfC38imAlXdQfWS9g7cvysC5wg8DU7TrBI3ymCpvP 1zWQudXHb5cD0Eer/X7qH19cN8HT/7EoH/fGFr3+xRUwnODWsihNHPCKGH87/DCm Jlx/2yfIWDggjyzNPTxj9GyfLB+8KTVa0NEDLyvwfN4BA8+R+sOJMnFeivz3jkmJ m0k7qgOJCqXL6+uEhPWIBye25AsrXzss2FrpB4yAC/3fv/Sj4aU= -----END CERTIFICATE-----Generated at Sat Apr 5 21:21:12 2025 by rpki-client