$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft File: BCDF6D8F5670257F852914E87D552983AA37A3A3.mft (raw, json) Hash identifier: WHx/pX056oKithS7LuEYH0++LtAl+ojYgm6zRQA94no= Subject key identifier: 9F:5C:5B:D3:94:D3:9A:71:ED:CB:98:3A:1B:62:B3:FB:7A:88:AA:C4 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 4D22989B7B6FF4C299426DD6E89F680FCFC32832 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft Manifest number: 045D Signing time: Sat 06 Sep 2025 16:00:57 +0000 Manifest this update: Sat 06 Sep 2025 15:55:57 +0000 Manifest next update: Tue 09 Sep 2025 22:46:57 +0000 Files and hashes: 1: 3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa (hash: 2JYulwUxi2T/jzgAmBWLWpOPU3Z1C06NLPJ2YJd9h44=) 2: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (hash: ZtfrmcdIDZFk5FXV0vrgffSS//LC3R042y4pGOoRFVw=) 3: BCDF6D8F5670257F852914E87D552983AA37A3A3.crl (hash: BqvWjNiSa3Nazm2JX9TCttCMTq+UVkhvFFPa2eFqGEw=) 4: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (hash: gks4E4RAlqsYzpMbY7s86LphrkEHlbXfODEV9a6VKSU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 22:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:22:98:9b:7b:6f:f4:c2:99:42:6d:d6:e8:9f:68:0f:cf:c3:28:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Sep 6 15:55:57 2025 GMT Not After : Sep 9 22:46:57 2025 GMT Subject: CN=9F5C5BD394D39A71EDCB983A1B62B3FB7A88AAC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:1a:fd:9d:7e:9d:1c:1c:70:bb:89:6a:bb: 44:1b:64:f4:42:95:fd:49:48:da:52:86:c4:eb:be: e2:e2:04:a9:16:af:1e:bf:09:c8:1c:1a:4a:51:ef: c1:1b:3e:d7:b3:91:3c:d4:c3:36:36:c5:41:9b:37: 67:b1:01:29:b2:a1:3f:af:6a:84:87:86:27:f5:24: 24:73:8a:7b:87:61:bd:23:4d:36:00:da:53:0a:02: 22:87:27:05:95:79:58:8b:6c:b9:2c:d6:da:3a:e1: 33:22:ed:9d:c7:22:31:8e:aa:55:60:9d:25:ad:ff: 76:65:4b:94:c0:eb:c7:26:ba:bc:d6:5e:73:88:38: 37:7b:0a:85:38:f8:d2:e6:c5:b6:b2:8e:3d:ba:23: b7:77:4a:d0:35:19:af:85:1d:34:87:37:1a:27:10: 63:de:21:9d:52:f6:54:d4:18:f6:41:c1:9a:08:0b: da:1e:d7:34:fc:6a:99:d9:25:4f:7c:cb:90:0b:27: a3:12:97:82:67:72:9d:7f:1d:07:d5:d2:fd:3e:9e: 47:d6:27:a4:34:6d:aa:4c:74:be:da:6a:b7:10:79: 26:c9:8a:73:28:26:2d:b1:10:bb:7b:3c:8b:c0:6c: 5c:3c:49:4a:77:fe:d9:dc:23:f8:e7:51:b2:77:13: 0d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:5C:5B:D3:94:D3:9A:71:ED:CB:98:3A:1B:62:B3:FB:7A:88:AA:C4 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:7a:06:16:53:f3:f9:d7:75:18:b9:6b:16:d7:37:d5:e5:54: a2:32:e7:6e:ac:ca:bf:9f:ee:93:cc:3a:9d:ef:d7:6a:36:b1: 64:28:2a:56:9f:ee:66:c1:96:ce:a9:8d:88:00:3f:06:03:0e: 1f:fa:f6:b2:f2:fd:73:32:51:2b:8c:83:cf:78:36:2c:d9:81: 27:b2:8e:c6:50:39:f2:6e:73:64:26:ce:2c:60:5d:ae:70:2f: a1:9c:b9:10:c8:71:f5:28:d4:59:12:40:e5:75:7c:4d:8b:ad: f1:50:24:b3:10:d0:9a:d1:91:92:4b:81:11:f3:5e:66:c0:69: d6:62:42:a4:0a:8d:c1:a6:9b:ce:a7:79:54:4b:76:a1:e5:62: 38:73:d8:f0:f0:d9:5b:d2:07:13:94:31:f9:f3:ed:16:d4:3c: b2:a4:f5:31:83:01:e4:a2:66:13:da:f5:b9:d5:bb:f5:da:35: d4:a9:ec:ec:18:53:b7:22:6d:eb:48:85:0c:4d:9f:77:09:af: 94:19:73:3b:14:d8:df:4a:01:fd:c6:36:1c:cc:fd:05:28:ba: e4:1f:2b:af:75:25:57:06:4d:33:83:63:a8:93:dc:40:4a:b2: ce:a9:23:70:4f:d9:01:4c:23:45:9d:d7:83:7c:08:5b:7d:81: af:d3:47:30 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTSKYm3tv9MKZQm3W6J9oD8/DKDIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNTA5MDYxNTU1NTdaFw0yNTA5MDkyMjQ2NTdaMDMxMTAvBgNV BAMTKDlGNUM1QkQzOTREMzlBNzFFRENCOTgzQTFCNjJCM0ZCN0E4OEFBQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxpBr9nX6dHBxwu4lqu0QbZPRC lf1JSNpShsTrvuLiBKkWrx6/CcgcGkpR78EbPtezkTzUwzY2xUGbN2exASmyoT+v aoSHhif1JCRzinuHYb0jTTYA2lMKAiKHJwWVeViLbLks1to64TMi7Z3HIjGOqlVg nSWt/3ZlS5TA68cmurzWXnOIODd7CoU4+NLmxbayjj26I7d3StA1Ga+FHTSHNxon EGPeIZ1S9lTUGPZBwZoIC9oe1zT8apnZJU98y5ALJ6MSl4Jncp1/HQfV0v0+nkfW J6Q0bapMdL7aarcQeSbJinMoJi2xELt7PIvAbFw8SUp3/tncI/jnUbJ3Ew3xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUn1xb05TTmnHty5g6G2Kz+3qIqsQwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODc3YjAxY2YtYjFjOS00NTBmLTg1 NTEtNGRjYjRjYmQ0MjYyLzAvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5 ODNBQTM3QTNBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHN6BhZT8/nXdRi5axbXN9XlVKIy526syr+f 7pPMOp3v12o2sWQoKlaf7mbBls6pjYgAPwYDDh/69rLy/XMyUSuMg894NizZgSey jsZQOfJuc2QmzixgXa5wL6GcuRDIcfUo1FkSQOV1fE2LrfFQJLMQ0JrRkZJLgRHz XmbAadZiQqQKjcGmm86neVRLdqHlYjhz2PDw2VvSBxOUMfnz7RbUPLKk9TGDAeSi ZhPa9bnVu/XaNdSp7OwYU7cibetIhQxNn3cJr5QZczsU2N9KAf3GNhzM/QUouuQf K691JVcGTTODY6iT3EBKss6pI3BP2QFMI0Wd14N8CFt9ga/TRzA= -----END CERTIFICATE-----Generated at Sun Sep 7 15:31:11 2025 by rpki-client