$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft File: BCDF6D8F5670257F852914E87D552983AA37A3A3.mft (raw, json) Hash identifier: zf//GcMSlQsGTDQzDiuJ0A0xWcItwpCAHd50Vs3HsO0= Subject key identifier: 09:CE:F5:C8:C3:F1:2B:11:53:9F:7F:71:0C:64:05:67:23:6A:6A:54 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 3EBFB5356A692C580C5D8B910DC024F1CC49AC54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft Manifest number: 0432 Signing time: Tue 03 Jun 2025 06:31:24 +0000 Manifest this update: Tue 03 Jun 2025 06:26:24 +0000 Manifest next update: Fri 06 Jun 2025 11:30:24 +0000 Files and hashes: 1: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (hash: wXlkmxwi7/34ddrk854GfkHymHTZJQyn7AeLJRM2mj8=) 2: BCDF6D8F5670257F852914E87D552983AA37A3A3.crl (hash: XGDeokgbtjlNhtlRGlACxUIWpKWqiBUP9dUtiQ3nUW0=) 3: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (hash: 0N5j+ZERhxA6Ar8dT9/oyVhTL5hECc6nE7wFownHGuo=) 4: 3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa (hash: bwkHoMcFkTxg1cprLBeFyt3e6yMZZa8kwMNQMpEMTkk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 11:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:bf:b5:35:6a:69:2c:58:0c:5d:8b:91:0d:c0:24:f1:cc:49:ac:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: Jun 3 06:26:24 2025 GMT Not After : Jun 6 11:30:24 2025 GMT Subject: CN=09CEF5C8C3F12B11539F7F710C640567236A6A54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:57:bb:c6:b6:b6:b9:fa:41:6d:11:2f:7e:c6: 65:50:d6:1a:ad:cc:52:0b:94:64:fb:6d:f9:d5:08: c4:e1:49:b4:b6:00:cf:56:82:fa:60:c0:77:cf:a0: 94:1d:b2:bf:e8:cd:32:59:63:d4:a4:80:b8:e5:8b: 01:5f:8a:44:08:f1:56:b9:f2:76:5e:b5:5b:c3:b5: 99:dd:88:cf:4f:dc:cb:3a:f5:c5:31:0a:f3:8a:1a: 5d:8a:74:37:14:66:3e:53:56:9e:8e:d0:7f:96:82: 05:a3:4f:c0:3d:d0:fe:6d:70:a6:4a:7b:86:4e:68: 6e:9f:4c:32:04:53:67:16:00:18:87:de:d3:e0:6c: be:52:e0:1d:73:ca:3e:5d:31:96:af:2d:25:32:26: 0e:59:45:02:34:33:0c:ba:4e:79:28:c8:9b:48:30: 5c:9a:52:7b:8a:cb:24:b4:2f:c4:6a:5d:b2:d7:e4: d8:68:05:fd:77:de:d5:1d:0d:10:91:03:92:b5:e6: 15:2f:55:a6:d3:16:8d:e4:d2:29:f2:ba:af:02:3d: 14:bf:a5:03:61:56:36:b3:e3:db:51:d0:d8:3c:f7: f0:fa:21:d5:42:b8:79:94:63:f1:0c:a3:f0:b7:3a: b8:b1:79:b4:92:77:91:b2:4d:61:bf:10:bb:00:e7: e7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CE:F5:C8:C3:F1:2B:11:53:9F:7F:71:0C:64:05:67:23:6A:6A:54 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d4:cd:db:15:57:d5:5a:b0:b0:9c:6e:4d:f2:43:6f:ba:ce: c7:d8:84:92:7f:c9:60:db:df:31:b3:88:bb:ee:44:13:31:90: d2:ca:06:9c:c6:e3:f8:65:2b:dc:5e:f1:22:e3:8c:a0:c9:db: f8:02:81:fd:82:dc:aa:e1:9f:54:41:7a:bc:9d:2c:10:1b:1f: 16:6c:41:0a:ec:30:06:5a:3b:82:6c:17:36:55:9b:1a:c8:34: 95:2d:e3:70:a2:57:54:75:fd:92:33:a5:60:f3:7f:bd:fe:66: 44:c0:77:70:00:7d:7a:7b:3c:36:3f:3d:d9:6f:00:a0:0e:19: 27:38:35:b1:c1:43:7d:61:32:74:1f:ac:49:7d:5f:2a:0f:78: 08:3f:6e:57:8c:bc:9f:b0:b6:ac:ed:03:32:37:d3:ef:1d:8e: 23:0d:95:68:6f:b6:a5:12:66:8f:45:f0:77:15:bc:ba:c2:c4: 98:a6:42:fe:8d:f8:8d:89:43:64:26:69:46:de:c8:61:cd:ec: 2e:94:1e:e1:39:06:ff:8d:35:80:be:fe:34:fa:a3:b0:67:27: 5c:a6:b5:2f:4f:12:f9:d7:bc:a5:87:b0:51:18:0f:a7:5a:70: aa:c5:5a:f0:14:29:d2:87:3f:81:35:6a:cd:70:7f:7b:8d:3e: 7f:63:74:e9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPr+1NWppLFgMXYuRDcAk8cxJrFQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNTA2MDMwNjI2MjRaFw0yNTA2MDYxMTMwMjRaMDMxMTAvBgNV BAMTKDA5Q0VGNUM4QzNGMTJCMTE1MzlGN0Y3MTBDNjQwNTY3MjM2QTZBNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0V7vGtra5+kFtES9+xmVQ1hqt zFILlGT7bfnVCMThSbS2AM9WgvpgwHfPoJQdsr/ozTJZY9SkgLjliwFfikQI8Va5 8nZetVvDtZndiM9P3Ms69cUxCvOKGl2KdDcUZj5TVp6O0H+WggWjT8A90P5tcKZK e4ZOaG6fTDIEU2cWABiH3tPgbL5S4B1zyj5dMZavLSUyJg5ZRQI0Mwy6TnkoyJtI MFyaUnuKyyS0L8RqXbLX5NhoBf133tUdDRCRA5K15hUvVabTFo3k0inyuq8CPRS/ pQNhVjaz49tR0Ng89/D6IdVCuHmUY/EMo/C3OrixebSSd5GyTWG/ELsA5+c7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCc71yMPxKxFTn39xDGQFZyNqalQwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODc3YjAxY2YtYjFjOS00NTBmLTg1 NTEtNGRjYjRjYmQ0MjYyLzAvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5 ODNBQTM3QTNBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAvUzdsVV9VasLCcbk3yQ2+6zsfYhJJ/yWDb 3zGziLvuRBMxkNLKBpzG4/hlK9xe8SLjjKDJ2/gCgf2C3Krhn1RBerydLBAbHxZs QQrsMAZaO4JsFzZVmxrINJUt43CiV1R1/ZIzpWDzf73+ZkTAd3AAfXp7PDY/Pdlv AKAOGSc4NbHBQ31hMnQfrEl9XyoPeAg/bleMvJ+wtqztAzI30+8djiMNlWhvtqUS Zo9F8HcVvLrCxJimQv6N+I2JQ2QmaUbeyGHN7C6UHuE5Bv+NNYC+/jT6o7BnJ1ym tS9PEvnXvKWHsFEYD6dacKrFWvAUKdKHP4E1as1wf3uNPn9jdOk= -----END CERTIFICATE-----Generated at Tue Jun 3 23:42:08 2025 by rpki-client