$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft File: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft (raw, json) Hash identifier: 3xrMGeSMOEbm7nciGynh9xrhoOweKiTv1JzVpMyAiAQ= Subject key identifier: 69:37:4E:F7:33:31:EC:05:9A:C7:C7:A4:8A:44:F0:4C:8B:85:36:50 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 201B26865D8D9DB53D5B5EB4CCAF3C12D9AB05B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft Manifest number: BE Signing time: Tue 22 Jul 2025 19:31:09 +0000 Manifest this update: Tue 22 Jul 2025 19:26:09 +0000 Manifest next update: Fri 25 Jul 2025 22:47:09 +0000 Files and hashes: 1: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl (hash: IR6sWtV2c3/ZM8uzu5Y0jwYJh8RQcaESp4m9eSXEPk8=) 2: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (hash: Z2FYRByoR87CHEnziWjFnKQyuENb6OACYT6R1ULlqwE=) 3: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (hash: Gr1mlE+rzWEpOTNh6WPoTj4w/1KCxiBabRIKttXDzDg=) 4: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (hash: t349gF8xh8M32UG8Ruer+VIkvNUKNNfdFe/xLjKGLjs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:1b:26:86:5d:8d:9d:b5:3d:5b:5e:b4:cc:af:3c:12:d9:ab:05:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: Jul 22 19:26:09 2025 GMT Not After : Jul 25 22:47:09 2025 GMT Subject: CN=69374EF73331EC059AC7C7A48A44F04C8B853650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:95:3f:f6:57:53:ec:b9:91:4c:fe:cb:ca:ec: 47:1d:79:9b:b5:c5:cd:fd:23:18:54:b4:37:c8:ac: bd:a4:a5:0c:d1:23:7a:a0:40:86:64:ac:1b:d2:cc: 61:b0:30:e0:22:0d:35:1e:de:0f:ec:74:f7:c9:21: 49:54:e7:38:59:b6:50:92:b8:f0:b3:19:41:1e:53: ab:f2:97:88:b6:f1:8e:f4:e9:b9:07:17:23:77:b2: 1d:a2:2b:93:43:bb:0c:1c:59:21:f1:92:f3:69:1d: 4c:c4:4e:f6:e4:70:85:5b:82:e9:65:c3:b0:a0:01: a6:ad:97:4e:b4:73:44:78:b7:68:12:cc:7f:92:4c: 7e:3e:ff:74:58:e5:b8:ec:e6:72:af:07:59:79:87: 86:fb:ea:d8:96:51:99:bc:ea:0a:32:86:2d:97:74: 8c:7a:3d:3a:dd:8c:e3:de:a1:ae:fe:14:b7:4f:e2: 89:c3:e2:81:38:54:65:af:7e:9e:b0:2e:53:2f:4c: 0a:de:b7:29:be:24:06:69:7f:9a:89:d7:16:17:7d: 0e:32:e1:3e:2a:91:97:06:c5:de:f4:4b:bf:de:85: 3a:2f:86:37:6c:0c:64:8e:34:b5:3b:73:33:0d:5c: 40:84:19:a2:5f:63:a0:89:8d:ed:88:74:8c:54:f0: 94:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:37:4E:F7:33:31:EC:05:9A:C7:C7:A4:8A:44:F0:4C:8B:85:36:50 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e4:9e:0c:de:33:fc:95:2b:28:86:57:2d:db:06:1b:64:c8: 4f:2c:d1:c2:5d:08:fb:94:6a:18:86:4c:ab:a6:a8:57:20:68: 04:02:fd:b7:58:a7:a9:74:71:6e:2f:42:6d:3c:4d:48:04:41: 68:83:07:39:75:60:66:d9:00:bd:3f:80:5d:57:fe:2f:74:fd: 00:d1:d4:c8:d3:ba:fa:cc:6d:0f:e9:e0:6a:a0:43:14:30:5d: 2d:6f:19:58:f5:16:1d:52:14:22:00:eb:c2:e0:d7:ea:8a:32: e7:c9:49:18:22:33:51:30:50:c6:f7:09:78:46:b3:36:0a:0f: 88:04:ff:30:54:15:b9:65:bb:f9:d1:e6:c6:28:ff:71:ed:af: 93:86:b2:35:a0:2b:5a:71:c3:e4:9a:39:57:2a:af:6a:9b:f5: 62:78:16:de:c1:18:fb:cb:79:97:52:95:0e:da:05:34:ba:34: fc:a9:fb:10:d3:5e:47:72:be:11:13:04:5f:91:2f:95:cb:d4: a6:de:68:67:2e:c2:4e:9a:d1:36:54:b2:21:c5:b6:b9:86:82: 26:f8:76:3b:48:a7:65:a3:2e:41:c5:26:35:fd:90:fd:5e:d5: 88:5e:bb:5b:6b:ad:14:06:10:1a:47:2a:87:56:c7:32:70:63: 7b:28:e9:3a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIBsmhl2NnbU9W160zK88EtmrBbkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNTA3MjIxOTI2MDlaFw0yNTA3MjUyMjQ3MDlaMDMxMTAvBgNV BAMTKDY5Mzc0RUY3MzMzMUVDMDU5QUM3QzdBNDhBNDRGMDRDOEI4NTM2NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCilT/2V1PsuZFM/svK7EcdeZu1 xc39IxhUtDfIrL2kpQzRI3qgQIZkrBvSzGGwMOAiDTUe3g/sdPfJIUlU5zhZtlCS uPCzGUEeU6vyl4i28Y706bkHFyN3sh2iK5NDuwwcWSHxkvNpHUzETvbkcIVbgull w7CgAaatl060c0R4t2gSzH+STH4+/3RY5bjs5nKvB1l5h4b76tiWUZm86goyhi2X dIx6PTrdjOPeoa7+FLdP4onD4oE4VGWvfp6wLlMvTAretym+JAZpf5qJ1xYXfQ4y 4T4qkZcGxd70S7/ehTovhjdsDGSONLU7czMNXECEGaJfY6CJje2IdIxU8JSVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaTdO9zMx7AWax8ekikTwTIuFNlAwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjM2MDY2ZTgtOGUxOS00ZGU3LTk0 N2ItOTRlZTNjZDA5Zjg1LzAvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdE OTYzNjE4MjMxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI7kngzeM/yVKyiGVy3bBhtkyE8s0cJdCPuU ahiGTKumqFcgaAQC/bdYp6l0cW4vQm08TUgEQWiDBzl1YGbZAL0/gF1X/i90/QDR 1MjTuvrMbQ/p4GqgQxQwXS1vGVj1Fh1SFCIA68Lg1+qKMufJSRgiM1EwUMb3CXhG szYKD4gE/zBUFbllu/nR5sYo/3Htr5OGsjWgK1pxw+SaOVcqr2qb9WJ4Ft7BGPvL eZdSlQ7aBTS6NPyp+xDTXkdyvhETBF+RL5XL1KbeaGcuwk6a0TZUsiHFtrmGgib4 djtIp2WjLkHFJjX9kP1e1Yheu1trrRQGEBpHKodWxzJwY3so6To= -----END CERTIFICATE-----Generated at Wed Jul 23 12:00:19 2025 by rpki-client