$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: IIS99G6hoy+LSV1H+OXBCzgr90oupIc+kFiSWUNDqf8= Subject key identifier: 02:9B:55:80:7E:BD:6C:A3:1B:3F:4C:F9:A0:66:B4:60:92:7D:37:0A Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 749ACDE9AAF23D4E5B925F5FA177BC79E2C06F3A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: 011E Signing time: Sat 07 Mar 2026 05:30:56 +0000 Manifest this update: Sat 07 Mar 2026 05:25:56 +0000 Manifest next update: Tue 10 Mar 2026 06:48:56 +0000 Files and hashes: 1: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: pleM7zjt401D1BJf2sqrcL6s2yWcWR5KklAwpJnySCE=) 2: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: k+sxpqjMfFwLnnJPSXZI1sCD+asWUab6KtLlzn9zA88=) 3: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: Hz+bwv5TeiqLZz4vHu5RdAv/BqFZcBIfsejW6ExngYw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 08:48:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:9a:cd:e9:aa:f2:3d:4e:5b:92:5f:5f:a1:77:bc:79:e2:c0:6f:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Mar 7 05:25:56 2026 GMT Not After : Mar 10 06:48:56 2026 GMT Subject: CN=029B55807EBD6CA31B3F4CF9A066B460927D370A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:ff:92:e1:43:a5:25:df:40:47:87:70:03: 61:d0:33:91:b0:bf:8d:f3:7e:70:3b:8c:df:59:3f: e4:3f:50:00:05:83:ea:bb:1b:2a:ab:e4:c8:7a:43: d8:55:52:d1:83:2c:1d:2a:b3:85:08:5b:5f:5e:80: b0:89:4c:66:3e:8b:4d:0c:17:be:57:9b:f5:3e:29: e6:71:11:4c:9d:b2:72:0b:70:f7:93:cd:e0:be:a7: 7e:72:6e:b4:44:b5:10:2b:a6:87:61:e9:81:eb:72: d7:02:ba:13:33:18:5e:8f:01:39:99:37:e6:d8:ed: a9:06:03:64:db:c9:f0:7c:2b:25:08:5d:0e:90:df: c2:d0:91:a0:cd:35:da:84:5f:b2:dd:ad:6d:5c:b9: e6:4a:55:ec:7c:84:c3:ca:97:b2:32:6f:08:8d:6b: ac:75:d1:0d:af:51:a6:7a:27:e1:67:9c:83:25:13: bb:d5:69:09:e0:5c:0a:9b:ab:c4:d5:ec:dc:00:98: c1:8f:8b:ea:d6:41:81:d5:92:3f:49:9d:96:b3:ed: c9:12:34:dd:eb:a8:d6:e6:fe:19:d7:44:4a:a3:5e: 6c:b8:5e:c3:f9:54:68:24:52:78:14:a5:51:01:b5: 6a:81:41:d5:65:d5:e4:c3:f5:1e:c0:86:35:9a:8c: f2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:9B:55:80:7E:BD:6C:A3:1B:3F:4C:F9:A0:66:B4:60:92:7D:37:0A X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:48:a5:9a:96:63:b0:e0:e0:c1:a7:11:6d:52:5b:f1:bb:36: 03:27:a9:85:22:71:97:e6:72:d8:e7:f2:16:16:e4:c3:7e:6a: c7:4d:66:d1:f8:1b:27:76:2b:49:89:18:57:56:9f:1a:ca:a4: 78:9f:3b:6c:bc:dc:14:42:79:67:bb:b8:e5:78:31:67:fa:61: 53:98:4d:c3:40:e1:75:c0:c9:08:6c:ad:4a:13:a9:2e:da:06: 22:17:49:31:44:48:67:dd:3c:63:cc:97:c8:4e:e9:dd:78:62: bd:56:db:cc:e4:bc:aa:8c:a8:54:20:36:bd:c7:cb:39:a8:ea: fa:77:04:1e:cc:a9:25:78:d0:a0:fa:52:19:d4:9c:57:c1:0b: c3:ea:d1:6d:1f:ff:1a:db:a2:33:18:15:b2:be:5e:7a:0b:c6: 1d:d5:bc:dd:5d:65:99:8d:02:c8:a8:e2:3c:47:86:88:1a:41: 37:c8:28:36:c5:c3:0a:61:5a:2a:05:60:2e:a8:72:81:87:2c: d1:38:98:98:56:1e:11:50:86:22:4c:5a:16:a7:63:4a:10:a5: 34:fb:de:b2:7e:ee:0d:1e:0c:13:ba:28:82:c8:db:5c:aa:56: 99:c1:65:8d:04:e7:56:b1:3e:d2:a8:bd:9b:65:a5:1c:07:c3: 3c:9a:53:99 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdJrN6aryPU5bkl9foXe8eeLAbzowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNjAzMDcwNTI1NTZaFw0yNjAzMTAwNjQ4NTZaMDMxMTAvBgNV BAMTKDAyOUI1NTgwN0VCRDZDQTMxQjNGNENGOUEwNjZCNDYwOTI3RDM3MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+1/+S4UOlJd9AR4dwA2HQM5Gw v43zfnA7jN9ZP+Q/UAAFg+q7Gyqr5Mh6Q9hVUtGDLB0qs4UIW19egLCJTGY+i00M F75Xm/U+KeZxEUydsnILcPeTzeC+p35ybrREtRArpodh6YHrctcCuhMzGF6PATmZ N+bY7akGA2TbyfB8KyUIXQ6Q38LQkaDNNdqEX7LdrW1cueZKVex8hMPKl7IybwiN a6x10Q2vUaZ6J+FnnIMlE7vVaQngXAqbq8TV7NwAmMGPi+rWQYHVkj9JnZaz7ckS NN3rqNbm/hnXREqjXmy4XsP5VGgkUngUpVEBtWqBQdVl1eTD9R7AhjWajPJRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAptVgH69bKMbP0z5oGa0YJJ9NwowHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEFIpZqWY7Dg4MGnEW1SW/G7NgMnqYUicZfm ctjn8hYW5MN+asdNZtH4Gyd2K0mJGFdWnxrKpHifO2y83BRCeWe7uOV4MWf6YVOY TcNA4XXAyQhsrUoTqS7aBiIXSTFESGfdPGPMl8hO6d14Yr1W28zkvKqMqFQgNr3H yzmo6vp3BB7MqSV40KD6UhnUnFfBC8Pq0W0f/xrbojMYFbK+XnoLxh3VvN1dZZmN Asio4jxHhogaQTfIKDbFwwphWioFYC6ocoGHLNE4mJhWHhFQhiJMWhanY0oQpTT7 3rJ+7g0eDBO6KILI21yqVpnBZY0E51axPtKovZtlpRwHwzyaU5k= -----END CERTIFICATE-----Generated at Sat Mar 7 17:51:04 2026 by rpki-client