$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: s6bpb6Tus7emCM2dAVaYhKUZ4kDhT5CvZzrM3QhB0H4= Subject key identifier: 09:B6:A3:9A:F6:50:6A:5F:2E:9C:37:F6:13:CC:F5:AD:1E:CB:53:D8 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 175085802DF00E043D4FE6DB6C2AF25C42553202 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: A5 Signing time: Fri 06 Jun 2025 16:50:49 +0000 Manifest this update: Fri 06 Jun 2025 16:45:49 +0000 Manifest next update: Tue 10 Jun 2025 00:04:49 +0000 Files and hashes: 1: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: 9eIlQZsHMv1lUg5jT15azn0xZxB2hRtrDIjhcS94cB8=) 2: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: Hz+bwv5TeiqLZz4vHu5RdAv/BqFZcBIfsejW6ExngYw=) 3: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: pleM7zjt401D1BJf2sqrcL6s2yWcWR5KklAwpJnySCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 00:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:50:85:80:2d:f0:0e:04:3d:4f:e6:db:6c:2a:f2:5c:42:55:32:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Jun 6 16:45:49 2025 GMT Not After : Jun 10 00:04:49 2025 GMT Subject: CN=09B6A39AF6506A5F2E9C37F613CCF5AD1ECB53D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e1:9b:02:f4:dd:a3:9d:21:af:dc:5c:11:d4: 11:d8:2a:d7:de:8f:13:84:04:29:14:c9:3a:d8:fe: 43:7c:18:13:61:eb:57:d1:85:ea:04:35:22:83:1c: 57:2d:9a:4c:c9:2b:e1:1b:e5:66:79:89:62:d1:0f: 94:f4:3a:8e:ed:30:0c:24:7e:a8:02:d8:d6:80:84: fb:44:16:85:25:b8:e1:15:e3:a6:7c:9b:8d:db:34: 5d:bd:19:67:1b:33:c5:ae:98:73:27:fd:8c:d1:26: d9:18:80:23:d3:af:ad:c0:eb:74:4f:6b:a5:5c:86: 3a:f8:52:14:19:b9:e3:e0:28:9b:5e:f1:98:a3:19: 08:4e:7c:ad:15:38:a2:c5:0b:f8:08:5e:7e:ea:02: cc:66:c4:75:42:1c:3c:bd:88:5d:40:3c:3b:21:48: 74:f3:c8:48:76:5c:3e:43:f6:51:f7:88:10:c3:0d: f9:d9:b3:f8:46:54:86:05:af:73:e6:5e:3c:e2:5c: 8f:ff:66:85:48:06:1a:85:8f:96:2c:e3:cd:12:57: 47:8b:2e:24:2a:f4:67:f3:0e:c6:23:49:32:e3:3f: 9f:d6:eb:62:5f:98:63:15:73:d2:fa:a6:6b:45:59: a9:c5:ee:28:3b:96:7a:77:a9:0f:22:53:dc:58:c5: 67:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B6:A3:9A:F6:50:6A:5F:2E:9C:37:F6:13:CC:F5:AD:1E:CB:53:D8 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 67:4c:4a:a7:1e:06:5b:9d:e9:d5:bd:f5:ab:61:4a:8e:bc:c7: a9:d5:9f:b6:3a:6a:a4:5f:86:65:77:29:74:39:8a:7c:cb:ed: 6b:a7:d8:e6:5e:5b:23:fd:52:58:c8:dd:13:73:cd:28:d9:90: ee:1e:04:e0:22:12:25:f8:d2:29:7d:97:1b:d5:17:32:9e:37: 2d:47:98:c0:b3:aa:03:f2:d8:4a:05:85:b6:7c:39:6c:b9:9b: 6b:e0:cd:eb:62:fb:1f:e8:91:f2:df:a4:a4:a4:b8:1e:93:86: c9:4c:14:b8:8f:31:33:bf:15:01:69:7f:18:b0:cf:59:2e:c2: 2c:41:3f:30:bf:8e:3d:ae:46:8b:32:5f:82:24:ed:a3:ee:f5: 2e:a3:bb:58:a1:5e:8f:fd:e6:1b:89:9a:95:2f:ff:ad:31:e3: e9:ca:46:f7:86:50:56:95:63:92:65:86:6e:ea:61:87:0d:e1: 21:8c:04:db:b2:5a:72:59:99:9a:98:b0:1f:86:54:87:a7:c6: 32:0f:82:44:53:1a:f8:ad:ea:6e:ce:23:8d:ff:60:c9:86:5e: db:18:48:da:e1:62:55:c9:ad:8f:87:dd:c9:38:63:96:1e:25: 7c:8e:21:44:be:43:dc:17:32:c3:1f:74:da:21:22:ad:be:05: 15:3a:51:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUF1CFgC3wDgQ9T+bbbCryXEJVMgIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTA2MDYxNjQ1NDlaFw0yNTA2MTAwMDA0NDlaMDMxMTAvBgNV BAMTKDA5QjZBMzlBRjY1MDZBNUYyRTlDMzdGNjEzQ0NGNUFEMUVDQjUzRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr4ZsC9N2jnSGv3FwR1BHYKtfe jxOEBCkUyTrY/kN8GBNh61fRheoENSKDHFctmkzJK+Eb5WZ5iWLRD5T0Oo7tMAwk fqgC2NaAhPtEFoUluOEV46Z8m43bNF29GWcbM8WumHMn/YzRJtkYgCPTr63A63RP a6Vchjr4UhQZuePgKJte8ZijGQhOfK0VOKLFC/gIXn7qAsxmxHVCHDy9iF1APDsh SHTzyEh2XD5D9lH3iBDDDfnZs/hGVIYFr3PmXjziXI//ZoVIBhqFj5Ys480SV0eL LiQq9GfzDsYjSTLjP5/W62JfmGMVc9L6pmtFWanF7ig7lnp3qQ8iU9xYxWdpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCbajmvZQal8unDf2E8z1rR7LU9gwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGdMSqceBlud6dW99athSo68x6nVn7Y6aqRf hmV3KXQ5inzL7Wun2OZeWyP9UljI3RNzzSjZkO4eBOAiEiX40il9lxvVFzKeNy1H mMCzqgPy2EoFhbZ8OWy5m2vgzeti+x/okfLfpKSkuB6ThslMFLiPMTO/FQFpfxiw z1kuwixBPzC/jj2uRosyX4Ik7aPu9S6ju1ihXo/95huJmpUv/60x4+nKRveGUFaV Y5Jlhm7qYYcN4SGMBNuyWnJZmZqYsB+GVIenxjIPgkRTGvit6m7OI43/YMmGXtsY SNrhYlXJrY+H3ck4Y5YeJXyOIUS+Q9wXMsMfdNohIq2+BRU6USw= -----END CERTIFICATE-----Generated at Sun Jun 8 13:41:45 2025 by rpki-client