$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: /a/KCIYvcSXBX2VHBXbG3JElikyHJVnVbH5Q3220bIo= Subject key identifier: 1C:34:C0:19:7B:16:8E:F6:60:E3:DE:89:2C:ED:04:AB:DE:9A:28:B4 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 4F9490966EC1E8E518DDFF73F0E62388EE60EFC9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: 8A Signing time: Tue 08 Apr 2025 07:50:48 +0000 Manifest this update: Tue 08 Apr 2025 07:45:48 +0000 Manifest next update: Fri 11 Apr 2025 11:29:48 +0000 Files and hashes: 1: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: 13C33ies8+1jXKcM7g+GVxmkpMNVFS4SZHTzF4CilOg=) 2: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: qz9gkkaT5gjEW5IKUp/t4G7tipALQOBC2f4F6gPlyJ0=) 3: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: r+NcYn+t5rMmjNx2JWkC72GwMhJHESlVZs6P4b6ukaU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Apr 2025 21:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:94:90:96:6e:c1:e8:e5:18:dd:ff:73:f0:e6:23:88:ee:60:ef:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Apr 8 07:45:48 2025 GMT Not After : Apr 11 11:29:48 2025 GMT Subject: CN=1C34C0197B168EF660E3DE892CED04ABDE9A28B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2c:04:5d:9b:b4:8b:cc:10:c7:22:5b:22:fd: cb:0c:90:89:4a:34:1b:4f:a8:d5:f1:c2:ad:99:33: b1:6b:2b:c0:eb:c0:36:64:10:f8:92:e0:a0:92:f1: ce:9c:91:ee:37:5b:c8:ba:5c:4e:78:88:d6:b8:aa: 27:c5:2c:af:c2:3a:6e:e2:9d:e4:a2:c1:08:f1:a0: 6b:09:1e:49:56:37:0b:dc:1b:75:4a:98:0a:5b:ba: 4e:c1:37:79:cb:78:9c:66:27:f0:38:97:2d:e5:41: c5:3e:93:02:29:50:24:48:06:9e:32:40:a5:ed:e8: d4:b9:24:2b:4a:61:1e:6c:e4:59:d7:26:61:a2:39: 3a:32:2e:9d:dc:4f:1e:7c:3c:40:6c:df:23:d0:c8: f8:9c:57:0e:ec:45:59:d9:33:6d:88:77:d9:80:af: c2:e0:53:53:59:c0:41:93:95:73:d9:65:9f:63:8c: 6c:4d:fb:ce:da:91:5e:6f:42:69:fe:ed:c1:16:8a: 90:c9:96:35:0c:47:05:04:fd:b7:e9:1b:46:0d:d6: 86:13:19:52:fb:89:39:24:d5:6f:e0:48:5c:79:d6: 5d:b7:c2:93:ae:b0:5c:a5:99:96:89:5b:83:b2:4a: f7:0a:2b:cd:78:22:9f:1c:48:eb:09:ae:ae:16:87: 7d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:34:C0:19:7B:16:8E:F6:60:E3:DE:89:2C:ED:04:AB:DE:9A:28:B4 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:b0:20:a0:a8:eb:b6:bf:80:05:19:56:b2:e4:f9:85:7c:21: bb:34:39:7e:0f:53:12:0b:13:2e:eb:48:8c:3f:d4:94:2a:7d: bf:69:31:9f:a2:fe:10:7d:62:2f:94:37:7e:ba:3d:8b:df:f3: 82:f2:43:12:70:d0:44:e1:13:4c:70:36:15:a1:fd:c3:ca:55: e3:83:86:c6:e7:9d:b2:02:1b:0b:d4:61:7c:0c:7d:b7:0b:5d: 34:ad:97:bb:18:a1:a0:f0:0c:c4:75:cb:96:58:f2:1a:39:ca: 27:1e:27:fb:76:1c:5e:89:f1:c7:98:b0:b7:09:86:5b:fa:fa: c8:bf:7f:06:2e:d5:fc:7a:a6:76:a3:02:45:e3:33:1e:e0:90: 8b:22:20:76:71:33:a0:f3:63:57:e9:7f:3c:94:3e:e2:2f:5a: 1d:9e:42:ca:a0:65:43:9c:80:4b:4b:49:fa:26:72:ce:a1:0f: 09:2a:32:ab:ea:76:fe:f6:74:db:5b:d1:87:e0:53:f9:37:d5: ca:3d:84:4f:f0:52:87:ef:c0:b4:af:fe:a7:95:50:c6:9d:a5: 66:e3:28:70:f5:b8:66:58:85:2d:9b:e6:32:b2:16:35:ee:16: 7d:2f:9c:aa:81:40:cb:4a:82:59:88:7a:ad:b4:fc:ae:fa:01: 64:17:75:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT5SQlm7B6OUY3f9z8OYjiO5g78kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTA0MDgwNzQ1NDhaFw0yNTA0MTExMTI5NDhaMDMxMTAvBgNV BAMTKDFDMzRDMDE5N0IxNjhFRjY2MEUzREU4OTJDRUQwNEFCREU5QTI4QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3LARdm7SLzBDHIlsi/csMkIlK NBtPqNXxwq2ZM7FrK8DrwDZkEPiS4KCS8c6cke43W8i6XE54iNa4qifFLK/COm7i neSiwQjxoGsJHklWNwvcG3VKmApbuk7BN3nLeJxmJ/A4ly3lQcU+kwIpUCRIBp4y QKXt6NS5JCtKYR5s5FnXJmGiOToyLp3cTx58PEBs3yPQyPicVw7sRVnZM22Id9mA r8LgU1NZwEGTlXPZZZ9jjGxN+87akV5vQmn+7cEWipDJljUMRwUE/bfpG0YN1oYT GVL7iTkk1W/gSFx51l23wpOusFylmZaJW4OySvcKK814Ip8cSOsJrq4Wh32bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHDTAGXsWjvZg496JLO0Eq96aKLQwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADGwIKCo67a/gAUZVrLk+YV8Ibs0OX4PUxIL Ey7rSIw/1JQqfb9pMZ+i/hB9Yi+UN366PYvf84LyQxJw0EThE0xwNhWh/cPKVeOD hsbnnbICGwvUYXwMfbcLXTStl7sYoaDwDMR1y5ZY8ho5yiceJ/t2HF6J8ceYsLcJ hlv6+si/fwYu1fx6pnajAkXjMx7gkIsiIHZxM6DzY1fpfzyUPuIvWh2eQsqgZUOc gEtLSfomcs6hDwkqMqvqdv72dNtb0YfgU/k31co9hE/wUofvwLSv/qeVUMadpWbj KHD1uGZYhS2b5jKyFjXuFn0vnKqBQMtKglmIeq20/K76AWQXdec= -----END CERTIFICATE-----Generated at Tue Apr 8 11:21:35 2025 by rpki-client