$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: Iy9EV5cJ2+2oDk/Cz0/6zMEdoI1qpS/Ve55kG206yhc= Subject key identifier: F5:C2:91:EB:31:11:2C:4C:19:F5:CB:7A:CA:A4:5C:E2:AF:4B:29:06 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 58A8402344C8DD903945A2587FBCDF23117E2B7B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 0567 Signing time: Wed 25 Mar 2026 03:41:33 +0000 Manifest this update: Wed 25 Mar 2026 03:36:33 +0000 Manifest next update: Sat 28 Mar 2026 13:08:33 +0000 Files and hashes: 1: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: JGFlFhH6nweNzgQ11TLkyB/qqq3QQSYaNP8bQViVV64=) 2: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: 2/e1df75ZuB0mlztIUau/nvIcUBCoLK27iXCpZBorYA=) 3: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: lE9s+BoEY5gwrvlaGT630nudod/SJ6QnowFtOuZG/F8=) 4: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: 6eJjIBCRXxrkzeid0rtYKkfbLqsdm/wd36eh7mhyu/A=) 5: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (hash: 8j0jRsDzFx9gAhfck8T4zhTfxl09chfxnR3KSNz+QGw=) 6: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: ifILYerUDcpRe223pMC/3xtPqhg84IovzTQC0ym+UNg=) 7: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: gB/Q187la6gm8qsp2Yv6/zuENtxXbTAl8b+QHinNe0w=) 8: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps=) 9: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: T+xAmOcrpikrQh6BNR+E6JFDb4uNhHPoQy2Ve9WHYks=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 13:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a8:40:23:44:c8:dd:90:39:45:a2:58:7f:bc:df:23:11:7e:2b:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Mar 25 03:36:33 2026 GMT Not After : Mar 28 13:08:33 2026 GMT Subject: CN=F5C291EB31112C4C19F5CB7ACAA45CE2AF4B2906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:ae:79:01:86:30:54:b8:22:cf:e9:7b:9a: c5:79:e3:bf:e7:4c:b2:c5:ab:31:07:cc:ee:78:f7: 31:93:83:53:bd:15:d0:2b:71:73:a3:78:e9:69:e3: 8a:03:2b:95:77:84:a7:f9:05:ca:6e:8a:3d:68:ce: e3:ed:0e:b9:76:24:53:b9:c4:e7:2f:ba:da:e6:35: 92:c8:e5:e0:60:3a:c6:6a:4e:7c:e6:13:d8:86:9a: b6:c6:c9:b8:e9:d7:4f:83:c5:ba:83:6d:d2:8c:17: 31:81:2e:93:0f:d7:6b:e8:7f:e4:72:78:21:57:2f: 60:78:7a:52:2d:2a:f9:1f:86:91:6d:01:6e:9f:21: 11:62:97:dd:a4:ad:76:1f:e3:e8:31:0c:18:c7:9b: 30:f4:9e:f2:5d:aa:6c:d8:a3:e7:38:17:93:7a:0d: 9e:81:4b:15:b8:95:91:25:42:35:f6:c4:07:ec:72: 05:8d:f9:7d:86:3b:f1:eb:39:4a:e1:c6:86:90:75: 8e:fa:b7:e5:3c:62:f2:3a:af:ea:7e:69:4b:22:59: 98:66:02:88:20:be:91:88:16:4a:a8:d8:3e:c2:a8: c1:e0:5e:93:a5:0c:fe:23:5d:e7:87:b1:28:d3:da: 6e:e7:03:3d:0c:c5:bc:15:3b:d2:f4:c8:17:3d:38: c6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:C2:91:EB:31:11:2C:4C:19:F5:CB:7A:CA:A4:5C:E2:AF:4B:29:06 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:42:c7:70:97:08:17:ba:b6:21:3c:98:3c:ff:58:a2:a0:e4: 15:1a:6a:ea:4b:e7:b7:57:de:19:9a:7e:bc:b6:93:a3:fa:4a: a7:4e:7f:7f:49:57:2c:14:5d:78:3c:ad:89:d7:a4:06:14:83: 5b:83:94:08:44:1e:db:72:7d:39:eb:ef:91:2d:03:c4:1a:29: f7:86:65:2b:41:df:7b:3c:51:6c:6c:2d:e4:2c:21:ec:a2:26: 88:7f:3e:7c:99:e8:4b:8e:02:8e:19:3e:78:6b:d4:6c:24:27: e5:ff:9a:9e:94:35:94:52:62:f4:25:40:5d:5a:d7:07:c4:3f: 90:0d:19:fb:da:87:f5:31:db:be:80:be:ca:11:3d:27:63:62: 64:68:7e:5f:62:e7:8d:e0:f3:61:ad:b9:a0:47:d8:5f:50:98: 9e:b8:60:0a:e7:6c:87:f0:fb:fc:53:a6:a4:3d:05:3f:db:d8: 98:42:cd:dd:a8:13:46:7d:68:62:32:4a:04:6a:39:52:25:ea: c7:93:9f:fc:7b:12:ac:9a:03:b7:47:aa:7f:d2:e0:f4:d7:ef: fc:f7:23:6d:c0:71:3a:09:c9:39:af:f2:ce:2f:00:4e:fd:ee: b9:56:fa:e7:d3:ac:a5:90:49:6d:5c:3e:48:c2:56:4e:3e:44: 8d:82:9f:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWKhAI0TI3ZA5RaJYf7zfIxF+K3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNjAzMjUwMzM2MzNaFw0yNjAzMjgxMzA4MzNaMDMxMTAvBgNV BAMTKEY1QzI5MUVCMzExMTJDNEMxOUY1Q0I3QUNBQTQ1Q0UyQUY0QjI5MDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5EK55AYYwVLgiz+l7msV547/n TLLFqzEHzO549zGTg1O9FdArcXOjeOlp44oDK5V3hKf5Bcpuij1ozuPtDrl2JFO5 xOcvutrmNZLI5eBgOsZqTnzmE9iGmrbGybjp10+DxbqDbdKMFzGBLpMP12vof+Ry eCFXL2B4elItKvkfhpFtAW6fIRFil92krXYf4+gxDBjHmzD0nvJdqmzYo+c4F5N6 DZ6BSxW4lZElQjX2xAfscgWN+X2GO/HrOUrhxoaQdY76t+U8YvI6r+p+aUsiWZhm AoggvpGIFkqo2D7CqMHgXpOlDP4jXeeHsSjT2m7nAz0MxbwVO9L0yBc9OMbHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9cKR6zERLEwZ9ct6yqRc4q9LKQYwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABhCx3CXCBe6tiE8mDz/WKKg5BUaaupL57dX 3hmafry2k6P6SqdOf39JVywUXXg8rYnXpAYUg1uDlAhEHttyfTnr75EtA8QaKfeG ZStB33s8UWxsLeQsIeyiJoh/PnyZ6EuOAo4ZPnhr1GwkJ+X/mp6UNZRSYvQlQF1a 1wfEP5ANGfvah/Ux276AvsoRPSdjYmRofl9i543g82GtuaBH2F9QmJ64YArnbIfw +/xTpqQ9BT/b2JhCzd2oE0Z9aGIySgRqOVIl6seTn/x7EqyaA7dHqn/S4PTX7/z3 I23AcToJyTmv8s4vAE797rlW+ufTrKWQSW1cPkjCVk4+RI2CnwA= -----END CERTIFICATE-----Generated at Thu Mar 26 16:57:02 2026 by rpki-client