$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: P/Y9h9QAvSNyI3xrwJCbJ8tdtKOrFG1gxkeIirtZ5GA= Subject key identifier: CE:15:74:E0:84:51:8B:74:E3:DD:8C:21:11:36:D5:A5:D7:2C:0C:56 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 0AC8465E6547259429DA001592C67BA5745E44CA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 04ED Signing time: Sat 28 Jun 2025 07:41:19 +0000 Manifest this update: Sat 28 Jun 2025 07:36:19 +0000 Manifest next update: Tue 01 Jul 2025 13:00:19 +0000 Files and hashes: 1: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: 0PavrkQIovmwDxBXVf8YYUUkB0dmIV0Jnocfgdf+z14=) 2: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: IzocfQbAm6re271rkdggFPq3VGCEGAEeE3AdaJEm7ps=) 3: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: pbhhW/T4QYFpANmSbko4Pn15Hrxc5CLsjrjH+moakkM=) 4: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: JGFlFhH6nweNzgQ11TLkyB/qqq3QQSYaNP8bQViVV64=) 5: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: vPGDL5Uz+m1Ri6z0hdVmq01za5aH2UUg8pKyvgRNgpw=) 6: 3130332e3135352e3131362e302f32332d3233203d3e20313431303536.roa (hash: 8j0jRsDzFx9gAhfck8T4zhTfxl09chfxnR3KSNz+QGw=) 7: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: BlERiRMKFqkgyqTsj7YKl6ODg1kHmptUNWRLGRCZ1OE=) 8: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: 7PxedSipsNTZyiV9fxG1frgwTkAEJ+zZ1V+jTL4oKzQ=) 9: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: v92EWX5PrX2ocfEiVVqNZStsTUP7VHqvGQh9Jsm+CN4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 13:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:c8:46:5e:65:47:25:94:29:da:00:15:92:c6:7b:a5:74:5e:44:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Jun 28 07:36:19 2025 GMT Not After : Jul 1 13:00:19 2025 GMT Subject: CN=CE1574E084518B74E3DD8C211136D5A5D72C0C56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:61:2f:9b:2b:a2:d3:a6:dd:ff:e3:33:25:77: d6:64:0d:09:90:44:7e:f6:20:46:af:8a:dd:83:a7: bc:4d:16:bd:15:f5:c9:bf:8a:f8:ba:54:d5:60:99: e3:7c:ac:f7:ee:bb:e1:08:96:8c:f6:a9:17:da:ec: 31:5d:d1:bf:a9:c1:c7:05:44:6f:3b:7e:50:87:de: 73:f6:70:92:12:a4:0a:1d:84:66:1d:27:61:11:6c: 1b:48:bf:2c:53:41:69:3c:a4:01:de:36:66:a5:26: 01:e4:be:4d:09:9b:b6:78:59:a4:b9:1f:9e:fc:d8: 69:a8:51:21:7b:8e:8e:64:33:9d:ab:cd:64:7a:95: a0:26:bb:2b:9b:a9:a3:2f:a1:73:6f:35:1b:47:df: 34:df:8a:e7:7f:cd:e0:e9:84:a6:67:40:2c:1e:85: bd:4f:7f:24:8b:53:37:42:3b:fa:2e:25:5f:27:e6: d4:b3:ac:1b:78:d8:db:8c:31:f5:d6:ca:e7:07:65: 3a:8a:5a:f6:99:b1:37:ac:76:0a:e7:42:01:47:19: f7:3e:3b:e6:8b:1a:43:a2:6d:8c:f8:59:72:07:d4: 33:ac:27:55:bc:52:e5:f2:a8:d1:75:43:f1:3d:e8: af:d1:40:2c:cc:94:73:73:34:23:c1:87:19:27:da: 8a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:15:74:E0:84:51:8B:74:E3:DD:8C:21:11:36:D5:A5:D7:2C:0C:56 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:ca:c6:6e:01:74:cf:a1:b7:79:77:c6:20:d7:68:5c:bb:e5: bb:f1:08:8d:6b:40:55:8f:c7:4f:d5:ba:c2:ac:f4:1a:4a:97: 23:c2:64:d3:af:16:30:b0:16:be:67:4a:fb:8d:4b:b5:96:07: 90:5d:bb:4b:95:0f:d6:f9:b2:de:60:ff:0b:f9:59:68:1e:55: 6b:b3:a7:cf:1a:60:91:a8:36:54:76:e3:1a:2f:58:5c:4b:51: 74:1b:73:bc:28:bb:d7:9a:6d:f1:66:24:8a:54:35:86:51:6d: 9c:41:c9:9e:6c:20:e8:e1:70:32:cd:6a:0b:df:57:6f:58:2c: 15:99:23:f1:5a:ce:ba:49:4c:d7:f6:3e:46:5a:46:42:57:92: b1:ef:b9:ab:94:54:de:00:2e:09:18:de:24:e1:bf:15:e2:07: 95:28:6d:fa:50:bb:b4:4b:23:7d:19:b9:73:b3:ac:ea:9e:6f: dd:c2:f1:0c:87:87:ea:a4:d3:ff:ae:bf:b3:a5:0c:d3:ad:37: 32:60:ba:a6:6c:6d:e0:ee:b5:4b:38:10:d9:51:f0:a2:bd:de: 9b:cb:2a:32:c3:94:e6:36:cd:8b:00:85:e9:79:d0:ba:91:29: 11:00:83:e5:ee:e3:1f:4f:ec:7f:c9:51:3e:b5:22:74:b4:93: b4:81:08:16 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCshGXmVHJZQp2gAVksZ7pXReRMowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNTA2MjgwNzM2MTlaFw0yNTA3MDExMzAwMTlaMDMxMTAvBgNV BAMTKENFMTU3NEUwODQ1MThCNzRFM0REOEMyMTExMzZENUE1RDcyQzBDNTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRYS+bK6LTpt3/4zMld9ZkDQmQ RH72IEavit2Dp7xNFr0V9cm/ivi6VNVgmeN8rPfuu+EIloz2qRfa7DFd0b+pwccF RG87flCH3nP2cJISpAodhGYdJ2ERbBtIvyxTQWk8pAHeNmalJgHkvk0Jm7Z4WaS5 H5782GmoUSF7jo5kM52rzWR6laAmuyubqaMvoXNvNRtH3zTfiud/zeDphKZnQCwe hb1PfySLUzdCO/ouJV8n5tSzrBt42NuMMfXWyucHZTqKWvaZsTesdgrnQgFHGfc+ O+aLGkOibYz4WXIH1DOsJ1W8UuXyqNF1Q/E96K/RQCzMlHNzNCPBhxkn2oo5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzhV04IRRi3Tj3YwhETbVpdcsDFYwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE7Kxm4BdM+ht3l3xiDXaFy75bvxCI1rQFWP x0/VusKs9BpKlyPCZNOvFjCwFr5nSvuNS7WWB5Bdu0uVD9b5st5g/wv5WWgeVWuz p88aYJGoNlR24xovWFxLUXQbc7wou9eabfFmJIpUNYZRbZxByZ5sIOjhcDLNagvf V29YLBWZI/FazrpJTNf2PkZaRkJXkrHvuauUVN4ALgkY3iThvxXiB5UobfpQu7RL I30ZuXOzrOqeb93C8QyHh+qk0/+uv7OlDNOtNzJguqZsbeDutUs4ENlR8KK93pvL KjLDlOY2zYsAhel50LqRKREAg+Xu4x9P7H/JUT61InS0k7SBCBY= -----END CERTIFICATE-----Generated at Sun Jun 29 18:08:56 2025 by rpki-client