$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft File: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft (raw, json) Hash identifier: 6qS4B2N3KbF436w+AJTguenvA9PmVtg6vL3zQQZ6dxM= Subject key identifier: A7:FE:98:ED:83:ED:CC:55:3F:76:8C:ED:87:EB:5C:CF:8F:74:CA:E0 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 5F2BF92F33938BA6378EF309AC097A0E0A72A794 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft Manifest number: 0203 Signing time: Fri 22 Aug 2025 18:22:21 +0000 Manifest this update: Fri 22 Aug 2025 18:17:21 +0000 Manifest next update: Mon 25 Aug 2025 22:41:21 +0000 Files and hashes: 1: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (hash: CeJsPXYZaSv3nt0/slveGAtFgQcdV+Sze89sGyxFRnw=) 2: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl (hash: R8lsbYNoVBaDs4izlUmg6P0JdTmbW76jglDpVrbRSAs=) 3: 3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa (hash: D9RmffxIYaHEobvTe2y7ZZC1r4KqpQ5ll315JKMW8os=) 4: 3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa (hash: N0XCMCw3s4kIWnX0GxZG8K7vrea02I3zr3x0DohynM4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 22:41:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:2b:f9:2f:33:93:8b:a6:37:8e:f3:09:ac:09:7a:0e:0a:72:a7:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Aug 22 18:17:21 2025 GMT Not After : Aug 25 22:41:21 2025 GMT Subject: CN=A7FE98ED83EDCC553F768CED87EB5CCF8F74CAE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:74:66:54:c0:4f:95:d4:65:64:da:6a:f4:4c: 77:98:0f:f5:98:53:1f:53:59:d8:1a:77:ef:05:d9: c4:bb:e7:7f:4f:6f:79:4c:35:df:ba:91:e8:39:46: 19:a2:f3:20:17:3d:56:c7:53:e8:df:87:11:0b:2f: f3:70:39:54:7c:69:40:8a:9e:7b:5f:3d:6d:4d:ca: 8f:1f:75:c5:99:c7:e8:32:04:8a:f8:7e:e1:45:d2: c2:e5:e3:dd:32:51:aa:b8:c9:e1:77:cb:13:79:f2: 3b:79:3f:90:40:b1:36:6f:58:52:f6:2d:80:7b:e0: 86:63:59:af:d4:fe:40:01:c5:02:34:71:52:c8:dc: 8d:5e:c9:26:0b:5e:f0:d3:d0:6d:03:a4:40:ce:2f: 06:c6:9e:d1:be:04:d8:b3:00:f5:5d:79:dc:bb:26: 7e:1f:92:52:02:2c:89:11:b6:2b:20:47:03:f1:84: d3:db:43:50:e5:28:fd:ca:94:48:03:c2:e2:7d:4b: 9a:e6:ed:64:78:47:65:56:39:4a:29:e7:e7:e5:e1: b5:ed:20:9d:d0:8e:1e:c6:af:4a:4d:9a:e1:97:0f: 73:8b:ef:49:54:f1:55:b9:5f:d1:b9:f6:c8:33:c8: 37:87:a6:5f:28:a5:10:19:aa:0b:c9:4a:99:3c:4d: 7f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:FE:98:ED:83:ED:CC:55:3F:76:8C:ED:87:EB:5C:CF:8F:74:CA:E0 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:4b:25:77:26:53:2f:9f:75:61:b3:15:c7:23:d7:b4:7a:9a: 25:ea:54:f6:cf:1c:c1:52:b0:34:1e:03:d3:71:c9:c5:e5:3f: 06:5e:8d:a3:9e:41:d6:26:21:6e:34:52:03:6e:8a:57:e7:3c: 53:25:29:be:b6:a7:ae:10:9d:97:d3:aa:e4:42:06:53:c5:55: ad:48:5e:64:2b:20:4e:cb:2d:2b:bb:c3:fc:97:07:42:8b:3f: a2:81:f4:9e:08:58:60:b9:27:66:06:eb:30:c3:7d:d5:d9:39: f0:a5:8d:f9:be:2e:91:67:e0:6d:61:5d:10:78:04:ec:e0:93: 73:37:10:71:ee:b3:5d:55:a8:17:34:84:e6:6f:c9:19:d0:bf: 04:be:d0:ba:d4:e9:40:97:3b:7b:8c:2b:a2:1e:01:0f:d3:be: 06:84:61:30:03:0c:f2:8d:a8:94:83:a6:18:41:9d:15:43:45: b7:5e:23:09:fb:d0:dc:5f:7f:2e:1d:47:3f:de:4e:c5:41:16: 12:10:17:3d:43:cd:bb:20:1a:ca:ed:47:90:ef:85:27:3c:d0: cd:9a:ef:b3:f7:8c:88:3d:64:c4:42:39:bb:ac:bb:88:e1:08: 36:61:32:55:e6:12:21:de:a8:b0:51:2f:24:37:73:12:4f:0a: 69:92:0e:27 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXyv5LzOTi6Y3jvMJrAl6Dgpyp5QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNTA4MjIxODE3MjFaFw0yNTA4MjUyMjQxMjFaMDMxMTAvBgNV BAMTKEE3RkU5OEVEODNFRENDNTUzRjc2OENFRDg3RUI1Q0NGOEY3NENBRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmdGZUwE+V1GVk2mr0THeYD/WY Ux9TWdgad+8F2cS7539Pb3lMNd+6keg5Rhmi8yAXPVbHU+jfhxELL/NwOVR8aUCK nntfPW1Nyo8fdcWZx+gyBIr4fuFF0sLl490yUaq4yeF3yxN58jt5P5BAsTZvWFL2 LYB74IZjWa/U/kABxQI0cVLI3I1eySYLXvDT0G0DpEDOLwbGntG+BNizAPVdedy7 Jn4fklICLIkRtisgRwPxhNPbQ1DlKP3KlEgDwuJ9S5rm7WR4R2VWOUop5+fl4bXt IJ3Qjh7Gr0pNmuGXD3OL70lU8VW5X9G59sgzyDeHpl8opRAZqgvJSpk8TX+nAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUp/6Y7YPtzFU/dozth+tcz490yuAwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDNhZDUyMjYtNjU2ZC00NjFkLTlj ZmYtYzgzYWMwNzQyZjIwLzAvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRB ODQxOEMzRUE3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFFLJXcmUy+fdWGzFccj17R6miXqVPbPHMFS sDQeA9NxycXlPwZejaOeQdYmIW40UgNuilfnPFMlKb62p64QnZfTquRCBlPFVa1I XmQrIE7LLSu7w/yXB0KLP6KB9J4IWGC5J2YG6zDDfdXZOfCljfm+LpFn4G1hXRB4 BOzgk3M3EHHus11VqBc0hOZvyRnQvwS+0LrU6UCXO3uMK6IeAQ/TvgaEYTADDPKN qJSDphhBnRVDRbdeIwn70Nxffy4dRz/eTsVBFhIQFz1DzbsgGsrtR5DvhSc80M2a 77P3jIg9ZMRCObusu4jhCDZhMlXmEiHeqLBRLyQ3cxJPCmmSDic= -----END CERTIFICATE-----Generated at Sat Aug 23 12:28:47 2025 by rpki-client