$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft File: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft (raw, json) Hash identifier: W11tBkiaLU7RthsNFTFvqt6iMPPqeGpv73YC1uvfTsg= Subject key identifier: F4:07:2E:45:F3:7C:26:CA:1F:C7:D1:0E:2E:9F:30:2D:44:EF:C1:89 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 06B42BAF9E5CBACAB403266D0B610E27A3F83ADE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft Manifest number: 01EB Signing time: Sat 28 Jun 2025 19:11:33 +0000 Manifest this update: Sat 28 Jun 2025 19:06:32 +0000 Manifest next update: Wed 02 Jul 2025 00:52:32 +0000 Files and hashes: 1: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl (hash: ib16Ve3gPCCli/um+pfHER0mBSxw3n3W87RxcKs5PT8=) 2: 3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa (hash: D9RmffxIYaHEobvTe2y7ZZC1r4KqpQ5ll315JKMW8os=) 3: 3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa (hash: N0XCMCw3s4kIWnX0GxZG8K7vrea02I3zr3x0DohynM4=) 4: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (hash: CeJsPXYZaSv3nt0/slveGAtFgQcdV+Sze89sGyxFRnw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 00:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:b4:2b:af:9e:5c:ba:ca:b4:03:26:6d:0b:61:0e:27:a3:f8:3a:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Jun 28 19:06:32 2025 GMT Not After : Jul 2 00:52:32 2025 GMT Subject: CN=F4072E45F37C26CA1FC7D10E2E9F302D44EFC189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c2:3a:fa:69:1e:e4:af:99:f5:e5:78:36:ae: 9f:e1:59:83:2a:30:17:d8:42:46:07:06:1f:bb:14: 5b:d8:a5:92:92:17:03:a7:72:95:f1:99:ae:c4:80: 09:49:92:01:7f:7b:b2:05:85:03:be:8f:80:93:ff: a9:50:75:82:df:79:96:85:1e:c2:6a:64:41:1d:5b: 3c:0e:ba:10:72:a7:4c:6b:a6:f7:69:d3:1f:82:a8: 16:6d:fc:8e:40:0f:39:3b:6f:30:a2:35:0c:83:40: 11:d4:19:88:8a:f7:61:9a:0b:de:dc:c3:17:bc:69: 98:fa:4f:2e:44:cf:09:14:ee:01:ca:fd:d9:fd:76: 87:20:29:4c:da:cd:a8:5f:f4:82:fb:85:be:8b:fa: ae:53:63:65:82:89:f2:ef:ce:1e:49:57:2a:77:7d: 8b:c0:22:34:a6:84:94:b4:77:f7:8a:dd:f9:95:cf: ab:0a:b6:b3:39:39:e3:8c:0b:ad:b6:69:8f:65:fd: 90:fe:e8:61:51:80:94:37:da:12:86:4f:51:6a:36: 03:78:c7:ef:0f:b9:6e:39:00:5e:89:6c:1c:b7:e8: e1:3f:26:d4:b7:f3:44:4a:04:12:51:58:1c:5b:44: 66:c3:bf:68:bf:85:1e:52:82:00:79:1e:e2:e0:bd: 08:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:07:2E:45:F3:7C:26:CA:1F:C7:D1:0E:2E:9F:30:2D:44:EF:C1:89 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:e7:4b:c3:34:46:11:a4:3a:f9:c6:9b:c4:85:dd:6a:af:3b: 51:db:a0:77:dc:97:c2:a9:c4:6f:32:8e:79:75:5b:df:f7:cb: 47:c7:f1:45:7c:2d:16:d0:09:0b:d8:f8:54:17:25:44:74:8f: 97:33:28:e6:1d:85:7b:49:69:b8:6f:0e:f5:a1:c4:d8:53:78: d1:8b:96:17:4c:6e:ac:39:f7:b3:00:76:3f:e8:55:c1:4d:ed: 65:e3:01:b6:e2:df:b3:ee:15:0d:6c:c2:97:36:1c:1b:a8:e7: d0:5b:79:01:dc:66:13:59:1d:ac:18:69:af:d2:42:1e:a2:35: 89:24:0c:50:b7:28:fd:36:ed:bc:b4:d2:8d:89:61:de:4d:b9: c5:70:45:2f:34:1e:fb:3e:b2:32:58:8d:52:58:ab:b1:8f:39: f1:cc:cd:82:16:62:c5:11:fe:7c:13:f9:24:4c:6e:ac:0d:ce: 65:65:c5:c8:17:74:28:dd:80:18:6d:e6:2f:88:26:77:6b:77: 72:b4:9f:9a:3d:da:6d:95:d6:33:54:eb:54:ce:f8:6f:03:35: d0:92:4b:f0:46:01:cb:a0:f8:0a:25:84:a7:45:df:b8:4a:7b: 96:38:b9:56:ae:52:8f:2b:79:c7:10:01:35:fc:e7:8e:73:06: bf:83:78:7b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBrQrr55cusq0AyZtC2EOJ6P4Ot4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNTA2MjgxOTA2MzJaFw0yNTA3MDIwMDUyMzJaMDMxMTAvBgNV BAMTKEY0MDcyRTQ1RjM3QzI2Q0ExRkM3RDEwRTJFOUYzMDJENDRFRkMxODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5wjr6aR7kr5n15Xg2rp/hWYMq MBfYQkYHBh+7FFvYpZKSFwOncpXxma7EgAlJkgF/e7IFhQO+j4CT/6lQdYLfeZaF HsJqZEEdWzwOuhByp0xrpvdp0x+CqBZt/I5ADzk7bzCiNQyDQBHUGYiK92GaC97c wxe8aZj6Ty5EzwkU7gHK/dn9docgKUzazahf9IL7hb6L+q5TY2WCifLvzh5JVyp3 fYvAIjSmhJS0d/eK3fmVz6sKtrM5OeOMC622aY9l/ZD+6GFRgJQ32hKGT1FqNgN4 x+8PuW45AF6JbBy36OE/JtS380RKBBJRWBxbRGbDv2i/hR5SggB5HuLgvQh5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9AcuRfN8Jsofx9EOLp8wLUTvwYkwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDNhZDUyMjYtNjU2ZC00NjFkLTlj ZmYtYzgzYWMwNzQyZjIwLzAvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRB ODQxOEMzRUE3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKfnS8M0RhGkOvnGm8SF3WqvO1HboHfcl8Kp xG8yjnl1W9/3y0fH8UV8LRbQCQvY+FQXJUR0j5czKOYdhXtJabhvDvWhxNhTeNGL lhdMbqw597MAdj/oVcFN7WXjAbbi37PuFQ1swpc2HBuo59BbeQHcZhNZHawYaa/S Qh6iNYkkDFC3KP027by00o2JYd5NucVwRS80Hvs+sjJYjVJYq7GPOfHMzYIWYsUR /nwT+SRMbqwNzmVlxcgXdCjdgBht5i+IJndrd3K0n5o92m2V1jNU61TO+G8DNdCS S/BGAcug+AolhKdF37hKe5Y4uVauUo8reccQATX8545zBr+DeHs= -----END CERTIFICATE-----Generated at Mon Jun 30 19:14:50 2025 by rpki-client