$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft File: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft (raw, json) Hash identifier: SFaZ2T/oYWTh5c93gO/5ljLLvkahzKGiOBBuMzF8AJc= Subject key identifier: B6:35:E1:8B:87:86:F0:71:8F:18:7A:15:04:F2:3F:0E:78:EA:F5:71 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 5C969258DDFE1C65991FD94E6433A7EDC359A0AA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft Manifest number: 01D6 Signing time: Tue 13 May 2025 19:51:23 +0000 Manifest this update: Tue 13 May 2025 19:46:23 +0000 Manifest next update: Fri 16 May 2025 22:07:23 +0000 Files and hashes: 1: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (hash: CeJsPXYZaSv3nt0/slveGAtFgQcdV+Sze89sGyxFRnw=) 2: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl (hash: UOHXpkm3fCkdTFFFFqgWpYTWcT3910LozbaIM36jQS0=) 3: 3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa (hash: /qWK0LcoSyBB17DKdn5S/rBbFGOn/HEahhhfy2Twaq4=) 4: 3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa (hash: D9RmffxIYaHEobvTe2y7ZZC1r4KqpQ5ll315JKMW8os=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 22:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:96:92:58:dd:fe:1c:65:99:1f:d9:4e:64:33:a7:ed:c3:59:a0:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: May 13 19:46:23 2025 GMT Not After : May 16 22:07:23 2025 GMT Subject: CN=B635E18B8786F0718F187A1504F23F0E78EAF571 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:47:cf:da:17:a1:07:86:80:ac:12:9d:82:f3: ce:82:f6:b3:fc:6f:4d:48:3f:cd:a0:c1:ba:87:85: c0:95:1b:34:5c:b0:a5:7e:a2:06:f7:17:be:45:63: 67:db:17:bb:28:98:e9:ae:d9:fb:73:fa:ba:fc:a7: df:13:ce:9c:6f:df:8c:1b:22:5a:06:a5:ff:d1:93: b8:9c:c5:74:50:20:4c:32:fe:ad:3b:30:2e:ac:d4: 4a:e8:03:7a:fc:27:5e:28:76:ba:ae:6d:c1:aa:13: 3d:74:25:ed:11:64:45:f1:3e:52:f2:54:38:e5:7f: 1b:1b:9d:cb:96:ee:bc:a2:5f:cb:e9:ef:30:6a:fd: f5:2d:e2:72:bb:58:a3:b0:1e:87:61:06:e9:fb:50: a6:ad:b0:55:18:7f:21:09:88:ca:59:0c:48:f6:32: 1b:32:1a:f5:db:ea:09:34:6f:9c:b9:b6:89:07:6c: ad:91:fd:a3:ec:fc:c9:ad:f0:d2:1b:6f:19:3c:8f: 57:77:4d:43:40:37:32:33:b4:cc:aa:79:79:48:42: ae:0d:cd:95:5a:8b:70:19:82:5b:24:82:9a:d9:59: 06:64:41:2b:bb:fa:be:1f:97:01:15:ec:0c:4c:02: 75:c7:af:23:08:32:2e:3c:94:8e:01:a2:88:27:30: b6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:35:E1:8B:87:86:F0:71:8F:18:7A:15:04:F2:3F:0E:78:EA:F5:71 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:19:7a:04:d8:fa:07:71:0f:55:f7:ce:1a:ef:15:69:0a:78: 8e:03:15:70:87:5e:c7:98:6e:bf:e0:dd:4f:cd:f5:e1:72:f2: 55:c5:b1:6a:ce:40:05:b5:95:93:60:7e:92:03:e6:e8:67:9a: 9f:db:e5:14:f2:8e:74:84:ac:6f:0a:9c:8b:63:fd:b8:b6:c0: 8f:43:46:71:2b:69:ae:16:5e:4a:24:b7:f7:f8:ec:91:30:3a: 36:a0:68:5b:fc:34:f1:81:13:3f:39:46:02:59:e7:d1:b2:b2: af:17:22:00:f6:78:72:38:1a:1a:7e:85:fd:b1:61:cb:87:75: 0d:95:a6:49:f7:8c:e9:95:58:10:2c:bd:4b:05:97:f6:05:f6: 6b:e3:f3:c2:38:0d:00:e7:89:ed:25:b1:64:77:30:7a:23:cd: a7:f4:7a:e5:48:12:69:52:b0:19:d6:39:b0:e4:37:b9:34:d7: b3:61:63:4b:54:ed:fd:0e:d8:81:2c:03:47:89:05:c4:30:0c: 15:d0:40:bb:99:9b:24:43:c4:70:c6:5c:e2:a8:12:fa:22:d9: 52:73:56:34:d8:7a:9c:87:e3:48:64:9c:42:7f:26:eb:dd:f6: 4b:15:00:4d:84:47:2e:79:fa:aa:22:3f:6a:52:40:4e:b8:d0: a0:5c:8f:0c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXJaSWN3+HGWZH9lOZDOn7cNZoKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNTA1MTMxOTQ2MjNaFw0yNTA1MTYyMjA3MjNaMDMxMTAvBgNV BAMTKEI2MzVFMThCODc4NkYwNzE4RjE4N0ExNTA0RjIzRjBFNzhFQUY1NzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmR8/aF6EHhoCsEp2C886C9rP8 b01IP82gwbqHhcCVGzRcsKV+ogb3F75FY2fbF7somOmu2ftz+rr8p98Tzpxv34wb IloGpf/Rk7icxXRQIEwy/q07MC6s1EroA3r8J14odrqubcGqEz10Je0RZEXxPlLy VDjlfxsbncuW7ryiX8vp7zBq/fUt4nK7WKOwHodhBun7UKatsFUYfyEJiMpZDEj2 MhsyGvXb6gk0b5y5tokHbK2R/aPs/Mmt8NIbbxk8j1d3TUNANzIztMyqeXlIQq4N zZVai3AZglskgprZWQZkQSu7+r4flwEV7AxMAnXHryMIMi48lI4BoognMLY/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtjXhi4eG8HGPGHoVBPI/Dnjq9XEwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDNhZDUyMjYtNjU2ZC00NjFkLTlj ZmYtYzgzYWMwNzQyZjIwLzAvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRB ODQxOEMzRUE3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD8ZegTY+gdxD1X3zhrvFWkKeI4DFXCHXseY br/g3U/N9eFy8lXFsWrOQAW1lZNgfpID5uhnmp/b5RTyjnSErG8KnItj/bi2wI9D RnEraa4WXkokt/f47JEwOjagaFv8NPGBEz85RgJZ59Gysq8XIgD2eHI4Ghp+hf2x YcuHdQ2Vpkn3jOmVWBAsvUsFl/YF9mvj88I4DQDnie0lsWR3MHojzaf0euVIEmlS sBnWObDkN7k017NhY0tU7f0O2IEsA0eJBcQwDBXQQLuZmyRDxHDGXOKoEvoi2VJz VjTYepyH40hknEJ/Juvd9ksVAE2ERy55+qoiP2pSQE640KBcjww= -----END CERTIFICATE-----Generated at Wed May 14 15:52:58 2025 by rpki-client