$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: 5tsRJ7RTLPnY6wd5/2R1EokEnDIR07pyRGhqkfA/RIc= Subject key identifier: 3D:33:F4:D3:AB:17:B4:4B:15:E2:7A:9F:EF:A7:75:E1:19:02:AD:B9 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 14FDFF3AC02648FAA5F62705B2F74210A57A473D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 0501 Signing time: Fri 22 Aug 2025 14:42:02 +0000 Manifest this update: Fri 22 Aug 2025 14:37:02 +0000 Manifest next update: Mon 25 Aug 2025 14:47:02 +0000 Files and hashes: 1: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: tAo3bezADzQOIELABsz5HwDm0Rzkp5ula3eGypLankg=) 2: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: Y6tvd+1XtHiukr4Lnc++EG2e4/MBcfeHFg9Xd0kGFMg=) 3: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: ctlL63La/nA2o80IyG4Gn5yERO9Svxh3VS6Tj8PS2Bk=) 4: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: mAHS4RhjFlyuuj4wSTCANOzW1BtppaUwbd4+LpgqV3A=) 5: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: +FaWxeyMSXTm1A2YbWkKpjjxd9ODF5R6bPfmYjsvC3c=) 6: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 6P/MnisWmadZujdf0MdzBBem1MXVl8xw/vKYXqNcxoU=) 7: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: GQLjyzqSeaPMpwbmMG+hHOVIX1kxT3fObGtrds/C+9M=) 8: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: m1RDFs81kJe7cLkzIuvESdF6lsbsj7FMYtNBuW0nGcE=) 9: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: lOPyN4jlxJmDfUm1Z5usitGLtQdiU+flslurwWQqLwM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 14:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:fd:ff:3a:c0:26:48:fa:a5:f6:27:05:b2:f7:42:10:a5:7a:47:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Aug 22 14:37:02 2025 GMT Not After : Aug 25 14:47:02 2025 GMT Subject: CN=3D33F4D3AB17B44B15E27A9FEFA775E11902ADB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bf:2e:fe:31:a4:03:ff:d6:f5:d8:02:9b:fb: 04:e4:5a:ae:0e:a2:bd:e2:b8:57:cf:bc:c4:86:55: 8b:a6:c3:07:b7:4c:1c:65:aa:35:e7:5f:49:aa:23: 87:a8:53:9f:61:28:b3:4e:1d:6b:7a:95:7a:b7:9a: db:bb:c3:77:2c:62:26:63:67:81:54:fd:2c:9b:3d: 70:44:49:07:d3:c6:70:4e:1a:aa:d8:76:f0:64:c6: 93:dd:a7:70:9a:e9:a8:d0:4c:f5:46:88:5e:5a:f6: 04:d8:74:c7:7c:4b:2c:75:95:99:d5:cf:38:85:4a: ce:19:e9:a2:2b:08:0c:c3:90:4b:71:15:7a:db:6d: 69:c4:9a:57:a8:d7:a2:71:2a:5b:a8:bd:d7:5b:a8: 07:70:3b:f2:3d:89:48:d0:50:e7:05:94:15:f3:3f: 52:ea:be:9a:d6:9f:4b:3d:ef:93:64:67:f4:4e:0c: 59:e3:68:10:fc:0f:1d:12:e2:98:55:ff:69:1f:c2: 0d:9f:df:fb:32:66:db:3d:77:52:cb:e0:85:cf:e0: 13:f4:9b:82:7c:49:15:f0:4c:bb:ee:8f:b9:ae:8e: 28:b5:56:4c:46:a0:36:f8:6f:b0:fe:cc:e5:b6:35: d8:5f:f5:e2:7b:e7:12:ad:77:46:5b:15:66:55:73: 8a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:33:F4:D3:AB:17:B4:4B:15:E2:7A:9F:EF:A7:75:E1:19:02:AD:B9 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d8:d1:ba:a7:20:6d:5f:e9:45:29:12:28:a4:e2:49:b1:c9:9e: c9:c0:4c:31:f8:1b:a9:f1:82:41:1d:3d:9a:58:dd:0b:bd:63: c7:5e:d6:37:3a:d6:57:2b:c2:ae:db:a9:65:d2:b9:72:88:64: 04:9d:2b:51:4a:ff:72:90:2b:38:a3:96:05:6b:44:6f:bc:1c: a6:e6:af:82:0d:6d:d3:5f:ca:1c:5d:e0:72:8f:6b:f2:5b:ae: b2:46:eb:b0:56:65:1a:ca:0c:17:ba:c2:bb:dc:75:2a:77:23: 67:ef:06:fc:de:3b:b0:85:a3:0f:0e:f4:dd:9e:63:67:eb:dc: a2:e8:6b:d6:bc:af:2c:a2:4d:22:cc:49:68:87:cc:35:b8:05: 4c:ef:dd:71:21:a1:69:10:0e:8b:f6:e3:a4:41:fc:fa:53:be: 60:94:cc:eb:69:72:69:13:ca:41:7a:e5:3c:f0:a9:27:4a:c1: 34:49:05:99:84:42:4c:4a:1d:95:23:60:06:7b:15:71:57:71: 43:03:80:03:92:b2:09:80:55:74:27:a7:e7:eb:bb:8c:fe:68: 62:04:8f:cd:92:b1:b1:3d:ab:4a:d3:9e:dc:71:10:b1:25:99: 10:cb:2a:9a:a6:ed:83:3c:6f:ce:c5:7b:84:03:04:89:a9:bf: 48:7f:42:dc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFP3/OsAmSPql9icFsvdCEKV6Rz0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTA4MjIxNDM3MDJaFw0yNTA4MjUxNDQ3MDJaMDMxMTAvBgNV BAMTKDNEMzNGNEQzQUIxN0I0NEIxNUUyN0E5RkVGQTc3NUUxMTkwMkFEQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFvy7+MaQD/9b12AKb+wTkWq4O or3iuFfPvMSGVYumwwe3TBxlqjXnX0mqI4eoU59hKLNOHWt6lXq3mtu7w3csYiZj Z4FU/SybPXBESQfTxnBOGqrYdvBkxpPdp3Ca6ajQTPVGiF5a9gTYdMd8Syx1lZnV zziFSs4Z6aIrCAzDkEtxFXrbbWnEmleo16JxKluovddbqAdwO/I9iUjQUOcFlBXz P1LqvprWn0s975NkZ/RODFnjaBD8Dx0S4phV/2kfwg2f3/syZts9d1LL4IXP4BP0 m4J8SRXwTLvuj7mujii1VkxGoDb4b7D+zOW2Ndhf9eJ75xKtd0ZbFWZVc4rbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPTP006sXtEsV4nqf76d14RkCrbkwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANjRuqcgbV/pRSkSKKTiSbHJnsnATDH4G6nx gkEdPZpY3Qu9Y8de1jc61lcrwq7bqWXSuXKIZASdK1FK/3KQKzijlgVrRG+8HKbm r4INbdNfyhxd4HKPa/JbrrJG67BWZRrKDBe6wrvcdSp3I2fvBvzeO7CFow8O9N2e Y2fr3KLoa9a8ryyiTSLMSWiHzDW4BUzv3XEhoWkQDov246RB/PpTvmCUzOtpcmkT ykF65TzwqSdKwTRJBZmEQkxKHZUjYAZ7FXFXcUMDgAOSsgmAVXQnp+fru4z+aGIE j82SsbE9q0rTntxxELElmRDLKpqm7YM8b87Fe4QDBImpv0h/Qtw= -----END CERTIFICATE-----Generated at Sat Aug 23 10:34:31 2025 by rpki-client