$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: vxmqbyrqH/5IppX/68+f+m9y579qj3Y3GG3PpdkYKRQ= Subject key identifier: 7B:ED:21:78:B8:75:EA:0B:22:E1:96:C3:59:49:AB:A3:8A:52:E2:1A Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 785936D86A4CD59E86369380EDF31539F96147E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 051B Signing time: Mon 20 Oct 2025 06:52:05 +0000 Manifest this update: Mon 20 Oct 2025 06:47:05 +0000 Manifest next update: Thu 23 Oct 2025 15:00:05 +0000 Files and hashes: 1: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: lOPyN4jlxJmDfUm1Z5usitGLtQdiU+flslurwWQqLwM=) 2: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: +FaWxeyMSXTm1A2YbWkKpjjxd9ODF5R6bPfmYjsvC3c=) 3: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: m1RDFs81kJe7cLkzIuvESdF6lsbsj7FMYtNBuW0nGcE=) 4: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: mAHS4RhjFlyuuj4wSTCANOzW1BtppaUwbd4+LpgqV3A=) 5: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 6P/MnisWmadZujdf0MdzBBem1MXVl8xw/vKYXqNcxoU=) 6: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: GQLjyzqSeaPMpwbmMG+hHOVIX1kxT3fObGtrds/C+9M=) 7: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: 024GczWPtrDEiXsdCnzmqUbO5op9p1MQRfGldR1dq8w=) 8: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: ctlL63La/nA2o80IyG4Gn5yERO9Svxh3VS6Tj8PS2Bk=) 9: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: Y6tvd+1XtHiukr4Lnc++EG2e4/MBcfeHFg9Xd0kGFMg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 11:48:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:59:36:d8:6a:4c:d5:9e:86:36:93:80:ed:f3:15:39:f9:61:47:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Oct 20 06:47:05 2025 GMT Not After : Oct 23 15:00:05 2025 GMT Subject: CN=7BED2178B875EA0B22E196C35949ABA38A52E21A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:78:82:bd:0c:7c:da:ff:0b:af:71:60:d1:2e: d1:af:c9:0b:10:65:41:78:3b:ab:18:89:5d:59:dc: d0:81:40:fd:f3:9f:94:5c:71:25:10:96:0e:fa:b1: b7:e2:96:aa:f5:1b:94:e7:6e:d1:c6:c2:ba:a5:d2: 92:0b:98:17:05:27:49:98:61:c1:6c:f4:cf:af:0c: 5d:27:e2:d9:d1:b1:76:46:2a:19:86:b2:29:2b:f1: fe:b1:ca:39:b5:60:8f:b6:53:42:4b:ca:26:40:8d: c3:29:ab:e8:b0:f7:3c:43:ec:6d:93:c1:07:66:f8: e0:a9:08:ea:0f:72:6e:e4:a7:80:c5:a4:89:74:3f: 3f:2b:63:fa:f6:2b:01:f3:2c:4a:0a:2c:ed:34:4d: ba:6a:ee:45:68:9c:1c:16:35:b2:d5:78:33:b1:52: 79:86:89:78:75:c5:91:af:c1:5e:36:9d:36:0c:8a: 79:8b:88:13:1d:40:15:d9:c2:05:ac:65:5c:79:ef: be:a3:d2:8b:d5:0a:85:65:f5:ad:bc:2a:c3:61:99: 48:cc:1c:0c:08:2e:4e:ed:e3:ed:82:1c:8b:3a:35: c7:87:30:f5:99:98:c8:26:cc:ea:b4:08:17:dc:5b: 08:c1:5c:ec:b8:e9:b0:4f:2b:27:de:79:0b:b7:a6: 50:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:ED:21:78:B8:75:EA:0B:22:E1:96:C3:59:49:AB:A3:8A:52:E2:1A X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:2b:c7:a7:34:fd:d0:4e:23:8c:c2:cb:de:a1:8c:8a:d8:1c: 32:1a:83:9a:cb:1b:ae:8d:1f:25:2c:1a:c0:72:0a:76:22:a6: 6e:4d:c4:25:60:e7:66:63:54:eb:c1:63:15:f3:e3:97:5b:77: 47:e5:55:71:8e:23:46:74:35:89:11:cb:09:ba:6a:f5:c9:61: fc:ef:24:6b:b3:5c:e8:73:40:3a:d3:4d:36:bd:24:05:58:a0: 4b:e1:5a:af:0a:2b:f8:dd:09:df:71:ba:5a:63:1b:fb:c9:81: f2:df:07:eb:56:ec:6f:56:ff:89:5d:c1:fc:39:31:46:c4:a7: 64:8f:f8:77:ab:c4:b8:ac:ad:e0:d4:91:b1:98:45:40:b6:66: 6e:2b:53:91:10:9f:6b:70:27:06:b7:07:9d:4e:46:8b:62:6e: 7e:79:86:12:a9:6f:6c:a2:f8:4e:f4:4d:f7:8c:e9:ab:d1:aa: 07:ae:32:be:eb:07:75:de:47:3d:f5:4e:a9:9f:a4:7c:52:22: 9c:11:05:0c:a0:83:6e:40:f4:3f:1b:5d:dc:27:9a:6b:a7:31: 52:9c:93:13:d6:6d:49:07:c1:04:c0:f3:1d:65:88:11:b9:a6: 0d:13:f7:a8:d3:d6:e3:74:8c:96:e4:77:91:f4:42:50:f7:9f: c9:8c:69:2f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeFk22GpM1Z6GNpOA7fMVOflhR+QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTEwMjAwNjQ3MDVaFw0yNTEwMjMxNTAwMDVaMDMxMTAvBgNV BAMTKDdCRUQyMTc4Qjg3NUVBMEIyMkUxOTZDMzU5NDlBQkEzOEE1MkUyMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyeIK9DHza/wuvcWDRLtGvyQsQ ZUF4O6sYiV1Z3NCBQP3zn5RccSUQlg76sbfilqr1G5TnbtHGwrql0pILmBcFJ0mY YcFs9M+vDF0n4tnRsXZGKhmGsikr8f6xyjm1YI+2U0JLyiZAjcMpq+iw9zxD7G2T wQdm+OCpCOoPcm7kp4DFpIl0Pz8rY/r2KwHzLEoKLO00Tbpq7kVonBwWNbLVeDOx UnmGiXh1xZGvwV42nTYMinmLiBMdQBXZwgWsZVx5776j0ovVCoVl9a28KsNhmUjM HAwILk7t4+2CHIs6NceHMPWZmMgmzOq0CBfcWwjBXOy46bBPKyfeeQu3plDbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUe+0heLh16gsi4ZbDWUmro4pS4howHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFQrx6c0/dBOI4zCy96hjIrYHDIag5rLG66N HyUsGsByCnYipm5NxCVg52ZjVOvBYxXz45dbd0flVXGOI0Z0NYkRywm6avXJYfzv JGuzXOhzQDrTTTa9JAVYoEvhWq8KK/jdCd9xulpjG/vJgfLfB+tW7G9W/4ldwfw5 MUbEp2SP+HerxLisreDUkbGYRUC2Zm4rU5EQn2twJwa3B51ORotibn55hhKpb2yi +E70TfeM6avRqgeuMr7rB3XeRz31TqmfpHxSIpwRBQygg25A9D8bXdwnmmunMVKc kxPWbUkHwQTA8x1liBG5pg0T96jT1uN0jJbkd5H0QlD3n8mMaS8= -----END CERTIFICATE-----Generated at Mon Oct 20 22:21:58 2025 by rpki-client