$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: OMNUyFHULdP5bxG5NSI7VcBd3P2xMXggO43M7XEhc7w= Subject key identifier: 24:F1:7D:4C:16:19:E9:0A:A4:25:5A:F0:2C:50:58:24:16:D1:CC:E9 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 4A78928E349B0205316985487AB4705D87826C82 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 04E9 Signing time: Sun 29 Jun 2025 16:52:00 +0000 Manifest this update: Sun 29 Jun 2025 16:47:00 +0000 Manifest next update: Wed 02 Jul 2025 23:11:00 +0000 Files and hashes: 1: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: GQLjyzqSeaPMpwbmMG+hHOVIX1kxT3fObGtrds/C+9M=) 2: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: Y6tvd+1XtHiukr4Lnc++EG2e4/MBcfeHFg9Xd0kGFMg=) 3: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: m1RDFs81kJe7cLkzIuvESdF6lsbsj7FMYtNBuW0nGcE=) 4: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: +FaWxeyMSXTm1A2YbWkKpjjxd9ODF5R6bPfmYjsvC3c=) 5: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: A7y4PLkwaYous9d1vqo2LNs0USl1NBCv+mVrK/30//0=) 6: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: ctlL63La/nA2o80IyG4Gn5yERO9Svxh3VS6Tj8PS2Bk=) 7: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: mAHS4RhjFlyuuj4wSTCANOzW1BtppaUwbd4+LpgqV3A=) 8: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 6P/MnisWmadZujdf0MdzBBem1MXVl8xw/vKYXqNcxoU=) 9: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: lOPyN4jlxJmDfUm1Z5usitGLtQdiU+flslurwWQqLwM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 23:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:78:92:8e:34:9b:02:05:31:69:85:48:7a:b4:70:5d:87:82:6c:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Jun 29 16:47:00 2025 GMT Not After : Jul 2 23:11:00 2025 GMT Subject: CN=24F17D4C1619E90AA4255AF02C50582416D1CCE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d5:f4:70:50:7c:7d:33:ac:ad:88:37:5f:3e: 88:83:57:70:82:c8:f5:cb:f9:f8:38:e0:df:75:5a: c0:aa:e6:9b:f0:b0:a8:4b:c8:52:44:ef:6b:03:68: a5:e1:26:c6:b9:71:d1:1d:83:ac:22:84:49:2d:d9: c1:5d:1f:ad:04:0b:56:5c:47:cd:f3:d9:f9:3a:48: 3d:82:2c:ed:62:73:27:d1:ad:e9:0a:c7:e6:86:ab: 82:5c:1e:40:d9:86:85:e7:4f:a9:09:f8:9a:56:0f: 35:7f:f8:33:46:3b:04:29:ed:6e:63:51:71:91:01: b8:2a:cd:8a:55:70:ac:a7:d5:6a:03:1a:ab:35:f4: ec:26:1b:c5:a3:b7:92:df:db:2d:df:6c:a6:23:b6: 6d:7f:22:b8:8c:e1:76:47:74:8b:2e:fb:fb:91:9b: 25:30:58:cd:b9:56:5a:0b:07:17:07:41:3a:e9:6e: 0e:3f:f7:52:e8:25:b3:29:e9:38:a7:b1:d5:1c:aa: 66:ff:c6:2a:09:af:6e:5c:17:4a:a2:a5:7e:0e:00: 20:e4:22:4b:d8:44:95:42:f5:77:a0:fa:61:7b:1b: ad:aa:c3:5d:64:0a:45:d8:91:99:20:46:f7:60:26: 16:d4:34:b0:63:0a:64:bf:d0:e9:15:64:b6:1d:c8: 16:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F1:7D:4C:16:19:E9:0A:A4:25:5A:F0:2C:50:58:24:16:D1:CC:E9 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:22:1c:50:18:93:33:e9:95:26:40:c2:0b:32:c1:54:72:d3: 2d:10:5b:86:e4:a5:d4:95:72:63:97:20:d1:a7:c4:03:79:95: 92:b1:b8:04:78:6c:93:8c:56:65:7f:11:93:e3:0f:ee:a4:58: a7:4b:68:11:72:7a:d9:6a:48:60:73:fa:72:2b:e7:7f:ae:66: 71:99:5b:7b:68:cb:4a:27:3f:a2:7f:74:e4:70:52:76:82:11: 80:eb:85:07:c6:23:51:82:64:2b:40:1b:42:51:2e:dd:40:d1: 57:69:3d:cb:8e:44:87:c6:41:13:19:de:32:0e:2e:11:23:f0: ae:48:b7:24:05:b9:a4:30:a0:29:e2:2b:3e:c4:3f:2d:84:9d: 13:8b:06:16:f5:a9:6d:33:81:d4:34:c3:a5:b5:82:c6:43:f0: 81:44:41:e3:01:b0:8c:84:c9:68:09:2a:85:f6:1e:b5:45:41: f4:7a:04:62:5b:f8:b1:14:a4:9e:3a:6e:4b:b8:89:6f:36:89: 6b:58:0c:dd:05:4d:f8:3c:40:bb:41:e5:0b:83:0e:79:a8:31: 5f:9e:71:3f:19:43:f1:d1:09:2a:eb:2b:aa:f9:c2:a9:c4:90: 0a:17:b5:59:cb:97:d6:a3:2b:76:28:6e:94:c6:2b:43:c9:34: 66:ce:c2:20 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSniSjjSbAgUxaYVIerRwXYeCbIIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTA2MjkxNjQ3MDBaFw0yNTA3MDIyMzExMDBaMDMxMTAvBgNV BAMTKDI0RjE3RDRDMTYxOUU5MEFBNDI1NUFGMDJDNTA1ODI0MTZEMUNDRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL1fRwUHx9M6ytiDdfPoiDV3CC yPXL+fg44N91WsCq5pvwsKhLyFJE72sDaKXhJsa5cdEdg6wihEkt2cFdH60EC1Zc R83z2fk6SD2CLO1icyfRrekKx+aGq4JcHkDZhoXnT6kJ+JpWDzV/+DNGOwQp7W5j UXGRAbgqzYpVcKyn1WoDGqs19OwmG8Wjt5Lf2y3fbKYjtm1/IriM4XZHdIsu+/uR myUwWM25VloLBxcHQTrpbg4/91LoJbMp6TinsdUcqmb/xioJr25cF0qipX4OACDk IkvYRJVC9Xeg+mF7G62qw11kCkXYkZkgRvdgJhbUNLBjCmS/0OkVZLYdyBZ/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJPF9TBYZ6QqkJVrwLFBYJBbRzOkwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKAiHFAYkzPplSZAwgsywVRy0y0QW4bkpdSV cmOXINGnxAN5lZKxuAR4bJOMVmV/EZPjD+6kWKdLaBFyetlqSGBz+nIr53+uZnGZ W3toy0onP6J/dORwUnaCEYDrhQfGI1GCZCtAG0JRLt1A0VdpPcuORIfGQRMZ3jIO LhEj8K5ItyQFuaQwoCniKz7EPy2EnROLBhb1qW0zgdQ0w6W1gsZD8IFEQeMBsIyE yWgJKoX2HrVFQfR6BGJb+LEUpJ46bku4iW82iWtYDN0FTfg8QLtB5QuDDnmoMV+e cT8ZQ/HRCSrrK6r5wqnEkAoXtVnLl9ajK3YobpTGK0PJNGbOwiA= -----END CERTIFICATE-----Generated at Mon Jun 30 18:52:34 2025 by rpki-client