$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: vNZWpn2U4mHQeJf0j9Q3bT6s/t9g0wzKmh8k7TWu3r8= Subject key identifier: B2:EF:0A:43:0B:79:39:6C:61:8D:80:1E:E1:9C:1F:E9:1E:25:E9:96 Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 65B10BEBA30A7DC05028EA680274ACF9D6033F9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 04D2 Signing time: Sat 10 May 2025 00:52:04 +0000 Manifest this update: Sat 10 May 2025 00:47:04 +0000 Manifest next update: Tue 13 May 2025 05:50:04 +0000 Files and hashes: 1: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: GQLjyzqSeaPMpwbmMG+hHOVIX1kxT3fObGtrds/C+9M=) 2: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: rsfdocyFpYgLX4xY5BrOVq+dYwcQsrSghMZpqpv7JCY=) 3: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: 2PTof7HgDvQH3uMSjoYHvBJnE/tgljHy1CUnxbc2tLE=) 4: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: DKZCQRKeOl92/u6Q+TWMKxyvmgLjJkv2aQStSkRROMA=) 5: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: iRjHonxZNqRpHeZ0vSjogTmxhWUG8ZWyfMHmIt7qmdQ=) 6: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: 8FHuasztaiBgjf8vTeP7NOsj9KO7tgGptX2jJQvDg4Q=) 7: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: aK01biYenKLezQd1JYxPRvNKJKDZxGCWS84l0P9T/2k=) 8: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 1UvdjpJuUo4STbRNQdq27HbHQCfkWFnoyv90N7kJ1CM=) 9: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: 9aiJeF03F2zpo2d6gqr5nHFtBKsclixQaw3tnWJ265E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 03:08:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:b1:0b:eb:a3:0a:7d:c0:50:28:ea:68:02:74:ac:f9:d6:03:3f:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: May 10 00:47:04 2025 GMT Not After : May 13 05:50:04 2025 GMT Subject: CN=B2EF0A430B79396C618D801EE19C1FE91E25E996 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:37:b1:a5:d8:43:2f:e5:66:6d:2f:d7:a2:f3: ec:10:fe:b3:07:4b:f0:76:23:d1:99:53:f7:d8:02: bf:cb:29:8f:45:ee:a9:b8:c9:e9:fb:30:c2:9f:fc: 49:b3:d0:c0:a9:63:e1:fe:2c:2e:25:ca:bf:a9:2c: 19:90:b2:73:37:55:30:15:7b:cf:01:db:43:4f:72: 78:6d:c4:41:18:b5:03:84:f2:75:be:5b:79:aa:aa: 0b:73:36:af:5f:de:97:bf:5d:82:bb:7a:d6:35:c0: b2:e2:af:f3:e6:f7:13:51:7c:d5:14:b8:96:af:53: f2:8f:15:1d:cf:37:94:18:3a:16:70:ce:90:dc:f0: 63:cc:86:6e:81:82:5b:9d:59:0d:99:97:44:42:b6: 5f:75:17:50:97:e0:8b:ce:a3:34:a2:82:6b:d7:79: 47:b1:1e:5a:e3:bf:2d:31:25:5a:be:fe:58:b5:51: 7e:b1:43:99:ae:9a:8d:c3:2e:b1:48:43:5f:b8:d5: 6e:b4:4c:53:fa:c3:3e:c8:6b:92:5f:45:b1:70:de: e0:34:9c:1d:3d:69:ad:6b:ae:67:08:f9:30:a4:0c: ff:c4:54:b9:3f:1b:6b:9b:eb:cb:78:d8:91:76:88: 2b:e1:7d:33:ab:c8:e5:3b:8a:66:8c:1c:23:ff:f5: 66:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:EF:0A:43:0B:79:39:6C:61:8D:80:1E:E1:9C:1F:E9:1E:25:E9:96 X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:0c:5f:80:aa:66:db:e2:22:f7:7d:c3:53:f4:2e:95:23:6a: 07:8a:d3:46:a6:a2:4d:86:d6:b5:94:86:cd:0a:2f:26:c9:65: cf:a5:ba:4a:f9:02:ba:4e:f7:6d:6d:1f:db:c5:76:22:e1:51: 40:e4:00:c2:f3:02:bd:31:fb:55:8c:0f:66:38:19:d9:5e:3b: 47:04:7f:05:db:55:49:30:28:28:54:ae:cf:93:d9:91:68:4c: fc:95:ad:c7:81:21:15:44:cc:0c:1c:93:af:7c:cd:07:c6:b0: a7:66:75:db:f2:ea:d2:80:ec:99:c3:2d:e2:54:8b:c8:f8:e6: 00:42:76:b4:67:bc:93:2c:62:7d:3c:b9:ee:4d:6c:7a:b7:a9: e0:50:34:f0:0b:b8:ba:65:81:12:2f:70:f9:43:3e:8b:b7:6b: a9:8a:11:60:38:a2:46:37:ce:82:a0:41:66:f9:0b:6a:01:20: c0:44:51:d9:eb:8c:5c:f4:d5:dd:35:2a:a9:fc:44:78:32:ff: 22:35:41:98:50:22:0a:a3:a5:c1:4a:5a:e5:7a:d8:78:69:d8: d0:51:5e:dd:10:6a:41:74:19:01:aa:90:e7:e3:e2:3a:bf:5e: e6:52:22:1b:99:fb:56:d1:b5:64:7f:4a:de:d8:8f:0e:78:4c: 83:f7:d0:38 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZbEL66MKfcBQKOpoAnSs+dYDP58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTA1MTAwMDQ3MDRaFw0yNTA1MTMwNTUwMDRaMDMxMTAvBgNV BAMTKEIyRUYwQTQzMEI3OTM5NkM2MThEODAxRUUxOUMxRkU5MUUyNUU5OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpN7Gl2EMv5WZtL9ei8+wQ/rMH S/B2I9GZU/fYAr/LKY9F7qm4yen7MMKf/Emz0MCpY+H+LC4lyr+pLBmQsnM3VTAV e88B20NPcnhtxEEYtQOE8nW+W3mqqgtzNq9f3pe/XYK7etY1wLLir/Pm9xNRfNUU uJavU/KPFR3PN5QYOhZwzpDc8GPMhm6BgludWQ2Zl0RCtl91F1CX4IvOozSigmvX eUexHlrjvy0xJVq+/li1UX6xQ5mumo3DLrFIQ1+41W60TFP6wz7Ia5JfRbFw3uA0 nB09aa1rrmcI+TCkDP/EVLk/G2ub68t42JF2iCvhfTOryOU7imaMHCP/9WZpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsu8KQwt5OWxhjYAe4Zwf6R4l6ZYwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD4MX4CqZtviIvd9w1P0LpUjageK00amok2G 1rWUhs0KLybJZc+lukr5ArpO921tH9vFdiLhUUDkAMLzAr0x+1WMD2Y4GdleO0cE fwXbVUkwKChUrs+T2ZFoTPyVrceBIRVEzAwck698zQfGsKdmddvy6tKA7JnDLeJU i8j45gBCdrRnvJMsYn08ue5NbHq3qeBQNPALuLplgRIvcPlDPou3a6mKEWA4okY3 zoKgQWb5C2oBIMBEUdnrjFz01d01Kqn8RHgy/yI1QZhQIgqjpcFKWuV62Hhp2NBR Xt0QakF0GQGqkOfj4jq/XuZSIhuZ+1bRtWR/St7Yjw54TIP30Dg= -----END CERTIFICATE-----Generated at Sat May 10 05:41:58 2025 by rpki-client