$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: p8uDcex/W86PsxJC3So+4ZDiX5Nc+hBKwTo6Kp6Zxio= Subject key identifier: BD:D7:14:99:8F:3D:A7:F1:F1:18:AA:72:70:B6:3D:C9:28:EC:B5:87 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 4CABE874C5E92AF197EA2C00D09BEFB7BB2F8DE6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: C7 Signing time: Sat 23 Aug 2025 04:20:49 +0000 Manifest this update: Sat 23 Aug 2025 04:15:49 +0000 Manifest next update: Tue 26 Aug 2025 13:39:49 +0000 Files and hashes: 1: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: j5mbdW3zp9uOX5UpNf/z2tIsNahPaTwDjHn1bMDveWY=) 2: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: pleM7zjt401D1BJf2sqrcL6s2yWcWR5KklAwpJnySCE=) 3: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: Hz+bwv5TeiqLZz4vHu5RdAv/BqFZcBIfsejW6ExngYw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:24:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:ab:e8:74:c5:e9:2a:f1:97:ea:2c:00:d0:9b:ef:b7:bb:2f:8d:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Aug 23 04:15:49 2025 GMT Not After : Aug 26 13:39:49 2025 GMT Subject: CN=BDD714998F3DA7F1F118AA7270B63DC928ECB587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:89:08:96:96:8f:76:86:76:5b:cd:a1:3f:30: f6:2a:58:33:90:0c:36:ff:4b:5b:c2:f3:82:3e:ea: ee:e8:35:ec:1d:67:92:02:35:33:b1:98:29:58:35: 2c:fd:02:dd:1f:0c:6b:74:be:95:6b:77:06:62:08: 4e:0e:3a:56:08:bb:6f:67:a9:f1:54:d6:79:27:7c: 01:72:f6:12:3d:91:a4:03:dd:66:61:46:d3:4b:5e: 30:15:22:85:48:8d:9f:ba:4d:7d:a1:e8:9b:7f:a7: 3e:b7:a3:58:ba:3f:b8:f9:fb:00:21:97:11:3f:41: 66:ad:b3:bc:84:cf:f4:eb:cf:36:d6:4f:13:71:92: e0:75:2f:ef:20:9d:56:d3:7c:79:b4:c0:a2:d0:ce: 2c:41:3d:e8:f0:ca:36:d8:22:b9:6e:75:04:62:fc: 44:a8:b2:82:4b:f3:9e:43:03:4a:71:0b:9d:9f:b7: 44:42:52:00:5e:94:36:97:36:55:e7:66:94:4b:97: 50:2b:55:83:99:51:31:44:6d:27:46:a9:01:04:f6: bc:17:30:86:4a:d8:c7:c6:96:64:79:5e:dd:92:2b: af:dd:2a:11:ed:f5:0a:b3:d4:d0:56:f2:d1:f7:c3: 56:8f:7c:37:23:d5:7c:d2:8c:31:b8:47:1f:ab:61: 1f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D7:14:99:8F:3D:A7:F1:F1:18:AA:72:70:B6:3D:C9:28:EC:B5:87 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:5c:77:25:cc:a2:a3:ce:2f:6b:93:da:ba:03:1d:de:77:57: 46:48:68:9c:4e:1e:e4:c3:d5:ab:3e:8f:12:05:b1:64:8d:c5: 4b:a2:92:de:44:31:32:43:d0:ae:67:d5:e7:d2:24:5c:30:a1: 86:88:05:14:d9:bc:56:33:16:08:f3:90:bb:d7:e8:33:51:97: 89:45:43:64:ad:2f:0c:bc:87:9e:fb:0b:3e:e7:ac:82:38:75: 86:d1:39:e0:1e:54:e7:43:bf:5b:63:de:c7:63:ae:8a:9c:3c: ec:d8:5c:1c:9a:83:5f:e3:aa:f8:97:5f:37:f5:f2:83:e0:d2: 7f:14:16:09:41:0e:02:e1:e3:f9:b1:1b:3a:08:c0:c0:3e:6f: 72:66:90:bc:88:75:d6:c8:10:21:ff:14:ba:ee:38:41:9e:f0: 59:eb:44:6d:83:e5:5d:70:a3:0c:a5:0c:d9:d5:43:29:de:c4: b6:b2:bf:91:01:af:df:5f:df:49:7b:a8:2f:9d:84:68:64:79: d5:48:e6:8c:31:96:f6:51:dc:ce:10:3e:a5:28:53:09:0a:2c: 16:1e:d2:8a:08:e7:21:8d:a0:79:34:5d:e3:87:5e:3d:1a:14: dc:fc:0e:87:f7:15:7b:9e:82:9a:75:21:d8:3e:b4:a6:da:5e: a3:b9:d6:f8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTKvodMXpKvGX6iwA0Jvvt7svjeYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTA4MjMwNDE1NDlaFw0yNTA4MjYxMzM5NDlaMDMxMTAvBgNV BAMTKEJERDcxNDk5OEYzREE3RjFGMTE4QUE3MjcwQjYzREM5MjhFQ0I1ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeiQiWlo92hnZbzaE/MPYqWDOQ DDb/S1vC84I+6u7oNewdZ5ICNTOxmClYNSz9At0fDGt0vpVrdwZiCE4OOlYIu29n qfFU1nknfAFy9hI9kaQD3WZhRtNLXjAVIoVIjZ+6TX2h6Jt/pz63o1i6P7j5+wAh lxE/QWats7yEz/TrzzbWTxNxkuB1L+8gnVbTfHm0wKLQzixBPejwyjbYIrludQRi /ESosoJL855DA0pxC52ft0RCUgBelDaXNlXnZpRLl1ArVYOZUTFEbSdGqQEE9rwX MIZK2MfGlmR5Xt2SK6/dKhHt9Qqz1NBW8tH3w1aPfDcj1XzSjDG4Rx+rYR8xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvdcUmY89p/HxGKpycLY9ySjstYcwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKBcdyXMoqPOL2uT2roDHd53V0ZIaJxOHuTD 1as+jxIFsWSNxUuikt5EMTJD0K5n1efSJFwwoYaIBRTZvFYzFgjzkLvX6DNRl4lF Q2StLwy8h577Cz7nrII4dYbROeAeVOdDv1tj3sdjroqcPOzYXByag1/jqviXXzf1 8oPg0n8UFglBDgLh4/mxGzoIwMA+b3JmkLyIddbIECH/FLruOEGe8FnrRG2D5V1w owylDNnVQynexLayv5EBr99f30l7qC+dhGhkedVI5owxlvZR3M4QPqUoUwkKLBYe 0ooI5yGNoHk0XeOHXj0aFNz8Dof3FXuegpp1Idg+tKbaXqO51vg= -----END CERTIFICATE-----Generated at Sat Aug 23 21:16:10 2025 by rpki-client