$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: 5CX/aiXeyoVUVyluFvG0RTyGn8K3e4RGgs8ftTfHtgc= Subject key identifier: 0D:79:E3:1F:A5:78:AD:E9:C5:20:DE:3C:B7:C3:D0:1A:92:99:B1:65 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 0FB016FF6D5CFD9535AE7CDA638AFD48112E4B8B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: B1 Signing time: Fri 04 Jul 2025 02:30:48 +0000 Manifest this update: Fri 04 Jul 2025 02:25:48 +0000 Manifest next update: Mon 07 Jul 2025 05:03:48 +0000 Files and hashes: 1: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: Hz+bwv5TeiqLZz4vHu5RdAv/BqFZcBIfsejW6ExngYw=) 2: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: A5WMSg3lyPCypky9wmEW/gphrZkeZAP+TH9vAm6XgDc=) 3: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: pleM7zjt401D1BJf2sqrcL6s2yWcWR5KklAwpJnySCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 05:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b0:16:ff:6d:5c:fd:95:35:ae:7c:da:63:8a:fd:48:11:2e:4b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Jul 4 02:25:48 2025 GMT Not After : Jul 7 05:03:48 2025 GMT Subject: CN=0D79E31FA578ADE9C520DE3CB7C3D01A9299B165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dd:1e:78:70:25:41:89:b1:41:57:88:6f:8e: a8:f6:a7:97:4f:5e:18:d4:db:14:56:d5:4b:24:5f: 86:df:7b:34:f0:27:64:a1:05:4b:10:33:64:8b:ee: a9:94:59:9a:74:cb:83:1f:ba:f6:2f:9b:6e:6a:0f: ef:70:7b:88:eb:2a:41:44:ef:61:97:db:a3:fe:1f: cd:31:82:4d:e9:a3:7a:68:ba:ef:ab:76:21:db:d0: eb:d1:f2:bc:36:d2:0f:21:7a:8d:db:63:99:fc:17: d4:ca:7b:2a:60:32:5c:fc:a5:a7:a6:fa:85:c7:9d: 02:6f:db:43:21:33:36:cb:02:8a:0b:8e:37:45:30: 0a:18:73:51:00:82:78:5d:4f:86:d3:b4:7d:8f:6c: 73:71:c4:2e:11:5e:dc:b8:d8:7d:f8:70:d8:95:6a: e8:3d:c3:bf:14:ae:16:1e:d4:90:97:73:af:f9:1c: 9b:d6:ed:49:56:3c:21:07:8e:15:ca:23:f7:15:cc: 6b:f2:34:a3:48:65:42:d6:8b:de:21:98:fe:33:20: 45:26:cb:7a:b1:a3:31:29:ed:28:59:a2:a4:88:1e: 66:15:d3:5a:d2:7e:af:db:e3:1e:bf:d0:54:ee:cb: 3b:49:3f:11:2a:2e:85:6a:f1:cc:42:38:88:ce:b1: 20:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:79:E3:1F:A5:78:AD:E9:C5:20:DE:3C:B7:C3:D0:1A:92:99:B1:65 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:6d:a7:b0:12:7d:12:1a:5a:56:13:46:d5:a7:39:74:22:c4: 59:ba:77:55:4f:d3:aa:03:94:74:ec:76:37:d1:84:85:90:dd: 78:19:e5:b3:5d:4d:68:9a:39:16:89:fd:58:b8:00:22:cc:87: 74:20:4e:58:45:99:39:34:1d:e2:92:4e:c6:59:6f:b2:e0:78: c4:4a:6c:57:b4:05:22:e9:9c:fe:39:c2:48:9f:9e:ec:c6:0c: 7e:a4:d9:5c:de:20:e1:90:ec:26:60:5c:30:13:3a:71:52:82: c3:19:4b:b0:89:03:dd:4a:24:61:02:9c:1f:c2:c3:1c:77:1d: f1:6f:53:2c:9e:36:1b:67:6c:2f:bd:27:73:47:18:aa:3a:fd: b0:23:e5:82:96:0c:16:2b:9f:e2:96:a6:b8:25:d5:b4:02:cd: 13:54:5d:9a:a3:3b:e6:2e:6e:11:08:0f:7f:53:8e:82:65:7c: e5:c8:88:02:3e:39:d1:a8:d9:3d:48:4b:c4:01:ff:93:16:24: 9c:ae:7f:50:4d:21:a4:6b:da:0f:a8:0f:73:8c:8e:03:0a:95: 15:c4:0c:00:11:87:4f:73:aa:c5:be:d3:c9:31:ff:dc:a0:74: ca:42:11:36:e8:57:b1:42:4d:2b:a3:2b:7f:82:2b:5a:86:c4: 07:35:3c:68 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD7AW/21c/ZU1rnzaY4r9SBEuS4swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTA3MDQwMjI1NDhaFw0yNTA3MDcwNTAzNDhaMDMxMTAvBgNV BAMTKDBENzlFMzFGQTU3OEFERTlDNTIwREUzQ0I3QzNEMDFBOTI5OUIxNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF3R54cCVBibFBV4hvjqj2p5dP XhjU2xRW1UskX4bfezTwJ2ShBUsQM2SL7qmUWZp0y4MfuvYvm25qD+9we4jrKkFE 72GX26P+H80xgk3po3pouu+rdiHb0OvR8rw20g8heo3bY5n8F9TKeypgMlz8paem +oXHnQJv20MhMzbLAooLjjdFMAoYc1EAgnhdT4bTtH2PbHNxxC4RXty42H34cNiV aug9w78UrhYe1JCXc6/5HJvW7UlWPCEHjhXKI/cVzGvyNKNIZULWi94hmP4zIEUm y3qxozEp7ShZoqSIHmYV01rSfq/b4x6/0FTuyztJPxEqLoVq8cxCOIjOsSDZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDXnjH6V4renFIN48t8PQGpKZsWUwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADltp7ASfRIaWlYTRtWnOXQixFm6d1VP06oD lHTsdjfRhIWQ3XgZ5bNdTWiaORaJ/Vi4ACLMh3QgTlhFmTk0HeKSTsZZb7LgeMRK bFe0BSLpnP45wkifnuzGDH6k2VzeIOGQ7CZgXDATOnFSgsMZS7CJA91KJGECnB/C wxx3HfFvUyyeNhtnbC+9J3NHGKo6/bAj5YKWDBYrn+KWprgl1bQCzRNUXZqjO+Yu bhEID39TjoJlfOXIiAI+OdGo2T1IS8QB/5MWJJyuf1BNIaRr2g+oD3OMjgMKlRXE DAARh09zqsW+08kx/9ygdMpCETboV7FCTSujK3+CK1qGxAc1PGg= -----END CERTIFICATE-----Generated at Sat Jul 5 07:58:04 2025 by rpki-client