$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: eUwzqdup7Ji11TWMPOL6PyJCJH9V05vgEZeomDvuvzg= Subject key identifier: E5:2F:BB:2D:AC:E2:D5:E9:B1:55:E5:F4:84:F3:1B:F8:B5:A4:E3:41 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 20A8AA2D68D13E7F0858268CD16A8F440DE3AF05 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: 98 Signing time: Fri 09 May 2025 22:00:50 +0000 Manifest this update: Fri 09 May 2025 21:55:50 +0000 Manifest next update: Tue 13 May 2025 04:29:50 +0000 Files and hashes: 1: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: +B144LQ2zFtKEP/SLmV1KjDgPjbChftLWZQEA3ojVxw=) 2: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: qz9gkkaT5gjEW5IKUp/t4G7tipALQOBC2f4F6gPlyJ0=) 3: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: r+NcYn+t5rMmjNx2JWkC72GwMhJHESlVZs6P4b6ukaU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 04:29:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:a8:aa:2d:68:d1:3e:7f:08:58:26:8c:d1:6a:8f:44:0d:e3:af:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: May 9 21:55:50 2025 GMT Not After : May 13 04:29:50 2025 GMT Subject: CN=E52FBB2DACE2D5E9B155E5F484F31BF8B5A4E341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:c0:d5:15:b3:0a:aa:23:2a:81:13:15:fc: da:40:3f:c3:b9:a6:52:b7:61:64:c2:04:66:1f:04: c6:3e:fc:8a:54:3e:14:78:5d:ae:9c:49:c2:4e:1f: 9e:dc:42:84:87:f6:3e:e5:5b:4b:48:23:0c:5a:ec: fa:b0:04:55:22:d7:d6:d1:da:0b:b4:eb:5f:b5:81: 0f:e7:37:a2:15:b3:e1:8d:6d:37:45:c4:0e:79:54: 96:23:e1:85:8c:18:06:61:27:5b:f3:72:5a:89:51: c2:96:0d:94:80:e0:0f:61:a6:c3:c4:ce:67:f8:4b: f4:d6:32:d5:3f:48:71:37:5f:6d:79:03:98:28:82: 7b:f6:7a:aa:35:b9:ee:a6:6d:56:63:e4:e5:fa:ec: a2:b9:4a:fb:bf:6b:a2:13:c7:f6:ec:2a:26:25:38: 60:b9:42:96:8b:76:b7:3b:0e:f8:0e:0f:2f:67:ab: 9d:c9:fc:38:42:ce:cf:d1:4a:f3:95:db:3d:21:e4: b5:17:f2:cc:bd:13:69:66:ec:cb:df:0a:6a:99:bf: 24:57:43:99:ed:f2:01:28:10:60:63:72:0a:0c:7b: e3:ae:61:78:59:4a:f2:6b:ea:86:0a:60:2d:a7:a8: fb:08:5d:e8:34:f6:b1:cc:3e:aa:fe:c6:ff:2e:85: e8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:2F:BB:2D:AC:E2:D5:E9:B1:55:E5:F4:84:F3:1B:F8:B5:A4:E3:41 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:f8:3e:57:56:08:8b:22:aa:bb:c4:67:90:bf:ea:94:78:e9: 48:70:bb:b6:b6:18:7c:74:64:f8:2a:db:b6:e1:49:63:76:97: 77:37:3e:67:58:7a:4c:80:01:1a:d8:9c:50:d4:5e:c2:11:74: 5f:58:1c:a9:61:30:89:ce:52:c1:0b:0b:5f:1f:b5:5c:a8:b6: 36:6c:f3:18:e5:5b:92:e1:14:35:2b:24:0a:85:15:a1:46:b3: 34:9d:dd:6f:8b:21:9b:d4:70:c9:44:5c:33:bb:9a:90:55:aa: 96:8a:1a:a8:55:43:6a:1a:d5:d3:04:a9:40:87:9b:c4:81:5d: ec:95:95:af:1b:3c:d9:e3:c8:25:6b:a8:6f:3b:58:fa:7f:e7: 0f:53:13:6d:52:7e:45:2d:a5:ba:e9:64:b5:ef:7f:11:55:67: bf:7a:5a:4f:64:1a:4e:f6:4a:d5:1f:81:7f:cf:c2:14:57:74: 9f:94:a9:f7:48:3c:f0:f5:19:dc:62:f7:45:2e:72:f8:5d:9a: 99:a9:b6:f6:b8:2e:ec:cb:fd:66:ca:74:5f:a4:74:48:56:4e: 6c:ca:43:88:c2:4d:cd:ec:4d:d6:02:95:d3:c4:25:8a:94:35: 99:29:13:3f:7a:e2:02:5b:96:c9:b6:f8:38:30:00:05:3b:a7: 7a:49:00:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIKiqLWjRPn8IWCaM0WqPRA3jrwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTA1MDkyMTU1NTBaFw0yNTA1MTMwNDI5NTBaMDMxMTAvBgNV BAMTKEU1MkZCQjJEQUNFMkQ1RTlCMTU1RTVGNDg0RjMxQkY4QjVBNEUzNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGicDVFbMKqiMqgRMV/NpAP8O5 plK3YWTCBGYfBMY+/IpUPhR4Xa6cScJOH57cQoSH9j7lW0tIIwxa7PqwBFUi19bR 2gu061+1gQ/nN6IVs+GNbTdFxA55VJYj4YWMGAZhJ1vzclqJUcKWDZSA4A9hpsPE zmf4S/TWMtU/SHE3X215A5gognv2eqo1ue6mbVZj5OX67KK5Svu/a6ITx/bsKiYl OGC5QpaLdrc7DvgODy9nq53J/DhCzs/RSvOV2z0h5LUX8sy9E2lm7MvfCmqZvyRX Q5nt8gEoEGBjcgoMe+OuYXhZSvJr6oYKYC2nqPsIXeg09rHMPqr+xv8uheirAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5S+7Lazi1emxVeX0hPMb+LWk40EwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGr4PldWCIsiqrvEZ5C/6pR46Uhwu7a2GHx0 ZPgq27bhSWN2l3c3PmdYekyAARrYnFDUXsIRdF9YHKlhMInOUsELC18ftVyotjZs 8xjlW5LhFDUrJAqFFaFGszSd3W+LIZvUcMlEXDO7mpBVqpaKGqhVQ2oa1dMEqUCH m8SBXeyVla8bPNnjyCVrqG87WPp/5w9TE21SfkUtpbrpZLXvfxFVZ796Wk9kGk72 StUfgX/PwhRXdJ+UqfdIPPD1Gdxi90Uucvhdmpmptva4LuzL/WbKdF+kdEhWTmzK Q4jCTc3sTdYCldPEJYqUNZkpEz964gJblsm2+DgwAAU7p3pJAKU= -----END CERTIFICATE-----Generated at Sun May 11 15:07:40 2025 by rpki-client