$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: 6FilKlTyJjmooNCAanTiTCnvr+YLkcbuQRfIifX+emc= Subject key identifier: 68:06:F6:A8:15:FE:55:4D:58:BD:BF:71:C3:17:40:B2:7C:02:8B:62 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 0B37527D8445C26D54ED08009D999B5D45E49D29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: 0126 Signing time: Wed 25 Mar 2026 05:40:58 +0000 Manifest this update: Wed 25 Mar 2026 05:35:58 +0000 Manifest next update: Sat 28 Mar 2026 08:58:58 +0000 Files and hashes: 1: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: SHQJg+S2cA4tZUQKmdYbnvUTam9UpYjMeignqokRI+k=) 2: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: Hz+bwv5TeiqLZz4vHu5RdAv/BqFZcBIfsejW6ExngYw=) 3: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: pleM7zjt401D1BJf2sqrcL6s2yWcWR5KklAwpJnySCE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 08:58:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:37:52:7d:84:45:c2:6d:54:ed:08:00:9d:99:9b:5d:45:e4:9d:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Mar 25 05:35:58 2026 GMT Not After : Mar 28 08:58:58 2026 GMT Subject: CN=6806F6A815FE554D58BDBF71C31740B27C028B62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:42:56:c3:f1:92:00:b7:33:0c:74:29:a2:e2: 80:59:7e:94:e8:a6:a3:ec:44:2c:e6:dc:23:d2:ea: 84:65:02:a8:f0:20:3e:70:af:4f:05:6c:71:f5:5e: cb:42:28:98:70:8d:16:b3:15:49:75:fd:c5:a7:39: b9:dd:f3:d9:ff:fa:7b:c0:eb:f2:d8:6e:fd:76:d6: 2b:45:79:57:1c:7c:00:1c:af:cf:92:e4:18:65:24: 41:dc:23:4b:af:b6:f4:03:95:e4:02:fd:92:ed:d7: 68:47:9f:cf:0e:aa:d0:40:92:92:e0:ff:94:77:bc: 4f:8e:cc:59:07:6b:58:9a:60:75:80:f2:05:d9:d2: 7d:c1:94:d8:e3:4f:f4:d0:ce:05:2d:fa:da:4e:f0: 78:94:8a:28:f1:82:29:2f:ed:8b:e2:a5:44:41:bb: f5:cf:f4:95:47:dc:a8:40:4d:d6:69:74:f2:7b:8e: 7b:a9:c7:4f:09:3a:8c:3e:ea:90:c0:50:b7:37:68: 4c:14:30:60:c1:cd:8a:ae:3f:45:e0:ae:13:dc:7f: be:01:fe:d5:02:99:ab:d3:8e:ae:82:fb:be:0f:e1: 16:be:f7:76:32:a6:2c:aa:a0:11:14:cd:fe:04:9a: ff:41:48:5c:09:63:31:0a:94:58:40:58:8d:52:fd: 5c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:06:F6:A8:15:FE:55:4D:58:BD:BF:71:C3:17:40:B2:7C:02:8B:62 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:f9:0d:33:ce:53:78:6d:f7:e2:31:c3:b3:12:9f:b7:7e:1c: 39:e2:99:9d:a7:bb:88:34:fb:50:cf:1b:f7:52:ac:a3:94:b9: ce:50:ff:25:eb:bd:d7:27:8d:87:ae:c5:c4:57:32:72:2b:40: b9:12:ee:2b:15:8b:e9:cf:3d:9e:f7:bb:f6:6e:55:a6:d3:16: 9f:25:86:15:bc:00:05:29:9a:87:d6:c9:4a:5d:77:b8:65:0f: df:d0:16:6b:58:7c:87:cb:b5:3c:23:18:5c:a9:01:50:a0:4e: 5a:0e:44:3e:d4:8e:94:c7:f1:db:bf:e7:db:d4:6e:97:94:e7: ad:f7:37:9e:f5:85:cc:c3:fd:02:d9:62:f9:45:b5:48:ad:ed: f1:f9:fe:2e:e3:7d:e0:b7:4b:ae:50:1f:c3:41:76:bb:fc:4d: dd:2d:cf:65:45:89:e8:45:3a:05:f1:ff:fd:60:ef:77:c4:44: 99:fa:2e:a1:ad:fb:76:38:ee:28:3f:30:fc:21:d2:e1:04:fa: cf:25:de:5d:e7:98:7e:83:7d:ee:6f:1e:68:c8:98:e5:3f:d0: cd:69:5b:f0:bf:e3:0e:d1:b3:b5:24:af:6c:0e:c0:98:19:76: 06:c8:f6:bb:b3:c6:8f:30:aa:99:e2:34:e8:41:a7:e4:24:a0: 18:1a:e3:13 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCzdSfYRFwm1U7QgAnZmbXUXknSkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNjAzMjUwNTM1NThaFw0yNjAzMjgwODU4NThaMDMxMTAvBgNV BAMTKDY4MDZGNkE4MTVGRTU1NEQ1OEJEQkY3MUMzMTc0MEIyN0MwMjhCNjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChQlbD8ZIAtzMMdCmi4oBZfpTo pqPsRCzm3CPS6oRlAqjwID5wr08FbHH1XstCKJhwjRazFUl1/cWnObnd89n/+nvA 6/LYbv121itFeVccfAAcr8+S5BhlJEHcI0uvtvQDleQC/ZLt12hHn88OqtBAkpLg /5R3vE+OzFkHa1iaYHWA8gXZ0n3BlNjjT/TQzgUt+tpO8HiUiijxgikv7YvipURB u/XP9JVH3KhATdZpdPJ7jnupx08JOow+6pDAULc3aEwUMGDBzYquP0XgrhPcf74B /tUCmavTjq6C+74P4Ra+93YypiyqoBEUzf4Emv9BSFwJYzEKlFhAWI1S/VzNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaAb2qBX+VU1Yvb9xwxdAsnwCi2IwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFX5DTPOU3ht9+Ixw7MSn7d+HDnimZ2nu4g0 +1DPG/dSrKOUuc5Q/yXrvdcnjYeuxcRXMnIrQLkS7isVi+nPPZ73u/ZuVabTFp8l hhW8AAUpmofWyUpdd7hlD9/QFmtYfIfLtTwjGFypAVCgTloORD7UjpTH8du/59vU bpeU5633N571hczD/QLZYvlFtUit7fH5/i7jfeC3S65QH8NBdrv8Td0tz2VFiehF OgXx//1g73fERJn6LqGt+3Y47ig/MPwh0uEE+s8l3l3nmH6Dfe5vHmjImOU/0M1p W/C/4w7Rs7Ukr2wOwJgZdgbI9ruzxo8wqpniNOhBp+QkoBga4xM= -----END CERTIFICATE-----Generated at Fri Mar 27 05:16:27 2026 by rpki-client