$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: 9qKp6814EoGyRFnujeT5BJTxLL/z33LPCEwE8A4EkZE= Subject key identifier: DF:F0:F2:E5:BE:FC:73:1E:62:6C:7C:C8:19:DC:FC:56:90:71:DB:F2 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 1CE31D814D9D2ECFCD5FC73B866AE29CA89042E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: E1 Signing time: Sun 19 Oct 2025 22:40:50 +0000 Manifest this update: Sun 19 Oct 2025 22:35:50 +0000 Manifest next update: Thu 23 Oct 2025 00:49:50 +0000 Files and hashes: 1: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: pleM7zjt401D1BJf2sqrcL6s2yWcWR5KklAwpJnySCE=) 2: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: naXKW8ZQ/96QKpSwj6WkE7/Jdt3ZiG2igSNg83US+h4=) 3: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: Hz+bwv5TeiqLZz4vHu5RdAv/BqFZcBIfsejW6ExngYw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 00:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e3:1d:81:4d:9d:2e:cf:cd:5f:c7:3b:86:6a:e2:9c:a8:90:42:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Oct 19 22:35:50 2025 GMT Not After : Oct 23 00:49:50 2025 GMT Subject: CN=DFF0F2E5BEFC731E626C7CC819DCFC569071DBF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f2:8b:de:fb:94:07:25:dc:d7:b9:61:52:bf: 46:f1:50:45:cf:f2:55:54:a1:2c:55:12:20:c5:16: 92:a0:14:13:4d:99:0d:20:6b:63:74:a5:ee:b2:91: de:92:da:83:89:ee:92:1a:8f:5e:14:99:66:39:28: f8:30:3d:bb:31:3b:b6:eb:ed:92:43:fa:0b:76:47: 9f:6b:d6:50:4c:70:18:6d:08:b4:f6:45:25:9b:e9: e4:81:b3:f8:56:4e:b3:9e:d9:65:ea:ae:33:2f:f0: 90:41:51:ee:6e:39:be:e9:87:53:5d:aa:4b:12:02: 15:93:cf:69:80:db:2d:6c:9a:91:c4:46:20:25:57: b4:59:28:ab:01:66:18:9e:99:12:9b:92:b5:88:78: b1:b5:0f:ce:84:05:d9:50:8d:bd:86:a5:3d:ce:67: f6:fc:15:dc:c5:b8:39:1e:cb:9b:2f:8c:61:6f:ec: ef:f4:1f:6a:c7:ef:c5:93:a1:b8:d6:81:a0:2f:c1: de:45:89:dd:11:9e:08:37:d6:df:b9:0c:e1:3e:89: 4f:95:df:98:b4:39:25:0b:ba:ca:3f:44:d7:2c:c5: f7:ff:86:98:a2:9e:e6:2d:36:08:b8:be:83:5d:bb: ad:e2:75:20:c2:1a:a7:ae:37:ba:f7:d6:5b:40:17: d4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:F0:F2:E5:BE:FC:73:1E:62:6C:7C:C8:19:DC:FC:56:90:71:DB:F2 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:87:d1:e9:cd:f7:bf:0e:35:e4:27:38:cb:6e:ab:8d:ef:00: d5:55:41:30:1e:58:bf:28:1d:a5:5f:c6:93:47:fc:26:91:48: 01:27:90:e2:20:69:86:bb:3c:e9:06:55:4f:1a:65:cf:08:45: 62:7e:84:3c:33:b0:97:df:0a:df:ee:9a:ce:89:d6:ee:c9:da: 37:1c:db:c7:47:ce:c5:ac:5b:72:29:64:db:ac:e6:d5:54:91: ff:59:f9:e4:88:80:f9:c5:65:7f:61:fc:3a:bb:fc:b8:e0:6b: 18:a7:c8:5f:59:29:1f:e6:b8:44:36:df:5f:dc:29:76:a6:81: 6f:50:a4:9e:e0:10:47:a5:62:87:a9:7d:50:bc:1b:7f:d8:3c: 5c:10:a0:72:ae:89:89:53:65:f5:6c:40:9e:5c:d9:54:1e:20: 72:09:71:9a:c3:a5:e1:7b:c5:2f:6e:f4:7a:c9:06:8e:50:13: 44:25:ba:a1:50:4d:2b:07:64:48:88:fb:d1:b3:6f:81:06:0a: 7e:24:ea:bd:cc:cc:8f:d1:a3:07:4e:b4:74:ba:e6:96:be:55: 0e:8d:cc:00:b2:e0:01:f5:08:4b:31:23:b7:cd:3a:af:c6:46: 6c:8d:f2:61:69:f5:49:ea:6b:ee:8d:54:11:82:60:9b:d4:f4: b1:a4:da:96 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHOMdgU2dLs/NX8c7hmrinKiQQuQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNTEwMTkyMjM1NTBaFw0yNTEwMjMwMDQ5NTBaMDMxMTAvBgNV BAMTKERGRjBGMkU1QkVGQzczMUU2MjZDN0NDODE5RENGQzU2OTA3MURCRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/8ove+5QHJdzXuWFSv0bxUEXP 8lVUoSxVEiDFFpKgFBNNmQ0ga2N0pe6ykd6S2oOJ7pIaj14UmWY5KPgwPbsxO7br 7ZJD+gt2R59r1lBMcBhtCLT2RSWb6eSBs/hWTrOe2WXqrjMv8JBBUe5uOb7ph1Nd qksSAhWTz2mA2y1smpHERiAlV7RZKKsBZhiemRKbkrWIeLG1D86EBdlQjb2GpT3O Z/b8FdzFuDkey5svjGFv7O/0H2rH78WTobjWgaAvwd5Fid0Rngg31t+5DOE+iU+V 35i0OSULuso/RNcsxff/hpiinuYtNgi4voNdu63idSDCGqeuN7r31ltAF9TJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3/Dy5b78cx5ibHzIGdz8VpBx2/IwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHyH0enN978ONeQnOMtuq43vANVVQTAeWL8o HaVfxpNH/CaRSAEnkOIgaYa7POkGVU8aZc8IRWJ+hDwzsJffCt/ums6J1u7J2jcc 28dHzsWsW3IpZNus5tVUkf9Z+eSIgPnFZX9h/Dq7/LjgaxinyF9ZKR/muEQ231/c KXamgW9QpJ7gEEelYoepfVC8G3/YPFwQoHKuiYlTZfVsQJ5c2VQeIHIJcZrDpeF7 xS9u9HrJBo5QE0QluqFQTSsHZEiI+9Gzb4EGCn4k6r3MzI/RowdOtHS65pa+VQ6N zACy4AH1CEsxI7fNOq/GRmyN8mFp9Unqa+6NVBGCYJvU9LGk2pY= -----END CERTIFICATE-----Generated at Mon Oct 20 22:06:23 2025 by rpki-client