$ rpki-client -vvf repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft File: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft (raw, json) Hash identifier: +G3cObgL6o1ODJfb36Zq5J/DpPkABlw4GaiLKZm9D7M= Subject key identifier: FA:30:5E:53:4E:AE:53:4C:62:FF:F3:40:AA:02:8F:36:71:88:35:92 Authority key identifier: BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE Certificate issuer: /CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Certificate serial: 2795925D9FF7057C3AA19A8BA87BFC9EC5A6EAE8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft Manifest number: 01C0 Signing time: Wed 07 May 2025 21:21:23 +0000 Manifest this update: Wed 07 May 2025 21:16:23 +0000 Manifest next update: Sun 11 May 2025 04:27:23 +0000 Files and hashes: 1: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl (hash: j/9Ak3L+Cn78zotSl40652IG4z6UkJ0MMTwX8eUvyrE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 04:27:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:95:92:5d:9f:f7:05:7c:3a:a1:9a:8b:a8:7b:fc:9e:c5:a6:ea:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Validity Not Before: May 7 21:16:23 2025 GMT Not After : May 11 04:27:23 2025 GMT Subject: CN=FA305E534EAE534C62FFF340AA028F3671883592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:a2:14:3b:a6:4f:18:1c:e8:5b:80:33:c7:fd: c4:c6:04:8d:62:11:4a:43:c8:e3:8b:88:67:91:ef: 82:7f:38:cf:eb:5e:76:b3:d3:37:ce:83:aa:45:bd: 01:32:0a:47:6a:85:72:a8:d2:ae:e3:d9:7f:fd:9f: 24:bd:c7:e2:1c:c8:19:9e:a4:cc:9f:e7:27:47:05: 2a:41:56:f0:49:38:11:0a:64:65:c1:e7:0c:aa:fb: 95:53:5d:02:b0:1c:f1:cd:8e:d7:bd:1d:63:5f:b0: f0:0a:cf:aa:77:e6:b9:0f:53:8f:61:95:21:6b:b3: 31:15:e7:03:1b:e5:21:79:6f:68:48:69:bb:9c:2c: 46:7d:45:cd:8e:46:38:0c:a4:02:f2:a1:33:01:dd: 3c:43:35:e2:a9:13:e0:a8:70:4b:7f:05:4a:2e:f3: 17:48:4d:fd:3f:68:bd:b3:f3:69:0b:4a:30:ae:2c: 3f:c3:5c:d1:13:ac:ef:16:5d:61:30:09:86:cd:b0: 95:ba:f3:a5:51:10:04:a8:1c:09:39:73:13:b2:c8: 6d:3b:52:44:3b:ba:a0:57:9d:71:f0:e2:5d:6e:9e: 17:2e:4a:9e:6b:25:c2:17:a9:96:a6:4a:bf:66:8f: 5d:40:5a:33:8c:e7:92:b9:a6:01:8f:d7:e4:cc:e1: 8b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:30:5E:53:4E:AE:53:4C:62:FF:F3:40:AA:02:8F:36:71:88:35:92 X509v3 Authority Key Identifier: keyid:BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:e3:e5:c8:4c:be:d1:4f:0e:07:28:c0:fe:06:ec:e8:71:68: 15:12:cb:8b:d2:8d:f8:63:ec:04:5e:93:88:79:5c:5a:b7:f5: eb:f3:2e:ca:45:61:63:54:0a:db:76:3b:a8:36:cb:86:41:43: 3f:a8:bb:ca:98:31:a8:ba:6d:0c:20:ba:f1:60:c4:eb:1e:7e: 7e:06:f6:c7:17:3c:40:c0:5f:d4:cc:7c:12:e1:3f:68:3d:e4: f5:39:f5:56:13:d9:7d:80:39:58:59:0f:e9:81:6d:0e:f7:b8: 60:c3:57:db:ea:9d:db:e2:fc:6d:cf:94:81:fc:ec:62:ef:f9: 71:bd:7c:86:16:e5:0c:ca:98:48:2d:24:78:e6:6a:56:9f:b2: f5:51:65:cd:79:52:1b:c6:a8:50:5c:96:02:78:ed:3e:8f:90: 11:07:1b:df:3c:86:d4:d8:be:53:df:0c:2b:a2:6b:30:3c:06: 5f:db:8d:18:01:28:74:7b:a1:27:fb:32:1f:14:b5:9d:97:0d: cf:37:11:22:eb:4b:a9:f6:0b:37:80:48:0e:83:23:2f:0f:15: 65:80:70:a3:08:65:4b:25:b8:61:b5:50:7b:8e:13:f5:5c:25: 8b:1d:6c:ea:52:c0:f0:6a:c2:14:67:69:38:45:5d:9a:19:34: e1:1a:02:d3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ5WSXZ/3BXw6oZqLqHv8nsWm6ugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5 QUYzQkNCRTAeFw0yNTA1MDcyMTE2MjNaFw0yNTA1MTEwNDI3MjNaMDMxMTAvBgNV BAMTKEZBMzA1RTUzNEVBRTUzNEM2MkZGRjM0MEFBMDI4RjM2NzE4ODM1OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkohQ7pk8YHOhbgDPH/cTGBI1i EUpDyOOLiGeR74J/OM/rXnaz0zfOg6pFvQEyCkdqhXKo0q7j2X/9nyS9x+IcyBme pMyf5ydHBSpBVvBJOBEKZGXB5wyq+5VTXQKwHPHNjte9HWNfsPAKz6p35rkPU49h lSFrszEV5wMb5SF5b2hIabucLEZ9Rc2ORjgMpALyoTMB3TxDNeKpE+CocEt/BUou 8xdITf0/aL2z82kLSjCuLD/DXNETrO8WXWEwCYbNsJW686VREASoHAk5cxOyyG07 UkQ7uqBXnXHw4l1unhcuSp5rJcIXqZamSr9mj11AWjOM55K5pgGP1+TM4YuzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+jBeU06uU0xi//NAqgKPNnGINZIwHwYDVR0j BBgwFoAUvA7P3dCBzlEyvsnP3Bo5CprzvL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODZhMTNiZC1iNzlhLTQ1MGUtOWJlMy0zZDVhMDNhYjkzYjEvMC9CQzBFQ0ZEREQw ODFDRTUxMzJCRUM5Q0ZEQzFBMzkwQTlBRjNCQ0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5QUYz QkNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjg2YTEzYmQtYjc5YS00NTBlLTli ZTMtM2Q1YTAzYWI5M2IxLzAvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5 MEE5QUYzQkNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD3j5chMvtFPDgcowP4G7OhxaBUSy4vSjfhj 7ARek4h5XFq39evzLspFYWNUCtt2O6g2y4ZBQz+ou8qYMai6bQwguvFgxOsefn4G 9scXPEDAX9TMfBLhP2g95PU59VYT2X2AOVhZD+mBbQ73uGDDV9vqndvi/G3PlIH8 7GLv+XG9fIYW5QzKmEgtJHjmalafsvVRZc15UhvGqFBclgJ47T6PkBEHG988htTY vlPfDCuiazA8Bl/bjRgBKHR7oSf7Mh8UtZ2XDc83ESLrS6n2CzeASA6DIy8PFWWA cKMIZUsluGG1UHuOE/VcJYsdbOpSwPBqwhRnaThFXZoZNOEaAtM= -----END CERTIFICATE-----Generated at Fri May 9 08:21:27 2025 by rpki-client