$ rpki-client -vvf repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft File: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft (raw, json) Hash identifier: xeus8QKEfL2FrkAO0L1xYAQwZm0K4cI7TO8IQoqebOI= Subject key identifier: EF:E3:FB:4F:24:FA:C5:24:42:D6:E0:C4:B5:CF:C5:69:8A:E7:74:EB Authority key identifier: BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE Certificate issuer: /CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Certificate serial: 4CC3FEA1AA5866FB37D20C7E766F837C61605689 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft Manifest number: 01EF Signing time: Wed 20 Aug 2025 23:31:27 +0000 Manifest this update: Wed 20 Aug 2025 23:26:27 +0000 Manifest next update: Sun 24 Aug 2025 10:53:27 +0000 Files and hashes: 1: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl (hash: n7oegevhnJO3Zo8O+95RlUyZIb6JiWJKVV6cE1sHPTg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 10:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:c3:fe:a1:aa:58:66:fb:37:d2:0c:7e:76:6f:83:7c:61:60:56:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Validity Not Before: Aug 20 23:26:27 2025 GMT Not After : Aug 24 10:53:27 2025 GMT Subject: CN=EFE3FB4F24FAC52442D6E0C4B5CFC5698AE774EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:07:84:c5:55:9e:aa:e3:3e:38:e7:21:72:8e: ac:1f:40:8b:1f:f3:bc:9d:53:c9:51:76:2e:16:a3: 18:a7:ef:f7:a8:95:c9:bc:13:40:cf:c2:a8:c0:83: 8c:7e:ab:b5:15:f7:46:49:6c:71:d5:0c:b1:c7:ae: 9c:f8:21:d1:12:a9:77:d1:9a:49:ad:23:b0:3f:2a: d0:9f:c0:df:28:c4:11:7b:ff:45:a2:83:f1:8a:35: 7c:24:7e:1c:67:f0:2b:96:1a:60:bb:32:1b:ef:13: 0d:08:a7:ae:53:59:79:bd:a8:3a:06:48:74:73:6b: 76:06:98:1b:b6:cb:a5:bb:ee:33:8a:b4:56:45:4c: 21:33:d9:c7:76:e6:77:f3:1d:c2:03:cb:ab:34:23: 35:59:82:36:49:d7:93:97:61:66:46:2b:f4:d6:a9: 1c:52:3f:7b:d3:34:c3:4d:95:e9:e6:a9:93:88:19: 0f:4f:1a:6a:9d:52:96:f5:23:ef:87:a0:a7:ca:f1: 05:35:a8:35:19:4a:97:88:b9:cb:ec:c3:15:04:6c: 1e:c0:95:1a:2d:cd:3b:a7:7a:f4:13:a5:ae:4d:95: 19:bb:81:35:ad:61:c0:5c:0b:18:0a:24:23:74:e5: f4:ac:ff:e5:a4:fa:7e:7e:a8:9a:9f:6b:d0:15:42: 8d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E3:FB:4F:24:FA:C5:24:42:D6:E0:C4:B5:CF:C5:69:8A:E7:74:EB X509v3 Authority Key Identifier: keyid:BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:9e:86:69:ee:c8:8a:15:c2:29:c7:52:f2:64:6b:8b:b6:01: ed:6e:be:10:a6:38:2c:1e:12:1d:cb:ff:c9:4a:66:39:31:a5: 58:ba:8a:e7:86:ff:3d:ce:a7:a0:84:40:3e:36:ca:78:9b:95: fb:86:c5:b6:a4:30:3c:29:7f:e9:4a:a7:a3:41:5c:a0:41:d1: 46:1b:56:69:52:10:bb:b6:b6:c0:98:e4:e6:b6:9e:29:45:c7: 46:68:20:a0:07:d2:76:ac:ae:95:34:21:2d:f7:c1:cd:d3:c0: 40:43:e6:35:1a:5f:b9:ca:78:45:97:02:39:1f:26:5f:6a:fc: 23:9e:59:b1:c4:93:ad:2e:19:ff:4a:7f:93:5a:a6:ac:f1:7f: 5f:31:ef:b7:40:75:53:38:3e:04:30:fe:62:62:45:05:a9:e8: a8:2c:81:5c:1b:41:19:a5:63:f5:7e:ca:24:fb:7d:8e:d1:68: d6:c7:d8:c3:b7:ab:37:57:ae:9a:9f:1c:e7:b9:10:d3:90:65: 4d:5e:46:d4:1b:5d:95:8e:ff:b3:c0:cf:19:92:01:56:7f:a0: 46:37:92:73:e7:43:c6:8a:ff:03:08:9c:d8:8f:65:c7:00:59: d9:ad:fc:2d:55:31:dd:77:47:07:d7:2a:c9:cf:c0:1e:42:e5: 2f:17:0f:2b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTMP+oapYZvs30gx+dm+DfGFgVokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5 QUYzQkNCRTAeFw0yNTA4MjAyMzI2MjdaFw0yNTA4MjQxMDUzMjdaMDMxMTAvBgNV BAMTKEVGRTNGQjRGMjRGQUM1MjQ0MkQ2RTBDNEI1Q0ZDNTY5OEFFNzc0RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbB4TFVZ6q4z445yFyjqwfQIsf 87ydU8lRdi4Woxin7/eolcm8E0DPwqjAg4x+q7UV90ZJbHHVDLHHrpz4IdESqXfR mkmtI7A/KtCfwN8oxBF7/0Wig/GKNXwkfhxn8CuWGmC7MhvvEw0Ip65TWXm9qDoG SHRza3YGmBu2y6W77jOKtFZFTCEz2cd25nfzHcIDy6s0IzVZgjZJ15OXYWZGK/TW qRxSP3vTNMNNlenmqZOIGQ9PGmqdUpb1I++HoKfK8QU1qDUZSpeIucvswxUEbB7A lRotzTunevQTpa5NlRm7gTWtYcBcCxgKJCN05fSs/+Wk+n5+qJqfa9AVQo39AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7+P7TyT6xSRC1uDEtc/FaYrndOswHwYDVR0j BBgwFoAUvA7P3dCBzlEyvsnP3Bo5CprzvL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODZhMTNiZC1iNzlhLTQ1MGUtOWJlMy0zZDVhMDNhYjkzYjEvMC9CQzBFQ0ZEREQw ODFDRTUxMzJCRUM5Q0ZEQzFBMzkwQTlBRjNCQ0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5QUYz QkNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjg2YTEzYmQtYjc5YS00NTBlLTli ZTMtM2Q1YTAzYWI5M2IxLzAvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5 MEE5QUYzQkNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAaehmnuyIoVwinHUvJka4u2Ae1uvhCmOCwe Eh3L/8lKZjkxpVi6iueG/z3Op6CEQD42yniblfuGxbakMDwpf+lKp6NBXKBB0UYb VmlSELu2tsCY5Oa2nilFx0ZoIKAH0nasrpU0IS33wc3TwEBD5jUaX7nKeEWXAjkf Jl9q/COeWbHEk60uGf9Kf5Napqzxf18x77dAdVM4PgQw/mJiRQWp6KgsgVwbQRml Y/V+yiT7fY7RaNbH2MO3qzdXrpqfHOe5ENOQZU1eRtQbXZWO/7PAzxmSAVZ/oEY3 knPnQ8aK/wMInNiPZccAWdmt/C1VMd13RwfXKsnPwB5C5S8XDys= -----END CERTIFICATE-----Generated at Sat Aug 23 12:17:32 2025 by rpki-client