$ rpki-client -vvf repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft File: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft (raw, json) Hash identifier: kZ1oc8FcvQ/JBxTI1eDaz2nuhFMUkO2GfzX0QQW6RKU= Subject key identifier: B2:4E:19:0D:5E:17:80:2E:81:53:18:87:82:B0:06:8D:CF:0D:98:87 Authority key identifier: BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE Certificate issuer: /CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Certificate serial: 3799DD9020870071FE661F1ACC298DBCDB90CB89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft Manifest number: 01D7 Signing time: Sat 28 Jun 2025 15:31:23 +0000 Manifest this update: Sat 28 Jun 2025 15:26:23 +0000 Manifest next update: Tue 01 Jul 2025 20:48:23 +0000 Files and hashes: 1: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl (hash: ffEx1nwJgs5sbpvjQRO5ugiPHRpIBd5Id5iUu/Db0bA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 20:48:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:99:dd:90:20:87:00:71:fe:66:1f:1a:cc:29:8d:bc:db:90:cb:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Validity Not Before: Jun 28 15:26:23 2025 GMT Not After : Jul 1 20:48:23 2025 GMT Subject: CN=B24E190D5E17802E8153188782B0068DCF0D9887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:25:fe:e3:fc:9b:54:f0:07:ff:09:df:30:0d: 01:bf:ca:2a:d6:e9:2d:b6:87:d8:99:b6:3f:26:24: 8b:9b:ba:46:2f:40:5b:88:89:be:b3:c8:8e:1f:0d: 25:eb:bb:3d:88:69:8f:dc:9e:99:97:59:37:59:3b: 83:97:c4:c0:55:3f:63:7a:83:11:f4:0d:17:e0:9b: a4:b2:eb:48:58:7d:7d:5f:4f:7b:12:20:12:11:2e: 12:15:0d:c6:a7:f2:7a:8f:a1:4f:17:8c:0b:88:64: cd:37:d6:8b:78:96:8b:1a:5a:fe:b6:2d:57:46:ae: c5:8e:45:b1:ac:3e:12:6b:ef:00:57:88:8d:39:af: 8f:cc:1f:fc:3e:44:60:71:7b:fd:69:7d:03:4e:70: cb:d4:42:5d:64:9d:94:1d:e3:9c:88:27:a1:7e:8c: b3:20:cd:8d:08:5f:62:fb:f5:51:6f:12:07:94:24: ff:26:47:7a:72:e4:c4:44:ae:ff:21:63:49:05:45: bf:b0:a9:d6:ee:a6:ce:8f:a7:e9:5d:4f:91:9c:bf: 32:13:56:c8:44:02:22:ba:9e:f9:70:97:86:aa:70: 48:62:2e:45:3c:d1:a6:72:61:68:36:08:51:c2:27: 23:82:84:0a:95:3d:4c:47:bc:8d:b3:d4:5d:7a:3c: d4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4E:19:0D:5E:17:80:2E:81:53:18:87:82:B0:06:8D:CF:0D:98:87 X509v3 Authority Key Identifier: keyid:BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:6f:86:15:88:73:56:b0:b9:11:6e:75:f9:50:fd:99:6f:89: a5:11:c3:0d:4a:dc:16:b6:95:b6:30:9d:44:15:cb:89:88:ea: 5e:7a:ff:29:9a:a4:c0:36:32:41:43:d6:9d:5e:90:9b:7a:11: b9:0e:e5:c3:28:a4:41:24:e0:6b:3f:65:e7:60:30:03:1d:e9: 8e:e6:a6:9c:b6:4e:13:e3:ed:e9:a1:db:ec:51:1d:c2:80:af: 61:03:67:c4:d6:f6:db:9b:be:92:9d:4a:5a:a7:9d:fe:f9:cf: 9f:65:41:99:46:8b:5b:b9:d3:60:f9:d4:92:ce:ea:9f:f7:dd: dc:17:07:94:2c:56:00:be:d7:8b:30:7c:b2:4b:a2:78:4a:ea: ee:0d:d1:9d:9e:9b:86:f0:33:72:87:33:4c:93:0f:28:bd:a1: 0b:b0:6d:43:1a:04:92:b2:8b:09:e0:ec:3c:1d:56:d8:f7:6a: ad:45:3f:87:6f:27:55:a2:16:7b:a6:6b:d5:06:23:b3:1a:ef: 67:a1:a6:6c:5b:58:e9:a2:e2:e1:bf:10:ed:82:7a:e0:6c:2f: 3f:c4:12:47:87:21:d5:01:29:bb:00:92:f1:11:87:50:c1:a1: d3:8a:b7:0c:47:61:41:5c:57:04:ff:9d:be:83:30:da:79:20: c9:b6:18:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN5ndkCCHAHH+Zh8azCmNvNuQy4kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5 QUYzQkNCRTAeFw0yNTA2MjgxNTI2MjNaFw0yNTA3MDEyMDQ4MjNaMDMxMTAvBgNV BAMTKEIyNEUxOTBENUUxNzgwMkU4MTUzMTg4NzgyQjAwNjhEQ0YwRDk4ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRJf7j/JtU8Af/Cd8wDQG/yirW 6S22h9iZtj8mJIubukYvQFuIib6zyI4fDSXruz2IaY/cnpmXWTdZO4OXxMBVP2N6 gxH0DRfgm6Sy60hYfX1fT3sSIBIRLhIVDcan8nqPoU8XjAuIZM031ot4losaWv62 LVdGrsWORbGsPhJr7wBXiI05r4/MH/w+RGBxe/1pfQNOcMvUQl1knZQd45yIJ6F+ jLMgzY0IX2L79VFvEgeUJP8mR3py5MRErv8hY0kFRb+wqdbups6Pp+ldT5GcvzIT VshEAiK6nvlwl4aqcEhiLkU80aZyYWg2CFHCJyOChAqVPUxHvI2z1F16PNTDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsk4ZDV4XgC6BUxiHgrAGjc8NmIcwHwYDVR0j BBgwFoAUvA7P3dCBzlEyvsnP3Bo5CprzvL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODZhMTNiZC1iNzlhLTQ1MGUtOWJlMy0zZDVhMDNhYjkzYjEvMC9CQzBFQ0ZEREQw ODFDRTUxMzJCRUM5Q0ZEQzFBMzkwQTlBRjNCQ0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5QUYz QkNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjg2YTEzYmQtYjc5YS00NTBlLTli ZTMtM2Q1YTAzYWI5M2IxLzAvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5 MEE5QUYzQkNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK9vhhWIc1awuRFudflQ/ZlviaURww1K3Ba2 lbYwnUQVy4mI6l56/ymapMA2MkFD1p1ekJt6EbkO5cMopEEk4Gs/ZedgMAMd6Y7m ppy2ThPj7emh2+xRHcKAr2EDZ8TW9tubvpKdSlqnnf75z59lQZlGi1u502D51JLO 6p/33dwXB5QsVgC+14swfLJLonhK6u4N0Z2em4bwM3KHM0yTDyi9oQuwbUMaBJKy iwng7DwdVtj3aq1FP4dvJ1WiFnuma9UGI7Ma72ehpmxbWOmi4uG/EO2CeuBsLz/E EkeHIdUBKbsAkvERh1DBodOKtwxHYUFcVwT/nb6DMNp5IMm2GK0= -----END CERTIFICATE-----Generated at Sun Jun 29 21:36:57 2025 by rpki-client