$ rpki-client -vvf repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft File: BA3C6E8206951343A970BD80B8DC3351252A9719.mft (raw, json) Hash identifier: vi7GWGNxbdi5w13aqbjHYrk1YcFiKDWJyYUiugJYQDQ= Subject key identifier: BC:8C:15:01:11:48:90:A5:E0:15:F5:DC:96:83:3B:14:59:6B:41:23 Authority key identifier: BA:3C:6E:82:06:95:13:43:A9:70:BD:80:B8:DC:33:51:25:2A:97:19 Certificate issuer: /CN=BA3C6E8206951343A970BD80B8DC3351252A9719 Certificate serial: 6D1C463D9B320E539E7A1AE43FC25F598CD0D7D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft Manifest number: 91 Signing time: Mon 04 Aug 2025 03:31:26 +0000 Manifest this update: Mon 04 Aug 2025 03:26:26 +0000 Manifest next update: Thu 07 Aug 2025 14:55:26 +0000 Files and hashes: 1: 3136302e32352e3135362e302f32342d3234203d3e20313533303838.roa (hash: bRxB1/XYWBuRDsFTyowa+aqFQkf4scGUR4oQ2TVJrXQ=) 2: BA3C6E8206951343A970BD80B8DC3351252A9719.crl (hash: Ek1kdFOq11YwOehUtAZQjl0iO1i0xBSqlt+1t67ZYAc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.crl rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 14:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1c:46:3d:9b:32:0e:53:9e:7a:1a:e4:3f:c2:5f:59:8c:d0:d7:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA3C6E8206951343A970BD80B8DC3351252A9719 Validity Not Before: Aug 4 03:26:26 2025 GMT Not After : Aug 7 14:55:26 2025 GMT Subject: CN=BC8C1501114890A5E015F5DC96833B14596B4123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2c:0d:62:69:d9:de:40:7c:67:ac:28:a5:b7: 28:0a:8b:63:9e:b3:6d:11:e5:ff:b9:4a:e8:cc:76: ce:95:e2:a7:c5:0e:b4:b6:8f:3a:62:d4:31:fa:8c: 9b:b8:4d:5f:c1:01:1e:aa:ba:48:c1:cc:fc:4c:1d: 10:eb:d3:d4:4d:fd:74:fb:b4:5e:b9:f8:08:96:47: c8:c9:3c:65:36:00:ea:80:f5:79:a8:b8:31:94:d2: 17:c1:4b:73:fb:6f:f7:cd:44:f9:1e:ab:ab:03:49: 19:14:db:64:01:6f:f8:bc:91:03:cf:66:ff:85:36: 6d:13:9c:f4:17:d5:8a:74:a2:24:03:52:47:c2:5d: bf:5f:d4:77:f9:25:d2:a5:4b:ed:a3:4d:d8:d8:42: 64:e1:98:9e:4e:3f:b1:04:29:52:46:4f:16:16:3d: 38:06:6b:1d:4f:8d:71:1a:98:7f:6d:40:c3:4e:36: cf:ef:92:99:31:88:d2:15:6b:f8:b9:8a:67:ab:8c: 25:72:d8:02:57:d5:82:d0:26:9f:db:31:ff:e9:f7: 65:d9:8b:94:78:dd:5b:3d:e7:20:86:f6:63:e9:bc: ec:71:1f:96:98:81:da:01:ec:eb:a5:a4:c0:34:dd: fc:15:d2:29:b6:2b:32:d8:ae:30:b3:49:73:cd:79: 7e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:8C:15:01:11:48:90:A5:E0:15:F5:DC:96:83:3B:14:59:6B:41:23 X509v3 Authority Key Identifier: keyid:BA:3C:6E:82:06:95:13:43:A9:70:BD:80:B8:DC:33:51:25:2A:97:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:12:a3:c8:13:8c:4b:6f:2d:29:fc:08:6e:0f:c6:5d:26:d4: 7d:5d:89:94:bd:ce:0c:3f:c0:23:03:f8:db:78:ca:5d:62:c1: 8e:be:a6:2e:70:37:0e:33:b7:d1:16:96:37:60:f1:74:f5:fe: fa:4b:d0:bb:0c:32:ef:a6:c2:64:d8:b3:f9:e6:71:a3:08:8a: 4e:34:f7:11:a9:c4:82:bf:58:86:ea:88:d6:d6:d5:2f:d3:58: 45:a6:45:ef:e3:2c:fa:25:b2:7d:dc:ae:c2:18:fd:73:82:bb: a1:e8:cb:a6:72:fe:0a:19:06:31:ed:68:3d:40:46:fc:1b:54: d0:7c:c5:56:7f:1f:60:3b:73:99:7f:43:bf:76:7d:c5:fb:f8: 2c:01:ed:22:63:fc:4e:69:6c:e8:00:27:10:c3:aa:c3:b6:3b: 34:20:6a:17:ca:6f:b4:1e:d2:98:0c:32:a0:cf:e5:b6:1b:43: 9b:9e:9e:bb:65:f4:23:51:59:ed:f0:0f:73:e3:d9:d6:b6:bf: 73:b0:81:c0:13:93:f3:97:c0:bc:c2:8a:ec:da:86:9c:af:fd: 49:ee:47:81:ae:47:9b:94:1f:b0:19:51:f7:7c:82:c9:65:50: 35:85:d8:b1:d0:71:d3:05:f9:88:6a:68:dd:07:a4:e9:eb:20: 1e:9f:e7:6c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbRxGPZsyDlOeehrkP8JfWYzQ19YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMzNTEy NTJBOTcxOTAeFw0yNTA4MDQwMzI2MjZaFw0yNTA4MDcxNDU1MjZaMDMxMTAvBgNV BAMTKEJDOEMxNTAxMTE0ODkwQTVFMDE1RjVEQzk2ODMzQjE0NTk2QjQxMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoLA1iadneQHxnrCiltygKi2Oe s20R5f+5SujMds6V4qfFDrS2jzpi1DH6jJu4TV/BAR6qukjBzPxMHRDr09RN/XT7 tF65+AiWR8jJPGU2AOqA9XmouDGU0hfBS3P7b/fNRPkeq6sDSRkU22QBb/i8kQPP Zv+FNm0TnPQX1Yp0oiQDUkfCXb9f1Hf5JdKlS+2jTdjYQmThmJ5OP7EEKVJGTxYW PTgGax1PjXEamH9tQMNONs/vkpkxiNIVa/i5imerjCVy2AJX1YLQJp/bMf/p92XZ i5R43Vs95yCG9mPpvOxxH5aYgdoB7OulpMA03fwV0im2KzLYrjCzSXPNeX4FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUvIwVARFIkKXgFfXcloM7FFlrQSMwHwYDVR0j BBgwFoAUujxuggaVE0OpcL2AuNwzUSUqlxkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWZkZDZmOS1iNzk5LTRhOTYtOWUyYS0xZmVmNjliZmE1OTcvMC9CQTNDNkU4MjA2 OTUxMzQzQTk3MEJEODBCOERDMzM1MTI1MkE5NzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMzNTEyNTJB OTcxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWFmZGQ2ZjktYjc5OS00YTk2LTll MmEtMWZlZjY5YmZhNTk3LzAvQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMz NTEyNTJBOTcxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD8So8gTjEtvLSn8CG4Pxl0m1H1diZS9zgw/ wCMD+Nt4yl1iwY6+pi5wNw4zt9EWljdg8XT1/vpL0LsMMu+mwmTYs/nmcaMIik40 9xGpxIK/WIbqiNbW1S/TWEWmRe/jLPolsn3crsIY/XOCu6Hoy6Zy/goZBjHtaD1A RvwbVNB8xVZ/H2A7c5l/Q792fcX7+CwB7SJj/E5pbOgAJxDDqsO2OzQgahfKb7Qe 0pgMMqDP5bYbQ5uenrtl9CNRWe3wD3Pj2da2v3OwgcATk/OXwLzCiuzahpyv/Unu R4GuR5uUH7AZUfd8gsllUDWF2LHQcdMF+YhqaN0HpOnrIB6f52w= -----END CERTIFICATE-----Generated at Wed Aug 6 12:28:17 2025 by rpki-client