$ rpki-client -vvf repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft File: BA3C6E8206951343A970BD80B8DC3351252A9719.mft (raw, json) Hash identifier: a6pqb9DD0wmBZHJe9Kuru27z9uC/z5qaWI6/0dIK4rY= Subject key identifier: B3:A6:B1:7C:8A:83:A7:C2:35:0F:0D:C2:26:69:69:EA:B5:6A:D0:F0 Authority key identifier: BA:3C:6E:82:06:95:13:43:A9:70:BD:80:B8:DC:33:51:25:2A:97:19 Certificate issuer: /CN=BA3C6E8206951343A970BD80B8DC3351252A9719 Certificate serial: 7E96E2ED587770FCECE6F5CFDF02049DFD49880D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer Subject info access: rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft Manifest number: 7B Signing time: Sun 15 Jun 2025 19:31:29 +0000 Manifest this update: Sun 15 Jun 2025 19:26:29 +0000 Manifest next update: Thu 19 Jun 2025 03:15:29 +0000 Files and hashes: 1: BA3C6E8206951343A970BD80B8DC3351252A9719.crl (hash: Qod4J28oiW2jKC1s0pOXZx+3hUwpw5kOHzRYtHwvAE8=) 2: 3136302e32352e3135362e302f32342d3234203d3e20313533303838.roa (hash: bRxB1/XYWBuRDsFTyowa+aqFQkf4scGUR4oQ2TVJrXQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.crl rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 03:15:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:96:e2:ed:58:77:70:fc:ec:e6:f5:cf:df:02:04:9d:fd:49:88:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BA3C6E8206951343A970BD80B8DC3351252A9719 Validity Not Before: Jun 15 19:26:29 2025 GMT Not After : Jun 19 03:15:29 2025 GMT Subject: CN=B3A6B17C8A83A7C2350F0DC2266969EAB56AD0F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:47:b0:c4:40:ff:8f:75:fe:18:cb:65:c3:7d: da:94:54:7c:21:0c:cf:08:f9:48:82:21:b0:e8:d0: 5f:3b:f8:92:d0:0e:d6:9b:ed:87:53:a7:5e:2e:a6: bc:f6:72:bf:4d:62:00:c7:17:ce:fc:ff:a4:4f:5d: e6:94:8d:14:eb:da:d3:dd:25:9b:d6:f7:43:8e:e9: b6:b0:a0:6e:82:ea:fe:df:d7:ab:03:c6:02:d3:8c: 78:27:0c:4b:85:ce:7f:74:0a:3b:87:60:3d:e5:34: a7:6a:55:d1:1b:0d:82:81:85:95:74:20:2b:4e:f2: ed:6c:04:33:b2:aa:c6:e4:61:91:3e:a6:98:2c:a8: 49:e4:49:4a:1f:9b:d6:9c:37:7e:e0:f1:da:cd:68: 71:ce:80:e4:ef:df:a9:b3:f1:df:13:77:10:52:70: 67:5d:6a:ae:d2:ae:ec:25:11:3d:e8:8a:07:14:68: fc:a1:25:1e:76:84:85:b3:2e:16:dd:b4:d8:fb:08: b7:04:4b:ed:75:20:a0:53:dd:9c:4c:97:c3:60:35: 9a:2f:ae:83:00:66:3e:79:fc:fc:0b:30:cd:f3:44: db:1c:92:18:b2:b1:1a:36:13:f5:fb:47:00:14:8a: 77:0b:39:48:04:58:41:94:3b:4c:46:ae:88:1b:08: c9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A6:B1:7C:8A:83:A7:C2:35:0F:0D:C2:26:69:69:EA:B5:6A:D0:F0 X509v3 Authority Key Identifier: keyid:BA:3C:6E:82:06:95:13:43:A9:70:BD:80:B8:DC:33:51:25:2A:97:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BA3C6E8206951343A970BD80B8DC3351252A9719.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/aafdd6f9-b799-4a96-9e2a-1fef69bfa597/0/BA3C6E8206951343A970BD80B8DC3351252A9719.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:6d:99:04:0e:61:b4:2c:bd:c8:7f:b5:43:e8:80:72:dd:ee: 81:5b:6c:e5:94:97:a4:fd:83:53:d0:73:d4:92:ed:78:4a:42: eb:59:3b:a8:ca:6f:ed:e3:7a:e4:4f:f4:07:3f:1c:af:aa:64: 77:49:01:b2:51:ff:9b:01:d2:d3:68:2d:66:18:21:93:a5:ea: 0a:5d:ef:3f:72:f8:68:c5:d6:48:f8:b0:dd:a1:0b:a7:58:a7: 3e:26:d5:18:a4:ac:48:53:1c:79:85:40:c8:03:02:a2:20:24: 40:83:c7:bd:10:8c:e1:32:a7:3c:41:9a:4d:47:a6:90:8e:6f: 2b:a7:c5:94:f8:1e:0a:b4:96:c9:54:c1:78:b0:a5:b0:86:e1: a9:da:92:aa:98:5d:93:c0:1c:e4:fa:e5:ab:9f:96:62:ba:48: 5c:f3:38:d4:e9:4b:fb:b8:a7:fa:1a:c7:f0:8e:5d:cb:ce:16: c4:56:9c:88:f4:9e:e9:c4:38:9c:94:00:d5:b4:63:a8:c5:d1: 8b:c7:19:68:49:8c:e2:55:3c:12:67:f1:d9:13:84:cd:ca:da: 34:ec:cf:bd:fb:ab:4a:7b:58:ea:2a:54:2c:d6:55:94:60:de: fd:0a:d5:d3:54:ac:f0:b8:8f:38:c8:1f:d8:c9:45:ee:51:19: ac:83:e5:aa -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfpbi7Vh3cPzs5vXP3wIEnf1JiA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMzNTEy NTJBOTcxOTAeFw0yNTA2MTUxOTI2MjlaFw0yNTA2MTkwMzE1MjlaMDMxMTAvBgNV BAMTKEIzQTZCMTdDOEE4M0E3QzIzNTBGMERDMjI2Njk2OUVBQjU2QUQwRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7R7DEQP+Pdf4Yy2XDfdqUVHwh DM8I+UiCIbDo0F87+JLQDtab7YdTp14uprz2cr9NYgDHF878/6RPXeaUjRTr2tPd JZvW90OO6bawoG6C6v7f16sDxgLTjHgnDEuFzn90CjuHYD3lNKdqVdEbDYKBhZV0 ICtO8u1sBDOyqsbkYZE+ppgsqEnkSUofm9acN37g8drNaHHOgOTv36mz8d8TdxBS cGddaq7SruwlET3oigcUaPyhJR52hIWzLhbdtNj7CLcES+11IKBT3ZxMl8NgNZov roMAZj55/PwLMM3zRNsckhiysRo2E/X7RwAUincLOUgEWEGUO0xGrogbCMkPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs6axfIqDp8I1Dw3CJmlp6rVq0PAwHwYDVR0j BBgwFoAUujxuggaVE0OpcL2AuNwzUSUqlxkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YWZkZDZmOS1iNzk5LTRhOTYtOWUyYS0xZmVmNjliZmE1OTcvMC9CQTNDNkU4MjA2 OTUxMzQzQTk3MEJEODBCOERDMzM1MTI1MkE5NzE5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMzNTEyNTJB OTcxOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWFmZGQ2ZjktYjc5OS00YTk2LTll MmEtMWZlZjY5YmZhNTk3LzAvQkEzQzZFODIwNjk1MTM0M0E5NzBCRDgwQjhEQzMz NTEyNTJBOTcxOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFFtmQQOYbQsvch/tUPogHLd7oFbbOWUl6T9 g1PQc9SS7XhKQutZO6jKb+3jeuRP9Ac/HK+qZHdJAbJR/5sB0tNoLWYYIZOl6gpd 7z9y+GjF1kj4sN2hC6dYpz4m1RikrEhTHHmFQMgDAqIgJECDx70QjOEypzxBmk1H ppCObyunxZT4Hgq0lslUwXiwpbCG4anakqqYXZPAHOT65auflmK6SFzzONTpS/u4 p/oax/COXcvOFsRWnIj0nunEOJyUANW0Y6jF0YvHGWhJjOJVPBJn8dkThM3K2jTs z737q0p7WOoqVCzWVZRg3v0K1dNUrPC4jzjIH9jJRe5RGayD5ao= -----END CERTIFICATE-----Generated at Mon Jun 16 15:35:14 2025 by rpki-client