$ rpki-client -vvf repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft File: BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft (raw, json) Hash identifier: P946Jdbt1V+C1FAeby1Wtq4Y5cfevysj3ToahNpmYfQ= Subject key identifier: 1D:36:EC:7B:E6:8B:43:73:A8:26:55:9C:DD:08:4E:52:17:7A:5C:B2 Authority key identifier: BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D Certificate issuer: /CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Certificate serial: 4842FEEACBEF829C8C5D9F312B6E58B40497F08D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft Manifest number: 04F6 Signing time: Wed 06 Aug 2025 02:01:22 +0000 Manifest this update: Wed 06 Aug 2025 01:56:22 +0000 Manifest next update: Sat 09 Aug 2025 06:01:22 +0000 Files and hashes: 1: BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl (hash: 3ZlK19E0nCe1YP1oodm59wSK3KpSKdWCDcPO+rv6T9c=) 2: 3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa (hash: 8V1al14v0fXTXIGlVH1c93VdIS9Ve5+tbHSMrRhqr58=) 3: 3130332e3134312e36312e302f32342d3234203d3e20313333383032.roa (hash: sgxUrcQvRnNHbIUuVwSUcdBBcs11g4RjDxY5LVoPdt0=) 4: 323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa (hash: 6j5m2VjCwkXGfQzXHijMICktkY7XqIoC3rD1yeh02OI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 06:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:42:fe:ea:cb:ef:82:9c:8c:5d:9f:31:2b:6e:58:b4:04:97:f0:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Validity Not Before: Aug 6 01:56:22 2025 GMT Not After : Aug 9 06:01:22 2025 GMT Subject: CN=1D36EC7BE68B4373A826559CDD084E52177A5CB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:63:5e:f8:38:12:13:cb:37:26:98:c4:d3:1c: c6:d8:58:c3:1e:3b:88:d8:f8:e7:bc:75:ec:5e:04: 82:22:b8:ea:23:e1:5c:11:27:6e:0d:1d:50:22:00: d0:e8:05:0f:45:76:54:ec:98:64:da:fd:ca:9f:8b: e5:61:a0:d2:46:bc:d6:65:66:4e:50:e8:2f:17:32: d2:98:7a:03:67:9b:dc:da:6c:2a:f4:83:07:e9:7b: 49:11:bd:61:c9:18:86:93:2f:b1:7f:48:fc:c1:85: 8f:cd:d8:c9:18:86:7d:b7:7c:c7:9c:c3:a3:3a:86: d9:26:e7:05:cf:6c:17:68:66:d5:f2:61:6d:3a:3f: 44:7e:f6:07:ff:9f:2d:d8:a2:46:d5:e8:46:ec:24: 48:0d:62:68:2d:ab:44:04:66:38:92:44:5d:b0:ef: e1:d7:ae:df:4c:d3:ea:0c:8d:9b:bd:b0:b7:f5:12: 97:cc:ef:9a:2f:03:71:71:e3:dc:0b:9f:7c:d7:56: cf:64:a0:43:ea:97:be:82:15:2e:6c:d9:07:5d:ff: 58:a9:df:41:c1:10:19:c6:79:91:f2:eb:bb:e2:99: 30:7b:05:fa:37:43:a1:68:e1:24:da:bb:a6:a5:19: 4f:c0:9a:10:d2:3e:b0:27:73:64:2e:d0:93:2d:a4: 46:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:36:EC:7B:E6:8B:43:73:A8:26:55:9C:DD:08:4E:52:17:7A:5C:B2 X509v3 Authority Key Identifier: keyid:BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:12:41:9f:e5:e2:88:fa:e3:56:db:d7:3f:3e:ca:29:34:12: 14:6d:9c:42:97:33:ea:ce:b7:ca:7a:4d:c0:96:d9:24:45:60: 84:6a:f9:76:41:4a:31:e6:f2:18:9a:ea:5d:17:84:60:df:b4: 22:3d:d3:14:47:ac:34:d0:32:08:56:b4:49:55:a2:bf:a4:bb: ab:6a:d6:19:6d:b5:15:99:05:3c:41:f5:85:9f:43:50:5c:6a: 4a:0b:53:b5:8b:1c:a7:89:19:eb:2f:c6:53:e0:84:bb:66:8c: b7:6c:4c:e3:b4:84:0a:4d:b8:09:40:7f:6c:e4:1c:32:9e:b8: 82:77:38:e0:20:3a:84:2d:36:32:fe:5f:14:be:b6:96:9c:a9: c3:e1:24:56:69:d3:48:f3:f3:0e:63:c1:fa:a5:ff:90:28:83: 54:e9:13:91:f2:b8:87:d9:00:da:ed:06:63:70:29:14:cb:d1: 9d:78:33:79:36:ea:ff:d1:22:28:a6:b0:82:f5:be:bf:6e:d9: cb:0e:01:3d:82:d6:a6:f5:f6:06:a9:3a:68:45:16:f8:0e:18: 8f:8d:21:30:e0:80:cb:61:6b:81:3b:24:96:45:53:86:6e:f9: 5a:86:51:40:ff:76:6f:6b:bc:39:19:4e:94:af:14:25:f0:db: b3:41:08:6a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSEL+6svvgpyMXZ8xK25YtASX8I0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYw NDc4OTkwRDAeFw0yNTA4MDYwMTU2MjJaFw0yNTA4MDkwNjAxMjJaMDMxMTAvBgNV BAMTKDFEMzZFQzdCRTY4QjQzNzNBODI2NTU5Q0REMDg0RTUyMTc3QTVDQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBY174OBITyzcmmMTTHMbYWMMe O4jY+Oe8dexeBIIiuOoj4VwRJ24NHVAiANDoBQ9FdlTsmGTa/cqfi+VhoNJGvNZl Zk5Q6C8XMtKYegNnm9zabCr0gwfpe0kRvWHJGIaTL7F/SPzBhY/N2MkYhn23fMec w6M6htkm5wXPbBdoZtXyYW06P0R+9gf/ny3YokbV6EbsJEgNYmgtq0QEZjiSRF2w 7+HXrt9M0+oMjZu9sLf1EpfM75ovA3Fx49wLn3zXVs9koEPql76CFS5s2Qdd/1ip 30HBEBnGeZHy67vimTB7Bfo3Q6Fo4STau6alGU/AmhDSPrAnc2Qu0JMtpEb1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHTbse+aLQ3OoJlWc3QhOUhd6XLIwHwYDVR0j BBgwFoAUvYzeb+Pfn6Htps6kYvd+9gR4mQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTljZmQwNC02OWQwLTRkNGMtOGQwOS0yZDIyMTM4NDJjMmMvMC9CRDhDREU2RkUz REY5RkExRURBNkNFQTQ2MkY3N0VGNjA0Nzg5OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYwNDc4 OTkwRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjU5Y2ZkMDQtNjlkMC00ZDRjLThk MDktMmQyMjEzODQyYzJjLzAvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdF RjYwNDc4OTkwRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD8SQZ/l4oj641bb1z8+yik0EhRtnEKXM+rO t8p6TcCW2SRFYIRq+XZBSjHm8hia6l0XhGDftCI90xRHrDTQMghWtElVor+ku6tq 1hlttRWZBTxB9YWfQ1BcakoLU7WLHKeJGesvxlPghLtmjLdsTOO0hApNuAlAf2zk HDKeuIJ3OOAgOoQtNjL+XxS+tpacqcPhJFZp00jz8w5jwfql/5Aog1TpE5HyuIfZ ANrtBmNwKRTL0Z14M3k26v/RIiimsIL1vr9u2csOAT2C1qb19gapOmhFFvgOGI+N ITDggMtha4E7JJZFU4Zu+VqGUUD/dm9rvDkZTpSvFCXw27NBCGo= -----END CERTIFICATE-----Generated at Thu Aug 7 00:27:15 2025 by rpki-client