$ rpki-client -vvf repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft File: BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft (raw, json) Hash identifier: Dk9S+x7AhXksldZ9+MUyaa4u0CB0he0dKbB6n3HB380= Subject key identifier: E2:CC:FC:C1:DA:83:62:36:E5:5A:5A:44:7C:17:BF:8E:0A:05:5E:C9 Authority key identifier: BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D Certificate issuer: /CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Certificate serial: 3BC6E5EABE0EB024DFDCC1C9F9DD2DD4FD09E9A1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft Manifest number: 0567 Signing time: Thu 16 Apr 2026 23:41:33 +0000 Manifest this update: Thu 16 Apr 2026 23:36:33 +0000 Manifest next update: Mon 20 Apr 2026 01:41:33 +0000 Files and hashes: 1: 3130332e34312e3234372e302f32342d3234203d3e20313333383032.roa (hash: 8V1al14v0fXTXIGlVH1c93VdIS9Ve5+tbHSMrRhqr58=) 2: 3130332e3134312e36312e302f32342d3234203d3e20313333383032.roa (hash: sgxUrcQvRnNHbIUuVwSUcdBBcs11g4RjDxY5LVoPdt0=) 3: 323030313a6466343a366330303a3a2f34382d3438203d3e20313333383032.roa (hash: 6j5m2VjCwkXGfQzXHijMICktkY7XqIoC3rD1yeh02OI=) 4: BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl (hash: TNlUIKFjXm29sbEf5YgjcGUgCTha1ApSQC53M0OlNr0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Apr 2026 01:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c6:e5:ea:be:0e:b0:24:df:dc:c1:c9:f9:dd:2d:d4:fd:09:e9:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D Validity Not Before: Apr 16 23:36:33 2026 GMT Not After : Apr 20 01:41:33 2026 GMT Subject: CN=E2CCFCC1DA836236E55A5A447C17BF8E0A055EC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:84:11:43:19:b9:bf:a5:69:2f:67:d8:ef:32: 39:31:0a:ac:ca:e0:42:99:ef:5b:bf:c9:3b:a4:d2: 9a:52:ec:7f:31:b4:df:84:17:88:de:5c:a0:2b:b0: de:cf:b8:10:bb:32:f2:7a:20:a0:d5:8f:9d:4f:8a: 3f:57:c7:12:1d:ba:3f:86:11:81:05:2f:34:54:b9: ee:0e:7c:6f:7e:e7:8d:24:b3:31:34:32:f2:6d:29: fe:b7:20:cb:db:83:4f:1e:d7:04:bc:59:e1:e1:3c: 90:09:fc:0b:63:2e:08:d0:9d:94:bb:b7:bf:ce:ef: ce:c5:c5:93:8f:7f:e3:20:99:03:91:7f:cd:f6:fa: 40:bb:f9:53:ce:b5:b9:40:ea:2f:a8:4c:bc:77:1c: a9:91:8a:2c:38:84:e5:04:94:84:ed:7c:57:a5:49: 76:10:15:52:a2:3f:c8:3f:05:b7:f1:bd:b6:ea:fe: a0:64:b6:c3:db:4e:d4:65:2a:ce:96:1d:dd:a7:2f: f5:c9:0b:8b:be:d6:d0:bf:16:07:fc:02:a1:48:38: 75:54:46:63:7e:da:5f:97:c6:7c:37:25:ad:e3:40: 99:17:2d:b7:36:b5:e8:01:ea:da:e6:3a:2c:8b:3a: 66:91:33:e1:4b:1b:2a:5e:1d:3c:e7:84:af:47:a5: 97:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CC:FC:C1:DA:83:62:36:E5:5A:5A:44:7C:17:BF:8E:0A:05:5E:C9 X509v3 Authority Key Identifier: keyid:BD:8C:DE:6F:E3:DF:9F:A1:ED:A6:CE:A4:62:F7:7E:F6:04:78:99:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b59cfd04-69d0-4d4c-8d09-2d2213842c2c/0/BD8CDE6FE3DF9FA1EDA6CEA462F77EF60478990D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:79:cb:08:64:53:00:31:9b:f7:84:d9:67:b0:24:a5:17:5e: 69:de:23:a3:bd:d8:e9:ab:04:0f:c5:54:6f:f6:25:a3:05:dc: ac:e6:41:20:fd:7f:39:1b:5b:bd:88:c1:7c:4d:ee:f8:4b:65: f4:7a:e3:d7:d5:ed:bf:0e:6e:2d:78:99:74:56:e0:f1:98:27: 55:75:a7:a2:6a:07:3a:d7:0d:7d:55:c2:61:b5:ca:8f:53:ef: 32:08:ac:00:b0:01:07:fd:91:d5:a0:1a:bf:7d:01:b2:05:f5: e6:f4:34:b0:6c:75:09:83:cf:4e:bd:d0:d3:0a:ec:ac:fc:e7: c3:24:24:b9:c1:47:af:a9:ce:db:44:ab:2c:c7:f2:ed:2f:b8: 4c:1b:83:6d:52:15:18:2c:d3:b5:6a:c0:48:78:fc:73:53:63: 1a:cc:68:ea:74:db:7f:ad:25:b2:e9:ca:25:b4:1f:ae:f4:90: 99:a4:d0:b4:10:2b:ad:b4:4b:28:c2:f2:bc:76:0d:53:85:b0: 15:3e:72:41:87:c1:b4:4d:41:d0:8c:4a:e5:45:65:98:67:48: 92:24:2a:99:7c:83:ce:09:0c:6a:d2:3e:d0:60:b1:d3:b5:c7: d6:3a:ff:83:b1:80:c7:5e:cb:51:22:14:8e:cf:59:8f:6d:3b: 53:58:af:ee -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO8bl6r4OsCTf3MHJ+d0t1P0J6aEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYw NDc4OTkwRDAeFw0yNjA0MTYyMzM2MzNaFw0yNjA0MjAwMTQxMzNaMDMxMTAvBgNV BAMTKEUyQ0NGQ0MxREE4MzYyMzZFNTVBNUE0NDdDMTdCRjhFMEEwNTVFQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/hBFDGbm/pWkvZ9jvMjkxCqzK 4EKZ71u/yTuk0ppS7H8xtN+EF4jeXKArsN7PuBC7MvJ6IKDVj51Pij9XxxIduj+G EYEFLzRUue4OfG9+540kszE0MvJtKf63IMvbg08e1wS8WeHhPJAJ/AtjLgjQnZS7 t7/O787FxZOPf+MgmQORf832+kC7+VPOtblA6i+oTLx3HKmRiiw4hOUElITtfFel SXYQFVKiP8g/Bbfxvbbq/qBktsPbTtRlKs6WHd2nL/XJC4u+1tC/Fgf8AqFIOHVU RmN+2l+Xxnw3Ja3jQJkXLbc2tegB6trmOiyLOmaRM+FLGypeHTznhK9HpZcXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4sz8wdqDYjblWlpEfBe/jgoFXskwHwYDVR0j BBgwFoAUvYzeb+Pfn6Htps6kYvd+9gR4mQ0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NTljZmQwNC02OWQwLTRkNGMtOGQwOS0yZDIyMTM4NDJjMmMvMC9CRDhDREU2RkUz REY5RkExRURBNkNFQTQ2MkY3N0VGNjA0Nzg5OTBELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdFRjYwNDc4 OTkwRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjU5Y2ZkMDQtNjlkMC00ZDRjLThk MDktMmQyMjEzODQyYzJjLzAvQkQ4Q0RFNkZFM0RGOUZBMUVEQTZDRUE0NjJGNzdF RjYwNDc4OTkwRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKV5ywhkUwAxm/eE2WewJKUXXmneI6O92Omr BA/FVG/2JaMF3KzmQSD9fzkbW72IwXxN7vhLZfR649fV7b8Obi14mXRW4PGYJ1V1 p6JqBzrXDX1VwmG1yo9T7zIIrACwAQf9kdWgGr99AbIF9eb0NLBsdQmDz0690NMK 7Kz858MkJLnBR6+pzttEqyzH8u0vuEwbg21SFRgs07VqwEh4/HNTYxrMaOp023+t JbLpyiW0H670kJmk0LQQK620SyjC8rx2DVOFsBU+ckGHwbRNQdCMSuVFZZhnSJIk Kpl8g84JDGrSPtBgsdO1x9Y6/4OxgMdey1EiFI7PWY9tO1NYr+4= -----END CERTIFICATE-----Generated at Fri Apr 17 14:13:07 2026 by rpki-client