$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: CPNYNtRFh+nt/fUOr3cR+fZ9M4i801xjF4l/2G7UIlc= Subject key identifier: 71:A8:57:E4:5E:2D:E0:09:13:D8:B2:EB:9A:ED:BD:19:31:3F:1A:2E Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 7F6157FD38A5B85CD8EF010CB16BAD8E45EE3213 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 04CC Signing time: Sun 27 Apr 2025 01:02:00 +0000 Manifest this update: Sun 27 Apr 2025 00:57:00 +0000 Manifest next update: Wed 30 Apr 2025 02:43:00 +0000 Files and hashes: 1: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: 9aiJeF03F2zpo2d6gqr5nHFtBKsclixQaw3tnWJ265E=) 2: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: GQLjyzqSeaPMpwbmMG+hHOVIX1kxT3fObGtrds/C+9M=) 3: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 1UvdjpJuUo4STbRNQdq27HbHQCfkWFnoyv90N7kJ1CM=) 4: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: rsfdocyFpYgLX4xY5BrOVq+dYwcQsrSghMZpqpv7JCY=) 5: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: iRjHonxZNqRpHeZ0vSjogTmxhWUG8ZWyfMHmIt7qmdQ=) 6: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: 8FHuasztaiBgjf8vTeP7NOsj9KO7tgGptX2jJQvDg4Q=) 7: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: 1HIMwR2c5Tq1n5rZjMhNvybc8+0zWjhkIpXwFRe8iPA=) 8: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: aK01biYenKLezQd1JYxPRvNKJKDZxGCWS84l0P9T/2k=) 9: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: 2PTof7HgDvQH3uMSjoYHvBJnE/tgljHy1CUnxbc2tLE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Apr 2025 02:43:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:61:57:fd:38:a5:b8:5c:d8:ef:01:0c:b1:6b:ad:8e:45:ee:32:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Apr 27 00:57:00 2025 GMT Not After : Apr 30 02:43:00 2025 GMT Subject: CN=71A857E45E2DE00913D8B2EB9AEDBD19313F1A2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fe:95:9d:9d:14:c8:24:f4:7f:74:8a:50:e5: ad:db:5b:85:b0:ff:d2:aa:47:dd:e3:0f:68:3a:c4: 80:eb:9c:3a:c8:c0:1d:54:55:b2:f9:1a:b5:a1:60: eb:d9:45:a3:94:8d:14:d6:a9:32:3b:78:44:9f:6c: 05:5f:d8:ec:fd:1e:ce:b8:ca:09:fb:e6:bf:24:bd: d3:8b:61:9c:48:4e:6f:63:cf:7b:dd:d7:75:5a:c2: 5e:79:ac:b9:59:db:e7:8d:26:6b:51:eb:1e:0b:1c: 52:cf:10:ef:0b:56:bb:77:b4:15:fb:3e:af:c0:d6: e8:13:cb:e7:e0:40:a8:bf:e7:cc:71:6c:7f:cb:92: 4f:7b:4f:7d:da:96:6f:7a:da:0b:d2:2b:16:84:a5: 18:40:8a:7e:59:8f:f0:e9:c8:21:d7:5d:ec:01:c3: 41:42:81:95:fb:9d:94:0e:4c:38:23:2d:5f:7d:3a: 71:0b:cf:bc:e6:4c:35:b6:80:47:58:a9:93:66:95: 73:b0:92:db:90:a3:6d:76:32:1e:73:dc:54:86:10: 57:b1:89:85:74:16:2c:44:6b:d9:04:49:14:29:7d: 38:76:a4:ad:0a:16:56:09:59:6a:7d:7e:14:77:79: ca:fe:5d:f4:39:3a:6e:61:75:fd:d5:07:3a:c6:6c: 4f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A8:57:E4:5E:2D:E0:09:13:D8:B2:EB:9A:ED:BD:19:31:3F:1A:2E X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:5d:66:5f:79:fb:8a:c7:cc:4b:fa:7c:04:5d:fe:ed:9c:27: 02:d4:93:d5:8b:cc:76:ad:99:ab:f3:c2:f9:93:e8:97:08:cc: 4d:fb:43:8e:2a:39:84:07:7f:0e:c0:77:38:f6:e0:0d:74:25: 33:29:ca:39:7c:fe:9b:70:62:ec:0a:60:df:0b:f5:3b:2d:82: 45:d4:ce:0f:0e:38:53:fe:07:ff:19:9f:c0:0d:72:98:cf:4f: e7:f3:97:be:22:72:f7:c3:99:7d:39:60:6c:0f:e7:45:9d:f2: 19:0d:1d:48:15:14:92:ca:b7:df:34:15:90:1f:18:66:e2:ca: f1:4f:58:62:52:08:3b:3c:bb:3a:22:8a:3d:5c:10:fa:82:c1: 85:b7:17:6b:95:f9:a9:84:a0:dd:d1:08:7b:b9:94:53:23:2a: 8f:80:a6:55:57:2c:2d:96:da:34:2e:cc:5c:23:00:53:3e:82: 18:8f:43:c2:e2:04:1f:51:f3:7a:05:47:23:bf:ef:ce:eb:b0: 09:d2:06:32:66:5d:17:43:e6:ec:a0:4f:76:17:41:be:2e:31: 30:e9:62:2c:3b:04:12:3b:7e:a3:85:ae:35:df:2b:f6:5a:62: 07:e1:00:e8:6d:8b:0e:e7:a5:1c:08:82:ac:eb:6d:8e:e9:24: 0a:43:f9:3a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf2FX/TiluFzY7wEMsWutjkXuMhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTA0MjcwMDU3MDBaFw0yNTA0MzAwMjQzMDBaMDMxMTAvBgNV BAMTKDcxQTg1N0U0NUUyREUwMDkxM0Q4QjJFQjlBRURCRDE5MzEzRjFBMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV/pWdnRTIJPR/dIpQ5a3bW4Ww /9KqR93jD2g6xIDrnDrIwB1UVbL5GrWhYOvZRaOUjRTWqTI7eESfbAVf2Oz9Hs64 ygn75r8kvdOLYZxITm9jz3vd13Vawl55rLlZ2+eNJmtR6x4LHFLPEO8LVrt3tBX7 Pq/A1ugTy+fgQKi/58xxbH/Lkk97T33alm962gvSKxaEpRhAin5Zj/DpyCHXXewB w0FCgZX7nZQOTDgjLV99OnELz7zmTDW2gEdYqZNmlXOwktuQo212Mh5z3FSGEFex iYV0FixEa9kESRQpfTh2pK0KFlYJWWp9fhR3ecr+XfQ5Om5hdf3VBzrGbE83AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcahX5F4t4AkT2LLrmu29GTE/Gi4wHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAARdZl95+4rHzEv6fARd/u2cJwLUk9WLzHat mavzwvmT6JcIzE37Q44qOYQHfw7Adzj24A10JTMpyjl8/ptwYuwKYN8L9TstgkXU zg8OOFP+B/8Zn8ANcpjPT+fzl74icvfDmX05YGwP50Wd8hkNHUgVFJLKt980FZAf GGbiyvFPWGJSCDs8uzoiij1cEPqCwYW3F2uV+amEoN3RCHu5lFMjKo+AplVXLC2W 2jQuzFwjAFM+ghiPQ8LiBB9R83oFRyO/787rsAnSBjJmXRdD5uygT3YXQb4uMTDp Yiw7BBI7fqOFrjXfK/ZaYgfhAOhtiw7npRwIgqzrbY7pJApD+To= -----END CERTIFICATE-----Generated at Mon Apr 28 06:11:32 2025 by rpki-client