$ rpki-client -vvf repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft File: BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft (raw, json) Hash identifier: K5P2zoGLozslF6EkmUhj54nAeOo7KnBk8vPlS/xsTqU= Subject key identifier: 8C:BE:D7:94:9F:91:2B:71:68:4C:F1:9A:F3:70:2B:FC:DA:CE:A9:1C Authority key identifier: BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B Certificate issuer: /CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Certificate serial: 3F61CAECA61CAC1D70CC8C5A4CF82344DAD5CAA2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft Manifest number: 04D4 Signing time: Sun 27 Apr 2025 22:22:23 +0000 Manifest this update: Sun 27 Apr 2025 22:17:23 +0000 Manifest next update: Thu 01 May 2025 08:07:23 +0000 Files and hashes: 1: 3130332e32312e38342e302f32322d3234203d3e203435373836.roa (hash: ev9kwx7xYfGQ0wqa7vOCRk3KIttSxKV6RHvfveIzVEs=) 2: 323030313a6466303a63623a3a2f34382d3438203d3e203435373836.roa (hash: n62tsL2z93EkvJ5FJ6Ucd+CAqKUW8/RP9Dy3KqIDqZs=) 3: 3131312e36372e37332e302f32342d3234203d3e203536323333.roa (hash: ndzf/dY/nmXxj2I9KPRlglxDyJBwxAj+OgRvw2hK3Yo=) 4: BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl (hash: J+qTng4NzD0DyZKwfXuzir/dYXRH80qXzKK4B4xoV8Y=) 5: 34352e36342e3130302e302f32322d3234203d3e203435373836.roa (hash: 79szJlSxFEM6vGgihAOETNzSQWjHNJBKmnEw59Gq12g=) 6: 3131312e36372e38382e302f32332d3234203d3e203234353337.roa (hash: LOzYi7IlYeMp9QOHAGBPza4xIVDFMZkY2F5HPF37I6E=) 7: 3131312e36372e37362e302f32342d3234203d3e203536323333.roa (hash: vhSbfr4PwcH2c1j4QZ7NODAAE3UKxSP2hh5xHxbrnvM=) 8: 3230322e36312e3130302e302f32332d3234203d3e203435373836.roa (hash: 2uhmj0dfbqVvDGktakJ5oY8OeRuRcTikYjNHLnaMjxQ=) 9: 3131312e36372e38362e302f32332d3234203d3e203234353337.roa (hash: 9PsTzehCSaVj3oVEGKfLHdsO6UamUj63Cby7WZOY4Lc=) 10: 3131312e36372e36342e302f31392d3234203d3e203435373836.roa (hash: lrS/GSSKQ2J7NdJ/xy82TzU+/28NXl295mMItZF0aBM=) 11: 3138322e35302e3234302e302f32302d3234203d3e203435373836.roa (hash: WpCc5wWIke3cUlXvQPfU10u+vQT2+u4asQ1kuTfrBhw=) 12: 3131312e36372e38302e302f32332d3234203d3e203535363931.roa (hash: /tYDlm+7FzJ8gja/IWkTc+vVL+l3/jcPAKHO2Fo8Pbo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 08:07:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:61:ca:ec:a6:1c:ac:1d:70:cc:8c:5a:4c:f8:23:44:da:d5:ca:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B Validity Not Before: Apr 27 22:17:23 2025 GMT Not After : May 1 08:07:23 2025 GMT Subject: CN=8CBED7949F912B71684CF19AF3702BFCDACEA91C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:02:c4:9d:e4:1f:9b:c0:71:82:00:fe:b2:51: 17:ff:46:97:21:ae:d1:36:46:6e:a1:26:70:85:1f: 5f:c3:ad:4d:d0:82:3e:8c:bf:b7:cf:ea:0b:83:1f: e0:ff:0a:2b:af:c3:7b:20:c4:64:87:fc:a2:39:1f: dc:03:70:ee:fd:6e:07:49:8a:b9:d6:66:56:c9:54: 33:82:eb:58:84:df:37:42:26:28:4f:7d:01:fe:59: 8f:a2:f8:ba:d5:43:44:d4:15:9b:f1:c8:f0:dd:cb: 3e:25:78:e6:79:70:db:8c:f7:9a:ed:6e:47:a5:f3: 16:56:9e:c1:15:d6:df:65:7c:0c:61:3d:86:00:3d: 43:a8:ef:cd:5f:a1:83:30:48:9f:20:9b:c7:de:dd: 4e:98:00:5c:c6:77:3d:56:6f:ac:99:15:d9:a7:67: c3:56:9c:11:89:60:19:85:cc:97:bd:f4:86:f1:bb: 13:01:23:06:d0:18:08:83:a7:58:41:93:de:20:b9: 36:97:53:f6:6c:b1:74:52:8b:3c:12:a5:36:4e:6d: 4e:5c:3b:9c:4e:4f:a7:c7:93:81:ab:19:b7:60:ba: 0e:9a:9f:14:10:69:cc:08:91:a2:90:bc:90:ca:52: 45:d0:33:c7:63:85:77:c6:27:b4:3d:53:3c:bc:b2: ff:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BE:D7:94:9F:91:2B:71:68:4C:F1:9A:F3:70:2B:FC:DA:CE:A9:1C X509v3 Authority Key Identifier: keyid:BF:07:6E:A2:4A:68:CF:15:2C:32:3C:7A:3D:FD:3F:92:AF:E8:AA:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e50da447-a138-4625-a420-a711ac243519/0/BF076EA24A68CF152C323C7A3DFD3F92AFE8AA2B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:26:6d:5b:41:49:c5:3b:67:01:86:eb:81:32:4d:48:60:ec: 17:89:cf:fa:d5:80:53:94:b8:d1:f9:6b:b0:ef:06:1a:3b:15: ff:03:64:fa:63:ef:2f:2c:4e:35:10:af:e1:8e:ef:4e:36:bc: 36:df:02:09:2a:ce:71:be:2f:9b:b9:ba:2a:f4:c0:83:53:18: ed:4c:b3:d8:25:63:ad:68:9d:19:9a:48:b1:a1:77:8c:6f:ed: a5:c6:d0:ac:f7:18:25:7f:72:d3:0d:1f:fe:32:16:4b:70:29: e9:b6:00:a4:b0:f7:8b:b2:ce:4f:e9:5f:3e:6c:61:54:29:8f: f1:f1:83:f9:93:1a:40:d6:1d:46:d4:0d:1a:bc:fd:de:97:74: 44:34:d3:50:3f:00:7a:7f:fd:f8:84:26:82:7f:f4:ab:e7:1a: fc:8a:f7:68:42:10:e9:f5:84:90:31:82:ad:97:55:4b:a7:bc: 53:3f:75:4f:93:13:35:0e:95:47:80:bb:ed:b7:1f:1f:54:d3: c8:9d:8f:13:16:7e:a5:fd:f1:90:4d:cf:2c:4b:17:68:1a:84: 04:40:0c:68:2e:30:ec:f3:81:91:23:91:77:94:1a:e4:7a:41: 30:5f:50:d3:fd:ed:20:cb:c4:b7:43:6b:af:2b:10:bc:9a:a5: bf:3a:f3:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUP2HK7KYcrB1wzIxaTPgjRNrVyqIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJB RkU4QUEyQjAeFw0yNTA0MjcyMjE3MjNaFw0yNTA1MDEwODA3MjNaMDMxMTAvBgNV BAMTKDhDQkVENzk0OUY5MTJCNzE2ODRDRjE5QUYzNzAyQkZDREFDRUE5MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSAsSd5B+bwHGCAP6yURf/Rpch rtE2Rm6hJnCFH1/DrU3Qgj6Mv7fP6guDH+D/Ciuvw3sgxGSH/KI5H9wDcO79bgdJ irnWZlbJVDOC61iE3zdCJihPfQH+WY+i+LrVQ0TUFZvxyPDdyz4leOZ5cNuM95rt bkel8xZWnsEV1t9lfAxhPYYAPUOo781foYMwSJ8gm8fe3U6YAFzGdz1Wb6yZFdmn Z8NWnBGJYBmFzJe99IbxuxMBIwbQGAiDp1hBk94guTaXU/ZssXRSizwSpTZObU5c O5xOT6fHk4GrGbdgug6anxQQacwIkaKQvJDKUkXQM8djhXfGJ7Q9Uzy8sv/BAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjL7XlJ+RK3FoTPGa83Ar/NrOqRwwHwYDVR0j BBgwFoAUvwduokpozxUsMjx6Pf0/kq/oqiswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTBkYTQ0Ny1hMTM4LTQ2MjUtYTQyMC1hNzExYWMyNDM1MTkvMC9CRjA3NkVBMjRB NjhDRjE1MkMzMjNDN0EzREZEM0Y5MkFGRThBQTJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNGOTJBRkU4 QUEyQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTUwZGE0NDctYTEzOC00NjI1LWE0 MjAtYTcxMWFjMjQzNTE5LzAvQkYwNzZFQTI0QTY4Q0YxNTJDMzIzQzdBM0RGRDNG OTJBRkU4QUEyQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKwmbVtBScU7ZwGG64EyTUhg7BeJz/rVgFOU uNH5a7DvBho7Ff8DZPpj7y8sTjUQr+GO7042vDbfAgkqznG+L5u5uir0wINTGO1M s9glY61onRmaSLGhd4xv7aXG0Kz3GCV/ctMNH/4yFktwKem2AKSw94uyzk/pXz5s YVQpj/Hxg/mTGkDWHUbUDRq8/d6XdEQ001A/AHp//fiEJoJ/9KvnGvyK92hCEOn1 hJAxgq2XVUunvFM/dU+TEzUOlUeAu+23Hx9U08idjxMWfqX98ZBNzyxLF2gahARA DGguMOzzgZEjkXeUGuR6QTBfUNP97SDLxLdDa68rELyapb868+w= -----END CERTIFICATE-----Generated at Tue Apr 29 16:31:42 2025 by rpki-client