$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: 7KoEctDnjRcW/SaRQUu6qo5i8w0Px2B1Sdj766kQJz8= Subject key identifier: C4:7A:12:8D:E7:16:8D:A2:2C:D7:7D:A2:E4:3E:B6:8C:90:F1:83:1D Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 0D0BB2FAC57B014A20130317C8784D76AA2BC721 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: 5C Signing time: Mon 30 Jun 2025 06:22:03 +0000 Manifest this update: Mon 30 Jun 2025 06:17:03 +0000 Manifest next update: Thu 03 Jul 2025 11:11:03 +0000 Files and hashes: 1: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: sz4VmdCTe+rtqXvjcCCv+oeArdLugQ/bUPNEnmt0I5U=) 2: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: bv6pC6gX0eRc1LFkXxFUMTO8NK/3ORK3VMfpVTQQLkE=) 3: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: sCyLtPxP1W6eDrRKM5zzBxs1T1DM9NmEIRenFAs3CLU=) 4: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: bA9HwkeFOIykOVlslIxQSKGeb+Q6GMoTy2+LITF7GtQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 11:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0b:b2:fa:c5:7b:01:4a:20:13:03:17:c8:78:4d:76:aa:2b:c7:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Jun 30 06:17:03 2025 GMT Not After : Jul 3 11:11:03 2025 GMT Subject: CN=C47A128DE7168DA22CD77DA2E43EB68C90F1831D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:c7:4d:bc:69:06:c4:79:92:b6:70:9f:74: a3:e1:89:e9:aa:f5:5b:44:54:1f:22:76:ce:e4:d6: 3f:4e:31:35:80:a4:b7:a9:d7:87:51:01:0a:b6:b2: 81:95:1a:63:d1:45:fe:30:11:5f:79:f6:c6:18:fb: ab:ec:dc:13:88:bd:fc:aa:e7:5c:03:57:bc:92:ee: 4f:e9:6b:d5:03:1b:64:6b:59:d3:48:39:7a:2c:ae: 02:66:dd:81:4b:03:10:6f:5e:c5:b7:9c:6d:52:9d: a6:4c:c6:09:9b:44:99:61:37:15:39:41:17:25:ba: af:01:49:64:f1:63:d6:f3:19:b1:e5:67:44:28:41: c9:82:1d:64:b6:f3:b0:6b:65:09:9c:79:09:f5:ea: 58:b7:f3:ff:2c:94:20:1a:56:d4:40:4e:db:54:c3: 6d:a8:32:0c:91:d1:29:56:6d:a4:14:bf:5a:8a:4e: ab:57:d4:ed:ef:53:6a:82:ff:2d:81:cc:df:78:a5: d9:98:bc:58:9b:03:77:71:99:e9:60:65:63:6a:23: d2:c7:e9:4e:4c:9c:05:8e:e1:0b:79:52:6b:5f:61: 2d:68:2b:3b:24:c2:94:d6:92:fe:6e:a8:d5:47:11: f2:31:c2:6e:70:fd:57:99:f5:e8:1f:d9:31:c9:ea: 86:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7A:12:8D:E7:16:8D:A2:2C:D7:7D:A2:E4:3E:B6:8C:90:F1:83:1D X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:73:48:44:bc:8e:a5:54:73:76:c8:11:2f:5e:a9:9c:4c:dd: c1:72:d6:ab:6c:61:ea:54:98:f0:b2:db:ef:e7:0c:53:a3:a1: b2:3c:44:9e:0c:bf:a6:b1:09:89:01:4d:1b:57:be:2b:e9:aa: 7d:80:c1:33:45:a5:3a:0f:66:17:e4:e7:46:5b:fe:53:b7:16: 6b:fc:56:48:e1:9f:00:4a:48:dc:f6:39:10:98:fa:a3:ee:14: 61:76:e7:22:4b:e7:53:47:64:65:71:cb:2b:85:3e:b2:a4:27: 2d:08:31:2e:7c:d2:3c:d2:f0:ef:63:37:ce:a6:92:55:55:04: 0d:76:d2:78:be:27:cb:a4:f2:e8:59:52:e6:8f:7f:fe:18:16: 14:f9:be:43:27:4a:8f:ce:0c:0f:14:07:b6:1a:65:62:bf:22: 1c:fc:d4:99:2e:59:ad:cc:0e:e1:39:a7:cd:7d:b3:e4:71:7d: 08:fd:38:5f:f6:8c:aa:b0:a1:15:62:9b:ca:e4:f0:bb:63:99: b6:7b:68:94:ef:c0:8c:ac:d1:8c:9e:52:45:50:73:a3:ab:08: 1d:08:9b:23:bb:49:04:ee:71:c2:89:25:c1:73:ba:b4:c6:64: 79:01:31:06:54:fb:bd:a7:fa:be:9d:66:85:39:dc:01:71:06: e2:47:6a:50 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDQuy+sV7AUogEwMXyHhNdqorxyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNTA2MzAwNjE3MDNaFw0yNTA3MDMxMTExMDNaMDMxMTAvBgNV BAMTKEM0N0ExMjhERTcxNjhEQTIyQ0Q3N0RBMkU0M0VCNjhDOTBGMTgzMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqacdNvGkGxHmStnCfdKPhiemq 9VtEVB8ids7k1j9OMTWApLep14dRAQq2soGVGmPRRf4wEV959sYY+6vs3BOIvfyq 51wDV7yS7k/pa9UDG2RrWdNIOXosrgJm3YFLAxBvXsW3nG1SnaZMxgmbRJlhNxU5 QRcluq8BSWTxY9bzGbHlZ0QoQcmCHWS287BrZQmceQn16li38/8slCAaVtRATttU w22oMgyR0SlWbaQUv1qKTqtX1O3vU2qC/y2BzN94pdmYvFibA3dxmelgZWNqI9LH 6U5MnAWO4Qt5UmtfYS1oKzskwpTWkv5uqNVHEfIxwm5w/VeZ9egf2THJ6oaZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxHoSjecWjaIs132i5D62jJDxgx0wHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKZzSES8jqVUc3bIES9eqZxM3cFy1qtsYepU mPCy2+/nDFOjobI8RJ4Mv6axCYkBTRtXvivpqn2AwTNFpToPZhfk50Zb/lO3Fmv8 VkjhnwBKSNz2ORCY+qPuFGF25yJL51NHZGVxyyuFPrKkJy0IMS580jzS8O9jN86m klVVBA120ni+J8uk8uhZUuaPf/4YFhT5vkMnSo/ODA8UB7YaZWK/Ihz81JkuWa3M DuE5p819s+RxfQj9OF/2jKqwoRVim8rk8LtjmbZ7aJTvwIys0YyeUkVQc6OrCB0I myO7SQTuccKJJcFzurTGZHkBMQZU+72n+r6dZoU53AFxBuJHalA= -----END CERTIFICATE-----Generated at Wed Jul 2 04:01:15 2025 by rpki-client