$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: ZZKZBArBccej0wvab0ZMDIeeUxVMoHU9Gn28vulYI+4= Subject key identifier: 51:20:0E:39:C1:66:DA:6E:D6:08:1B:91:9E:EB:A7:D8:D6:67:6F:89 Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 154A64F7C6C1AF9AF624D2A1EFD2E48E0CB36C8F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: 46 Signing time: Sun 11 May 2025 07:42:00 +0000 Manifest this update: Sun 11 May 2025 07:37:00 +0000 Manifest next update: Wed 14 May 2025 12:06:00 +0000 Files and hashes: 1: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: BAUJtZZlL374tJnFpRdNYGp1rIiLdpr5Lrngcn3cuds=) 2: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: sz4VmdCTe+rtqXvjcCCv+oeArdLugQ/bUPNEnmt0I5U=) 3: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: sCyLtPxP1W6eDrRKM5zzBxs1T1DM9NmEIRenFAs3CLU=) 4: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: bv6pC6gX0eRc1LFkXxFUMTO8NK/3ORK3VMfpVTQQLkE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 12:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:4a:64:f7:c6:c1:af:9a:f6:24:d2:a1:ef:d2:e4:8e:0c:b3:6c:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: May 11 07:37:00 2025 GMT Not After : May 14 12:06:00 2025 GMT Subject: CN=51200E39C166DA6ED6081B919EEBA7D8D6676F89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f8:df:59:63:1d:bd:4a:e1:69:79:7e:f9:f4: 86:9a:2e:4b:71:df:21:da:65:58:5c:2d:72:af:73: d5:85:17:42:d2:10:d8:d5:19:d6:19:4c:ed:1e:4b: de:fb:94:e6:89:9d:eb:56:23:6c:83:97:e1:20:87: a9:85:7c:ab:68:79:7e:f9:4f:ec:39:25:21:c1:86: e1:77:6d:d9:13:77:9a:4f:39:68:4a:ab:58:85:62: f1:3a:30:24:67:eb:ec:c5:10:10:e0:fb:72:16:93: 82:92:49:5b:ad:5c:0d:3e:c5:9f:3b:7c:ef:39:f8: 63:4f:e3:3e:d9:4f:f3:ea:45:55:f6:08:5f:86:85: c8:25:5a:8b:47:e3:d2:3d:9a:4b:dd:4e:0a:7c:ec: bc:f0:07:50:75:c0:cb:ca:9e:8c:b5:9d:36:ef:f7: d4:1c:c4:62:9a:e4:93:9f:8c:85:0f:d1:d6:e6:af: 12:79:ad:ae:41:5b:39:05:35:39:a7:ac:8d:f8:d1: fe:66:20:97:94:80:ea:63:42:27:b5:3c:43:ea:bb: 8b:1a:6a:c7:cf:44:b7:99:25:74:97:60:88:d7:b8: 02:4b:31:c3:6f:d3:26:6c:46:7f:15:00:3f:41:7d: 6b:df:b6:4d:68:34:66:97:56:0f:2d:8e:0e:7e:ad: af:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:20:0E:39:C1:66:DA:6E:D6:08:1B:91:9E:EB:A7:D8:D6:67:6F:89 X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:53:6b:4d:87:64:98:22:b9:0b:97:ee:8e:5e:26:58:20:f5: 6e:87:69:17:d9:19:e8:36:61:49:65:c0:82:f8:2d:46:f3:23: 4c:e7:37:aa:90:94:8e:02:e1:02:bf:f2:7d:3e:c8:82:01:1c: 16:5e:3e:d7:23:cc:ff:90:f1:79:d7:b3:f3:d9:3c:83:17:0e: 10:7e:dd:43:41:62:b3:d6:cc:fc:55:be:f9:1b:74:c8:c9:03: b1:4d:7e:57:3d:4f:86:6a:50:0f:de:1b:96:e3:33:15:2f:79: f7:d9:9d:84:e3:67:ed:64:ad:6c:54:fc:af:df:fe:c3:fa:08: 6d:a0:e3:be:13:70:e4:41:b1:cf:5a:74:95:e0:b0:5e:1e:38: 41:c2:19:9e:96:00:1a:8c:ed:90:e2:79:0a:c7:44:51:ca:8e: 2f:f7:6a:e5:36:d1:7f:03:72:82:5d:77:c4:a6:8d:ee:52:87: e6:32:4b:7f:d9:dd:af:f0:91:03:f5:13:4e:01:12:8b:a4:82: 28:25:f9:81:7f:f8:31:22:3d:b2:da:86:aa:58:80:ac:dd:64: 45:a7:25:8e:97:f7:18:0c:b6:db:62:31:99:8a:9a:b9:de:95: 95:ec:9b:32:36:12:0a:14:81:f0:69:c2:99:52:d9:66:65:2f: e6:d3:b5:f2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFUpk98bBr5r2JNKh79LkjgyzbI8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNTA1MTEwNzM3MDBaFw0yNTA1MTQxMjA2MDBaMDMxMTAvBgNV BAMTKDUxMjAwRTM5QzE2NkRBNkVENjA4MUI5MTlFRUJBN0Q4RDY2NzZGODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ+N9ZYx29SuFpeX759IaaLktx 3yHaZVhcLXKvc9WFF0LSENjVGdYZTO0eS977lOaJnetWI2yDl+Egh6mFfKtoeX75 T+w5JSHBhuF3bdkTd5pPOWhKq1iFYvE6MCRn6+zFEBDg+3IWk4KSSVutXA0+xZ87 fO85+GNP4z7ZT/PqRVX2CF+GhcglWotH49I9mkvdTgp87LzwB1B1wMvKnoy1nTbv 99QcxGKa5JOfjIUP0dbmrxJ5ra5BWzkFNTmnrI340f5mIJeUgOpjQie1PEPqu4sa asfPRLeZJXSXYIjXuAJLMcNv0yZsRn8VAD9BfWvftk1oNGaXVg8tjg5+ra/1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUSAOOcFm2m7WCBuRnuun2NZnb4kwHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHtTa02HZJgiuQuX7o5eJlgg9W6HaRfZGeg2 YUllwIL4LUbzI0znN6qQlI4C4QK/8n0+yIIBHBZePtcjzP+Q8XnXs/PZPIMXDhB+ 3UNBYrPWzPxVvvkbdMjJA7FNflc9T4ZqUA/eG5bjMxUveffZnYTjZ+1krWxU/K/f /sP6CG2g474TcORBsc9adJXgsF4eOEHCGZ6WABqM7ZDieQrHRFHKji/3auU20X8D coJdd8Smje5Sh+YyS3/Z3a/wkQP1E04BEoukgigl+YF/+DEiPbLahqpYgKzdZEWn JY6X9xgMtttiMZmKmrnelZXsmzI2EgoUgfBpwplS2WZlL+bTtfI= -----END CERTIFICATE-----Generated at Mon May 12 07:36:39 2025 by rpki-client