$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: EG/kdo9LAkFa418AyVUNWWElyIPWIxCvkVW8B18tDx0= Subject key identifier: E4:C0:10:E4:4A:D5:32:B6:5A:40:43:EA:3D:05:9F:49:2D:86:E1:3F Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 64008CF4893466411A1616BA6F18CCE5D0D6D1E2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 04D0 Signing time: Sat 10 May 2025 02:00:44 +0000 Manifest this update: Sat 10 May 2025 01:55:44 +0000 Manifest next update: Tue 13 May 2025 04:30:44 +0000 Files and hashes: 1: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: c52sokWCxiHM47HXpwxIRcIDim32PalL1alwxXZgY9U=) 2: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: neR217ApV7QIViRVCl6i2tqUQ8xAdpZVrB9KWhUY/mg=) 3: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: C8mpthKpYoXubM6q6uGalmKMPilhsW9s24BUFwWotXs=) 4: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: rBGdSMT8TyCX1hza79EhNX5rZ23TWWthY7OuvHhtfMI=) 5: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: C+GCiZbyOWqTIP/iREeF81SfHqAfUnmzJ8NSghudrRI=) 6: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: NJdokcXpJ5XaumKzAZ6NIMhaU1ktPDdYz9EjGIFdANE=) 7: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: NUbYBP04DuPbGhyIytzZLet0AimjBEKWNuV7fszyTmU=) 8: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: aUpxMo771fb29jggB4uOqa828b49NdBRMaMLfwmufDU=) 9: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: ALHucxfZn6/DilYu8UfYHg2H5JY1f1TtwEgS6ThEO7s=) 10: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: o8WCNHqPgFVCcJIPMMNyY9wNR4s4bWFgWCE9Rc1XnKc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 13 May 2025 04:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:00:8c:f4:89:34:66:41:1a:16:16:ba:6f:18:cc:e5:d0:d6:d1:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: May 10 01:55:44 2025 GMT Not After : May 13 04:30:44 2025 GMT Subject: CN=E4C010E44AD532B65A4043EA3D059F492D86E13F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:90:f8:bd:c2:63:51:71:b4:64:23:6b:94:f8: 81:92:2a:c9:4f:6e:9d:0c:25:42:71:55:6e:75:7a: d4:a0:e9:ba:44:8e:75:63:01:d8:c5:63:fd:47:e1: 97:7f:eb:50:ff:52:83:ab:58:0f:c3:09:29:e0:7e: 18:23:c1:c7:47:27:e7:71:a3:fd:d7:05:50:f3:b7: 29:cc:b9:10:e4:30:d0:a6:cc:2c:c9:c1:93:d2:d5: 59:13:2a:a0:f6:6f:dc:20:d4:bd:69:1b:82:88:a0: 61:97:81:cb:62:86:5f:f1:19:63:e4:d3:82:80:11: 3b:4a:c1:e7:22:b4:83:bc:a7:e6:7f:4b:73:a3:1a: 3a:55:ff:a9:38:63:66:04:f3:9a:4a:76:08:e9:73: 78:b7:91:e6:50:94:f8:a6:44:2e:af:12:01:0a:9f: 18:a8:60:2f:2c:2b:97:25:bb:aa:70:42:dd:c1:04: b1:55:ce:34:e7:17:54:12:8b:ae:6a:8b:9b:67:0a: 85:90:e2:c3:3b:62:3b:ff:50:31:69:cd:29:9d:10: 49:93:fc:56:af:0a:72:d8:c0:20:37:8a:27:f6:54: d4:c9:3e:eb:60:f2:51:7a:e1:c1:6b:f4:2d:5c:46: 6f:03:06:3a:1a:8c:82:fa:a5:54:5c:30:df:dd:9a: 8f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C0:10:E4:4A:D5:32:B6:5A:40:43:EA:3D:05:9F:49:2D:86:E1:3F X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:bf:32:3f:2b:b4:7c:6f:77:f7:f6:33:a0:f7:c9:c7:95:e1: 04:da:96:22:34:0a:02:c9:d9:e2:d5:3f:a9:bf:f0:50:6e:cd: 3f:14:c8:5c:09:87:d4:a6:8d:4e:7f:43:2a:70:0a:44:37:99: ba:e9:de:1a:5f:08:b3:96:94:44:3f:01:ce:98:f8:50:e5:8d: 58:a4:07:44:f5:aa:72:83:36:de:36:0f:75:f2:cb:98:cd:3d: 08:fc:a5:21:e9:66:ac:37:a7:18:84:e8:93:1e:57:94:3c:52: 20:e7:4a:dc:2d:db:dd:d2:2c:b5:80:dd:7c:cb:09:c4:10:2a: 7d:04:2b:4f:be:69:08:03:b5:89:02:1e:1d:5a:a9:ce:00:e9: 88:3a:2c:98:48:4e:7c:91:d2:a6:57:a4:6e:b4:31:f4:aa:d0: 72:24:91:fb:79:f0:b6:18:87:60:2a:e9:86:29:89:77:09:5b: eb:04:e5:c7:f3:fd:c9:6b:04:87:6a:a0:98:42:20:9f:12:83: 71:27:42:43:9c:05:7a:9b:cf:98:92:4a:62:a6:81:97:da:50: 23:17:19:53:84:9e:1a:13:27:fd:3a:78:46:0d:08:4f:6c:5e: 36:f9:37:19:90:2d:0f:56:1b:fa:ca:21:cd:5f:7f:15:aa:04: ec:df:54:fe -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZACM9Ik0ZkEaFha6bxjM5dDW0eIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA1MTAwMTU1NDRaFw0yNTA1MTMwNDMwNDRaMDMxMTAvBgNV BAMTKEU0QzAxMEU0NEFENTMyQjY1QTQwNDNFQTNEMDU5RjQ5MkQ4NkUxM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+kPi9wmNRcbRkI2uU+IGSKslP bp0MJUJxVW51etSg6bpEjnVjAdjFY/1H4Zd/61D/UoOrWA/DCSngfhgjwcdHJ+dx o/3XBVDztynMuRDkMNCmzCzJwZPS1VkTKqD2b9wg1L1pG4KIoGGXgctihl/xGWPk 04KAETtKwecitIO8p+Z/S3OjGjpV/6k4Y2YE85pKdgjpc3i3keZQlPimRC6vEgEK nxioYC8sK5clu6pwQt3BBLFVzjTnF1QSi65qi5tnCoWQ4sM7Yjv/UDFpzSmdEEmT /FavCnLYwCA3iif2VNTJPutg8lF64cFr9C1cRm8DBjoajIL6pVRcMN/dmo+NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5MAQ5ErVMrZaQEPqPQWfSS2G4T8wHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJO/Mj8rtHxvd/f2M6D3yceV4QTaliI0CgLJ 2eLVP6m/8FBuzT8UyFwJh9SmjU5/QypwCkQ3mbrp3hpfCLOWlEQ/Ac6Y+FDljVik B0T1qnKDNt42D3Xyy5jNPQj8pSHpZqw3pxiE6JMeV5Q8UiDnStwt293SLLWA3XzL CcQQKn0EK0++aQgDtYkCHh1aqc4A6Yg6LJhITnyR0qZXpG60MfSq0HIkkft58LYY h2Aq6YYpiXcJW+sE5cfz/clrBIdqoJhCIJ8Sg3EnQkOcBXqbz5iSSmKmgZfaUCMX GVOEnhoTJ/06eEYNCE9sXjb5NxmQLQ9WG/rKIc1ffxWqBOzfVP4= -----END CERTIFICATE-----Generated at Sun May 11 20:00:40 2025 by rpki-client