$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: hYuu+NzBWAxsRUIjVOU4Pv3uqU6gTDw4mNSd2btOhDQ= Subject key identifier: 50:E0:E3:B3:CE:60:C0:15:39:F2:DF:ED:43:A4:57:FF:93:B1:ED:7D Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 354B7F21757D3EB9318DDF96729FFBC636A9EE30 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 0500 Signing time: Sat 23 Aug 2025 08:20:50 +0000 Manifest this update: Sat 23 Aug 2025 08:15:50 +0000 Manifest next update: Tue 26 Aug 2025 18:03:50 +0000 Files and hashes: 1: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 2: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 3: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 4: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 5: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 6: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 7: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: sDMbt0zNrA8i6tVrY6J0iHRAZxB80aNHxBjQYhuOuwk=) 8: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 9: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 10: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 10:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4b:7f:21:75:7d:3e:b9:31:8d:df:96:72:9f:fb:c6:36:a9:ee:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Aug 23 08:15:50 2025 GMT Not After : Aug 26 18:03:50 2025 GMT Subject: CN=50E0E3B3CE60C01539F2DFED43A457FF93B1ED7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6e:9c:ae:17:a0:64:30:97:2b:f0:85:d4:8b: f0:89:ea:5c:79:9b:e5:76:5e:e5:80:a0:b3:9c:a5: f4:20:b0:22:6e:50:4b:14:ae:70:c8:5c:bc:94:84: 35:af:64:e8:dd:98:83:9b:2b:66:48:18:ad:1c:c1: a4:62:e3:2e:12:22:ca:40:2e:67:e8:fe:65:6a:73: 56:29:b4:47:38:1c:b8:49:f6:41:13:8d:11:1f:0e: c4:15:21:8c:31:7a:83:82:12:cd:fc:5d:0c:df:48: 1a:e9:6e:10:4f:a5:df:12:8d:35:a7:18:b6:0c:bb: 38:70:bc:f3:80:53:2e:72:82:70:a9:8f:06:0c:e7: f0:eb:c0:b1:7c:f2:66:7e:7c:05:b5:37:82:08:ab: fb:fd:47:43:7f:c8:3d:c2:7f:0f:81:19:ef:1f:79: aa:35:15:c5:87:1f:8b:05:e8:bc:3b:e4:f4:f4:00: a9:f2:3f:c9:a5:d2:a5:01:73:1d:f6:c5:d4:d0:85: 65:af:8e:38:23:2b:e0:1f:cf:ed:e3:5d:0c:6e:b1: 2f:f9:6a:36:f2:50:31:be:c6:7c:05:e7:de:ab:81: fd:5a:02:05:23:d6:7f:0b:f3:cd:98:59:10:43:63: 24:c0:f6:4b:7d:4f:b8:b2:74:ff:9f:5f:99:93:21: 14:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E0:E3:B3:CE:60:C0:15:39:F2:DF:ED:43:A4:57:FF:93:B1:ED:7D X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:06:5d:26:44:6a:ea:64:9c:3b:68:72:64:0e:0b:3a:b8:ba: 30:aa:84:e4:65:8a:5a:98:90:8d:cd:1d:5d:2c:64:18:60:32: c0:62:3e:2f:d0:af:61:9a:73:16:81:4e:13:24:8e:86:e7:4a: 6d:64:9a:6d:92:f7:ea:40:48:05:97:93:e2:ea:38:be:42:93: 01:6c:fd:1b:d5:7e:c4:51:0a:be:7e:3c:fb:a3:92:ee:75:7f: a9:03:f1:25:61:97:a1:1f:97:65:cb:ee:d9:a2:f8:20:a6:31: 18:e7:9e:b2:18:50:57:03:68:e1:cc:5d:32:4a:45:d6:ad:d7: 99:94:f7:e3:f1:7e:9e:ce:3d:4e:26:8f:08:19:44:98:af:2a: 5e:bb:06:63:e7:52:15:cc:49:5b:ed:b8:98:6b:7b:bd:93:db: 18:5f:f9:2d:87:32:f9:26:19:9f:ef:7c:35:c1:39:21:25:c1: e1:72:ac:20:a8:ee:ca:d0:94:ba:b8:3e:8a:35:ce:9c:90:56: 54:1d:9f:b3:68:67:43:2b:af:1d:59:19:62:ad:4e:cb:a1:70: ec:17:85:8d:a9:6d:da:d2:00:5b:35:20:05:7b:eb:fd:97:5f: 5e:43:04:3b:5e:fe:8a:d7:ef:56:24:38:95:ab:7b:96:9b:cc: 1a:43:5e:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNUt/IXV9Prkxjd+Wcp/7xjap7jAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA4MjMwODE1NTBaFw0yNTA4MjYxODAzNTBaMDMxMTAvBgNV BAMTKDUwRTBFM0IzQ0U2MEMwMTUzOUYyREZFRDQzQTQ1N0ZGOTNCMUVEN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCobpyuF6BkMJcr8IXUi/CJ6lx5 m+V2XuWAoLOcpfQgsCJuUEsUrnDIXLyUhDWvZOjdmIObK2ZIGK0cwaRi4y4SIspA Lmfo/mVqc1YptEc4HLhJ9kETjREfDsQVIYwxeoOCEs38XQzfSBrpbhBPpd8SjTWn GLYMuzhwvPOAUy5ygnCpjwYM5/DrwLF88mZ+fAW1N4IIq/v9R0N/yD3Cfw+BGe8f eao1FcWHH4sF6Lw75PT0AKnyP8ml0qUBcx32xdTQhWWvjjgjK+Afz+3jXQxusS/5 ajbyUDG+xnwF596rgf1aAgUj1n8L882YWRBDYyTA9kt9T7iydP+fX5mTIRTLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUODjs85gwBU58t/tQ6RX/5Ox7X0wHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJwGXSZEaupknDtocmQOCzq4ujCqhORlilqY kI3NHV0sZBhgMsBiPi/Qr2GacxaBThMkjobnSm1kmm2S9+pASAWXk+LqOL5CkwFs /RvVfsRRCr5+PPujku51f6kD8SVhl6Efl2XL7tmi+CCmMRjnnrIYUFcDaOHMXTJK Rdat15mU9+Pxfp7OPU4mjwgZRJivKl67BmPnUhXMSVvtuJhre72T2xhf+S2HMvkm GZ/vfDXBOSElweFyrCCo7srQlLq4Poo1zpyQVlQdn7NoZ0Mrrx1ZGWKtTsuhcOwX hY2pbdrSAFs1IAV76/2XX15DBDte/orX71YkOJWre5abzBpDXkQ= -----END CERTIFICATE-----Generated at Sat Aug 23 12:35:25 2025 by rpki-client