$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: cX3lcFwDK6o3Mnmz9HWag3oIfUlLDefVY6NdzounatI= Subject key identifier: B3:E2:50:2E:9C:E7:11:22:DE:47:C9:A6:56:70:1C:B2:B8:6C:BE:E7 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 7AFC97E021EB8AC30A5DFA63BFDA78A29CFCC0DA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 04E8 Signing time: Tue 01 Jul 2025 02:00:45 +0000 Manifest this update: Tue 01 Jul 2025 01:55:45 +0000 Manifest next update: Fri 04 Jul 2025 08:00:45 +0000 Files and hashes: 1: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 2: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 3: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 4: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 5: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 6: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 7: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 8: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: 4nqnE3Padcac0vjip2XzEmyDpGW1TkktmlWYtZq8iJY=) 9: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 10: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 08:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:fc:97:e0:21:eb:8a:c3:0a:5d:fa:63:bf:da:78:a2:9c:fc:c0:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 1 01:55:45 2025 GMT Not After : Jul 4 08:00:45 2025 GMT Subject: CN=B3E2502E9CE71122DE47C9A656701CB2B86CBEE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:74:d0:33:96:7c:7c:fa:4f:51:06:05:12:ac: 2b:47:70:29:12:82:fc:68:d8:12:4e:95:8b:4e:f6: a2:be:ca:15:c4:8a:bf:02:04:2e:0f:bc:42:13:04: 0e:eb:9d:d3:99:9b:ac:ae:ce:68:0d:f0:fa:fa:50: d5:46:1a:b7:fd:03:b4:85:b2:f7:92:14:c9:3d:4d: 8e:b3:f4:a8:03:8c:7a:53:c0:f1:77:fb:23:7d:56: d7:2b:17:13:fa:79:d9:64:38:e6:58:c0:17:f2:30: f4:81:ea:49:de:0d:0d:f2:4d:26:13:a8:40:a2:fc: e5:c6:4f:51:45:ba:91:f8:58:5b:ea:ab:a5:00:80: 06:dc:86:0d:9b:00:1e:80:d8:a1:65:91:64:b3:df: f0:b6:c3:b2:f7:89:b1:1f:4f:34:45:20:e3:95:9e: dc:93:4e:88:68:be:46:29:2b:2a:70:26:78:40:eb: ec:1f:88:7d:5e:ab:ab:cc:e7:d7:15:78:1b:07:04: ca:ce:8b:6b:4e:15:2f:53:d2:da:57:37:79:7e:f2: a5:c0:c7:85:c8:9e:5f:08:8a:91:9d:95:b3:eb:f6: 85:0a:51:13:02:36:14:b4:12:f5:98:00:5e:09:b7: 6c:cf:89:1e:14:2c:35:f8:5c:5b:72:38:39:eb:a3: f9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E2:50:2E:9C:E7:11:22:DE:47:C9:A6:56:70:1C:B2:B8:6C:BE:E7 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:6a:ca:60:3f:1e:b5:59:e4:e3:32:54:d3:64:77:ac:d1:52: 2f:52:c8:a6:06:ae:5a:f4:23:88:20:8f:89:ae:5d:8d:a1:d1: 75:90:bf:52:d4:a6:54:82:81:aa:0f:ac:0a:cd:b0:ac:15:03: 50:32:71:9a:36:9d:5a:15:ab:1b:c3:7b:4b:d3:89:54:41:14: b6:29:a4:9a:8c:04:35:29:a3:e1:15:38:d7:d7:6c:68:d2:8b: 42:43:79:ac:3d:8b:f2:eb:3d:23:db:67:c7:76:1e:3d:81:89: 1c:73:47:42:ae:f3:a7:d7:5a:0c:4c:12:f8:b9:8a:08:42:b0: 96:6d:84:f4:de:7e:bf:5c:9e:3a:87:ba:47:56:39:cb:63:88: 4b:ac:f0:92:ab:34:00:f4:2d:54:20:e6:f4:da:bf:21:a3:e3: 1f:c9:90:99:a2:82:71:3c:63:ed:1c:d6:ca:4c:14:b1:46:d0: 36:b2:ec:11:0b:b3:f3:26:18:5c:60:d2:79:71:08:e4:be:73: 7c:bf:80:f0:cd:d6:c9:f5:d7:c0:c4:66:5c:b7:19:6c:e9:32: 39:ac:93:82:e8:4e:76:54:17:69:f1:af:45:56:71:bb:0e:f0: 15:ac:0d:68:a5:cd:d0:28:9e:28:b4:af:ee:67:fb:85:14:07: 96:36:8c:85 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUevyX4CHrisMKXfpjv9p4opz8wNowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA3MDEwMTU1NDVaFw0yNTA3MDQwODAwNDVaMDMxMTAvBgNV BAMTKEIzRTI1MDJFOUNFNzExMjJERTQ3QzlBNjU2NzAxQ0IyQjg2Q0JFRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkdNAzlnx8+k9RBgUSrCtHcCkS gvxo2BJOlYtO9qK+yhXEir8CBC4PvEITBA7rndOZm6yuzmgN8Pr6UNVGGrf9A7SF sveSFMk9TY6z9KgDjHpTwPF3+yN9VtcrFxP6edlkOOZYwBfyMPSB6kneDQ3yTSYT qECi/OXGT1FFupH4WFvqq6UAgAbchg2bAB6A2KFlkWSz3/C2w7L3ibEfTzRFIOOV ntyTTohovkYpKypwJnhA6+wfiH1eq6vM59cVeBsHBMrOi2tOFS9T0tpXN3l+8qXA x4XInl8IipGdlbPr9oUKURMCNhS0EvWYAF4Jt2zPiR4ULDX4XFtyODnro/mlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs+JQLpznESLeR8mmVnAcsrhsvucwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJJqymA/HrVZ5OMyVNNkd6zRUi9SyKYGrlr0 I4ggj4muXY2h0XWQv1LUplSCgaoPrArNsKwVA1AycZo2nVoVqxvDe0vTiVRBFLYp pJqMBDUpo+EVONfXbGjSi0JDeaw9i/LrPSPbZ8d2Hj2BiRxzR0Ku86fXWgxMEvi5 ighCsJZthPTefr9cnjqHukdWOctjiEus8JKrNAD0LVQg5vTavyGj4x/JkJmignE8 Y+0c1spMFLFG0Day7BELs/MmGFxg0nlxCOS+c3y/gPDN1sn118DEZly3GWzpMjms k4LoTnZUF2nxr0VWcbsO8BWsDWilzdAonii0r+5n+4UUB5Y2jIU= -----END CERTIFICATE-----Generated at Thu Jul 3 06:59:52 2025 by rpki-client