$ rpki-client -vvf repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft File: 285A5330FE006D3660B306BEE40EC7FEABA96574.mft (raw, json) Hash identifier: APfXQrFymBh3yg1V0+IakoHLtdi8Dok5Ww146w3P9c8= Subject key identifier: CD:B3:90:E5:3B:4D:FE:A1:3F:1B:48:BF:63:19:B8:45:29:0F:3B:DE Authority key identifier: 28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 Certificate issuer: /CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Certificate serial: 5C8F4B888AE71893B79F92A51B5F3868B63754C5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft Manifest number: 01E0 Signing time: Sat 28 Jun 2025 21:00:50 +0000 Manifest this update: Sat 28 Jun 2025 20:55:50 +0000 Manifest next update: Tue 01 Jul 2025 22:32:50 +0000 Files and hashes: 1: 3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa (hash: NcRBqt1Wn/tuGvM1xfS0JFewwd6sRo22gfKxjNahc88=) 2: 285A5330FE006D3660B306BEE40EC7FEABA96574.crl (hash: fxSLEilizSfcBseAEeD2jMLNftvfhoSyXNehaYAPhKQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 01 Jul 2025 22:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:8f:4b:88:8a:e7:18:93:b7:9f:92:a5:1b:5f:38:68:b6:37:54:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Validity Not Before: Jun 28 20:55:50 2025 GMT Not After : Jul 1 22:32:50 2025 GMT Subject: CN=CDB390E53B4DFEA13F1B48BF6319B845290F3BDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:18:d7:f0:75:ee:41:95:f6:0b:de:db:aa:48: b8:99:0b:5f:f4:aa:eb:bb:16:43:c5:da:04:f7:c9: 38:11:27:c4:18:52:c1:9b:55:49:13:e7:3d:4c:23: ad:e5:ae:e4:95:71:96:ec:74:3c:c0:10:cd:6d:76: 12:c4:19:e5:2a:d1:41:0e:26:7e:0b:72:6f:4e:23: 91:ac:af:b8:9e:55:9f:74:d6:95:2b:4e:b6:db:5a: 27:c4:eb:3f:4a:88:86:30:73:69:e6:fb:eb:7f:0b: de:b0:a8:61:f2:a4:e4:e2:9e:11:af:aa:4a:69:fe: ce:8e:26:d5:4e:7b:dd:ae:dd:23:c1:7e:c5:48:3d: e2:ed:9f:05:31:ab:cf:55:d7:87:dc:36:53:97:85: eb:39:c4:ba:f9:77:00:f6:f8:c7:f6:37:98:6b:d3: b6:d3:64:e5:6e:a5:81:8e:1e:c6:86:11:34:52:dd: 53:3e:0c:61:ac:88:38:f3:05:51:76:56:ea:72:3a: eb:df:44:d2:8b:c7:9b:83:be:d9:2c:3d:f4:fa:3f: 16:77:49:41:28:50:0d:c8:f9:c0:1a:f3:75:18:50: 8b:d7:e6:25:b1:e5:e2:47:94:62:d8:0a:04:a3:e3: d8:4e:1b:8b:75:42:fe:df:8b:1a:9b:c2:d3:dd:12: 38:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B3:90:E5:3B:4D:FE:A1:3F:1B:48:BF:63:19:B8:45:29:0F:3B:DE X509v3 Authority Key Identifier: keyid:28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:2b:65:90:68:d5:94:4e:8c:ad:56:46:41:0d:4e:1d:51:bb: 36:ef:93:85:43:6c:61:3c:e1:0a:85:94:99:26:4d:77:4c:07: e8:6b:75:d6:a1:5f:80:a3:e2:cb:b6:16:40:36:27:cc:7d:ba: 0d:bc:9c:e7:20:ae:93:db:21:87:fe:fd:27:5f:e2:b2:ad:30: 45:a5:5a:a7:cd:73:d9:e4:7c:47:32:3a:c4:77:47:66:a2:fa: 24:80:42:04:6f:81:66:fd:f1:73:02:79:21:65:fe:50:76:f4: 4a:c3:23:74:0b:10:43:51:51:54:93:85:8d:f7:31:e9:13:2c: 98:fe:aa:49:47:01:d6:a4:f1:88:2a:12:a4:12:cf:19:fd:ec: c6:01:8d:a6:80:a2:f2:c4:30:0b:29:f6:7d:8c:2e:ba:ae:c0: 5d:05:92:6f:17:69:90:68:69:5f:2b:d6:fa:a2:03:2b:91:c0: a8:78:b1:bd:f2:2c:45:f6:c4:9f:d3:f0:35:76:82:15:7d:a6: 4f:c5:58:fc:ea:a9:67:01:95:ea:6d:bd:9f:ce:52:df:17:d8: 5d:58:3a:04:9d:e8:07:5b:41:42:02:53:d4:89:fa:87:61:86: be:ef:9e:43:e4:27:82:19:5b:dd:42:41:c0:4e:98:60:c2:cb: 44:dc:f8:af -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXI9LiIrnGJO3n5KlG184aLY3VMUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVB QkE5NjU3NDAeFw0yNTA2MjgyMDU1NTBaFw0yNTA3MDEyMjMyNTBaMDMxMTAvBgNV BAMTKENEQjM5MEU1M0I0REZFQTEzRjFCNDhCRjYzMTlCODQ1MjkwRjNCREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrGNfwde5BlfYL3tuqSLiZC1/0 quu7FkPF2gT3yTgRJ8QYUsGbVUkT5z1MI63lruSVcZbsdDzAEM1tdhLEGeUq0UEO Jn4Lcm9OI5Gsr7ieVZ901pUrTrbbWifE6z9KiIYwc2nm++t/C96wqGHypOTinhGv qkpp/s6OJtVOe92u3SPBfsVIPeLtnwUxq89V14fcNlOXhes5xLr5dwD2+Mf2N5hr 07bTZOVupYGOHsaGETRS3VM+DGGsiDjzBVF2VupyOuvfRNKLx5uDvtksPfT6PxZ3 SUEoUA3I+cAa83UYUIvX5iWx5eJHlGLYCgSj49hOG4t1Qv7fixqbwtPdEjhfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzbOQ5TtN/qE/G0i/Yxm4RSkPO94wHwYDVR0j BBgwFoAUKFpTMP4AbTZgswa+5A7H/qupZXQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWQzMzc3MC1mMTUxLTQzZjMtOTU2OS02YTI3ZDc1MDQyNDAvMC8yODVBNTMzMEZF MDA2RDM2NjBCMzA2QkVFNDBFQzdGRUFCQTk2NTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVBQkE5 NjU3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFkMzM3NzAtZjE1MS00M2YzLTk1 NjktNmEyN2Q3NTA0MjQwLzAvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3 RkVBQkE5NjU3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHorZZBo1ZROjK1WRkENTh1Ruzbvk4VDbGE8 4QqFlJkmTXdMB+hrddahX4Cj4su2FkA2J8x9ug28nOcgrpPbIYf+/Sdf4rKtMEWl WqfNc9nkfEcyOsR3R2ai+iSAQgRvgWb98XMCeSFl/lB29ErDI3QLEENRUVSThY33 MekTLJj+qklHAdak8YgqEqQSzxn97MYBjaaAovLEMAsp9n2MLrquwF0Fkm8XaZBo aV8r1vqiAyuRwKh4sb3yLEX2xJ/T8DV2ghV9pk/FWPzqqWcBleptvZ/OUt8X2F1Y OgSd6AdbQUICU9SJ+odhhr7vnkPkJ4IZW91CQcBOmGDCy0Tc+K8= -----END CERTIFICATE-----Generated at Mon Jun 30 02:13:29 2025 by rpki-client