$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: GytojjRz4iLDPKzLLfaio2cspQedYUhKYH6Iggr4fFo= Subject key identifier: 2F:26:45:B2:CD:7C:F5:41:39:03:45:9D:36:90:B1:B7:BD:B1:D6:ED Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 3635345102C141E9C8A5AB8FF0D06E37915B2774 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 04E0 Signing time: Sat 18 Oct 2025 17:20:50 +0000 Manifest this update: Sat 18 Oct 2025 17:15:50 +0000 Manifest next update: Wed 22 Oct 2025 02:21:50 +0000 Files and hashes: 1: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: t0PKEaq4XMtoZDHLffuI//Hg9LXMt+wPG3/1abz1wpw=) 2: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI=) 3: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (hash: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0=) 4: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 02:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:35:34:51:02:c1:41:e9:c8:a5:ab:8f:f0:d0:6e:37:91:5b:27:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Oct 18 17:15:50 2025 GMT Not After : Oct 22 02:21:50 2025 GMT Subject: CN=2F2645B2CD7CF5413903459D3690B1B7BDB1D6ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dc:70:6f:dd:8c:24:26:fb:81:a6:be:e4:ab: 36:a6:2f:2c:c3:67:3a:bf:95:9a:e9:1b:2f:aa:dc: e3:ed:04:31:cb:e8:78:69:ef:2b:08:c5:92:45:11: 2b:be:e4:91:cd:0b:f4:03:24:0f:84:bd:a5:31:21: fb:93:4e:c6:9a:b3:7b:1c:73:e4:d8:e6:72:0b:ee: 81:9d:06:c1:37:d7:c6:cf:a1:11:ae:bd:5e:fc:96: 33:85:c8:b3:28:0e:19:03:08:72:ea:41:39:98:de: 19:83:c5:a3:a3:17:e8:f0:09:94:71:39:c5:3a:91: cb:2c:63:59:63:92:6d:5b:54:4e:2a:f6:3d:e3:2d: f1:5b:11:3d:3c:f2:14:c8:f4:f8:c8:51:24:22:ae: 61:c9:2b:55:15:fa:69:98:75:d6:7a:6b:17:16:1a: d4:6e:f7:2f:a2:14:c1:bd:1f:bf:36:5d:68:74:ec: e6:25:7e:be:09:1e:43:f6:43:59:e7:28:86:a5:20: 6e:e4:fd:14:89:24:50:e7:d7:dc:9e:14:a6:56:39: 32:b1:93:5e:70:55:08:5f:86:11:51:25:58:af:1b: c7:18:49:72:c8:f7:d2:18:91:f8:af:fb:54:2a:5d: 11:95:48:36:75:4d:79:f5:0b:0e:9c:d6:91:19:58: 9b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:26:45:B2:CD:7C:F5:41:39:03:45:9D:36:90:B1:B7:BD:B1:D6:ED X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:8b:43:01:88:31:5b:96:23:12:15:0d:fa:3e:15:4e:4e:99: f2:67:b6:fb:c8:23:9d:6d:3e:39:22:e4:92:c6:70:5e:67:ab: c9:3d:63:26:ad:de:d3:3d:92:d3:0a:53:43:be:82:53:52:ca: c1:2b:66:44:16:10:16:bd:de:b1:18:bf:e7:73:5b:07:f1:30: c7:e1:56:e1:3d:56:79:4a:24:46:d7:81:88:32:6a:da:18:b9: 71:ed:9a:f9:11:23:c6:89:ae:6d:56:3e:54:74:f7:93:dd:85: 90:e6:63:71:98:f6:ae:4e:04:4a:50:39:94:37:07:bd:1e:ff: a5:4b:eb:c5:25:6b:66:24:2a:b2:20:e3:e7:06:cd:38:65:e4: 77:18:25:27:ad:82:88:27:46:60:b7:00:54:9a:7b:99:1a:e9: 17:19:1f:51:fb:19:c8:74:94:cf:32:bd:99:52:65:a3:f6:2b: 7a:03:b8:85:08:69:16:e8:cb:5a:98:87:eb:5f:37:4c:62:ef: de:fb:78:3f:e9:ef:44:95:4b:87:c3:ec:37:40:69:e2:74:15: ba:94:2f:66:60:30:cc:bc:f0:f9:a7:8d:5b:88:82:97:2c:3e: 6c:a2:90:4e:2b:a5:61:9f:a1:34:a0:09:09:33:f4:d4:8c:c7: f8:72:2c:2c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNjU0UQLBQenIpauP8NBuN5FbJ3QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTEwMTgxNzE1NTBaFw0yNTEwMjIwMjIxNTBaMDMxMTAvBgNV BAMTKDJGMjY0NUIyQ0Q3Q0Y1NDEzOTAzNDU5RDM2OTBCMUI3QkRCMUQ2RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF3HBv3YwkJvuBpr7kqzamLyzD Zzq/lZrpGy+q3OPtBDHL6Hhp7ysIxZJFESu+5JHNC/QDJA+EvaUxIfuTTsaas3sc c+TY5nIL7oGdBsE318bPoRGuvV78ljOFyLMoDhkDCHLqQTmY3hmDxaOjF+jwCZRx OcU6kcssY1ljkm1bVE4q9j3jLfFbET088hTI9PjIUSQirmHJK1UV+mmYddZ6axcW GtRu9y+iFMG9H782XWh07OYlfr4JHkP2Q1nnKIalIG7k/RSJJFDn19yeFKZWOTKx k15wVQhfhhFRJVivG8cYSXLI99IYkfiv+1QqXRGVSDZ1TXn1Cw6c1pEZWJv5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQULyZFss189UE5A0WdNpCxt72x1u0wHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKqLQwGIMVuWIxIVDfo+FU5OmfJntvvII51t Pjki5JLGcF5nq8k9Yyat3tM9ktMKU0O+glNSysErZkQWEBa93rEYv+dzWwfxMMfh VuE9VnlKJEbXgYgyatoYuXHtmvkRI8aJrm1WPlR095PdhZDmY3GY9q5OBEpQOZQ3 B70e/6VL68Ula2YkKrIg4+cGzThl5HcYJSetgognRmC3AFSae5ka6RcZH1H7Gch0 lM8yvZlSZaP2K3oDuIUIaRboy1qYh+tfN0xi7977eD/p70SVS4fD7DdAaeJ0FbqU L2ZgMMy88PmnjVuIgpcsPmyikE4rpWGfoTSgCQkz9NSMx/hyLCw= -----END CERTIFICATE-----Generated at Mon Oct 20 09:20:06 2025 by rpki-client