$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: um61FEf2vH42epQHQdC6BGp5hQn3hMql0o0syc1jpYA= Subject key identifier: 3E:86:E8:FA:31:A9:17:6E:80:96:DE:65:AD:5C:8B:9F:83:F5:B8:70 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 2DC82724CEFC382E7DFED810ADA13C38EF0EE3C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 04C6 Signing time: Fri 22 Aug 2025 03:00:49 +0000 Manifest this update: Fri 22 Aug 2025 02:55:49 +0000 Manifest next update: Mon 25 Aug 2025 11:18:49 +0000 Files and hashes: 1: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: 9Hw66Sj/h9zLZNw4B9RhpcCVmJeA/H1IWa8umMF3L2c=) 2: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) 3: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (hash: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0=) 4: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 11:18:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:c8:27:24:ce:fc:38:2e:7d:fe:d8:10:ad:a1:3c:38:ef:0e:e3:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Aug 22 02:55:49 2025 GMT Not After : Aug 25 11:18:49 2025 GMT Subject: CN=3E86E8FA31A9176E8096DE65AD5C8B9F83F5B870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0f:3b:90:55:4b:71:03:9e:82:ce:77:f1:81: c5:a9:85:11:50:54:4e:a8:69:fb:ef:b4:1e:8f:9c: 5e:29:c9:b2:db:b9:f2:cb:24:22:bf:bf:ff:30:16: 84:c4:66:f6:a7:6c:a5:eb:15:4c:b6:78:a7:5b:d6: dd:f7:4d:ff:b6:4d:41:ea:fd:1b:64:5b:71:57:4d: e1:fa:ba:64:63:58:f7:55:18:17:29:be:66:92:97: f3:0d:99:5e:4f:82:0f:48:b6:2c:55:c6:38:3e:41: 57:b1:4c:38:34:72:06:28:a1:b3:c0:3f:e8:df:9f: 2b:34:12:df:8c:6d:5c:ad:89:e4:2f:c3:d5:cc:3f: d6:b6:4a:9e:5d:6f:41:59:d7:33:e4:f0:e6:38:46: bd:e7:8e:75:c7:35:25:26:e8:40:39:f0:f8:ce:34: 4e:fb:f1:4e:ea:7b:06:86:1a:59:0d:c1:a2:8f:b7: 44:69:c4:0c:00:d1:78:bf:32:05:ce:8b:bd:f1:e0: d2:d3:67:ef:3a:9d:d5:62:b6:8e:2b:d1:5a:7b:c1: 36:72:df:f3:79:c6:1e:81:09:7c:51:54:fb:0e:f1: 8c:0a:8d:85:d4:dd:75:de:a7:8c:1d:e5:88:a7:ef: 91:60:b4:b5:55:b4:29:86:4c:24:b4:79:8c:0f:54: fd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:86:E8:FA:31:A9:17:6E:80:96:DE:65:AD:5C:8B:9F:83:F5:B8:70 X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:26:8a:72:b4:74:1f:00:43:13:27:fb:3f:5c:54:c4:e5:b4: a8:41:25:92:22:b6:76:1c:41:b3:94:8d:7c:44:e1:02:78:73: d0:1f:fd:92:a1:18:23:16:32:c7:81:35:2b:33:37:34:db:4d: 45:31:6f:86:d8:cb:e8:4c:c7:ec:71:e6:29:4d:17:e2:83:07: ec:be:f2:d6:27:9d:4e:d4:cf:5a:d6:3d:3d:f6:13:96:1c:0e: f5:49:af:5a:a0:b4:dd:22:3f:d4:19:7d:da:12:a3:0b:d9:1d: c1:39:2c:b7:1a:66:72:cc:12:81:68:b1:5c:d7:18:eb:88:20: f0:59:d1:a7:16:22:ea:38:21:1b:bf:66:c1:98:cb:01:76:6a: cf:44:1a:3b:89:f7:8f:2f:19:73:9b:0d:88:a6:f8:47:2b:c2: 6c:82:ab:cc:d2:59:34:11:c7:0e:76:18:a4:ff:83:28:c3:dd: 43:d9:ce:dc:3e:21:55:64:2f:53:8e:10:85:d5:8f:38:8d:16: c7:44:85:5d:46:42:71:9f:4a:dc:b4:ea:67:83:e9:a8:da:d4: 24:60:66:3a:b4:85:42:45:d0:a1:d1:c1:26:ce:57:39:61:8a: a8:e3:41:6e:27:a5:21:2d:f6:63:cc:43:c7:c4:20:26:1b:6b: a8:2e:f0:0e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULcgnJM78OC59/tgQraE8OO8O48AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTA4MjIwMjU1NDlaFw0yNTA4MjUxMTE4NDlaMDMxMTAvBgNV BAMTKDNFODZFOEZBMzFBOTE3NkU4MDk2REU2NUFENUM4QjlGODNGNUI4NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdDzuQVUtxA56CznfxgcWphRFQ VE6oafvvtB6PnF4pybLbufLLJCK/v/8wFoTEZvanbKXrFUy2eKdb1t33Tf+2TUHq /RtkW3FXTeH6umRjWPdVGBcpvmaSl/MNmV5Pgg9ItixVxjg+QVexTDg0cgYoobPA P+jfnys0Et+MbVytieQvw9XMP9a2Sp5db0FZ1zPk8OY4Rr3njnXHNSUm6EA58PjO NE778U7qewaGGlkNwaKPt0RpxAwA0Xi/MgXOi73x4NLTZ+86ndVito4r0Vp7wTZy 3/N5xh6BCXxRVPsO8YwKjYXU3XXep4wd5Yin75FgtLVVtCmGTCS0eYwPVP2NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPobo+jGpF26Alt5lrVyLn4P1uHAwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEAminK0dB8AQxMn+z9cVMTltKhBJZIitnYc QbOUjXxE4QJ4c9Af/ZKhGCMWMseBNSszNzTbTUUxb4bYy+hMx+xx5ilNF+KDB+y+ 8tYnnU7Uz1rWPT32E5YcDvVJr1qgtN0iP9QZfdoSowvZHcE5LLcaZnLMEoFosVzX GOuIIPBZ0acWIuo4IRu/ZsGYywF2as9EGjuJ948vGXObDYim+EcrwmyCq8zSWTQR xw52GKT/gyjD3UPZztw+IVVkL1OOEIXVjziNFsdEhV1GQnGfSty06meD6aja1CRg Zjq0hUJF0KHRwSbOVzlhiqjjQW4npSEt9mPMQ8fEICYba6gu8A4= -----END CERTIFICATE-----Generated at Sat Aug 23 21:45:11 2025 by rpki-client