$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: K4kbf8L5rLR2TBhtR5yaOqizFGatizL+tfGNl3+cwZk= Subject key identifier: FC:3B:49:85:F2:E4:D2:20:92:27:2C:13:2D:DE:DE:E2:8B:6D:D4:AE Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 7BF4A3102D029F4173538FBE48DEBEB59350862D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 04AD Signing time: Sat 28 Jun 2025 17:00:49 +0000 Manifest this update: Sat 28 Jun 2025 16:55:49 +0000 Manifest next update: Wed 02 Jul 2025 00:52:49 +0000 Files and hashes: 1: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: UnM9y0vE2RfRQy9zRnwZFOTSGiBWKQHY/t0HlmkMSIw=) 2: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) 3: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: IDvrgAk2h65ZJEo1qEYbEs8Gg0z11qH57HLaIFgcM0Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 00:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f4:a3:10:2d:02:9f:41:73:53:8f:be:48:de:be:b5:93:50:86:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Jun 28 16:55:49 2025 GMT Not After : Jul 2 00:52:49 2025 GMT Subject: CN=FC3B4985F2E4D22092272C132DDEDEE28B6DD4AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d0:17:85:df:67:95:d3:4d:12:34:3c:92:45: 6b:a7:77:f6:f6:f0:28:42:5f:02:22:ee:18:23:61: 6e:b0:0d:37:8b:de:a5:76:19:3e:6c:6b:cd:47:60: 13:2d:81:3b:de:5b:49:fd:ca:b9:89:63:dc:42:32: 04:9e:93:46:31:06:d0:b2:5c:bd:d3:f0:bf:fd:33: 2e:c4:0d:83:50:b0:a9:5b:c7:6c:1d:c9:63:09:ab: 6b:7d:72:41:6e:8f:40:8d:d5:23:63:a9:19:63:c6: 56:85:b8:cf:0e:17:9c:86:2f:71:97:4f:12:56:92: ff:0f:79:06:66:85:4d:63:56:8a:2e:ca:12:4a:02: c3:75:06:03:37:93:96:68:fa:79:4e:5e:9d:92:a4: 8a:9c:00:3b:d3:f0:dc:c8:be:84:9e:65:09:18:39: d7:36:00:cb:a6:49:d5:49:87:1a:ba:9f:27:61:9f: 9d:e7:d7:02:c0:89:4f:b5:fa:2f:58:87:2c:8f:a5: 74:80:94:67:ca:02:0b:63:75:2a:2f:3f:30:a2:59: c3:89:9e:b1:e0:1d:32:1c:cf:02:fa:77:ce:e1:48: e4:7c:ab:17:0b:51:38:7b:00:09:0c:b1:fb:3b:1e: 9d:fe:94:19:a4:87:d9:21:d0:e6:8d:1c:b4:d7:af: 9c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3B:49:85:F2:E4:D2:20:92:27:2C:13:2D:DE:DE:E2:8B:6D:D4:AE X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:7e:ba:55:ef:1f:d5:c9:ed:c5:28:66:e8:66:04:e6:33:b8: 01:cd:11:4b:b6:2c:c1:ed:78:32:15:87:3e:98:a4:47:85:ca: 21:35:19:69:62:fd:ed:76:2a:c6:15:bb:6e:c6:db:9a:12:67: 24:9a:e6:bd:e6:be:c2:a4:91:b4:48:53:00:b1:ce:6a:32:a0: b2:ca:59:04:61:4c:cc:7b:44:b0:e0:52:2c:f5:29:ac:44:12: 2a:0a:da:ab:b6:aa:80:55:3f:64:3c:78:af:2e:e6:90:43:11: 5e:11:51:70:9e:49:15:31:4d:1d:79:11:c9:13:a8:9e:a0:d8: e8:25:5a:2f:35:91:58:f2:ae:95:e4:c4:c7:62:fa:6c:a6:94: bd:63:2b:34:f4:38:5b:4d:71:2f:c9:a9:53:dd:53:dd:25:f4: fc:49:6f:a4:c0:00:45:f2:6a:e5:15:27:57:66:1f:09:d0:97: b9:49:dd:6b:05:f4:a9:0a:bd:32:e3:b3:cb:8b:81:c2:fb:17: 0e:be:58:d9:a2:0a:7c:37:83:a3:2c:27:3f:c9:cf:c3:ca:e2: a3:47:0c:b8:fc:0c:51:93:0b:ce:c0:3d:f2:33:4b:00:62:f5: cf:84:6d:b5:6e:cd:6d:a0:7e:e7:9f:ad:09:ca:30:59:ad:b2: 1c:25:b3:7e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUe/SjEC0Cn0FzU4++SN6+tZNQhi0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTA2MjgxNjU1NDlaFw0yNTA3MDIwMDUyNDlaMDMxMTAvBgNV BAMTKEZDM0I0OTg1RjJFNEQyMjA5MjI3MkMxMzJEREVERUUyOEI2REQ0QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC60BeF32eV000SNDySRWund/b2 8ChCXwIi7hgjYW6wDTeL3qV2GT5sa81HYBMtgTveW0n9yrmJY9xCMgSek0YxBtCy XL3T8L/9My7EDYNQsKlbx2wdyWMJq2t9ckFuj0CN1SNjqRljxlaFuM8OF5yGL3GX TxJWkv8PeQZmhU1jVoouyhJKAsN1BgM3k5Zo+nlOXp2SpIqcADvT8NzIvoSeZQkY Odc2AMumSdVJhxq6nydhn53n1wLAiU+1+i9YhyyPpXSAlGfKAgtjdSovPzCiWcOJ nrHgHTIczwL6d87hSOR8qxcLUTh7AAkMsfs7Hp3+lBmkh9kh0OaNHLTXr5wdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/DtJhfLk0iCSJywTLd7e4ott1K4wHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIN+ulXvH9XJ7cUoZuhmBOYzuAHNEUu2LMHt eDIVhz6YpEeFyiE1GWli/e12KsYVu27G25oSZySa5r3mvsKkkbRIUwCxzmoyoLLK WQRhTMx7RLDgUiz1KaxEEioK2qu2qoBVP2Q8eK8u5pBDEV4RUXCeSRUxTR15EckT qJ6g2OglWi81kVjyrpXkxMdi+mymlL1jKzT0OFtNcS/JqVPdU90l9PxJb6TAAEXy auUVJ1dmHwnQl7lJ3WsF9KkKvTLjs8uLgcL7Fw6+WNmiCnw3g6MsJz/Jz8PK4qNH DLj8DFGTC87APfIzSwBi9c+EbbVuzW2gfuefrQnKMFmtshwls34= -----END CERTIFICATE-----Generated at Sun Jun 29 18:15:59 2025 by rpki-client