$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: eoAhQykNPyYh+YVezlcZrxvOWCg2gTLtToL3anlZr8s= Subject key identifier: 11:D1:E7:6B:91:1B:D1:34:7C:D0:70:A3:E6:1B:6E:0F:3D:06:71:68 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 25CB134151701B4226C6197B82A9AA0858532A83 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 0497 Signing time: Sat 10 May 2025 18:20:51 +0000 Manifest this update: Sat 10 May 2025 18:15:51 +0000 Manifest next update: Wed 14 May 2025 00:17:51 +0000 Files and hashes: 1: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: HvvkfODWlbpCPVaGpltaWkLF8YbtBVvjE+DIED0bI6g=) 2: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: Mg0mQWXb5SvWRcC0xZRO2DLc7F0BVinIDTmRGbFmrrg=) 3: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: IDvrgAk2h65ZJEo1qEYbEs8Gg0z11qH57HLaIFgcM0Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 14 May 2025 00:17:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:cb:13:41:51:70:1b:42:26:c6:19:7b:82:a9:aa:08:58:53:2a:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: May 10 18:15:51 2025 GMT Not After : May 14 00:17:51 2025 GMT Subject: CN=11D1E76B911BD1347CD070A3E61B6E0F3D067168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ad:ad:4a:1e:4e:c7:b6:0f:4d:8e:5c:40:de: a6:56:64:c7:27:b3:fd:4d:4f:0e:f8:5c:12:64:f6: 4e:d5:6f:7d:af:96:ba:da:6c:f0:95:fe:95:12:df: b7:0b:21:b9:c5:33:18:38:81:80:38:e7:41:cd:a8: 13:0e:a2:35:13:d6:48:4d:12:44:8d:78:d7:e0:0e: 4a:ea:24:e2:93:83:53:4e:c0:78:fb:52:f2:c3:76: 1c:98:c3:b3:9f:d6:a6:26:8f:53:a4:65:16:ec:d6: cf:71:9f:b3:cc:b1:f2:f1:23:5f:c4:2b:b2:7d:6f: 52:2f:54:d6:46:df:b2:df:77:6e:eb:93:ce:6f:73: b8:71:c8:98:86:d2:f6:d0:2b:15:da:13:87:79:a1: 16:96:16:e3:02:d3:28:39:33:6f:fd:92:e8:4a:d6: 1c:17:85:da:6e:4b:65:0f:db:03:6e:4f:6c:5e:be: 53:20:1a:4f:cf:f4:2f:cf:1a:8f:65:29:c4:1e:fc: 3d:1e:e5:55:65:c8:e5:d7:0f:92:62:bf:37:db:81: ea:22:e5:43:4a:e9:92:af:84:29:08:1b:b9:76:c5: fa:e2:bc:75:3d:78:46:ac:d0:bd:2c:97:7c:6e:c1: 85:cf:e6:b6:57:4e:61:5d:58:a2:63:a5:a9:60:e9: 32:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D1:E7:6B:91:1B:D1:34:7C:D0:70:A3:E6:1B:6E:0F:3D:06:71:68 X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:f0:2f:73:e4:2f:9e:9f:b6:28:ca:c1:be:e7:f9:90:75:db: 74:0a:65:ce:aa:41:71:ca:ee:c9:f0:45:4b:c9:6c:de:29:2f: 34:28:dd:ef:20:90:6f:e5:c3:de:05:5b:6d:06:1f:87:33:3f: eb:f2:b9:02:e0:e4:d8:34:ef:9f:2a:ee:64:d9:ff:c7:dc:53: 2c:19:7c:78:67:05:e7:4b:73:51:1d:5d:19:88:cb:1b:16:ec: bd:78:65:59:37:06:1e:a0:8e:19:13:97:37:01:41:6b:2f:ac: a9:34:f4:4b:36:8a:4a:03:d2:61:64:8e:76:d5:7c:cd:62:11: aa:18:e4:70:87:98:6b:ba:14:c4:a2:56:ff:bb:26:1d:58:5d: d2:6d:fe:d9:f9:02:35:88:4f:21:d4:89:2f:f7:5d:c0:9a:73: 14:f7:65:1d:3d:24:36:76:26:f9:43:7e:c3:b4:36:c7:75:b2: fb:07:7a:09:d4:f7:61:a1:33:48:a6:8a:8e:e9:9f:80:f8:7b: 5e:e1:01:8a:f6:fa:e8:a9:ac:0e:2a:af:0f:c2:b8:4e:35:32: 8f:d3:0e:f1:f1:fc:d9:37:68:96:cb:47:aa:1f:06:63:92:cb: 06:e5:39:55:f9:05:a7:9b:14:b2:68:09:be:ed:10:ab:7d:ab: d9:3a:a6:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJcsTQVFwG0Imxhl7gqmqCFhTKoMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTA1MTAxODE1NTFaFw0yNTA1MTQwMDE3NTFaMDMxMTAvBgNV BAMTKDExRDFFNzZCOTExQkQxMzQ3Q0QwNzBBM0U2MUI2RTBGM0QwNjcxNjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwra1KHk7Htg9NjlxA3qZWZMcn s/1NTw74XBJk9k7Vb32vlrrabPCV/pUS37cLIbnFMxg4gYA450HNqBMOojUT1khN EkSNeNfgDkrqJOKTg1NOwHj7UvLDdhyYw7Of1qYmj1OkZRbs1s9xn7PMsfLxI1/E K7J9b1IvVNZG37Lfd27rk85vc7hxyJiG0vbQKxXaE4d5oRaWFuMC0yg5M2/9kuhK 1hwXhdpuS2UP2wNuT2xevlMgGk/P9C/PGo9lKcQe/D0e5VVlyOXXD5Jivzfbgeoi 5UNK6ZKvhCkIG7l2xfrivHU9eEas0L0sl3xuwYXP5rZXTmFdWKJjpalg6TKNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEdHna5Eb0TR80HCj5htuDz0GcWgwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFjwL3PkL56ftijKwb7n+ZB123QKZc6qQXHK 7snwRUvJbN4pLzQo3e8gkG/lw94FW20GH4czP+vyuQLg5Ng0758q7mTZ/8fcUywZ fHhnBedLc1EdXRmIyxsW7L14ZVk3Bh6gjhkTlzcBQWsvrKk09Es2ikoD0mFkjnbV fM1iEaoY5HCHmGu6FMSiVv+7Jh1YXdJt/tn5AjWITyHUiS/3XcCacxT3ZR09JDZ2 JvlDfsO0Nsd1svsHegnU92GhM0imio7pn4D4e17hAYr2+uiprA4qrw/CuE41Mo/T DvHx/Nk3aJbLR6ofBmOSywblOVX5BaebFLJoCb7tEKt9q9k6pl0= -----END CERTIFICATE-----Generated at Sun May 11 20:13:18 2025 by rpki-client