$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: KJYxWv4Z5eSk3T0nlrBjI524IdJr5qpwye5qZHKJF6M= Subject key identifier: D3:3D:28:87:99:C9:E5:F2:59:E7:09:FA:99:E9:FB:93:41:A0:89:23 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 7260118AED3A365CB295DE591DE4B3127A950D15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 04F1 Signing time: Mon 21 Jul 2025 03:32:04 +0000 Manifest this update: Mon 21 Jul 2025 03:27:04 +0000 Manifest next update: Thu 24 Jul 2025 14:57:04 +0000 Files and hashes: 1: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 2: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 3: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 4: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 5: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: U82fL8QTzsDCbmKHcyZnL0e5WcCHssWNMHwtSgcrPvU=) 6: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 7: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 8: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 9: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 10: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 14:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:60:11:8a:ed:3a:36:5c:b2:95:de:59:1d:e4:b3:12:7a:95:0d:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Jul 21 03:27:04 2025 GMT Not After : Jul 24 14:57:04 2025 GMT Subject: CN=D33D288799C9E5F259E709FA99E9FB9341A08923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:76:a7:6d:22:c4:1d:98:ee:12:08:1a:2b:df: 7a:e2:b8:25:3a:74:9c:02:e7:87:5f:d6:94:50:98: 28:cf:bb:20:d0:4b:e2:98:6f:9f:79:45:fa:06:e9: eb:61:18:a6:c4:f2:07:69:8e:b8:a7:d7:98:ae:b7: ce:2b:2c:91:d8:5f:17:a7:f8:f6:28:54:19:c2:a8: 9d:92:0f:8d:f8:50:68:ad:a3:bd:98:88:b1:9f:ce: 41:ba:5c:4e:27:72:c8:8b:5e:06:79:61:3d:38:7d: f4:97:67:13:6b:bc:22:6e:db:55:77:c4:66:2e:85: 76:4c:bd:a5:ca:f6:43:53:76:c2:6e:03:2e:57:47: 5c:e5:37:48:f5:bd:25:eb:40:97:29:16:02:27:7e: 8b:d0:b1:85:89:17:f7:86:bb:77:3e:b2:da:23:f7: 26:0c:75:ca:55:80:2b:83:68:be:61:63:a1:56:84: 94:82:48:13:a2:93:c2:b5:12:05:8d:e5:ef:58:3d: 27:08:19:e7:6f:f0:1d:8b:ad:21:d7:a8:33:04:20: c5:a9:c1:f6:70:f2:d0:9a:97:4f:8a:13:9b:f5:87: 47:5d:e8:b9:24:dc:d5:a3:a2:da:d5:5e:7e:82:44: 43:01:56:2b:d9:91:05:cf:d9:92:ae:b8:20:50:39: 4a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3D:28:87:99:C9:E5:F2:59:E7:09:FA:99:E9:FB:93:41:A0:89:23 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:82:35:ec:16:7c:eb:89:62:26:1f:c7:c7:e7:e7:c6:53:00: 66:53:39:08:4e:cb:86:5d:4b:5d:c6:d1:1c:b1:b6:44:d6:56: aa:01:b9:71:a0:d9:ab:2c:42:8e:f2:78:0f:de:66:7d:19:ad: c9:e6:e1:35:c0:73:09:aa:bf:34:fb:95:e9:74:b4:79:56:05: d3:d5:11:ae:2f:54:38:63:da:b2:ef:e2:33:02:e7:c0:93:83: 0c:47:9f:cf:7f:bd:76:03:0c:88:c7:b8:77:e8:0d:a1:bd:52: 5f:b0:41:24:cf:da:9a:7e:74:3e:a4:6c:ef:50:71:1b:73:ba: de:81:ea:e7:b9:c0:d6:40:82:28:31:d1:e9:03:e1:85:80:27: bf:c9:d3:9f:93:a1:12:f1:63:f3:40:59:f7:05:09:af:3a:03: 58:16:4e:25:8d:7c:01:aa:7e:d4:65:44:18:32:05:f3:d9:8b: 1d:3a:dc:da:48:80:ee:ef:ef:20:9f:97:1a:5c:f6:7f:ed:e2: ed:fe:fa:ca:38:23:18:3e:08:6c:ae:b1:01:a0:a0:7f:e3:54: 90:97:89:b7:23:76:79:9c:5b:ed:1a:d8:74:ec:fb:e7:f3:d3: 03:dc:d5:4d:38:a5:56:f7:86:e7:62:d7:cd:92:d6:93:34:0c: f5:fc:b0:23 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcmARiu06Nlyyld5ZHeSzEnqVDRUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA3MjEwMzI3MDRaFw0yNTA3MjQxNDU3MDRaMDMxMTAvBgNV BAMTKEQzM0QyODg3OTlDOUU1RjI1OUU3MDlGQTk5RTlGQjkzNDFBMDg5MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQdqdtIsQdmO4SCBor33riuCU6 dJwC54df1pRQmCjPuyDQS+KYb595RfoG6ethGKbE8gdpjrin15iut84rLJHYXxen +PYoVBnCqJ2SD434UGito72YiLGfzkG6XE4ncsiLXgZ5YT04ffSXZxNrvCJu21V3 xGYuhXZMvaXK9kNTdsJuAy5XR1zlN0j1vSXrQJcpFgInfovQsYWJF/eGu3c+stoj 9yYMdcpVgCuDaL5hY6FWhJSCSBOik8K1EgWN5e9YPScIGedv8B2LrSHXqDMEIMWp wfZw8tCal0+KE5v1h0dd6Lkk3NWjotrVXn6CREMBVivZkQXP2ZKuuCBQOUqZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0z0oh5nJ5fJZ5wn6men7k0GgiSMwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHGCNewWfOuJYiYfx8fn58ZTAGZTOQhOy4Zd S13G0RyxtkTWVqoBuXGg2assQo7yeA/eZn0Zrcnm4TXAcwmqvzT7lel0tHlWBdPV Ea4vVDhj2rLv4jMC58CTgwxHn89/vXYDDIjHuHfoDaG9Ul+wQSTP2pp+dD6kbO9Q cRtzut6B6ue5wNZAgigx0ekD4YWAJ7/J05+ToRLxY/NAWfcFCa86A1gWTiWNfAGq ftRlRBgyBfPZix063NpIgO7v7yCflxpc9n/t4u3++so4Ixg+CGyusQGgoH/jVJCX ibcjdnmcW+0a2HTs++fz0wPc1U04pVb3hudi182S1pM0DPX8sCM= -----END CERTIFICATE-----Generated at Wed Jul 23 12:16:50 2025 by rpki-client