$ rpki-client -vvf repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft File: 28612772543E43335B080C32808B7FDC277E71E4.mft (raw, json) Hash identifier: SF9BMlnga10h7aIbRodoe3WlKmtJc01xRI9Uc6/AVUQ= Subject key identifier: 5F:D9:18:1F:9D:32:EE:32:3E:C3:9F:73:88:54:AF:AE:34:A0:9B:B4 Authority key identifier: 28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4 Certificate issuer: /CN=28612772543E43335B080C32808B7FDC277E71E4 Certificate serial: 69ACC3186AAD52FABD8E5FB10610F8C78CD0470A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft Manifest number: 0128 Signing time: Sun 20 Jul 2025 09:41:06 +0000 Manifest this update: Sun 20 Jul 2025 09:36:06 +0000 Manifest next update: Wed 23 Jul 2025 19:35:06 +0000 Files and hashes: 1: 3130332e3132312e3132322e302f32342d3234203d3e20313338313331.roa (hash: nA9l/qEipVfIEIe1umepDag8NvfqeSfq9JSpO2D/fuI=) 2: 28612772543E43335B080C32808B7FDC277E71E4.crl (hash: FbUNGy91yRwxeze5anAoGoyVEQ/WPQi+bS9XOWIiDKI=) 3: 3130332e3133332e35362e302f32342d3234203d3e20313338313331.roa (hash: rnpAKtCbX8txVuD150fh3r3wLM+En4ZSoI9OjRhxuAQ=) 4: 3130332e3134322e32312e302f32342d3234203d3e20313339393536.roa (hash: z4BeSk+gRKk6M4z7F7+D4+oTS8E9IbV3rV7rrPGM6js=) 5: 3130332e3134322e32312e302f32342d3234203d3e20313338313331.roa (hash: eZG8iudQFcgRUtHuXJAuzY7ooTKLq0KNHMVdg0w4Klc=) 6: 3130332e3131352e3136342e302f32342d3234203d3e20313338313331.roa (hash: c3RjMW+CIXpYsyzS75W7NviafJ4jFuqxYaUgJgR1RjY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 19:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:ac:c3:18:6a:ad:52:fa:bd:8e:5f:b1:06:10:f8:c7:8c:d0:47:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28612772543E43335B080C32808B7FDC277E71E4 Validity Not Before: Jul 20 09:36:06 2025 GMT Not After : Jul 23 19:35:06 2025 GMT Subject: CN=5FD9181F9D32EE323EC39F738854AFAE34A09BB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:74:e2:53:21:ad:bf:51:ed:25:c4:f3:32:9b: b5:a0:5e:85:df:1b:0b:f1:78:ff:fb:2c:6b:71:a8: de:ef:06:d5:84:ff:31:77:46:2d:f9:15:17:30:21: 7a:92:03:31:88:d7:a0:cc:ba:e7:ea:0b:55:29:91: 8c:ec:4c:a6:83:73:b8:db:17:0a:02:6a:e1:7c:9f: 47:ef:2c:55:1e:0e:7e:43:1e:d5:0a:8c:44:1e:b5: 13:ca:4e:a0:df:f4:3f:e3:8f:d5:99:b3:5d:f2:f9: ee:5b:09:ff:cc:ed:6f:9e:17:0e:9c:9d:85:6c:d8: 0c:e2:e4:9f:20:ce:77:c6:17:58:a3:8f:9f:8e:85: 42:16:c1:3c:53:22:a9:51:8a:49:ae:87:3c:0f:33: 03:e2:ac:d7:23:6d:6d:f8:60:c1:0d:35:1f:bd:d8: 55:b5:85:f1:11:12:21:6d:29:ba:9c:e1:b3:a9:23: 5c:91:db:03:f4:20:78:9d:55:ac:a1:50:9e:79:5f: db:e9:d0:8d:5a:84:2e:11:83:7f:0e:33:11:83:59: 9e:a7:fe:c5:b6:a6:be:63:71:59:8c:c3:5f:1a:bf: ae:c0:e2:f9:f5:90:f8:c1:7d:d0:d0:e6:f8:6d:03: aa:0a:e3:e6:b4:24:6b:71:ff:c1:0f:3d:1c:39:5d: 52:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:D9:18:1F:9D:32:EE:32:3E:C3:9F:73:88:54:AF:AE:34:A0:9B:B4 X509v3 Authority Key Identifier: keyid:28:61:27:72:54:3E:43:33:5B:08:0C:32:80:8B:7F:DC:27:7E:71:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28612772543E43335B080C32808B7FDC277E71E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7b130b75-4593-4141-a06f-57a22a023dd0/0/28612772543E43335B080C32808B7FDC277E71E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:f3:5c:9b:4e:20:64:87:74:79:40:74:58:eb:66:75:38:c9: e0:2d:5c:15:83:f7:76:4e:5d:f8:45:b3:8b:52:b0:b4:68:4b: 79:23:3b:e9:1b:08:98:41:6f:53:56:b1:41:b4:fb:63:e8:86: 19:90:9e:67:0f:c2:84:92:aa:a7:52:47:d9:f4:5c:00:e6:f6: 66:71:a1:47:2c:02:f7:85:84:d3:7d:0f:3c:43:b7:d7:dd:e9: a2:ab:eb:ee:80:ec:ad:f3:5d:2b:9b:bf:da:02:6a:c9:5d:86: 24:c0:5a:75:f2:74:2d:17:0a:d2:39:51:8b:ed:b1:1f:ae:8e: 3d:a9:60:5b:fc:0e:f6:ca:dc:0c:f5:6d:e8:da:49:57:38:4f: 70:a9:a1:c2:20:33:ec:a7:75:25:01:f9:74:12:06:51:f5:00: e3:c8:3f:bf:fd:bb:32:88:32:42:46:d9:77:1e:22:8d:75:5f: 6a:d4:4c:29:98:3d:4a:a9:28:62:74:a9:ee:5d:f8:79:0b:ce: ff:71:ab:f0:27:fd:cc:ad:c2:64:a1:46:5e:f2:d2:f1:b6:a8: f4:51:a9:8f:12:24:dc:df:dc:cc:3a:53:19:f2:60:20:34:0d: f0:b5:14:c0:14:8e:ff:89:a1:a1:76:cc:c5:9d:d1:f8:0d:28: 17:6b:a3:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaazDGGqtUvq9jl+xBhD4x4zQRwowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMy NzdFNzFFNDAeFw0yNTA3MjAwOTM2MDZaFw0yNTA3MjMxOTM1MDZaMDMxMTAvBgNV BAMTKDVGRDkxODFGOUQzMkVFMzIzRUMzOUY3Mzg4NTRBRkFFMzRBMDlCQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtdOJTIa2/Ue0lxPMym7WgXoXf GwvxeP/7LGtxqN7vBtWE/zF3Ri35FRcwIXqSAzGI16DMuufqC1UpkYzsTKaDc7jb FwoCauF8n0fvLFUeDn5DHtUKjEQetRPKTqDf9D/jj9WZs13y+e5bCf/M7W+eFw6c nYVs2Azi5J8gznfGF1ijj5+OhUIWwTxTIqlRikmuhzwPMwPirNcjbW34YMENNR+9 2FW1hfEREiFtKbqc4bOpI1yR2wP0IHidVayhUJ55X9vp0I1ahC4Rg38OMxGDWZ6n /sW2pr5jcVmMw18av67A4vn1kPjBfdDQ5vhtA6oK4+a0JGtx/8EPPRw5XVLHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUX9kYH50y7jI+w59ziFSvrjSgm7QwHwYDVR0j BBgwFoAUKGEnclQ+QzNbCAwygIt/3Cd+ceQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 YjEzMGI3NS00NTkzLTQxNDEtYTA2Zi01N2EyMmEwMjNkZDAvMC8yODYxMjc3MjU0 M0U0MzMzNUIwODBDMzI4MDhCN0ZEQzI3N0U3MUU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdGREMyNzdF NzFFNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vN2IxMzBiNzUtNDU5My00MTQxLWEw NmYtNTdhMjJhMDIzZGQwLzAvMjg2MTI3NzI1NDNFNDMzMzVCMDgwQzMyODA4QjdG REMyNzdFNzFFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFjzXJtOIGSHdHlAdFjrZnU4yeAtXBWD93ZO XfhFs4tSsLRoS3kjO+kbCJhBb1NWsUG0+2PohhmQnmcPwoSSqqdSR9n0XADm9mZx oUcsAveFhNN9DzxDt9fd6aKr6+6A7K3zXSubv9oCasldhiTAWnXydC0XCtI5UYvt sR+ujj2pYFv8DvbK3Az1bejaSVc4T3CpocIgM+yndSUB+XQSBlH1AOPIP7/9uzKI MkJG2XceIo11X2rUTCmYPUqpKGJ0qe5d+HkLzv9xq/An/cytwmShRl7y0vG2qPRR qY8SJNzf3Mw6UxnyYCA0DfC1FMAUjv+JoaF2zMWd0fgNKBdro+0= -----END CERTIFICATE-----Generated at Sun Jul 20 21:29:28 2025 by rpki-client