$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: SliKfXWjbnyJOntbo7wbh+wn3C6FW0zM8yQ06eO6R9w= Subject key identifier: 37:C6:79:03:42:F7:4A:CF:BE:B3:08:AE:1A:5F:10:76:19:C3:7C:14 Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 56128F086F218F7F54B7E10FCF9DBB2F15806617 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: 79 Signing time: Wed 03 Sep 2025 20:02:35 +0000 Manifest this update: Wed 03 Sep 2025 19:57:35 +0000 Manifest next update: Sat 06 Sep 2025 22:12:35 +0000 Files and hashes: 1: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: sz4VmdCTe+rtqXvjcCCv+oeArdLugQ/bUPNEnmt0I5U=) 2: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: bv6pC6gX0eRc1LFkXxFUMTO8NK/3ORK3VMfpVTQQLkE=) 3: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: sCyLtPxP1W6eDrRKM5zzBxs1T1DM9NmEIRenFAs3CLU=) 4: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: 7LQ/wYAyUIyZqBZLA3tStlMXRlfQtcA3bvxvWXj8vog=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 22:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:12:8f:08:6f:21:8f:7f:54:b7:e1:0f:cf:9d:bb:2f:15:80:66:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Sep 3 19:57:35 2025 GMT Not After : Sep 6 22:12:35 2025 GMT Subject: CN=37C6790342F74ACFBEB308AE1A5F107619C37C14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:a2:f8:95:91:b1:53:07:af:2b:5e:00:4c: e6:a7:b2:8e:7f:56:97:09:db:a1:6f:99:da:4b:1a: d0:ef:3f:ba:91:2d:99:00:a9:9d:e5:0d:15:87:25: 12:bc:78:da:77:bb:4c:87:e7:c6:71:50:7c:1f:6e: ac:2b:94:0a:c5:f4:30:51:fd:48:ca:25:a2:f3:c0: d8:3b:d7:5d:b9:ca:dd:e8:7d:af:59:83:0a:0d:4b: 10:cb:2c:bf:fa:2b:2c:8a:b9:0f:37:8d:8a:75:31: 49:6f:32:2f:42:3e:12:5e:37:98:d6:7b:ec:f3:33: 79:6b:b5:18:4e:ae:b9:87:54:43:46:5e:99:3e:68: 1b:75:13:c1:d9:06:db:0f:73:27:6b:be:2b:8a:32: a0:78:b2:33:0d:07:22:23:bc:0f:b2:eb:7a:8f:cc: f7:ed:3e:70:61:9c:1d:4a:e9:b8:bb:51:9e:b0:b4: c8:3d:24:ba:db:10:5d:36:7f:e5:02:4d:5b:3f:d0: 0e:d5:65:bc:6e:86:0b:3c:21:af:30:e8:36:fc:21: 63:9d:ab:05:bd:a6:87:4f:da:9a:11:6a:b5:99:db: be:96:8a:b6:31:42:50:3a:a3:80:7d:55:da:05:f3: 00:e4:b2:bf:47:25:9a:0e:e4:72:e7:32:2e:c2:2a: f2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:C6:79:03:42:F7:4A:CF:BE:B3:08:AE:1A:5F:10:76:19:C3:7C:14 X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:70:75:a5:95:71:c5:85:5b:6e:5e:ee:bb:ce:9d:86:81:0c: 0b:74:a7:cc:67:a2:69:12:fc:b5:ac:e0:b1:05:a3:8f:6b:35: a0:6a:31:a0:31:46:b5:a8:c0:6e:05:0a:77:0b:db:c4:12:ed: 91:a2:39:0d:f2:14:fe:61:15:47:a8:35:af:70:ba:3b:f2:81: c3:b3:55:fb:d3:da:9a:db:3b:30:44:6a:ee:25:45:3f:1a:9f: de:70:0d:c0:20:a4:70:08:30:ab:48:cf:e4:94:74:dd:8b:65: cb:35:26:f0:61:21:9b:9a:7d:b4:af:3f:54:86:36:a7:13:b4: 83:99:62:ea:37:6b:1e:a0:75:ac:ee:96:ba:25:17:4d:06:f4: c9:89:dc:85:42:f8:b7:e3:08:c8:f5:6a:a3:8a:14:77:82:b0: 02:e3:38:78:c9:e2:d6:ac:0a:97:4f:63:28:cf:f5:0e:97:dc: a2:7f:26:77:97:bf:f9:ff:79:9c:45:3b:4d:b9:98:d1:82:18: bb:e8:f1:f2:67:14:0c:91:e5:9f:b4:5f:80:77:a8:04:0c:dc: 6a:b7:8f:52:07:88:a7:38:88:b7:f8:ff:ba:18:02:8f:1b:5a: 17:8c:ab:fb:d7:88:93:4d:59:46:46:75:e7:c9:32:ef:79:65: a0:fb:4f:80 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVhKPCG8hj39Ut+EPz527LxWAZhcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNTA5MDMxOTU3MzVaFw0yNTA5MDYyMjEyMzVaMDMxMTAvBgNV BAMTKDM3QzY3OTAzNDJGNzRBQ0ZCRUIzMDhBRTFBNUYxMDc2MTlDMzdDMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOE6L4lZGxUwevK14ATOanso5/ VpcJ26FvmdpLGtDvP7qRLZkAqZ3lDRWHJRK8eNp3u0yH58ZxUHwfbqwrlArF9DBR /UjKJaLzwNg71125yt3ofa9ZgwoNSxDLLL/6KyyKuQ83jYp1MUlvMi9CPhJeN5jW e+zzM3lrtRhOrrmHVENGXpk+aBt1E8HZBtsPcydrviuKMqB4sjMNByIjvA+y63qP zPftPnBhnB1K6bi7UZ6wtMg9JLrbEF02f+UCTVs/0A7VZbxuhgs8Ia8w6Db8IWOd qwW9podP2poRarWZ276WirYxQlA6o4B9VdoF8wDksr9HJZoO5HLnMi7CKvIfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUN8Z5A0L3Ss++swiuGl8QdhnDfBQwHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKdwdaWVccWFW25e7rvOnYaBDAt0p8xnomkS /LWs4LEFo49rNaBqMaAxRrWowG4FCncL28QS7ZGiOQ3yFP5hFUeoNa9wujvygcOz VfvT2prbOzBEau4lRT8an95wDcAgpHAIMKtIz+SUdN2LZcs1JvBhIZuafbSvP1SG NqcTtIOZYuo3ax6gdazulrolF00G9MmJ3IVC+LfjCMj1aqOKFHeCsALjOHjJ4tas CpdPYyjP9Q6X3KJ/JneXv/n/eZxFO025mNGCGLvo8fJnFAyR5Z+0X4B3qAQM3Gq3 j1IHiKc4iLf4/7oYAo8bWheMq/vXiJNNWUZGdefJMu95ZaD7T4A= -----END CERTIFICATE-----Generated at Fri Sep 5 10:19:17 2025 by rpki-client