$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: 854aK4eOzob6dAFbg3+9TdP2DCM8phwwA/2zPU8onhY= Subject key identifier: AB:CE:01:03:61:E2:04:34:D8:84:24:D8:76:B3:CC:B5:8F:36:C8:E2 Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 75C5FEAD69984AC070677D381FBAA236858A6CA4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: 50 Signing time: Tue 03 Jun 2025 03:02:01 +0000 Manifest this update: Tue 03 Jun 2025 02:57:01 +0000 Manifest next update: Fri 06 Jun 2025 05:33:01 +0000 Files and hashes: 1: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: sz4VmdCTe+rtqXvjcCCv+oeArdLugQ/bUPNEnmt0I5U=) 2: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: sCyLtPxP1W6eDrRKM5zzBxs1T1DM9NmEIRenFAs3CLU=) 3: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: DLBoxETn+blHToG0VJVt4+WX70Z9yZd14OsBmLEfMCQ=) 4: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: bv6pC6gX0eRc1LFkXxFUMTO8NK/3ORK3VMfpVTQQLkE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 05:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:c5:fe:ad:69:98:4a:c0:70:67:7d:38:1f:ba:a2:36:85:8a:6c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Jun 3 02:57:01 2025 GMT Not After : Jun 6 05:33:01 2025 GMT Subject: CN=ABCE010361E20434D88424D876B3CCB58F36C8E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a6:2b:a2:2a:c3:73:91:e3:c8:1b:0a:98:46: d5:d0:4f:06:02:73:ac:40:8e:60:73:88:8d:33:1d: 34:f7:91:7d:98:26:f9:32:e3:3b:ac:22:1b:16:89: cc:3e:f1:15:29:26:e9:d5:67:a8:33:3e:6a:57:f2: 3a:e2:63:be:36:35:16:b4:15:0f:09:38:33:12:05: cb:4b:5c:a4:da:b7:22:bb:d7:f1:9e:f3:50:6f:f0: 62:f9:80:ac:d0:ae:81:e7:51:c3:43:92:48:00:82: 66:be:74:a9:1a:7c:72:8a:e1:96:79:b9:c7:e4:4e: 8a:92:3c:fa:c3:f1:85:bf:d5:8c:a4:38:b1:39:00: 5e:71:e1:02:48:1f:0c:5d:64:9e:b8:61:13:b9:e1: 3f:bf:c1:5a:69:2b:e6:f4:25:d8:f4:64:e8:1a:0d: a5:37:0a:4d:88:56:f0:a8:3e:0f:f5:2f:1e:00:03: 19:07:c0:87:15:5a:83:a6:1c:41:4d:64:4c:92:07: 49:61:5e:8f:47:68:ff:a2:b8:11:7c:5d:be:bf:9e: e4:c7:b1:90:14:9b:9a:a0:a9:aa:35:d5:83:c5:95: 73:00:85:e3:61:fa:4b:88:18:55:c3:db:fb:fa:0c: c4:2c:be:95:f2:d9:cd:34:8b:66:68:a8:c6:32:56: cc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CE:01:03:61:E2:04:34:D8:84:24:D8:76:B3:CC:B5:8F:36:C8:E2 X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:fa:73:bd:f7:10:15:91:cf:4f:1d:f5:a0:dc:30:dc:df:39: 01:34:d3:d6:7b:eb:05:06:58:ad:41:50:ad:ff:76:45:51:e3: 64:5b:7b:7a:4a:ac:9c:bd:b7:5d:8b:b3:77:6c:81:81:15:1a: 68:21:91:6e:9f:08:6f:74:ac:47:ab:cc:94:d5:f1:9d:cd:f3: 38:89:e4:f5:ce:36:8b:62:2c:ce:30:b7:2d:fa:53:c3:3a:73: b7:b7:33:e7:1c:70:02:ce:95:b1:95:54:41:30:0e:69:eb:be: 40:54:96:58:26:98:8f:58:88:91:71:77:ba:a6:10:d6:c5:d6: a0:0f:c0:32:db:12:ff:b3:37:3c:f8:f6:4f:fb:08:44:4d:31: c6:48:76:cb:c4:35:ac:53:e3:b5:bb:c0:20:f1:de:17:3d:88: b5:ef:19:c4:45:35:ad:de:ca:c2:f0:3a:8f:89:1d:5d:b9:08: c7:ee:b0:71:2c:59:ff:d8:fc:ab:b7:f2:52:84:b5:63:3e:f1: 0e:d1:0f:34:3f:6e:a4:5d:79:c2:b4:7e:db:20:4f:a4:3a:df: 58:96:f0:d8:d3:36:5b:ae:33:09:e2:9c:bc:a7:b0:51:af:78: 3f:12:d3:8c:50:c1:cc:c0:3b:f6:02:50:cb:49:9f:9f:d6:1d: f5:ca:17:c4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdcX+rWmYSsBwZ304H7qiNoWKbKQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNTA2MDMwMjU3MDFaFw0yNTA2MDYwNTMzMDFaMDMxMTAvBgNV BAMTKEFCQ0UwMTAzNjFFMjA0MzREODg0MjREODc2QjNDQ0I1OEYzNkM4RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCpiuiKsNzkePIGwqYRtXQTwYC c6xAjmBziI0zHTT3kX2YJvky4zusIhsWicw+8RUpJunVZ6gzPmpX8jriY742NRa0 FQ8JODMSBctLXKTatyK71/Ge81Bv8GL5gKzQroHnUcNDkkgAgma+dKkafHKK4ZZ5 ucfkToqSPPrD8YW/1YykOLE5AF5x4QJIHwxdZJ64YRO54T+/wVppK+b0Jdj0ZOga DaU3Ck2IVvCoPg/1Lx4AAxkHwIcVWoOmHEFNZEySB0lhXo9HaP+iuBF8Xb6/nuTH sZAUm5qgqao11YPFlXMAheNh+kuIGFXD2/v6DMQsvpXy2c00i2ZoqMYyVswHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUq84BA2HiBDTYhCTYdrPMtY82yOIwHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACT6c733EBWRz08d9aDcMNzfOQE009Z76wUG WK1BUK3/dkVR42Rbe3pKrJy9t12Ls3dsgYEVGmghkW6fCG90rEerzJTV8Z3N8ziJ 5PXONotiLM4wty36U8M6c7e3M+cccALOlbGVVEEwDmnrvkBUllgmmI9YiJFxd7qm ENbF1qAPwDLbEv+zNzz49k/7CERNMcZIdsvENaxT47W7wCDx3hc9iLXvGcRFNa3e ysLwOo+JHV25CMfusHEsWf/Y/Ku38lKEtWM+8Q7RDzQ/bqRdecK0ftsgT6Q631iW 8NjTNluuMwninLynsFGveD8S04xQwczAO/YCUMtJn5/WHfXKF8Q= -----END CERTIFICATE-----Generated at Tue Jun 3 23:09:41 2025 by rpki-client