$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: j2sVPcEhUhs/8AMp1nl4mEsH5lmrBosIwSUE/yqkGlI= Subject key identifier: 71:23:42:DB:4F:A6:06:60:58:DE:41:A5:D8:16:F1:D2:A0:19:6B:C6 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 3EE9DA9DF5355FD716295A2A5C641746345A2522 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 050A Signing time: Mon 15 Sep 2025 02:40:44 +0000 Manifest this update: Mon 15 Sep 2025 02:35:44 +0000 Manifest next update: Thu 18 Sep 2025 09:53:44 +0000 Files and hashes: 1: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 2: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 3: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 4: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 5: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 6: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 7: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 8: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 9: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 10: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: TZDhvj9D9o6E1pMOfJt8Vr8UeYZddacMECBmCb4Bx+c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 09:53:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e9:da:9d:f5:35:5f:d7:16:29:5a:2a:5c:64:17:46:34:5a:25:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Sep 15 02:35:44 2025 GMT Not After : Sep 18 09:53:44 2025 GMT Subject: CN=712342DB4FA6066058DE41A5D816F1D2A0196BC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:af:a5:70:33:8a:d1:dd:82:74:a3:50:3f:5c: 9c:f2:1b:23:26:2f:07:d5:85:25:23:42:f7:99:27: 18:8c:f2:db:94:52:a2:60:93:ae:3d:bf:6c:ee:40: f6:4f:96:7a:5e:11:47:c2:7b:47:f1:96:41:9c:79: a7:9b:4a:4a:9f:db:06:14:12:62:d7:08:38:e9:29: 05:ed:18:11:70:15:c0:80:9e:6e:3e:d7:3c:7e:64: 40:98:33:8f:a9:e3:cb:e1:0f:3f:7b:3f:86:4d:7e: 66:8e:61:15:4f:e8:4a:f6:59:aa:6c:d2:26:3d:4d: 03:05:8c:3c:d5:2e:a3:ea:87:3e:16:09:53:7b:ac: df:b8:61:76:d9:b7:fa:db:a5:64:a4:d9:0e:75:99: c8:c9:80:5d:ce:64:f7:e5:06:74:a8:b4:1a:e0:84: 87:e6:d3:e8:d3:0e:b5:11:77:e3:d2:5e:df:23:23: 3f:91:e3:9b:b4:4d:71:8e:ce:00:26:c6:b9:69:d7: 60:08:e1:2d:0a:9f:15:bd:87:54:8f:5e:75:24:01: 1c:d8:2e:79:42:4f:d6:77:b0:01:95:ea:8b:98:74: d6:7b:00:1a:b3:7e:01:a1:c7:80:92:bc:a1:20:33: cd:de:37:1a:90:be:2b:9f:f7:2b:a9:14:c4:9e:61: f3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:23:42:DB:4F:A6:06:60:58:DE:41:A5:D8:16:F1:D2:A0:19:6B:C6 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:61:56:a3:4a:ee:1d:b0:65:18:b1:e1:36:1d:9a:ab:33:d2: 98:09:05:bf:92:30:79:a3:b2:77:df:47:e5:b2:31:e6:44:4c: 15:e6:a5:11:80:69:a2:4c:48:97:c1:32:e3:cd:de:0d:52:9b: 1a:4c:49:11:0e:c0:80:e4:1c:fb:21:be:7d:ba:b8:2e:20:24: 40:6a:ed:4c:92:25:c8:53:3c:02:41:0a:96:e5:7c:6d:09:f2: a6:ff:ec:39:73:e7:6e:99:8f:63:49:69:2b:ba:70:19:92:8b: 2e:81:b0:1e:95:5b:32:9c:49:4d:d5:43:8d:07:42:80:03:7c: a0:1c:91:4f:cf:20:81:5e:19:d7:55:47:dc:df:2b:55:7e:75: 20:30:fd:e6:c5:98:f2:ab:3e:77:af:e2:8d:bc:a5:c7:61:96: 7a:8c:cc:f8:08:d2:72:ba:e5:eb:61:a8:91:b5:2e:4f:82:9b: 15:29:0e:28:b4:60:09:7a:47:ab:36:92:77:a2:e9:f6:70:e7: 80:ac:fd:db:34:10:92:07:07:c2:97:ab:10:f3:c3:cc:f0:7b: 99:ae:c4:fb:5e:82:2e:8b:40:d6:0e:16:3a:20:d7:ae:e2:a3: 1a:9e:39:a2:b3:df:d3:e7:1f:be:79:42:21:1c:48:1e:9b:85: 4b:35:11:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPunanfU1X9cWKVoqXGQXRjRaJSIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA5MTUwMjM1NDRaFw0yNTA5MTgwOTUzNDRaMDMxMTAvBgNV BAMTKDcxMjM0MkRCNEZBNjA2NjA1OERFNDFBNUQ4MTZGMUQyQTAxOTZCQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfr6VwM4rR3YJ0o1A/XJzyGyMm LwfVhSUjQveZJxiM8tuUUqJgk649v2zuQPZPlnpeEUfCe0fxlkGceaebSkqf2wYU EmLXCDjpKQXtGBFwFcCAnm4+1zx+ZECYM4+p48vhDz97P4ZNfmaOYRVP6Er2Waps 0iY9TQMFjDzVLqPqhz4WCVN7rN+4YXbZt/rbpWSk2Q51mcjJgF3OZPflBnSotBrg hIfm0+jTDrURd+PSXt8jIz+R45u0TXGOzgAmxrlp12AI4S0KnxW9h1SPXnUkARzY LnlCT9Z3sAGV6ouYdNZ7ABqzfgGhx4CSvKEgM83eNxqQviuf9yupFMSeYfODAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcSNC20+mBmBY3kGl2Bbx0qAZa8YwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEthVqNK7h2wZRix4TYdmqsz0pgJBb+SMHmj snffR+WyMeZETBXmpRGAaaJMSJfBMuPN3g1SmxpMSREOwIDkHPshvn26uC4gJEBq 7UySJchTPAJBCpblfG0J8qb/7Dlz526Zj2NJaSu6cBmSiy6BsB6VWzKcSU3VQ40H QoADfKAckU/PIIFeGddVR9zfK1V+dSAw/ebFmPKrPnev4o28pcdhlnqMzPgI0nK6 5ethqJG1Lk+CmxUpDii0YAl6R6s2knei6fZw54Cs/ds0EJIHB8KXqxDzw8zwe5mu xPtegi6LQNYOFjog167ioxqeOaKz39PnH755QiEcSB6bhUs1Eew= -----END CERTIFICATE-----Generated at Mon Sep 15 22:01:56 2025 by rpki-client