$ rpki-client -vvf repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft File: 528A271B82B6185862B06F250499140113F6FE20.mft (raw, json) Hash identifier: XPwAq0SNdjgNVAPyX3Sfia556C+goxMRQGifZ4o4eyY= Subject key identifier: E3:74:A7:81:70:9D:D0:21:37:87:B9:88:76:19:1C:C6:C1:62:16:D5 Authority key identifier: 52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 Certificate issuer: /CN=528A271B82B6185862B06F250499140113F6FE20 Certificate serial: 4EB0C552F4A7904A64131A69F4A44F5D019F6CF7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft Manifest number: 022D Signing time: Sun 02 Nov 2025 20:21:00 +0000 Manifest this update: Sun 02 Nov 2025 20:16:00 +0000 Manifest next update: Thu 06 Nov 2025 04:11:00 +0000 Files and hashes: 1: 528A271B82B6185862B06F250499140113F6FE20.crl (hash: ZwcmA3kisDwzKoea3bSJDadUgHJs4TjItDI29b5ecFs=) 2: 3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa (hash: uC/qnArDdSiiufGjxuhvh3127pXhWNHzqVlIjcIb2ME=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 04:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b0:c5:52:f4:a7:90:4a:64:13:1a:69:f4:a4:4f:5d:01:9f:6c:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A271B82B6185862B06F250499140113F6FE20 Validity Not Before: Nov 2 20:16:00 2025 GMT Not After : Nov 6 04:11:00 2025 GMT Subject: CN=E374A781709DD0213787B98876191CC6C16216D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:49:12:6b:12:25:65:59:b9:cc:cc:2c:57:88: b2:87:c3:27:a1:e5:89:3d:48:52:98:49:30:69:bb: 68:b7:0a:21:de:1e:15:37:1d:f2:71:50:6c:18:41: fe:8d:08:f4:a6:30:de:20:13:c1:03:11:1f:2a:e5: 30:41:97:be:88:69:54:1d:92:2b:9c:c3:86:c2:37: 19:cf:56:8a:6d:ee:6b:c9:8e:43:02:5b:8a:d7:64: 4b:1c:b6:28:3d:ae:58:26:00:4c:ee:a3:92:78:84: a5:71:c0:5c:86:58:5f:5f:30:c2:b1:c4:5d:26:b6: 08:0a:eb:ee:34:53:4c:4f:bd:0e:f4:4b:35:a2:aa: 73:53:72:a4:8b:35:ab:dd:96:6d:f2:e1:33:0e:ec: c0:39:22:3b:2d:30:d2:f5:ce:9d:52:85:4e:e7:fe: bb:da:06:cd:c4:2b:50:a4:5c:3b:9d:3d:5b:ba:26: 11:05:1b:3a:50:af:2c:d3:72:6e:47:b1:63:30:9e: e3:0b:6c:fe:a8:c9:d6:97:e5:df:e5:f1:ff:2e:27: 41:41:ad:93:ed:f2:83:56:96:80:92:5e:84:2e:df: fb:3d:aa:70:06:95:7c:d6:1d:7e:d8:22:24:f2:a0: af:d3:ed:a3:42:0e:b7:44:9b:63:91:0d:3f:f0:f5: 32:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:74:A7:81:70:9D:D0:21:37:87:B9:88:76:19:1C:C6:C1:62:16:D5 X509v3 Authority Key Identifier: keyid:52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:78:b5:e7:35:1b:cf:da:c8:90:05:7c:9c:44:a6:eb:31:62: cd:24:f2:78:df:27:c5:cf:a4:81:c8:b0:14:8c:2e:43:cc:c3: 90:27:35:e2:4e:03:95:6a:49:c9:26:7f:fb:47:50:e9:a9:92: 22:c2:21:d2:07:a9:f4:b1:ce:37:0a:da:99:62:cf:e2:cf:bc: d1:a4:fe:27:6b:68:e5:3d:88:4e:a5:4f:7f:0f:72:68:08:da: a7:31:ff:48:63:ac:6a:3c:b7:83:a2:bb:17:51:d6:bb:ea:c0: d4:d3:b8:ce:fd:d9:00:08:e1:b1:34:50:49:c9:33:f5:d0:16: d8:a5:af:b3:e1:ee:0a:e9:f0:c2:9d:0d:4b:92:cc:41:45:e9: 78:4e:3d:5c:1f:38:fb:86:ca:23:1f:c7:60:14:61:f9:c3:02: f9:8e:6f:34:ec:46:b4:96:63:b0:3c:d9:a5:a7:c3:e3:d2:f4: 8f:73:91:76:b7:73:80:fc:e8:36:23:70:76:59:62:ce:7e:6e: 48:1e:5c:56:10:41:c3:e9:49:91:07:33:95:03:a7:e1:69:41: 1a:54:a7:e0:9f:57:2d:b6:8c:62:02:c5:57:ea:b9:70:c5:6a: e1:6d:71:4a:90:35:99:3e:3c:9f:df:6b:24:5e:a6:82:a4:0a: 0c:f4:d7:2a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTrDFUvSnkEpkExpp9KRPXQGfbPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDEx M0Y2RkUyMDAeFw0yNTExMDIyMDE2MDBaFw0yNTExMDYwNDExMDBaMDMxMTAvBgNV BAMTKEUzNzRBNzgxNzA5REQwMjEzNzg3Qjk4ODc2MTkxQ0M2QzE2MjE2RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeSRJrEiVlWbnMzCxXiLKHwyeh 5Yk9SFKYSTBpu2i3CiHeHhU3HfJxUGwYQf6NCPSmMN4gE8EDER8q5TBBl76IaVQd kiucw4bCNxnPVopt7mvJjkMCW4rXZEsctig9rlgmAEzuo5J4hKVxwFyGWF9fMMKx xF0mtggK6+40U0xPvQ70SzWiqnNTcqSLNavdlm3y4TMO7MA5IjstMNL1zp1ShU7n /rvaBs3EK1CkXDudPVu6JhEFGzpQryzTcm5HsWMwnuMLbP6oydaX5d/l8f8uJ0FB rZPt8oNWloCSXoQu3/s9qnAGlXzWHX7YIiTyoK/T7aNCDrdEm2ORDT/w9TJFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU43SngXCd0CE3h7mIdhkcxsFiFtUwHwYDVR0j BBgwFoAUUoonG4K2GFhisG8lBJkUARP2/iAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWQzY2M4YS05NzM4LTQ1MWItYTc5OC03Yjc2YjA5NDBiNGIvMC81MjhBMjcxQjgy QjYxODU4NjJCMDZGMjUwNDk5MTQwMTEzRjZGRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDExM0Y2 RkUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGFkM2NjOGEtOTczOC00NTFiLWE3 OTgtN2I3NmIwOTQwYjRiLzAvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0 MDExM0Y2RkUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKR4tec1G8/ayJAFfJxEpusxYs0k8njfJ8XP pIHIsBSMLkPMw5AnNeJOA5VqSckmf/tHUOmpkiLCIdIHqfSxzjcK2pliz+LPvNGk /idraOU9iE6lT38PcmgI2qcx/0hjrGo8t4OiuxdR1rvqwNTTuM792QAI4bE0UEnJ M/XQFtilr7Ph7grp8MKdDUuSzEFF6XhOPVwfOPuGyiMfx2AUYfnDAvmObzTsRrSW Y7A82aWnw+PS9I9zkXa3c4D86DYjcHZZYs5+bkgeXFYQQcPpSZEHM5UDp+FpQRpU p+CfVy22jGICxVfquXDFauFtcUqQNZk+PJ/fayRepoKkCgz01yo= -----END CERTIFICATE-----Generated at Wed Nov 5 00:39:01 2025 by rpki-client