$ rpki-client -vvf repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft File: 528A271B82B6185862B06F250499140113F6FE20.mft (raw, json) Hash identifier: 6/qUNctzNs2kFY/+ZHA/aHl/cK+9P94iJd48KS+nHGw= Subject key identifier: FC:3D:42:A6:16:60:41:7D:C1:02:4D:11:B7:B1:1F:76:92:50:15:4A Authority key identifier: 52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 Certificate issuer: /CN=528A271B82B6185862B06F250499140113F6FE20 Certificate serial: 1DDDCA4EDDC8BDD4278D909BEA418F3EBB39D898 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft Manifest number: 01EF Signing time: Mon 16 Jun 2025 00:10:57 +0000 Manifest this update: Mon 16 Jun 2025 00:05:57 +0000 Manifest next update: Thu 19 Jun 2025 00:33:57 +0000 Files and hashes: 1: 528A271B82B6185862B06F250499140113F6FE20.crl (hash: utQzKPKnwXJjL5mroQsR0ItENHxRh1zb+j/nO2w0Z28=) 2: 3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa (hash: uC/qnArDdSiiufGjxuhvh3127pXhWNHzqVlIjcIb2ME=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 00:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:dd:ca:4e:dd:c8:bd:d4:27:8d:90:9b:ea:41:8f:3e:bb:39:d8:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A271B82B6185862B06F250499140113F6FE20 Validity Not Before: Jun 16 00:05:57 2025 GMT Not After : Jun 19 00:33:57 2025 GMT Subject: CN=FC3D42A61660417DC1024D11B7B11F769250154A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:58:c1:1c:89:33:c6:78:f0:ba:4e:03:c5:0b: ef:c0:3e:cb:5c:79:5c:6e:e1:f4:9e:65:8c:51:f8: 02:13:a4:b8:83:bc:23:c3:e5:3f:41:b6:a2:18:8a: d3:4c:ed:f3:e2:c5:93:82:03:52:e8:ac:e6:6b:1f: d2:4f:6c:dd:06:d2:36:e5:3b:b7:5b:9f:3d:d4:10: ad:34:0a:6b:45:87:29:08:15:3a:7e:1b:7e:e9:74: 86:bf:2d:bc:2f:1c:7c:ff:ab:34:86:e4:c2:e7:45: 9c:27:9a:ac:91:41:62:b0:91:a2:9a:c1:5e:5b:e9: 27:51:94:3b:35:5d:12:c7:bd:db:f9:68:8a:63:f7: 76:fd:e4:38:30:3d:c0:8c:21:4d:b0:e2:a0:96:9e: 29:58:66:c7:22:41:d8:23:92:17:a7:bb:d4:ae:75: 49:47:86:f4:0f:86:6d:ea:2d:8c:c0:ea:f9:4c:a0: 97:70:8f:b6:f0:9d:d0:fe:45:3a:d3:c7:15:0d:f5: f3:29:87:c5:e7:3d:06:ce:c7:b1:fe:7c:85:32:cb: 93:2e:1e:55:50:da:e2:bd:d3:e3:83:65:86:83:b3: f9:63:8b:91:00:5f:8b:fa:a8:0c:0a:1a:24:ba:e9: 31:07:4e:16:b2:93:d2:e8:60:16:5f:ff:03:30:3c: 6f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3D:42:A6:16:60:41:7D:C1:02:4D:11:B7:B1:1F:76:92:50:15:4A X509v3 Authority Key Identifier: keyid:52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:01:5b:35:ca:f7:2b:b3:89:9c:21:18:54:3a:89:d7:5c:00: 83:ef:c6:5a:60:78:de:e8:e3:58:d5:64:72:a6:d2:bb:b5:14: 65:67:a2:c4:62:ef:91:ab:28:c8:59:9d:d1:e5:42:37:48:9d: df:25:f5:df:39:e1:42:56:5c:e1:a4:74:44:27:19:7d:a5:a1: 96:9e:be:71:e5:cc:35:71:f4:eb:0f:5c:5f:ce:fd:f1:82:a6: 42:2a:e9:67:f7:5e:37:99:90:c4:8d:91:bb:b5:0a:78:a1:74: 0f:9c:a7:a5:6d:42:ea:ee:a3:d2:4a:bb:4b:92:fc:45:7d:54: 80:ec:0e:f0:ab:55:c9:71:8e:af:af:96:51:a2:2c:6d:b7:53: d4:d0:c9:15:b2:36:47:32:61:9e:09:61:bd:2f:54:5c:ae:f3: cb:ba:5b:e6:63:65:34:26:bc:9a:3c:3b:93:21:97:2f:23:58: ab:0b:57:3f:17:18:a7:26:c6:a8:13:46:a2:c0:ad:b2:78:f5: 76:39:04:5e:b6:e3:e8:93:6c:3e:f4:2c:5e:c9:a8:d0:ba:74: 89:ae:ea:f6:e5:63:76:7f:84:86:35:9d:49:74:c3:46:d9:9d: 24:c4:62:cf:8a:02:28:c0:90:0c:fa:85:c4:f0:6b:20:71:8d: 77:74:2d:a1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHd3KTt3IvdQnjZCb6kGPPrs52JgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDEx M0Y2RkUyMDAeFw0yNTA2MTYwMDA1NTdaFw0yNTA2MTkwMDMzNTdaMDMxMTAvBgNV BAMTKEZDM0Q0MkE2MTY2MDQxN0RDMTAyNEQxMUI3QjExRjc2OTI1MDE1NEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcWMEciTPGePC6TgPFC+/APstc eVxu4fSeZYxR+AITpLiDvCPD5T9BtqIYitNM7fPixZOCA1LorOZrH9JPbN0G0jbl O7dbnz3UEK00CmtFhykIFTp+G37pdIa/LbwvHHz/qzSG5MLnRZwnmqyRQWKwkaKa wV5b6SdRlDs1XRLHvdv5aIpj93b95DgwPcCMIU2w4qCWnilYZsciQdgjkhenu9Su dUlHhvQPhm3qLYzA6vlMoJdwj7bwndD+RTrTxxUN9fMph8XnPQbOx7H+fIUyy5Mu HlVQ2uK90+ODZYaDs/lji5EAX4v6qAwKGiS66TEHThayk9LoYBZf/wMwPG+jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/D1CphZgQX3BAk0Rt7EfdpJQFUowHwYDVR0j BBgwFoAUUoonG4K2GFhisG8lBJkUARP2/iAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWQzY2M4YS05NzM4LTQ1MWItYTc5OC03Yjc2YjA5NDBiNGIvMC81MjhBMjcxQjgy QjYxODU4NjJCMDZGMjUwNDk5MTQwMTEzRjZGRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDExM0Y2 RkUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGFkM2NjOGEtOTczOC00NTFiLWE3 OTgtN2I3NmIwOTQwYjRiLzAvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0 MDExM0Y2RkUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGUBWzXK9yuziZwhGFQ6iddcAIPvxlpgeN7o 41jVZHKm0ru1FGVnosRi75GrKMhZndHlQjdInd8l9d854UJWXOGkdEQnGX2loZae vnHlzDVx9OsPXF/O/fGCpkIq6Wf3XjeZkMSNkbu1CnihdA+cp6VtQuruo9JKu0uS /EV9VIDsDvCrVclxjq+vllGiLG23U9TQyRWyNkcyYZ4JYb0vVFyu88u6W+ZjZTQm vJo8O5Mhly8jWKsLVz8XGKcmxqgTRqLArbJ49XY5BF624+iTbD70LF7JqNC6dImu 6vblY3Z/hIY1nUl0w0bZnSTEYs+KAijAkAz6hcTwayBxjXd0LaE= -----END CERTIFICATE-----Generated at Wed Jun 18 00:11:35 2025 by rpki-client