$ rpki-client -vvf repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft File: D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft (raw, json) Hash identifier: Wnr5yoYhJ6h3UrXwiB/Vw+uXQ5C0I4jOTkpAaybBkRc= Subject key identifier: 10:38:21:20:26:CB:2B:C0:4F:35:47:B6:A9:DF:88:FC:03:D7:54:08 Authority key identifier: D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B Certificate issuer: /CN=D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B Certificate serial: 4DA1C70E30C9B57CB94C8DE8CD2E9F021E7728 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft Manifest number: AF Signing time: Tue 05 Aug 2025 21:22:04 +0000 Manifest this update: Tue 05 Aug 2025 21:17:04 +0000 Manifest next update: Fri 08 Aug 2025 22:12:04 +0000 Files and hashes: 1: D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.crl (hash: k5Am3uBb2/sPInUWa8Je3bOlIY/PJXwFb1PHNt0Vbvk=) 2: 3130332e38342e3230312e302f32342d3234203d3e20313336303935.roa (hash: 6UTk6qTE+l33r+zdpJdYayRwLX5BpaOtu0Am/wxoORw=) 3: 3130332e38342e3230302e302f32342d3234203d3e20313336303935.roa (hash: ajCQWCbIuLR2rdyLkSz/8WmAOj/J1v9eHfGi8P7WLFg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.crl rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 22:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a1:c7:0e:30:c9:b5:7c:b9:4c:8d:e8:cd:2e:9f:02:1e:77:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B Validity Not Before: Aug 5 21:17:04 2025 GMT Not After : Aug 8 22:12:04 2025 GMT Subject: CN=1038212026CB2BC04F3547B6A9DF88FC03D75408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:d4:b3:3a:f9:61:28:6a:e0:16:18:11:96:77: cb:ab:8a:81:30:09:a7:90:07:29:05:a7:a2:13:69: 7b:87:70:66:e9:5e:66:2e:af:72:da:30:53:d0:27: 7e:65:36:fe:54:a3:11:42:e1:14:4c:3d:20:05:96: a9:8e:0c:47:de:79:0b:8d:93:32:ea:a1:23:78:c9: ea:27:31:ed:06:12:75:a4:bd:a6:41:0b:22:c5:45: 29:4e:70:48:4f:6e:fb:44:e1:d2:2e:f5:4c:92:83: 2a:51:bc:87:0e:48:44:8a:14:39:52:2a:06:49:a9: c3:61:5a:49:af:4a:05:72:6c:63:a6:31:8e:c4:be: ac:51:8e:ec:bd:43:27:e1:1a:63:97:ad:5a:be:df: f2:58:16:e1:18:40:57:c0:03:09:6a:05:7b:87:0f: af:7b:1b:70:8f:52:0c:50:e1:5b:66:0a:f3:ec:00: 6f:45:cc:e9:58:bb:45:ac:70:73:48:9d:d2:d5:82: 17:8a:3c:b3:ec:ef:a7:ce:36:35:0a:72:56:f6:ee: cf:2c:85:ac:92:46:e3:d5:21:93:34:7d:05:71:37: ee:6b:df:29:12:d6:88:1b:a5:c9:8f:93:c5:7f:33: 85:7f:16:8e:4f:15:b2:6c:87:6a:c9:9a:51:15:c4: f5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:38:21:20:26:CB:2B:C0:4F:35:47:B6:A9:DF:88:FC:03:D7:54:08 X509v3 Authority Key Identifier: keyid:D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:9c:cf:da:46:bb:3f:b1:87:56:ff:b2:74:1e:6c:14:80:ea: 28:24:a3:41:57:d3:b6:1c:13:2d:13:fb:aa:6a:32:71:43:89: 89:06:06:c5:6c:98:16:92:24:13:fa:d5:55:ed:2c:b3:b8:af: fe:89:10:64:1f:e0:33:9e:21:24:1f:1a:ab:58:ce:58:3c:23: 10:d6:b4:5f:35:f2:aa:60:5f:28:3e:e3:ea:3b:e1:0f:c8:83: 04:52:c8:3c:7f:d8:fc:e6:b2:ed:4d:f9:a7:a6:eb:f6:ab:c4: 81:40:22:15:05:a0:0a:2d:9c:a3:96:02:a5:5d:ea:b0:36:df: 91:da:32:25:09:ae:e9:da:df:92:62:4c:5b:2d:a9:d9:05:62: 66:2c:5f:23:3e:83:80:ee:d4:4b:48:4f:18:c4:e6:0e:ba:30: 12:e7:46:b8:3d:71:ba:58:a7:ee:66:e7:91:85:a2:e0:b4:e9: a4:6f:e3:eb:61:b3:95:60:97:7c:0e:b5:4e:ec:14:a5:80:1a: 07:c0:dc:ac:5f:9f:0a:19:94:f0:c5:49:d0:5f:47:d0:f3:1a: 85:d8:32:c8:04:8b:03:29:56:59:45:83:62:aa:de:5e:96:3a: 39:55:91:0c:1b:7f:af:2d:32:f2:00:7f:17:ca:2d:16:34:4c: b4:5c:66:8d -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgITTaHHDjDJtXy5TI3ozS6fAh53KDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhEMjhCQTlENUUzMjE5M0RFRTI5RUI0QzE5NDRGMzVGQzMy RDhCMTlCMB4XDTI1MDgwNTIxMTcwNFoXDTI1MDgwODIyMTIwNFowMzExMC8GA1UE AxMoMTAzODIxMjAyNkNCMkJDMDRGMzU0N0I2QTlERjg4RkMwM0Q3NTQwODCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAP7Uszr5YShq4BYYEZZ3y6uKgTAJ p5AHKQWnohNpe4dwZuleZi6vctowU9AnfmU2/lSjEULhFEw9IAWWqY4MR955C42T MuqhI3jJ6icx7QYSdaS9pkELIsVFKU5wSE9u+0Th0i71TJKDKlG8hw5IRIoUOVIq Bkmpw2FaSa9KBXJsY6YxjsS+rFGO7L1DJ+EaY5etWr7f8lgW4RhAV8ADCWoFe4cP r3sbcI9SDFDhW2YK8+wAb0XM6Vi7Raxwc0id0tWCF4o8s+zvp842NQpyVvbuzyyF rJJG49UhkzR9BXE37mvfKRLWiBulyY+TxX8zhX8Wjk8VsmyHasmaURXE9ZcCAwEA AaOCAjwwggI4MB0GA1UdDgQWBBQQOCEgJssrwE81R7ap34j8A9dUCDAfBgNVHSME GDAWgBTSi6nV4yGT3uKetMGUTzX8MtixmzAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1 ZTI0MTVjLTdkNGYtNDQyNy04MzJkLTU5YjRjNzlhYWU1YS8wL0QyOEJBOUQ1RTMy MTkzREVFMjlFQjRDMTk0NEYzNUZDMzJEOEIxOUIuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9EMjhCQTlENUUzMjE5M0RFRTI5RUI0QzE5NDRGMzVGQzMyRDhC MTlCLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsGAQUFBzALhnRyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8yNWUyNDE1Yy03ZDRmLTQ0MjctODMy ZC01OWI0Yzc5YWFlNWEvMC9EMjhCQTlENUUzMjE5M0RFRTI5RUI0QzE5NDRGMzVG QzMyRDhCMTlCLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAmpzP2ka7P7GHVv+ydB5sFIDqKCSjQVfTthwT LRP7qmoycUOJiQYGxWyYFpIkE/rVVe0ss7iv/okQZB/gM54hJB8aq1jOWDwjENa0 XzXyqmBfKD7j6jvhD8iDBFLIPH/Y/Oay7U35p6br9qvEgUAiFQWgCi2co5YCpV3q sDbfkdoyJQmu6drfkmJMWy2p2QViZixfIz6DgO7US0hPGMTmDrowEudGuD1xulin 7mbnkYWi4LTppG/j62GzlWCXfA61TuwUpYAaB8DcrF+fChmU8MVJ0F9H0PMahdgy yASLAylWWUWDYqreXpY6OVWRDBt/ry0y8gB/F8otFjRMtFxmjQ== -----END CERTIFICATE-----Generated at Thu Aug 7 00:26:37 2025 by rpki-client