$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: GYM/wz7u4gMdvaHJdjMAcV0595DnFrVBRvLYTpw5Eiw= Subject key identifier: 2B:03:FA:FD:49:66:CC:3C:74:BB:8A:D1:F2:95:98:B7:3E:62:7D:06 Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 3EEE72CBF3909FB932C926B6733EDADCED1D1669 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: 94 Signing time: Mon 03 Nov 2025 23:42:04 +0000 Manifest this update: Mon 03 Nov 2025 23:37:04 +0000 Manifest next update: Fri 07 Nov 2025 08:00:04 +0000 Files and hashes: 1: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: A5o8ht2klC3htfiCiHdX5gEa1twV7am/mF4wBjSBKB8=) 2: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: bv6pC6gX0eRc1LFkXxFUMTO8NK/3ORK3VMfpVTQQLkE=) 3: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: sCyLtPxP1W6eDrRKM5zzBxs1T1DM9NmEIRenFAs3CLU=) 4: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: sz4VmdCTe+rtqXvjcCCv+oeArdLugQ/bUPNEnmt0I5U=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 08:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ee:72:cb:f3:90:9f:b9:32:c9:26:b6:73:3e:da:dc:ed:1d:16:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Nov 3 23:37:04 2025 GMT Not After : Nov 7 08:00:04 2025 GMT Subject: CN=2B03FAFD4966CC3C74BB8AD1F29598B73E627D06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4c:2b:98:e0:75:43:33:4a:03:c0:9e:72:d1: 91:bc:7f:5f:4d:7a:7f:0c:dd:f7:9d:b1:8f:81:81: df:ef:d0:e4:12:3e:8a:45:d5:f8:bb:cc:e8:3f:f4: e7:04:f9:50:4a:ae:21:f7:38:83:ff:fc:88:75:e7: 38:ca:56:cf:1e:d9:82:8b:96:03:d2:53:2d:16:92: 9e:b2:61:3f:9e:ef:a0:d7:32:06:9e:ca:d2:fb:fa: cb:1c:c6:b5:e9:34:8d:91:95:0a:75:09:f5:bc:87: bb:22:de:7b:f1:b0:c3:fa:0b:48:40:60:e9:6e:92: fc:1b:a0:f6:7a:bd:9f:03:fc:ed:2a:b1:e8:16:20: 8c:29:c0:3d:5d:ce:50:81:cd:ea:7f:a2:8d:76:ee: 62:42:f6:6d:46:21:35:ce:a9:c2:60:e8:4f:70:72: 7e:70:34:d3:3f:a0:20:8f:b3:1d:63:ff:b8:29:0a: e3:28:bc:06:5d:c2:2c:d2:2a:b0:18:5f:24:1f:a5: 5b:08:d7:a2:3e:64:82:69:e8:48:96:5a:ed:72:59: 28:b2:b4:3f:25:52:4f:11:5e:b8:f7:d7:51:45:fe: 90:5d:5c:01:96:7f:9d:42:e6:3f:fe:62:f2:ac:c9: e7:d6:56:40:1f:14:4d:b6:62:16:4b:c8:e5:31:74: dc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:03:FA:FD:49:66:CC:3C:74:BB:8A:D1:F2:95:98:B7:3E:62:7D:06 X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:98:da:bd:78:5c:14:3f:20:49:d0:fe:4f:08:3d:d7:8a:82: b7:a4:14:46:5c:fb:11:e9:14:51:9c:6e:1a:8e:1b:9e:c2:23: 0e:03:00:c1:fd:95:78:98:34:46:cd:01:65:bb:e2:26:92:57: 1c:06:cc:d2:e3:36:af:ef:74:2c:54:ce:1d:a3:e9:49:18:49: 3b:4b:b6:ce:1e:82:1c:2c:b4:c6:f0:77:b9:77:39:12:72:a2: ee:ef:b0:03:96:aa:b8:d6:6c:75:98:1d:50:e9:9b:ae:a7:a4: ba:bc:24:86:77:66:37:ad:40:35:e4:04:af:97:01:55:8d:a7: 8e:8e:b7:a9:67:61:d0:93:d0:20:74:89:5c:b5:15:b1:e6:00: ce:62:aa:1e:42:cd:13:e9:0f:2d:5a:37:83:d9:40:06:1d:2d: d0:0c:7d:01:9f:08:a5:4d:3f:c8:e0:d6:f1:45:69:21:08:40: 9b:d9:8c:80:17:9e:d7:f1:49:06:57:6b:b3:e9:d4:8d:47:26: ce:e5:b4:1e:ff:89:69:3e:31:39:47:c5:e1:0c:2b:b4:f2:a1: 83:6d:1e:29:45:b9:4d:59:0c:5d:72:ac:ad:49:14:c7:94:e8: c8:48:7a:ea:b9:63:08:7d:94:df:98:ae:3f:f3:3b:31:4c:b3: 87:95:ec:f6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPu5yy/OQn7kyySa2cz7a3O0dFmkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNTExMDMyMzM3MDRaFw0yNTExMDcwODAwMDRaMDMxMTAvBgNV BAMTKDJCMDNGQUZENDk2NkNDM0M3NEJCOEFEMUYyOTU5OEI3M0U2MjdEMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXTCuY4HVDM0oDwJ5y0ZG8f19N en8M3fedsY+Bgd/v0OQSPopF1fi7zOg/9OcE+VBKriH3OIP//Ih15zjKVs8e2YKL lgPSUy0Wkp6yYT+e76DXMgaeytL7+sscxrXpNI2RlQp1CfW8h7si3nvxsMP6C0hA YOlukvwboPZ6vZ8D/O0qsegWIIwpwD1dzlCBzep/oo127mJC9m1GITXOqcJg6E9w cn5wNNM/oCCPsx1j/7gpCuMovAZdwizSKrAYXyQfpVsI16I+ZIJp6EiWWu1yWSiy tD8lUk8RXrj311FF/pBdXAGWf51C5j/+YvKsyefWVkAfFE22YhZLyOUxdNxPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKwP6/UlmzDx0u4rR8pWYtz5ifQYwHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL2Y2r14XBQ/IEnQ/k8IPdeKgrekFEZc+xHp FFGcbhqOG57CIw4DAMH9lXiYNEbNAWW74iaSVxwGzNLjNq/vdCxUzh2j6UkYSTtL ts4eghwstMbwd7l3ORJyou7vsAOWqrjWbHWYHVDpm66npLq8JIZ3ZjetQDXkBK+X AVWNp46Ot6lnYdCT0CB0iVy1FbHmAM5iqh5CzRPpDy1aN4PZQAYdLdAMfQGfCKVN P8jg1vFFaSEIQJvZjIAXntfxSQZXa7Pp1I1HJs7ltB7/iWk+MTlHxeEMK7TyoYNt HilFuU1ZDF1yrK1JFMeU6MhIeuq5Ywh9lN+Yrj/zOzFMs4eV7PY= -----END CERTIFICATE-----Generated at Thu Nov 6 02:38:56 2025 by rpki-client