$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: leT/IUIJjvIqNc6QEe9h+vPbv1DvNe4q7H53ab17pMA= Subject key identifier: C5:9F:9B:04:5C:77:C5:77:B3:F0:09:B2:07:5B:7B:23:A4:88:33:C0 Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 235F48C68A660E970E00086D04BF4C33FACBCE60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: DC Signing time: Thu 16 Apr 2026 01:32:23 +0000 Manifest this update: Thu 16 Apr 2026 01:27:23 +0000 Manifest next update: Sun 19 Apr 2026 05:47:23 +0000 Files and hashes: 1: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: 03KmYfLki0e12ZA3Mh89ClFwSXzPC9XIirvPcmD4HaM=) 2: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: HqTyhMmIQNWyd9Uu39hBDh2ymSKez80mYyj1XdusXb0=) 3: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: 4k5l0oKGlgrseypJOAcgbZ3voSGQS5pK7FIolyad81E=) 4: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: tGZJC6gHp+rBRUU+fviXr/Qmv6Fq3jy2euNYPnmiMt4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 05:47:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5f:48:c6:8a:66:0e:97:0e:00:08:6d:04:bf:4c:33:fa:cb:ce:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Apr 16 01:27:23 2026 GMT Not After : Apr 19 05:47:23 2026 GMT Subject: CN=C59F9B045C77C577B3F009B2075B7B23A48833C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f0:3a:f6:45:db:cd:f3:c9:e0:83:80:22:8e: 3c:e7:ad:6e:a0:0f:2c:54:1f:d6:9f:80:73:61:50: 37:11:71:d1:2f:48:c9:33:ce:99:eb:56:13:51:dc: 88:95:79:ba:74:52:3c:dc:81:bc:e4:7b:62:49:c8: ba:7b:07:50:ec:ce:d7:6a:92:2f:e3:b4:e8:09:f9: a6:d6:a9:04:81:f2:4f:81:84:3a:65:4b:ce:a4:9b: a8:b7:18:53:fa:17:1a:32:51:f2:41:a7:2d:e1:3b: e7:bd:3d:b4:8e:21:29:b2:95:1a:04:30:a8:5e:0b: de:18:a6:fb:5f:dc:1f:82:71:da:ab:cc:99:a7:75: bf:93:1c:3b:33:09:c4:63:86:38:05:0d:16:90:43: c8:12:d0:73:25:8f:3b:44:04:51:d4:1f:ce:93:dc: 79:d5:18:b5:f3:c5:0d:19:7e:e8:4d:ae:5c:17:d2: 5e:58:93:e0:1f:8c:32:da:3d:29:4e:48:20:ec:85: 32:05:e9:57:c9:0d:6b:ab:50:9b:ae:21:78:c8:05: e1:b3:ad:b0:5d:b5:3f:bf:2e:d6:80:96:86:e2:a8: 04:c6:92:20:c2:f7:bb:8b:04:cf:71:39:1a:fc:27: a4:77:86:cc:73:c3:c0:76:10:3e:7c:5d:5d:78:4c: 4e:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:9F:9B:04:5C:77:C5:77:B3:F0:09:B2:07:5B:7B:23:A4:88:33:C0 X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:61:98:53:57:18:8c:bc:e2:58:17:4f:98:3e:95:b8:5b:7f: 23:16:d1:29:01:ef:31:a8:3d:a6:29:80:f2:bf:4f:d8:2b:59: aa:a4:ab:55:4a:dd:7c:06:ad:7b:7c:8b:33:23:ea:d7:8d:94: 5e:39:b1:c8:6d:08:f9:20:7a:55:94:ab:01:24:0d:44:0b:e6: c7:bb:04:d1:fa:45:ea:70:41:1c:b2:82:51:e0:52:2a:e6:5b: 24:df:19:5d:bf:71:79:e0:a2:4d:ef:f3:b9:b8:39:90:29:6a: 39:fb:4a:96:0a:73:10:bf:09:bd:95:86:2b:f9:33:d6:32:cc: ad:33:69:e8:19:3c:de:28:a5:80:47:4d:57:63:fe:22:77:01: 1f:ae:22:4c:84:5a:e6:16:b0:40:e0:f3:e3:d2:4b:ca:91:00: d8:82:c7:66:3e:7c:a9:ea:0a:2c:a4:91:9f:5b:80:65:e6:4d: 5d:d4:64:bf:e6:f7:d5:f9:16:ad:80:3b:6d:e2:38:7e:0d:c2: ae:31:ca:9a:f3:2e:32:1e:7e:5c:3a:c2:2c:ee:55:7e:02:a7: 22:d6:3c:f0:8d:d3:2b:49:e5:b8:d4:26:94:f4:c0:d9:e7:e7: 86:a1:37:04:ef:5a:2a:ac:1c:d1:22:38:69:88:ca:db:69:50: de:58:78:dc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI19IxopmDpcOAAhtBL9MM/rLzmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNjA0MTYwMTI3MjNaFw0yNjA0MTkwNTQ3MjNaMDMxMTAvBgNV BAMTKEM1OUY5QjA0NUM3N0M1NzdCM0YwMDlCMjA3NUI3QjIzQTQ4ODMzQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc8Dr2RdvN88ngg4AijjznrW6g DyxUH9afgHNhUDcRcdEvSMkzzpnrVhNR3IiVebp0Ujzcgbzke2JJyLp7B1Dsztdq ki/jtOgJ+abWqQSB8k+BhDplS86km6i3GFP6FxoyUfJBpy3hO+e9PbSOISmylRoE MKheC94Ypvtf3B+CcdqrzJmndb+THDszCcRjhjgFDRaQQ8gS0HMljztEBFHUH86T 3HnVGLXzxQ0ZfuhNrlwX0l5Yk+AfjDLaPSlOSCDshTIF6VfJDWurUJuuIXjIBeGz rbBdtT+/LtaAlobiqATGkiDC97uLBM9xORr8J6R3hsxzw8B2ED58XV14TE5rAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxZ+bBFx3xXez8AmyB1t7I6SIM8AwHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGBhmFNXGIy84lgXT5g+lbhbfyMW0SkB7zGo PaYpgPK/T9grWaqkq1VK3XwGrXt8izMj6teNlF45schtCPkgelWUqwEkDUQL5se7 BNH6RepwQRyyglHgUirmWyTfGV2/cXngok3v87m4OZApajn7SpYKcxC/Cb2Vhiv5 M9YyzK0zaegZPN4opYBHTVdj/iJ3AR+uIkyEWuYWsEDg8+PSS8qRANiCx2Y+fKnq CiykkZ9bgGXmTV3UZL/m99X5Fq2AO23iOH4Nwq4xyprzLjIeflw6wizuVX4CpyLW PPCN0ytJ5bjUJpT0wNnn54ahNwTvWiqsHNEiOGmIyttpUN5YeNw= -----END CERTIFICATE-----Generated at Sat Apr 18 07:17:21 2026 by rpki-client