$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: KAqdvDlh33quv+9fFgqizDlpRsougqAswV1kdPTn594= Subject key identifier: 78:70:FF:57:55:2F:24:18:06:23:7D:E3:35:B0:DC:40:BB:24:E2:52 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 0E3B7B7A33EEBFAF54E5F1B9701AF9F5991106F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 04CB Signing time: Mon 28 Apr 2025 13:50:43 +0000 Manifest this update: Mon 28 Apr 2025 13:45:43 +0000 Manifest next update: Thu 01 May 2025 16:39:43 +0000 Files and hashes: 1: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: NJdokcXpJ5XaumKzAZ6NIMhaU1ktPDdYz9EjGIFdANE=) 2: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: C8mpthKpYoXubM6q6uGalmKMPilhsW9s24BUFwWotXs=) 3: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: o8WCNHqPgFVCcJIPMMNyY9wNR4s4bWFgWCE9Rc1XnKc=) 4: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: fJY4PRWu5dke5787IxzuhTxLzjDNP8opyjwlWUVMT+U=) 5: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: C+GCiZbyOWqTIP/iREeF81SfHqAfUnmzJ8NSghudrRI=) 6: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: NUbYBP04DuPbGhyIytzZLet0AimjBEKWNuV7fszyTmU=) 7: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: rBGdSMT8TyCX1hza79EhNX5rZ23TWWthY7OuvHhtfMI=) 8: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: ALHucxfZn6/DilYu8UfYHg2H5JY1f1TtwEgS6ThEO7s=) 9: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: c52sokWCxiHM47HXpwxIRcIDim32PalL1alwxXZgY9U=) 10: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: neR217ApV7QIViRVCl6i2tqUQ8xAdpZVrB9KWhUY/mg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:39:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:3b:7b:7a:33:ee:bf:af:54:e5:f1:b9:70:1a:f9:f5:99:11:06:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Apr 28 13:45:43 2025 GMT Not After : May 1 16:39:43 2025 GMT Subject: CN=7870FF57552F241806237DE335B0DC40BB24E252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:12:6a:81:48:1a:b1:fb:7a:94:a7:15:05:9c: 55:9a:d3:94:32:af:2b:65:d7:a7:77:32:0f:df:01: 2f:f3:ba:e6:3a:72:be:3d:f4:78:7c:dd:f1:4e:2f: 1e:90:30:0d:c0:e2:c2:b6:41:35:ee:63:2e:19:b8: 0f:37:34:9a:40:59:44:01:31:0b:64:33:59:f6:d9: 8c:b0:61:72:43:74:fa:48:1c:f3:69:70:0c:73:36: 02:bf:a0:c6:ab:2f:3d:15:21:34:8d:9a:8b:72:0f: bc:6f:68:9c:5d:41:ce:66:ad:18:cb:0e:97:5b:62: ff:93:78:c5:13:c2:33:97:04:3f:4e:08:da:53:7e: 02:e0:9b:fe:6b:10:fd:f2:77:d8:99:ab:19:2c:ef: 1f:22:38:ac:60:54:c8:67:7f:41:77:c2:d5:84:64: 56:ce:1b:62:0f:7b:6f:6f:f4:5b:9a:a4:43:6b:48: ef:cd:b5:99:a7:54:b9:54:10:ef:0c:15:86:03:fe: b4:73:1d:73:4d:6f:de:0b:6a:00:26:83:a4:e0:7b: 2d:f5:5e:1d:94:11:87:73:35:2b:2b:97:72:ea:00: 73:f8:e5:33:79:b6:0a:f7:20:e7:09:be:4b:12:cb: aa:b8:9f:94:09:ee:e0:b9:6e:31:e3:27:54:99:85: e7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:70:FF:57:55:2F:24:18:06:23:7D:E3:35:B0:DC:40:BB:24:E2:52 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:bf:2a:71:2a:18:4f:6e:07:16:4b:3e:38:8f:98:a1:dd:5c: 4f:8d:67:02:47:ee:eb:e3:1b:bb:15:36:b3:2c:ad:d3:91:83: db:dc:ae:d3:d5:97:47:79:5e:f2:61:d6:77:09:33:7e:87:03: 54:96:ac:86:36:c9:76:40:74:08:a8:15:f9:5a:29:ea:af:83: 9d:3a:29:20:41:19:d7:47:84:f7:60:f2:b3:09:83:6e:6e:a4: a5:b9:77:c6:82:51:c6:6d:38:d8:68:74:35:b7:ca:bd:23:3e: 7a:80:86:71:74:4d:9d:6e:c8:53:ed:47:e8:ba:74:64:65:1f: 86:31:ec:d1:60:4f:68:0d:8a:14:69:59:c4:31:20:cc:f9:07: 12:3d:9f:c6:6d:af:2b:32:64:e1:8f:f7:79:d9:df:7a:66:fe: 10:95:65:2f:cb:4e:f8:08:88:1a:81:c8:fd:0d:ec:af:4c:82: dc:c1:a5:d2:e1:ad:99:83:67:f9:14:c3:fb:f4:17:ba:fe:93: 42:26:41:b2:b5:37:48:c5:92:2f:80:56:16:b4:f3:76:33:fd: 22:ff:2a:d5:d5:86:5e:40:4c:cb:f3:9b:c9:53:d4:18:81:56: 4a:e5:ec:b3:ca:57:ac:8f:bd:4c:6f:e5:a8:83:80:16:0c:f9: d7:c8:0e:d8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDjt7ejPuv69U5fG5cBr59ZkRBvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA0MjgxMzQ1NDNaFw0yNTA1MDExNjM5NDNaMDMxMTAvBgNV BAMTKDc4NzBGRjU3NTUyRjI0MTgwNjIzN0RFMzM1QjBEQzQwQkIyNEUyNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZEmqBSBqx+3qUpxUFnFWa05Qy rytl16d3Mg/fAS/zuuY6cr499Hh83fFOLx6QMA3A4sK2QTXuYy4ZuA83NJpAWUQB MQtkM1n22YywYXJDdPpIHPNpcAxzNgK/oMarLz0VITSNmotyD7xvaJxdQc5mrRjL DpdbYv+TeMUTwjOXBD9OCNpTfgLgm/5rEP3yd9iZqxks7x8iOKxgVMhnf0F3wtWE ZFbOG2IPe29v9FuapENrSO/NtZmnVLlUEO8MFYYD/rRzHXNNb94LagAmg6Tgey31 Xh2UEYdzNSsrl3LqAHP45TN5tgr3IOcJvksSy6q4n5QJ7uC5bjHjJ1SZhec1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeHD/V1UvJBgGI33jNbDcQLsk4lIwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFC/KnEqGE9uBxZLPjiPmKHdXE+NZwJH7uvj G7sVNrMsrdORg9vcrtPVl0d5XvJh1ncJM36HA1SWrIY2yXZAdAioFflaKeqvg506 KSBBGddHhPdg8rMJg25upKW5d8aCUcZtONhodDW3yr0jPnqAhnF0TZ1uyFPtR+i6 dGRlH4Yx7NFgT2gNihRpWcQxIMz5BxI9n8ZtrysyZOGP93nZ33pm/hCVZS/LTvgI iBqByP0N7K9MgtzBpdLhrZmDZ/kUw/v0F7r+k0ImQbK1N0jFki+AVha083Yz/SL/ KtXVhl5ATMvzm8lT1BiBVkrl7LPKV6yPvUxv5aiDgBYM+dfIDtg= -----END CERTIFICATE-----Generated at Tue Apr 29 04:44:31 2025 by rpki-client