$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: 34DQdYADr8S5UK7HNJHqmQ/hG3ChNnQzMW0KLRP1BHE= Subject key identifier: 3E:78:95:54:25:FF:DE:E0:5A:CD:06:73:98:46:83:06:D5:0D:74:FC Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 57CE9063BEF374159F3EA18626C99D78E00EEB9D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 04FB Signing time: Tue 12 Aug 2025 14:11:27 +0000 Manifest this update: Tue 12 Aug 2025 14:06:27 +0000 Manifest next update: Fri 15 Aug 2025 23:25:27 +0000 Files and hashes: 1: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: c3mFtjqJhU9NX3FtWmzu56PUZICCjyPyR8/3zMxMT94=) 2: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 3: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 4: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 5: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 6: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 7: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 8: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 9: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 10: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 Aug 2025 23:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ce:90:63:be:f3:74:15:9f:3e:a1:86:26:c9:9d:78:e0:0e:eb:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Aug 12 14:06:27 2025 GMT Not After : Aug 15 23:25:27 2025 GMT Subject: CN=3E78955425FFDEE05ACD067398468306D50D74FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ab:64:45:9f:14:f3:06:43:b5:81:88:70:ab: 8f:38:d4:2e:fb:bb:13:bf:1e:20:ac:51:f6:73:a5: f8:26:fe:3a:5b:80:77:c2:81:6c:18:a9:8e:e2:6d: 8b:59:4c:3e:88:2b:55:5c:b7:e5:e7:a4:8a:84:c6: 80:09:05:e3:f5:1a:2b:72:f5:c1:f8:93:63:f6:66: f5:c0:56:64:a7:f2:a2:36:0e:5a:3f:a1:d2:43:5e: 2c:56:f9:b1:04:7f:6c:2b:ee:0d:25:97:d5:ed:6e: 30:c5:37:9e:fa:8a:57:f0:61:62:dd:fa:0d:97:85: 36:e9:9c:0b:c4:a0:26:57:ac:c5:ae:d0:e0:96:46: 7b:25:83:e4:df:c0:02:e9:32:55:f7:fd:95:7b:30: 92:54:3c:1c:fc:fc:c1:ce:6d:f9:8c:f7:da:04:71: 0b:14:71:86:ad:5c:e2:e6:3f:ae:d2:a3:2a:bc:c2: 13:71:50:0a:80:e4:4e:da:bc:47:f6:07:a8:4c:27: b0:b7:41:16:3f:9b:c4:d0:c1:e9:c1:b7:7d:12:f5: 7b:7e:32:23:e6:28:94:92:38:56:23:05:dd:4f:71: 78:01:bb:dd:ed:23:46:f6:9e:54:db:0c:9a:7f:5b: 17:0a:54:bb:8d:b7:05:e2:70:0d:40:58:96:30:4d: e1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:78:95:54:25:FF:DE:E0:5A:CD:06:73:98:46:83:06:D5:0D:74:FC X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:ac:39:09:f2:d2:47:e2:3f:a1:94:a0:f6:ce:5f:26:27:ae: 02:fd:2d:69:18:a7:f9:7c:86:14:b7:1f:09:71:6c:e9:a3:3b: 76:9c:0d:a6:35:69:39:d8:a9:cf:61:79:f8:71:79:11:2a:96: 44:b0:12:52:03:02:d0:03:88:e4:10:7e:34:ea:c3:c0:e2:24: 0c:51:a1:eb:fa:f5:63:7e:0c:e0:e8:78:5f:6e:93:f1:2b:bb: 10:35:87:d1:97:31:14:19:87:d6:0d:c2:64:5c:35:93:21:fe: 28:ec:5f:f3:d5:ed:57:8d:15:aa:03:b8:59:0a:14:df:89:55: 63:15:f4:1d:ec:df:05:82:3d:b2:d7:f4:65:e7:cf:fe:23:95: 71:ef:de:e7:8e:e7:12:fe:1d:83:ee:37:d1:26:87:27:74:71: 1e:ce:07:74:0a:36:00:2d:85:6b:a0:6f:83:da:c5:51:5a:5f: f4:4d:f7:bd:6e:29:45:5d:62:8f:a5:95:fa:c1:9a:40:24:02: ef:12:f7:f5:9a:6e:aa:2e:b5:4c:2c:2d:cc:cb:ac:0c:bf:40: 39:cd:7d:75:ff:94:b7:51:ce:86:83:44:fe:6e:5b:47:c1:e9: 34:85:f1:71:7a:c4:c0:2d:ed:bb:ce:fd:86:83:ab:4d:92:df: 0b:68:7a:0e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV86QY77zdBWfPqGGJsmdeOAO650wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTA4MTIxNDA2MjdaFw0yNTA4MTUyMzI1MjdaMDMxMTAvBgNV BAMTKDNFNzg5NTU0MjVGRkRFRTA1QUNEMDY3Mzk4NDY4MzA2RDUwRDc0RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMq2RFnxTzBkO1gYhwq4841C77 uxO/HiCsUfZzpfgm/jpbgHfCgWwYqY7ibYtZTD6IK1Vct+XnpIqExoAJBeP1Gity 9cH4k2P2ZvXAVmSn8qI2Dlo/odJDXixW+bEEf2wr7g0ll9XtbjDFN576ilfwYWLd +g2XhTbpnAvEoCZXrMWu0OCWRnslg+TfwALpMlX3/ZV7MJJUPBz8/MHObfmM99oE cQsUcYatXOLmP67Soyq8whNxUAqA5E7avEf2B6hMJ7C3QRY/m8TQwenBt30S9Xt+ MiPmKJSSOFYjBd1PcXgBu93tI0b2nlTbDJp/WxcKVLuNtwXicA1AWJYwTeGdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPniVVCX/3uBazQZzmEaDBtUNdPwwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADKsOQny0kfiP6GUoPbOXyYnrgL9LWkYp/l8 hhS3HwlxbOmjO3acDaY1aTnYqc9hefhxeREqlkSwElIDAtADiOQQfjTqw8DiJAxR oev69WN+DODoeF9uk/EruxA1h9GXMRQZh9YNwmRcNZMh/ijsX/PV7VeNFaoDuFkK FN+JVWMV9B3s3wWCPbLX9GXnz/4jlXHv3ueO5xL+HYPuN9Emhyd0cR7OB3QKNgAt hWugb4PaxVFaX/RN971uKUVdYo+llfrBmkAkAu8S9/WabqoutUwsLczLrAy/QDnN fXX/lLdRzoaDRP5uW0fB6TSF8XF6xMAt7bvO/YaDq02S3wtoeg4= -----END CERTIFICATE-----Generated at Wed Aug 13 00:37:44 2025 by rpki-client