$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: pwTJ+wOZivo8B+b9l8IIDaLey8CfL2KYc3xgg4jJVxQ= Subject key identifier: 47:97:AE:73:84:84:07:37:53:5C:A1:8F:54:88:C5:F7:F9:03:4D:DD Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 39A8D2C0B2A605623E7246859FE999E248E21F76 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 04BF Signing time: Wed 06 Aug 2025 04:50:49 +0000 Manifest this update: Wed 06 Aug 2025 04:45:49 +0000 Manifest next update: Sat 09 Aug 2025 08:13:49 +0000 Files and hashes: 1: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) 2: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (hash: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0=) 3: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: 9UX2z4kIFJ3ZRdLXEEbHhCkI2V59lxGTnQF/tVzmiDc=) 4: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 08:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:a8:d2:c0:b2:a6:05:62:3e:72:46:85:9f:e9:99:e2:48:e2:1f:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Aug 6 04:45:49 2025 GMT Not After : Aug 9 08:13:49 2025 GMT Subject: CN=4797AE7384840737535CA18F5488C5F7F9034DDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4f:0d:3b:ad:2f:de:9e:e7:6f:bf:38:cf:ad: 80:80:c6:8a:a7:09:d7:23:44:03:44:66:d7:56:64: 1c:c7:43:b5:a8:b5:d7:86:32:35:6d:b0:71:20:fc: 1f:cf:7e:03:92:4d:5e:10:9d:91:d8:e2:c2:c4:97: a7:d8:10:3e:fe:68:d6:d3:5b:fb:ed:f1:02:e3:14: f1:02:c6:7d:b9:cc:d3:65:5c:a7:bc:24:1f:f3:b9: 1a:aa:e2:f7:e9:e7:44:8c:b7:9a:69:e5:00:e8:e0: 1d:99:13:a0:6b:c0:ac:b5:e0:db:1a:44:57:1f:86: fa:12:3a:fd:7d:9e:d8:d3:8f:e4:61:03:4f:a9:69: 1e:3e:c9:8a:d9:22:a1:22:aa:ec:87:e9:a1:d9:ee: dc:38:a5:4b:42:d5:91:b4:43:f3:2a:d9:ee:ee:27: 22:3c:6a:38:cb:7d:8c:89:dc:09:1b:f0:65:34:4e: d3:95:d7:35:b9:44:6a:ca:f9:6d:12:ff:c2:d5:00: 04:d8:33:47:2f:73:0b:53:64:a9:62:fd:d8:bd:03: 9e:ce:a3:ea:7d:5c:b9:14:41:9a:9b:fb:6e:42:6e: a6:dd:94:c2:47:05:a3:5d:a9:36:59:b1:dd:bb:d6: 25:2f:d0:70:db:8f:a2:68:65:e4:e3:ce:90:9b:43: 91:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:97:AE:73:84:84:07:37:53:5C:A1:8F:54:88:C5:F7:F9:03:4D:DD X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:fa:6b:08:2a:8b:62:ce:dc:a7:a4:da:b3:25:13:be:61:f2: 64:07:c8:d9:5f:26:7b:55:35:0f:38:ad:04:1f:6b:e7:a5:4b: 35:3f:59:84:07:51:79:f6:b3:35:c3:41:10:15:a4:c9:c6:25: a3:5c:a7:f3:2d:d5:1b:15:e5:b9:83:b5:b2:aa:04:22:48:d0: 29:32:c4:59:e2:84:aa:bd:5f:64:47:10:12:d9:ee:db:2b:30: ac:1d:55:88:ce:af:d1:73:ea:e3:c4:a5:30:01:3a:c0:94:55: d5:73:2b:31:ae:d8:77:60:37:19:3b:18:3c:89:7d:5d:8c:e3: 03:4c:7f:72:b6:cb:b4:04:e1:2a:9c:50:40:fe:5b:67:0e:09: 9e:2f:ef:de:ab:b5:ee:f1:16:68:6e:88:31:41:de:48:05:4d: 22:9f:f8:5d:c3:09:e4:94:1f:2c:a5:47:70:0f:14:83:8e:91: e1:ca:7e:36:b8:4b:51:45:5c:6e:01:82:07:1c:87:59:e2:2f: ce:42:8c:03:41:dd:9c:eb:1a:7f:a7:b4:9a:09:db:f7:61:5c: 7b:d8:23:67:c7:2b:55:41:07:e6:a2:b5:7e:c7:64:a2:cf:8a: d3:a0:1c:62:b9:95:1d:cf:a6:f2:ab:33:3c:26:df:f9:2f:1c: fc:40:33:f1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOajSwLKmBWI+ckaFn+mZ4kjiH3YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTA4MDYwNDQ1NDlaFw0yNTA4MDkwODEzNDlaMDMxMTAvBgNV BAMTKDQ3OTdBRTczODQ4NDA3Mzc1MzVDQTE4RjU0ODhDNUY3RjkwMzREREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Tw07rS/enudvvzjPrYCAxoqn CdcjRANEZtdWZBzHQ7WotdeGMjVtsHEg/B/PfgOSTV4QnZHY4sLEl6fYED7+aNbT W/vt8QLjFPECxn25zNNlXKe8JB/zuRqq4vfp50SMt5pp5QDo4B2ZE6BrwKy14Nsa RFcfhvoSOv19ntjTj+RhA0+paR4+yYrZIqEiquyH6aHZ7tw4pUtC1ZG0Q/Mq2e7u JyI8ajjLfYyJ3Akb8GU0TtOV1zW5RGrK+W0S/8LVAATYM0cvcwtTZKli/di9A57O o+p9XLkUQZqb+25CbqbdlMJHBaNdqTZZsd271iUv0HDbj6JoZeTjzpCbQ5FHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUR5euc4SEBzdTXKGPVIjF9/kDTd0wHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIz6awgqi2LO3Kek2rMlE75h8mQHyNlfJntV NQ84rQQfa+elSzU/WYQHUXn2szXDQRAVpMnGJaNcp/Mt1RsV5bmDtbKqBCJI0Cky xFnihKq9X2RHEBLZ7tsrMKwdVYjOr9Fz6uPEpTABOsCUVdVzKzGu2HdgNxk7GDyJ fV2M4wNMf3K2y7QE4SqcUED+W2cOCZ4v796rte7xFmhuiDFB3kgFTSKf+F3DCeSU HyylR3APFIOOkeHKfja4S1FFXG4Bggcch1niL85CjANB3ZzrGn+ntJoJ2/dhXHvY I2fHK1VBB+aitX7HZKLPitOgHGK5lR3PpvKrMzwm3/kvHPxAM/E= -----END CERTIFICATE-----Generated at Thu Aug 7 00:26:46 2025 by rpki-client