$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: fASWFoOZq4jMeawmxJDXvTdiV3C5rew2Ig3308PBpMg= Subject key identifier: 4A:1A:F8:12:91:80:C6:13:74:2B:55:67:04:79:45:C7:17:90:AB:40 Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 092A0BDFB8C9EF60F265F0B34C86FED9FC6E56EC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 04A7 Signing time: Sun 15 Jun 2025 15:00:48 +0000 Manifest this update: Sun 15 Jun 2025 14:55:48 +0000 Manifest next update: Wed 18 Jun 2025 23:56:48 +0000 Files and hashes: 1: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: IDvrgAk2h65ZJEo1qEYbEs8Gg0z11qH57HLaIFgcM0Q=) 2: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: XcdW007VGP0WRfDejygPpVBFMBvsv6tf2ehvluTnBrk=) 3: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 23:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:2a:0b:df:b8:c9:ef:60:f2:65:f0:b3:4c:86:fe:d9:fc:6e:56:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Jun 15 14:55:48 2025 GMT Not After : Jun 18 23:56:48 2025 GMT Subject: CN=4A1AF8129180C613742B5567047945C71790AB40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e9:1d:8f:e5:03:f9:dd:c7:ee:52:b4:74:e8: 3a:c0:cf:dc:50:94:8c:7e:4b:78:b7:70:a7:3c:18: f6:69:3a:b6:55:f3:dd:2e:ce:15:77:15:a9:ec:51: 40:45:28:bc:3b:a4:1c:0f:21:d5:e6:f1:d2:ec:b1: 9a:9c:92:76:2e:cc:2c:5e:9c:25:ba:0e:01:bc:59: ce:27:13:f8:90:22:54:e3:80:1e:7a:6d:1b:1a:17: 1c:dd:6a:57:62:6c:27:23:53:1e:be:ee:c4:d3:11: c5:fc:b5:e9:1e:34:8b:49:2d:cf:05:21:b6:70:53: 78:7e:e0:fb:ee:9e:6f:7b:c6:6d:47:de:ba:b6:e2: 91:3c:89:08:94:d6:2e:60:1d:8f:98:25:5d:9f:13: b5:2d:71:0e:59:0f:24:b0:d3:fb:6a:84:b7:43:b2: bf:f7:3f:2b:3a:e5:41:6c:0a:45:9d:2d:02:20:06: 71:7d:b9:97:fc:df:7f:95:de:a9:32:37:e3:18:33: 55:1d:97:a2:52:03:22:56:ef:97:ca:a0:7e:09:be: 24:56:91:62:0f:e7:65:d5:1c:b1:65:f3:9d:e3:63: 40:e4:0e:52:45:93:28:9c:98:31:83:49:f0:91:97: 3e:0f:e0:90:85:6c:d2:31:8b:0c:3a:bf:cf:2e:63: 86:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:1A:F8:12:91:80:C6:13:74:2B:55:67:04:79:45:C7:17:90:AB:40 X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:14:96:03:42:a2:c9:8e:4b:22:69:de:42:77:db:34:a9:44: 4d:02:34:65:10:d8:2c:28:dd:05:95:a0:70:39:60:c9:d7:1e: c3:a8:8a:67:ac:ac:f7:b0:53:6b:4b:f2:89:73:64:ec:9c:b9: 62:d1:cb:f2:9a:0a:44:23:cd:13:8c:33:43:a8:26:d7:56:91: 7f:e7:52:c1:ff:99:25:9d:b7:35:37:1f:75:a3:28:ab:dd:d6: 17:26:05:cf:59:0d:92:90:47:44:d6:55:f1:72:ec:ac:54:35: af:3e:e8:5f:a5:c7:32:a9:45:cd:d1:7c:68:8e:b9:40:3c:c2: 13:67:38:23:45:8c:ea:3b:00:c7:61:e7:0c:88:f8:01:d0:a7: 83:26:3e:1e:e6:0e:0a:e6:6d:3d:8e:66:98:e6:50:2e:92:a1: c4:d8:51:d0:9b:f2:06:51:04:d1:e6:fd:8b:01:b6:c5:31:af: 72:7b:cd:86:11:f3:b7:ba:28:fe:74:98:81:4d:20:f4:91:97: 0f:5b:f6:ff:96:32:1e:a4:e5:18:9a:5f:56:82:ec:e0:92:bd: 52:76:13:cc:92:13:f0:17:c2:88:21:b6:09:6e:2e:b2:f8:d7: 2a:1c:df:9d:4a:f3:1e:e7:cf:5d:39:d4:b8:bb:7f:f9:98:8a: 73:73:51:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCSoL37jJ72DyZfCzTIb+2fxuVuwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTA2MTUxNDU1NDhaFw0yNTA2MTgyMzU2NDhaMDMxMTAvBgNV BAMTKDRBMUFGODEyOTE4MEM2MTM3NDJCNTU2NzA0Nzk0NUM3MTc5MEFCNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO6R2P5QP53cfuUrR06DrAz9xQ lIx+S3i3cKc8GPZpOrZV890uzhV3FansUUBFKLw7pBwPIdXm8dLssZqcknYuzCxe nCW6DgG8Wc4nE/iQIlTjgB56bRsaFxzdaldibCcjUx6+7sTTEcX8tekeNItJLc8F IbZwU3h+4Pvunm97xm1H3rq24pE8iQiU1i5gHY+YJV2fE7UtcQ5ZDySw0/tqhLdD sr/3Pys65UFsCkWdLQIgBnF9uZf833+V3qkyN+MYM1Udl6JSAyJW75fKoH4JviRW kWIP52XVHLFl853jY0DkDlJFkyicmDGDSfCRlz4P4JCFbNIxiww6v88uY4YJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUShr4EpGAxhN0K1VnBHlFxxeQq0AwHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD0UlgNCosmOSyJp3kJ32zSpRE0CNGUQ2Cwo 3QWVoHA5YMnXHsOoimesrPewU2tL8olzZOycuWLRy/KaCkQjzROMM0OoJtdWkX/n UsH/mSWdtzU3H3WjKKvd1hcmBc9ZDZKQR0TWVfFy7KxUNa8+6F+lxzKpRc3RfGiO uUA8whNnOCNFjOo7AMdh5wyI+AHQp4MmPh7mDgrmbT2OZpjmUC6SocTYUdCb8gZR BNHm/YsBtsUxr3J7zYYR87e6KP50mIFNIPSRlw9b9v+WMh6k5RiaX1aC7OCSvVJ2 E8ySE/AXwoghtgluLrL41yoc351K8x7nz1051Li7f/mYinNzUaU= -----END CERTIFICATE-----Generated at Mon Jun 16 12:11:39 2025 by rpki-client