$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft File: D68CA7C6F514D7168C00790717FB869AF68B125E.mft (raw, json) Hash identifier: CTbI9mX3jOhM083PH6Ver1zDW2UzE81ieWL7IMTYoys= Subject key identifier: 18:F1:00:A1:BC:B1:D8:6E:25:34:BF:95:28:E7:8D:03:84:75:9A:00 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 26B3F38680B54E0B0D960511FAE162EC31902268 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft Manifest number: 020E Signing time: Tue 29 Apr 2025 12:40:49 +0000 Manifest this update: Tue 29 Apr 2025 12:35:49 +0000 Manifest next update: Fri 02 May 2025 21:59:49 +0000 Files and hashes: 1: 3130332e3134322e3235342e302f32332d3234203d3e203435333035.roa (hash: 7O8N58po+0JxePzNZclEQ2AJgxG8+dzNwmbyqc3JseQ=) 2: 323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa (hash: 9QQ+2QkEe5ZH/Gx9crXFjTQMx7fu4j8ocdzuLtt+l68=) 3: 3130332e3134322e3235342e302f32342d3234203d3e20313339333831.roa (hash: dqH/h3KP8VbL1imk1+sCwLW1Fbde9SEkgS3WsJD6a4Q=) 4: 323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa (hash: +AMBcTRDOItbHkoJjd3Z20zd7vvhBKXQR154gJmvfP8=) 5: 3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa (hash: ouXIX9GF2bsN7u33KTbYLbJVbRNSQKEsMqHEdl/mkaw=) 6: 3130332e3134322e3235352e302f32342d3234203d3e20313339333831.roa (hash: VNXiSw/mkVU/eaep8UiaH3pF3+R/bpIMEPNGotq1Wno=) 7: D68CA7C6F514D7168C00790717FB869AF68B125E.crl (hash: oI1Dv1fOuV/lLeikyZfr40ccaE55xeFqYDq0TZ18Bfs=) 8: 3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa (hash: QxcRI59eBP9vOZvPd8UtIm8nunAIQZZkvPnGGZ6af2w=) 9: 3130332e3134322e3235342e302f32342d3234203d3e203435333035.roa (hash: 5099uAR6KmDcIfNiZmfT8BCVcKIiSE/bkHtUTKJ/KOQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 21:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:b3:f3:86:80:b5:4e:0b:0d:96:05:11:fa:e1:62:ec:31:90:22:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Apr 29 12:35:49 2025 GMT Not After : May 2 21:59:49 2025 GMT Subject: CN=18F100A1BCB1D86E2534BF9528E78D0384759A00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:35:bf:37:e0:7d:c4:6d:d3:5a:a6:54:70:05: ca:82:a1:73:c8:b9:5c:0c:69:19:95:91:29:b6:87: a9:54:61:3a:ab:6a:32:27:9f:20:d3:56:a7:db:74: 16:1f:90:20:73:5d:94:72:e5:30:71:2e:12:fd:6c: a5:7a:4d:ce:e9:85:8e:21:80:dc:dc:27:10:cb:36: 2a:74:20:41:76:63:56:da:09:af:d3:62:28:71:1c: 36:9a:a9:9c:4c:67:8d:d5:ff:31:48:f5:9d:31:65: 29:64:be:a5:d4:88:35:83:b7:dd:b0:34:6d:d3:b8: da:dc:91:12:f2:ac:65:15:7e:a9:26:f3:39:84:b1: 74:a1:26:9a:07:76:94:69:69:3d:52:b6:a4:42:5e: 81:cf:9a:45:44:ae:7a:7c:25:f9:0a:0e:88:10:05: 0d:1d:21:9e:fc:c7:42:83:c4:06:c1:a6:37:91:3b: e3:39:76:e4:9d:30:d9:95:47:74:bb:31:6d:30:ed: 4c:b5:df:6d:a7:69:f3:fa:e3:6c:26:86:d8:10:e4: 0a:20:03:7c:90:fc:9c:1a:bf:a9:db:0d:79:d4:c6: c8:29:4a:d7:b5:71:4f:38:7d:0d:a2:08:1a:a9:f0: 5a:9f:50:32:e4:0e:5d:bd:e2:67:92:87:a5:4a:4f: 58:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:F1:00:A1:BC:B1:D8:6E:25:34:BF:95:28:E7:8D:03:84:75:9A:00 X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:d8:49:7a:72:0c:ec:56:2a:e4:52:1f:e5:f7:64:c9:a8:91: 2c:bf:60:d0:5c:c2:27:08:0a:d2:63:37:b7:76:d7:8f:fb:ff: bc:ce:1b:b0:38:8f:5d:50:fd:05:59:e6:06:ab:66:96:79:50: 6e:28:83:f1:c2:8e:29:37:22:54:a0:32:25:bd:12:93:e5:49: 32:31:c3:75:ec:b4:f3:66:0d:84:e3:c6:c2:e6:63:45:cd:b2: 91:22:a2:7d:7a:30:55:e5:f1:5e:d2:ab:b9:92:ae:60:4f:f4: e7:a2:11:2c:86:c9:0e:28:e7:f9:93:84:e3:4c:3d:01:1e:bc: bd:a4:9a:e4:b9:bc:d7:2b:80:5f:50:0b:3b:9c:aa:ee:5e:e0: 61:6c:15:8a:51:74:16:81:91:84:80:1a:0a:22:62:87:d9:9c: ea:25:4e:bc:17:dc:3a:3e:d7:77:fb:46:fe:0b:ca:a8:32:a9: b3:35:bb:68:82:e2:44:0b:e8:f6:c7:5c:7a:15:c4:29:00:a8: 62:a5:c3:5f:8a:66:16:ad:ed:bb:43:76:37:45:27:02:2f:b3: 64:f1:e1:fd:86:7b:98:16:e4:1d:37:99:6a:1a:e3:ce:a2:28: c3:a5:bd:99:06:f5:0e:66:30:a4:14:92:bf:e9:58:eb:ef:49: 61:bf:f6:e7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJrPzhoC1TgsNlgUR+uFi7DGQImgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNTA0MjkxMjM1NDlaFw0yNTA1MDIyMTU5NDlaMDMxMTAvBgNV BAMTKDE4RjEwMEExQkNCMUQ4NkUyNTM0QkY5NTI4RTc4RDAzODQ3NTlBMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmNb834H3EbdNaplRwBcqCoXPI uVwMaRmVkSm2h6lUYTqrajInnyDTVqfbdBYfkCBzXZRy5TBxLhL9bKV6Tc7phY4h gNzcJxDLNip0IEF2Y1baCa/TYihxHDaaqZxMZ43V/zFI9Z0xZSlkvqXUiDWDt92w NG3TuNrckRLyrGUVfqkm8zmEsXShJpoHdpRpaT1StqRCXoHPmkVErnp8JfkKDogQ BQ0dIZ78x0KDxAbBpjeRO+M5duSdMNmVR3S7MW0w7Uy1322nafP642wmhtgQ5Aog A3yQ/Jwav6nbDXnUxsgpSte1cU84fQ2iCBqp8FqfUDLkDl294meSh6VKT1g1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGPEAobyx2G4lNL+VKOeNA4R1mgAwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWRkYzFkZDgtNmQyNS00N2M3LWFh YTQtYmRkZjFiOWQ2NzdlLzAvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2 OUFGNjhCMTI1RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACLYSXpyDOxWKuRSH+X3ZMmokSy/YNBcwicI CtJjN7d214/7/7zOG7A4j11Q/QVZ5garZpZ5UG4og/HCjik3IlSgMiW9EpPlSTIx w3XstPNmDYTjxsLmY0XNspEion16MFXl8V7Sq7mSrmBP9OeiESyGyQ4o5/mThONM PQEevL2kmuS5vNcrgF9QCzucqu5e4GFsFYpRdBaBkYSAGgoiYofZnOolTrwX3Do+ 13f7Rv4LyqgyqbM1u2iC4kQL6PbHXHoVxCkAqGKlw1+KZhat7btDdjdFJwIvs2Tx 4f2Ge5gW5B03mWoa486iKMOlvZkG9Q5mMKQUkr/pWOvvSWG/9uc= -----END CERTIFICATE-----Generated at Wed Apr 30 08:24:24 2025 by rpki-client