$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft File: D68CA7C6F514D7168C00790717FB869AF68B125E.mft (raw, json) Hash identifier: lstxYqk96OqQYbvclSEi8CwXqITYqYlvTMAS2G5+mYY= Subject key identifier: 8B:A3:25:B2:F7:BF:5B:C4:1F:FD:92:E5:E4:C0:F3:E0:30:03:2F:8C Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 586310DCEC27CB1BDE00C712EAB17D3CA7502A26 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft Manifest number: 0225 Signing time: Tue 17 Jun 2025 17:40:52 +0000 Manifest this update: Tue 17 Jun 2025 17:35:52 +0000 Manifest next update: Fri 20 Jun 2025 21:57:52 +0000 Files and hashes: 1: 3130332e3134322e3235342e302f32332d3234203d3e203435333035.roa (hash: 09EcthFcc0U294qSUk1qjMUpfEmQzlaHp9ePt/3ow3Q=) 2: 323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa (hash: G7BNKn0aQeDATXJ1JamzPIxZOqsRSSDm9xJMQAbHt5c=) 3: 3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa (hash: fW5qne1R9fTa45nGDciUROmSkAV8mbUeGR9m/oXMOAw=) 4: 3130332e3134322e3235352e302f32342d3234203d3e20313339333831.roa (hash: VNXiSw/mkVU/eaep8UiaH3pF3+R/bpIMEPNGotq1Wno=) 5: 3130332e3134322e3235342e302f32342d3234203d3e203435333035.roa (hash: ebXS+Tyb8iuyOHa8yQE2FE8hZAgaawDNcd7a/TUN4jY=) 6: 3130332e3134322e3235342e302f32342d3234203d3e20313339333831.roa (hash: dqH/h3KP8VbL1imk1+sCwLW1Fbde9SEkgS3WsJD6a4Q=) 7: 323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa (hash: +AMBcTRDOItbHkoJjd3Z20zd7vvhBKXQR154gJmvfP8=) 8: 3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa (hash: ouXIX9GF2bsN7u33KTbYLbJVbRNSQKEsMqHEdl/mkaw=) 9: D68CA7C6F514D7168C00790717FB869AF68B125E.crl (hash: z1D4Muc1bGnlJBS6rHwuLBC3H8RqeuKdIK5Zsr877NU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 21:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:63:10:dc:ec:27:cb:1b:de:00:c7:12:ea:b1:7d:3c:a7:50:2a:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Jun 17 17:35:52 2025 GMT Not After : Jun 20 21:57:52 2025 GMT Subject: CN=8BA325B2F7BF5BC41FFD92E5E4C0F3E030032F8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ae:ff:20:25:5e:9a:d1:66:3d:b7:d9:3b:44: 6a:13:f8:a3:1d:db:fa:2b:ee:ad:b7:5c:a4:17:68: 08:d0:5e:1d:70:88:16:f4:2f:9c:85:e2:93:03:2b: 07:3f:dd:5c:71:9f:a2:b8:a8:9c:42:4a:35:a5:5b: 61:ae:fa:7f:53:0e:d3:36:38:31:a7:96:ea:aa:00: b5:71:a9:71:21:eb:e0:f5:4c:c8:11:c8:b9:25:1a: bd:a6:4a:6f:6a:18:98:4d:3e:7c:41:33:db:8a:17: e9:4f:4e:a8:7a:42:0c:ce:42:05:c7:49:47:b9:a6: 1d:f0:ba:1f:64:ca:15:a1:69:f9:30:b6:dd:85:81: c7:09:d9:3a:0b:82:d3:41:e2:b1:a2:05:74:9d:1e: aa:94:b6:b7:ae:08:2f:1c:da:de:e6:79:72:b7:df: 03:5d:2c:47:13:cb:9c:33:04:6c:35:c5:72:25:9a: 8e:39:f7:da:48:33:b4:f2:17:6f:4d:60:96:20:73: 95:8c:43:1d:98:97:94:c1:60:3d:45:7f:27:2b:2b: 63:73:64:d8:69:2d:a3:46:1d:de:55:2d:b7:1c:67: 2c:55:87:b7:1c:5b:39:66:a5:2c:12:1b:82:e8:dc: 9b:17:89:df:49:a4:82:ef:1a:8f:bc:87:88:8e:62: bc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:A3:25:B2:F7:BF:5B:C4:1F:FD:92:E5:E4:C0:F3:E0:30:03:2F:8C X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:3c:66:79:ca:d4:7f:5c:2c:7e:7e:b1:ca:f1:2b:a6:bc:e7: 46:3f:bc:27:f4:fd:fe:00:4c:34:e1:0c:9a:78:53:9f:b1:d1: 75:b7:9e:bf:5e:2c:09:66:db:36:ba:7d:d6:d5:98:27:04:32: 61:f0:23:6d:36:34:75:62:88:41:83:13:a8:4c:58:59:61:2d: ff:12:c5:53:f6:48:06:0b:21:09:8a:d2:a0:21:18:36:3d:2e: 31:f2:91:84:80:a2:af:60:de:c1:02:d3:9e:b2:14:59:85:26: 20:2c:50:e6:f6:27:35:0f:38:a3:30:8c:ed:f7:48:41:d4:16: 8f:03:39:36:96:94:fb:01:29:78:ec:f7:2f:25:11:67:f1:01: fd:dc:5c:e1:a6:b3:ac:62:16:43:49:74:e3:b1:f4:e0:39:21: 99:4e:d1:24:85:8e:ec:9c:0d:d4:1a:95:dc:b4:ac:a3:db:a4: 86:05:84:08:5d:7f:9c:ef:fd:8d:2b:0c:6d:4f:ee:45:63:39: e2:d4:2f:85:8a:ff:6b:12:69:36:5f:0d:5b:e2:a1:ee:28:37: 6e:f3:df:df:de:4d:fe:a2:75:ec:a8:40:de:49:62:59:c6:34: 60:f3:94:a2:9e:f1:5b:30:f1:d8:71:6e:1e:cb:24:19:e6:88: 48:df:c3:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWGMQ3OwnyxveAMcS6rF9PKdQKiYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNTA2MTcxNzM1NTJaFw0yNTA2MjAyMTU3NTJaMDMxMTAvBgNV BAMTKDhCQTMyNUIyRjdCRjVCQzQxRkZEOTJFNUU0QzBGM0UwMzAwMzJGOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQrv8gJV6a0WY9t9k7RGoT+KMd 2/or7q23XKQXaAjQXh1wiBb0L5yF4pMDKwc/3Vxxn6K4qJxCSjWlW2Gu+n9TDtM2 ODGnluqqALVxqXEh6+D1TMgRyLklGr2mSm9qGJhNPnxBM9uKF+lPTqh6QgzOQgXH SUe5ph3wuh9kyhWhafkwtt2FgccJ2ToLgtNB4rGiBXSdHqqUtreuCC8c2t7meXK3 3wNdLEcTy5wzBGw1xXIlmo4599pIM7TyF29NYJYgc5WMQx2Yl5TBYD1FfycrK2Nz ZNhpLaNGHd5VLbccZyxVh7ccWzlmpSwSG4Lo3JsXid9JpILvGo+8h4iOYryFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUi6Mlsve/W8Qf/ZLl5MDz4DADL4wwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWRkYzFkZDgtNmQyNS00N2M3LWFh YTQtYmRkZjFiOWQ2NzdlLzAvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2 OUFGNjhCMTI1RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJM8ZnnK1H9cLH5+scrxK6a850Y/vCf0/f4A TDThDJp4U5+x0XW3nr9eLAlm2za6fdbVmCcEMmHwI202NHViiEGDE6hMWFlhLf8S xVP2SAYLIQmK0qAhGDY9LjHykYSAoq9g3sEC056yFFmFJiAsUOb2JzUPOKMwjO33 SEHUFo8DOTaWlPsBKXjs9y8lEWfxAf3cXOGms6xiFkNJdOOx9OA5IZlO0SSFjuyc DdQaldy0rKPbpIYFhAhdf5zv/Y0rDG1P7kVjOeLUL4WK/2sSaTZfDVvioe4oN27z 39/eTf6ideyoQN5JYlnGNGDzlKKe8Vsw8dhxbh7LJBnmiEjfw7g= -----END CERTIFICATE-----Generated at Wed Jun 18 10:45:12 2025 by rpki-client