$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft File: D68CA7C6F514D7168C00790717FB869AF68B125E.mft (raw, json) Hash identifier: R55txy1kEmnGjwtjNexuLvx6VljsM1TGmt0Osh+yr34= Subject key identifier: 7F:7E:E1:9C:91:04:4C:74:67:6E:6F:FF:66:E3:EB:5D:8E:A0:AE:95 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 3D8757015B89ABCA242DB2AE5196A3D369CF326A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft Manifest number: 023C Signing time: Wed 06 Aug 2025 12:00:59 +0000 Manifest this update: Wed 06 Aug 2025 11:55:59 +0000 Manifest next update: Sat 09 Aug 2025 17:52:59 +0000 Files and hashes: 1: 323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa (hash: +AMBcTRDOItbHkoJjd3Z20zd7vvhBKXQR154gJmvfP8=) 2: 3130332e3134322e3235342e302f32342d3234203d3e203435333035.roa (hash: ebXS+Tyb8iuyOHa8yQE2FE8hZAgaawDNcd7a/TUN4jY=) 3: 3130332e3134322e3235352e302f32342d3234203d3e20313339333831.roa (hash: tArDMQ0CljWlxInpOnDNWhLbYH4HF1sjePzkXRXnEac=) 4: 323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa (hash: G7BNKn0aQeDATXJ1JamzPIxZOqsRSSDm9xJMQAbHt5c=) 5: D68CA7C6F514D7168C00790717FB869AF68B125E.crl (hash: GVWMyMPMAdgLI0lN0Gft86jWHfAKilKVOywEHMeGwQc=) 6: 3130332e3134322e3235342e302f32332d3234203d3e203435333035.roa (hash: 09EcthFcc0U294qSUk1qjMUpfEmQzlaHp9ePt/3ow3Q=) 7: 3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa (hash: gV2Q8xF8XiWikE1+w9yu7jENKeKHaDELW9P6oOlSzDE=) 8: 3130332e3134322e3235342e302f32342d3234203d3e20313339333831.roa (hash: xpJYN2koDz6242yH404bncg8zalibRwq73KpJsJcVB8=) 9: 3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa (hash: fW5qne1R9fTa45nGDciUROmSkAV8mbUeGR9m/oXMOAw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 17:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:87:57:01:5b:89:ab:ca:24:2d:b2:ae:51:96:a3:d3:69:cf:32:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Aug 6 11:55:59 2025 GMT Not After : Aug 9 17:52:59 2025 GMT Subject: CN=7F7EE19C91044C74676E6FFF66E3EB5D8EA0AE95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f8:8d:08:6a:bf:72:a1:29:bc:1e:56:ee:5f: ae:ed:bf:da:f9:ea:a1:31:06:7f:b8:22:4b:48:f7: ca:46:13:90:63:45:76:f9:3c:fc:74:bc:11:d8:3a: af:b2:03:8a:32:8d:57:a8:d5:8b:21:3b:1c:4e:c1: dd:e2:64:f7:01:a6:08:b6:ef:f3:a9:ad:be:dd:81: 5f:f7:fd:fe:df:25:90:60:48:21:ed:fe:09:2d:24: 9b:b8:bd:99:b9:bd:f5:5a:19:7d:7b:b4:52:4f:32: bd:35:fd:1c:0d:42:d6:83:05:e7:f8:f0:08:12:f6: 98:93:3f:e0:c0:57:94:92:1f:c6:ec:a4:3b:85:2a: 25:07:a9:ad:bc:8b:b1:ad:5d:65:51:79:91:b5:51: 73:ac:28:ec:20:07:e2:f6:32:08:d2:e7:9d:24:34: 7b:ed:b1:a8:a2:fc:af:03:91:f8:eb:b7:a2:ba:34: 44:36:61:e2:dd:e0:2d:61:5f:85:07:5b:66:3a:5b: f8:88:3c:0a:25:bf:9b:80:ca:d1:f8:2e:02:5d:ff: 68:bc:7a:95:c5:ba:f5:a0:6a:78:19:80:a3:b9:88: 36:9c:4a:54:73:7f:e7:d2:be:93:09:2e:23:7b:1c: 81:4f:44:32:a4:75:90:d7:38:60:c0:d0:57:10:12: 82:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7E:E1:9C:91:04:4C:74:67:6E:6F:FF:66:E3:EB:5D:8E:A0:AE:95 X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:47:ad:2a:67:10:94:aa:d4:3b:62:a9:8b:e1:06:d3:f8:26: f5:a2:3a:0f:b6:29:c8:33:d9:2c:4e:66:fa:2c:d3:f6:24:5f: 71:06:cd:08:31:16:e3:54:5c:46:9b:61:df:d5:49:a1:44:d5: 00:c5:a3:75:0d:55:1f:51:02:5f:37:09:5c:6c:7e:a1:04:55: 61:7c:a6:61:22:8c:1e:34:7a:b7:18:5c:30:0f:5b:25:99:ca: 4b:9a:2c:e7:e9:1a:04:4f:dd:17:91:2a:5c:b1:ce:c3:db:a3: d2:b2:d7:8e:59:41:4f:8f:f8:8d:97:29:02:de:20:58:0b:50: 3a:02:85:7d:ca:56:7b:3c:0b:83:53:58:aa:ef:ae:f4:f6:83: f4:20:89:52:03:49:9d:3a:1f:23:c4:4e:86:cf:31:7e:ad:69: 3d:7f:0e:bf:37:81:d1:67:bb:30:ff:4d:cc:7a:dc:53:22:de: 4f:ee:28:b3:c5:a5:cb:21:bd:b0:ae:f5:d8:af:3a:34:89:56: b2:38:93:17:13:f8:d2:78:c2:6b:0e:d0:af:ee:c4:46:dd:b5: a5:21:7a:8f:a3:eb:2a:ba:96:c2:00:cb:4f:50:1e:06:6e:81: c7:39:fa:4e:78:5a:33:94:19:da:e8:b5:ca:20:68:94:8b:c0: 5b:ae:0a:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPYdXAVuJq8okLbKuUZaj02nPMmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFG NjhCMTI1RTAeFw0yNTA4MDYxMTU1NTlaFw0yNTA4MDkxNzUyNTlaMDMxMTAvBgNV BAMTKDdGN0VFMTlDOTEwNDRDNzQ2NzZFNkZGRjY2RTNFQjVEOEVBMEFFOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv+I0Iar9yoSm8HlbuX67tv9r5 6qExBn+4IktI98pGE5BjRXb5PPx0vBHYOq+yA4oyjVeo1YshOxxOwd3iZPcBpgi2 7/Oprb7dgV/3/f7fJZBgSCHt/gktJJu4vZm5vfVaGX17tFJPMr01/RwNQtaDBef4 8AgS9piTP+DAV5SSH8bspDuFKiUHqa28i7GtXWVReZG1UXOsKOwgB+L2MgjS550k NHvtsaii/K8Dkfjrt6K6NEQ2YeLd4C1hX4UHW2Y6W/iIPAolv5uAytH4LgJd/2i8 epXFuvWgangZgKO5iDacSlRzf+fSvpMJLiN7HIFPRDKkdZDXOGDA0FcQEoJbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf37hnJEETHRnbm//ZuPrXY6grpUwHwYDVR0j BBgwFoAU1oynxvUU1xaMAHkHF/uGmvaLEl4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x ZGRjMWRkOC02ZDI1LTQ3YzctYWFhNC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1 MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIxMjVFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2OUFGNjhC MTI1RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWRkYzFkZDgtNmQyNS00N2M3LWFh YTQtYmRkZjFiOWQ2NzdlLzAvRDY4Q0E3QzZGNTE0RDcxNjhDMDA3OTA3MTdGQjg2 OUFGNjhCMTI1RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGhHrSpnEJSq1DtiqYvhBtP4JvWiOg+2Kcgz 2SxOZvos0/YkX3EGzQgxFuNUXEabYd/VSaFE1QDFo3UNVR9RAl83CVxsfqEEVWF8 pmEijB40ercYXDAPWyWZykuaLOfpGgRP3ReRKlyxzsPbo9Ky145ZQU+P+I2XKQLe IFgLUDoChX3KVns8C4NTWKrvrvT2g/QgiVIDSZ06HyPETobPMX6taT1/Dr83gdFn uzD/Tcx63FMi3k/uKLPFpcshvbCu9divOjSJVrI4kxcT+NJ4wmsO0K/uxEbdtaUh eo+j6yq6lsIAy09QHgZugcc5+k54WjOUGdrotcogaJSLwFuuCrw= -----END CERTIFICATE-----Generated at Thu Aug 7 14:35:51 2025 by rpki-client