$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: cV422MJhF3vQb6WRRlun7e0LE9n9lRXh+Rw+NL51+4k= Subject key identifier: 26:5D:A6:6C:71:48:55:C4:B2:B3:5C:C4:F3:0A:C3:E2:01:DA:7A:7E Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 2C5BDEBB87FA6F54B639E4DCEED1C1286528CFF6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01C0 Signing time: Thu 07 Aug 2025 13:51:48 +0000 Manifest this update: Thu 07 Aug 2025 13:46:48 +0000 Manifest next update: Sun 10 Aug 2025 21:24:48 +0000 Files and hashes: 1: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: fGeQBiKX+xxqfH1XXT4otHk8nTCoBgbZ9CMCkIFVfP8=) 2: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: lCbd3WaTjjFDIsOCBjZS1l+Z1iKfKlGqKIYbE+MTC5Q=) 3: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: n7fDyeuU1HQZdFIYr/m3ZztFKIf2iIRMeVjsry1/EpQ=) 4: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: nSaffT2loCbCY4DbpP8GpLCrFZYYKh3bE+jC1cyDP9Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 21:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:5b:de:bb:87:fa:6f:54:b6:39:e4:dc:ee:d1:c1:28:65:28:cf:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Aug 7 13:46:48 2025 GMT Not After : Aug 10 21:24:48 2025 GMT Subject: CN=265DA66C714855C4B2B35CC4F30AC3E201DA7A7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a1:54:87:91:20:a9:09:f6:eb:a6:94:4d:56: 38:5f:00:eb:9c:c1:ab:e2:32:bf:6e:c0:83:e1:79: c3:9e:38:fb:3a:d8:d1:9a:53:16:8a:4c:c6:c1:ab: df:cb:cf:26:b5:b5:59:5d:cc:91:71:91:37:29:48: 28:63:81:c3:35:b0:c9:50:bc:b7:92:34:bf:4a:e0: b8:7b:b0:4c:da:ce:67:a0:19:7c:a1:b9:90:8d:d4: 8f:be:c5:82:9e:10:48:1f:ab:90:91:b1:d9:18:fb: 71:07:25:ef:5e:c2:63:6f:a0:7a:b5:2a:11:c7:4f: f8:2a:3e:80:e1:f0:48:70:9a:1c:fa:07:22:46:9d: 87:d2:db:09:02:95:63:76:1f:9c:9a:ec:49:40:8e: e3:69:17:d1:b1:70:4a:87:87:53:59:82:1c:b0:b2: 4e:87:12:ab:e6:90:fa:95:eb:9e:d3:53:ba:7a:77: 5a:50:17:69:2e:a2:a4:5b:c5:42:53:f4:77:56:48: ea:79:7e:38:1c:9e:0c:ad:56:42:98:39:80:99:ea: 70:97:89:9b:64:9d:2c:dd:88:d7:8a:76:fb:cd:ff: 6f:ef:08:7c:e1:39:a1:5c:4c:66:89:f5:60:36:85: 37:64:7a:f3:c6:aa:e1:6f:c2:bd:6b:65:04:5d:55: 77:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:5D:A6:6C:71:48:55:C4:B2:B3:5C:C4:F3:0A:C3:E2:01:DA:7A:7E X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ce:99:3b:6e:bc:49:de:69:c0:0e:ec:31:23:f3:12:cd:f8:bc: 7f:cc:c7:4d:9d:c1:ad:81:d6:23:a3:90:55:71:f9:84:3f:cb: 97:33:72:93:8b:ef:c3:08:76:29:a8:a7:60:47:f9:3a:d2:2c: 4f:48:d1:16:68:6e:92:be:e9:1d:16:32:0e:dd:ae:ab:3e:e9: c4:10:1b:02:85:d9:56:16:5e:8b:ff:37:b2:fe:95:20:43:f5: 2a:1e:ae:06:3c:42:9b:dc:8e:b7:da:a3:ac:a9:4f:ba:43:e6: 19:b7:a7:10:66:c8:0f:3e:17:b0:d2:82:3a:c7:62:bd:c5:b1: ef:0a:b4:35:44:1c:c5:9f:f9:e5:b7:b2:c7:f4:98:ba:2f:e5: 87:9b:97:b0:67:00:bc:9d:57:2c:00:af:23:18:5b:34:de:52: db:b2:2c:bb:cc:88:70:5a:15:be:b5:d3:81:cb:b9:28:21:59: fc:6f:60:c3:a3:29:13:19:fd:ca:99:11:ec:1b:53:0c:34:06: ba:dd:cf:b9:e3:99:b9:61:3c:c6:fd:a5:79:34:be:e8:43:97: 29:37:ac:84:d0:2f:b0:5d:bd:bf:17:6c:06:67:8b:44:2f:f6: 42:84:e9:b1:86:6e:7c:67:eb:11:25:05:43:f5:38:b6:b0:18: 7a:df:34:4f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIULFveu4f6b1S2OeTc7tHBKGUoz/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTA4MDcxMzQ2NDhaFw0yNTA4MTAyMTI0NDhaMDMxMTAvBgNV BAMTKDI2NURBNjZDNzE0ODU1QzRCMkIzNUNDNEYzMEFDM0UyMDFEQTdBN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCoVSHkSCpCfbrppRNVjhfAOuc waviMr9uwIPhecOeOPs62NGaUxaKTMbBq9/Lzya1tVldzJFxkTcpSChjgcM1sMlQ vLeSNL9K4Lh7sEzazmegGXyhuZCN1I++xYKeEEgfq5CRsdkY+3EHJe9ewmNvoHq1 KhHHT/gqPoDh8Ehwmhz6ByJGnYfS2wkClWN2H5ya7ElAjuNpF9GxcEqHh1NZghyw sk6HEqvmkPqV657TU7p6d1pQF2kuoqRbxUJT9HdWSOp5fjgcngytVkKYOYCZ6nCX iZtknSzdiNeKdvvN/2/vCHzhOaFcTGaJ9WA2hTdkevPGquFvwr1rZQRdVXe/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJl2mbHFIVcSys1zE8wrD4gHaen4wHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAM6ZO268Sd5pwA7sMSPzEs34vH/Mx02dwa2B 1iOjkFVx+YQ/y5czcpOL78MIdimop2BH+TrSLE9I0RZobpK+6R0WMg7drqs+6cQQ GwKF2VYWXov/N7L+lSBD9SoergY8Qpvcjrfao6ypT7pD5hm3pxBmyA8+F7DSgjrH Yr3Fse8KtDVEHMWf+eW3ssf0mLov5Yebl7BnALydVywAryMYWzTeUtuyLLvMiHBa Fb6104HLuSghWfxvYMOjKRMZ/cqZEewbUww0Brrdz7njmblhPMb9pXk0vuhDlyk3 rITQL7Bdvb8XbAZni0Qv9kKE6bGGbnxn6xElBUP1OLawGHrfNE8= -----END CERTIFICATE-----Generated at Thu Aug 7 23:56:58 2025 by rpki-client