$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: ZU1bqLwwigDtUl0eZK0bTVXRSff/nyt/hKb5H3OWlI4= Subject key identifier: F3:BD:44:5E:D3:1D:7E:B9:AC:C5:B4:8D:81:D7:51:76:2A:98:79:7F Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 49058F2201BAEC8CA02D44E6EB0EB9E8F45F6118 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 0230 Signing time: Thu 16 Apr 2026 12:42:06 +0000 Manifest this update: Thu 16 Apr 2026 12:37:06 +0000 Manifest next update: Sun 19 Apr 2026 12:45:06 +0000 Files and hashes: 1: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: iCduLU9zI30RAEv1sLDRSOfGWoj34wqC28vUy+HI4+0=) 2: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: 9XabV5C+bxTzwQpxWRFJ2J0ODxVlFWpwxY4ZIRRll5s=) 3: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: avxCSiDbdDW7kOsh1a+dBlMPbboYpQF+S49u7QzrJXw=) 4: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: 4vYKKc9gCQNLGbY6CdycYfIML4Cvt54/Y7bjgPLGEYU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 12:45:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:05:8f:22:01:ba:ec:8c:a0:2d:44:e6:eb:0e:b9:e8:f4:5f:61:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Apr 16 12:37:06 2026 GMT Not After : Apr 19 12:45:06 2026 GMT Subject: CN=F3BD445ED31D7EB9ACC5B48D81D751762A98797F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f4:be:8f:02:f9:4c:73:30:07:54:47:3c:e2: cf:51:e7:20:4c:0f:f8:de:ef:56:9a:77:e9:34:b3: 2f:c5:ca:e2:85:bd:23:bc:cd:41:af:2a:89:6d:a7: 6a:33:23:e7:e8:19:a2:47:27:ce:ba:f8:55:18:33: 99:a1:14:80:e9:7f:be:9e:73:93:66:73:85:a5:28: a7:c4:45:33:fe:40:b0:61:45:72:76:ee:39:c7:d8: af:3c:c7:bf:9d:74:ef:2f:ce:d6:cb:95:2f:25:25: 73:d1:35:b9:d2:02:7b:9e:8a:ce:b4:7b:6f:de:e2: 78:36:b3:99:06:b5:78:7b:3b:2a:6f:74:73:b7:3c: c8:f3:90:b3:c8:e5:06:b7:b7:76:42:92:7c:23:2f: bc:c2:9b:f7:70:7c:37:fc:23:a7:a8:2d:36:f1:f6: 61:41:e0:f0:ca:22:0a:43:f9:6b:bf:20:f7:fc:0f: e7:ae:a6:2e:cc:22:2e:82:7d:3e:97:38:8c:7c:9c: dc:89:da:dd:9d:ec:e2:47:4b:fe:85:a3:b0:65:a0: e3:f8:ca:25:84:33:54:2f:ed:82:52:44:c3:df:95: bb:c4:2a:6c:19:01:09:b8:62:1c:ae:88:63:46:1b: b2:79:e9:7f:e3:06:69:5b:38:a5:99:3a:22:49:61: 0c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:BD:44:5E:D3:1D:7E:B9:AC:C5:B4:8D:81:D7:51:76:2A:98:79:7F X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d2:71:ce:8f:cd:b0:12:a5:34:f8:b8:0a:06:8a:90:7d:3d:38: 45:ec:27:84:f2:c5:5e:de:77:6d:fd:52:24:ec:23:ce:77:15: cc:e9:47:9e:b2:8d:dd:fe:a6:4b:2c:d1:97:1d:1b:3d:4f:8c: b9:8d:c7:09:20:e6:ea:15:b2:02:c9:6c:66:ee:28:a9:45:61: ce:99:49:c4:55:96:de:75:50:59:de:7a:ca:18:cb:a6:ab:8a: 76:01:a3:22:de:0d:1d:7a:3d:cc:fc:0c:ae:66:69:5a:10:d2: 7b:2b:28:ed:d9:0a:e9:05:41:8b:42:2f:f0:db:2b:2d:40:46: 5d:70:97:a9:75:1c:b7:c4:12:13:ab:e7:44:a2:d7:5f:19:ff: 57:eb:0e:37:47:c4:c1:c5:67:45:bb:74:a6:f7:4d:9f:79:b1: e5:da:a5:04:52:3e:da:f4:ea:25:39:dc:4a:dc:72:6a:37:65: e7:90:f2:b6:a0:d4:ba:72:6e:0d:3e:8d:a6:fa:c6:e9:6c:1e: 02:3e:5d:fb:25:74:45:7d:53:6b:b6:39:fa:a6:9e:83:12:ac: 38:bc:cd:fe:aa:03:b8:a0:f3:ab:eb:04:e4:e1:67:a7:a0:49: 1d:48:a9:c3:fe:90:c3:71:7f:e2:16:aa:eb:65:18:4d:6c:5f: 28:e4:a0:2e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSQWPIgG67IygLUTm6w656PRfYRgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNjA0MTYxMjM3MDZaFw0yNjA0MTkxMjQ1MDZaMDMxMTAvBgNV BAMTKEYzQkQ0NDVFRDMxRDdFQjlBQ0M1QjQ4RDgxRDc1MTc2MkE5ODc5N0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG9L6PAvlMczAHVEc84s9R5yBM D/je71aad+k0sy/FyuKFvSO8zUGvKoltp2ozI+foGaJHJ866+FUYM5mhFIDpf76e c5Nmc4WlKKfERTP+QLBhRXJ27jnH2K88x7+ddO8vztbLlS8lJXPRNbnSAnueis60 e2/e4ng2s5kGtXh7OypvdHO3PMjzkLPI5Qa3t3ZCknwjL7zCm/dwfDf8I6eoLTbx 9mFB4PDKIgpD+Wu/IPf8D+eupi7MIi6CfT6XOIx8nNyJ2t2d7OJHS/6Fo7BloOP4 yiWEM1Qv7YJSRMPflbvEKmwZAQm4YhyuiGNGG7J56X/jBmlbOKWZOiJJYQy7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU871EXtMdfrmsxbSNgddRdiqYeX8wHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANJxzo/NsBKlNPi4CgaKkH09OEXsJ4TyxV7e d239UiTsI853FczpR56yjd3+pkss0ZcdGz1PjLmNxwkg5uoVsgLJbGbuKKlFYc6Z ScRVlt51UFneesoYy6arinYBoyLeDR16Pcz8DK5maVoQ0nsrKO3ZCukFQYtCL/Db Ky1ARl1wl6l1HLfEEhOr50Si118Z/1frDjdHxMHFZ0W7dKb3TZ95seXapQRSPtr0 6iU53Erccmo3ZeeQ8rag1Lpybg0+jab6xulsHgI+XfsldEV9U2u2OfqmnoMSrDi8 zf6qA7ig86vrBOThZ6egSR1IqcP+kMNxf+IWqutlGE1sXyjkoC4= -----END CERTIFICATE-----Generated at Fri Apr 17 19:28:16 2026 by rpki-client