$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: QZ7v81859A4/DVf5KdzChAe3BUp7UTHi603DjuVdvuc= Subject key identifier: 73:D5:1F:33:09:53:11:F8:E0:D7:3D:89:B7:CD:7B:73:45:A1:90:18 Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 1FD14DF340180A5176194F0FFA9B6F69A0975084 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01E8 Signing time: Tue 04 Nov 2025 00:51:48 +0000 Manifest this update: Tue 04 Nov 2025 00:46:48 +0000 Manifest next update: Fri 07 Nov 2025 06:55:48 +0000 Files and hashes: 1: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: 4vYKKc9gCQNLGbY6CdycYfIML4Cvt54/Y7bjgPLGEYU=) 2: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: e2uYoXWjXhWWAnwkU6QejgRxnl6jKnzLn9lV9/z9q7o=) 3: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: avxCSiDbdDW7kOsh1a+dBlMPbboYpQF+S49u7QzrJXw=) 4: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: 9XabV5C+bxTzwQpxWRFJ2J0ODxVlFWpwxY4ZIRRll5s=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 06:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d1:4d:f3:40:18:0a:51:76:19:4f:0f:fa:9b:6f:69:a0:97:50:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Nov 4 00:46:48 2025 GMT Not After : Nov 7 06:55:48 2025 GMT Subject: CN=73D51F33095311F8E0D73D89B7CD7B7345A19018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:32:a3:06:fd:05:74:de:66:a0:2d:73:e6:d4: 63:85:a1:ea:8b:6e:19:ae:b6:58:d0:73:b8:1a:e1: c2:15:f1:ac:84:5f:65:53:ea:5c:7d:bf:58:9b:85: cc:2f:d6:a5:f8:c3:96:01:5b:d0:ba:4b:98:40:af: 1e:be:90:36:d7:8b:39:7b:96:4b:37:6e:de:3a:3f: ca:08:cd:22:94:1e:10:92:87:3a:df:5d:41:26:87: 3f:19:14:24:a2:5a:82:72:e0:b2:b5:af:e6:5c:9b: 63:5e:7f:bf:cf:c8:8a:bf:84:26:1b:73:10:2f:89: 02:dd:9d:02:17:11:4e:2a:94:42:9e:ce:c2:0e:57: f4:94:fd:a9:1a:36:1b:6d:47:a7:af:ec:c3:a8:bf: 01:06:0a:ce:9e:74:c8:18:49:b6:90:ac:8d:39:2a: d3:57:fe:75:87:51:fa:da:8c:9d:78:c8:40:71:98: 13:51:b1:fa:cc:d7:5d:0f:23:50:dd:db:d0:6c:00: 34:c3:d6:3f:12:b1:d3:be:aa:ea:7a:83:ea:ab:0f: 08:72:0c:6e:82:bf:23:b4:bf:c9:3f:a7:48:06:e7: 95:21:fb:78:78:26:ab:d8:ac:d8:1a:f7:b2:f5:79: f5:4d:24:f9:33:6e:8f:d1:42:21:1e:7f:2c:52:2f: 8f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:D5:1F:33:09:53:11:F8:E0:D7:3D:89:B7:CD:7B:73:45:A1:90:18 X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:b6:58:ce:96:8e:ff:34:97:c7:09:90:fd:e9:00:17:19:af: 88:ed:41:f1:25:5c:23:88:23:e3:47:e3:4b:33:33:a3:31:a0: 93:6a:2d:c3:f4:e4:63:30:d5:55:c0:0d:7f:44:8c:e9:c6:d8: 4c:a5:ce:49:15:23:26:ce:fa:f4:b0:9f:e3:94:14:1f:38:bd: e5:3e:3f:cb:1f:27:fd:8c:74:3f:92:1c:7b:16:14:30:bd:f6: a3:08:53:0e:e1:bf:73:42:a8:bb:97:3b:01:74:2c:a7:f2:97: dd:3c:de:e3:0b:0c:c9:2c:94:33:3e:a7:51:5e:7f:18:b2:40: 4e:e5:cd:a0:9f:46:14:be:0e:ac:16:43:53:8b:75:32:c0:7a: f0:82:8d:31:ff:17:42:26:e5:25:f1:f1:71:7d:f2:b8:b2:51: 16:4d:3b:6c:a0:95:e5:a4:27:67:66:5f:25:f1:7e:d9:fd:cd: f4:2f:5e:79:a4:a7:6d:2d:fb:0c:01:5e:12:9e:eb:16:21:61: 02:d6:6c:bd:13:3f:07:ed:8d:f5:be:e0:ab:53:2c:b9:f1:7c: d3:ad:f2:24:01:00:09:1d:0a:bd:23:7b:35:02:11:06:11:df: 91:b4:9f:df:ee:8f:4c:31:78:89:97:5c:cd:4d:66:83:d8:72: 26:c3:c2:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH9FN80AYClF2GU8P+ptvaaCXUIQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTExMDQwMDQ2NDhaFw0yNTExMDcwNjU1NDhaMDMxMTAvBgNV BAMTKDczRDUxRjMzMDk1MzExRjhFMEQ3M0Q4OUI3Q0Q3QjczNDVBMTkwMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiMqMG/QV03magLXPm1GOFoeqL bhmutljQc7ga4cIV8ayEX2VT6lx9v1ibhcwv1qX4w5YBW9C6S5hArx6+kDbXizl7 lks3bt46P8oIzSKUHhCShzrfXUEmhz8ZFCSiWoJy4LK1r+Zcm2Nef7/PyIq/hCYb cxAviQLdnQIXEU4qlEKezsIOV/SU/akaNhttR6ev7MOovwEGCs6edMgYSbaQrI05 KtNX/nWHUfrajJ14yEBxmBNRsfrM110PI1Dd29BsADTD1j8SsdO+qup6g+qrDwhy DG6CvyO0v8k/p0gG55Uh+3h4JqvYrNga97L1efVNJPkzbo/RQiEefyxSL48vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUc9UfMwlTEfjg1z2Jt817c0WhkBgwHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFW2WM6Wjv80l8cJkP3pABcZr4jtQfElXCOI I+NH40szM6MxoJNqLcP05GMw1VXADX9EjOnG2EylzkkVIybO+vSwn+OUFB84veU+ P8sfJ/2MdD+SHHsWFDC99qMIUw7hv3NCqLuXOwF0LKfyl9083uMLDMkslDM+p1Fe fxiyQE7lzaCfRhS+DqwWQ1OLdTLAevCCjTH/F0Im5SXx8XF98riyURZNO2ygleWk J2dmXyXxftn9zfQvXnmkp20t+wwBXhKe6xYhYQLWbL0TPwftjfW+4KtTLLnxfNOt 8iQBAAkdCr0jezUCEQYR35G0n9/uj0wxeImXXM1NZoPYcibDwh4= -----END CERTIFICATE-----Generated at Tue Nov 4 02:20:31 2025 by rpki-client