$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: M4NjNs3W36qagNW34LYSfShvOg/6npn7trBvUQ+VoQU= Subject key identifier: 3D:27:08:D0:AC:06:86:13:B2:41:1C:90:7D:73:A5:E3:FE:6E:6C:6E Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 79BDD575B1A04A6EBB878D7F3BCDE77769601610 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01C6 Signing time: Thu 21 Aug 2025 08:21:49 +0000 Manifest this update: Thu 21 Aug 2025 08:16:49 +0000 Manifest next update: Sun 24 Aug 2025 13:54:49 +0000 Files and hashes: 1: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: fGeQBiKX+xxqfH1XXT4otHk8nTCoBgbZ9CMCkIFVfP8=) 2: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: nSaffT2loCbCY4DbpP8GpLCrFZYYKh3bE+jC1cyDP9Y=) 3: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: sVfm/7mvzTGGAtTWI47cKiO5hei2M3AfhMr3hxOAMhI=) 4: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: n7fDyeuU1HQZdFIYr/m3ZztFKIf2iIRMeVjsry1/EpQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:54:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:bd:d5:75:b1:a0:4a:6e:bb:87:8d:7f:3b:cd:e7:77:69:60:16:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Aug 21 08:16:49 2025 GMT Not After : Aug 24 13:54:49 2025 GMT Subject: CN=3D2708D0AC068613B2411C907D73A5E3FE6E6C6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bf:7e:53:d4:e0:0a:80:fd:69:7e:ab:68:2d: 42:ce:ab:5e:11:07:89:f1:6c:e9:02:28:3b:1f:c3: f5:83:aa:96:83:b4:7f:70:be:b1:49:13:b7:d6:70: bc:94:79:b5:71:90:9b:ae:73:6d:49:da:d4:a8:73: b4:48:11:9c:4b:38:64:a0:46:3c:a9:e5:1c:48:86: b1:c3:a4:ca:d7:5b:98:36:96:09:e7:f4:15:cb:a4: e0:a1:6e:8a:75:d0:d3:80:04:47:79:98:9a:37:6f: 9f:67:99:e9:41:bc:3e:27:8e:d6:ce:d8:38:d4:c9: 7e:dc:a7:28:a6:4c:4a:2c:03:58:e7:15:67:ea:74: 2f:16:6c:e3:03:0c:b8:8a:63:3d:3a:7b:b9:78:27: 67:77:23:aa:45:39:fa:83:ea:a0:50:8c:0c:c0:16: 86:49:9d:d7:be:02:1f:4d:b4:99:7a:c1:62:64:74: d7:fc:4b:48:c7:40:04:c5:b9:1e:28:64:d0:a5:b4: 92:a4:47:49:21:75:35:db:ee:7f:d7:de:20:01:2a: cf:bf:3c:43:ab:15:a2:96:6e:89:fb:39:52:f1:fc: 57:41:2b:e0:5d:e7:19:13:c5:32:7b:08:03:06:05: 51:9a:4a:a1:96:06:f5:5e:37:7d:a1:e7:e9:41:ce: ad:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:27:08:D0:AC:06:86:13:B2:41:1C:90:7D:73:A5:E3:FE:6E:6C:6E X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:9f:8e:37:50:f4:7c:14:ac:d1:0f:b7:13:0a:9f:24:3d:0a: 6c:5d:d3:83:7b:7a:8d:70:55:76:62:34:f6:ba:9c:05:a0:ea: fd:08:eb:02:8c:f6:8d:b6:ea:84:ec:7c:84:50:ec:f4:58:6d: 37:90:49:50:fb:af:a7:b0:ae:aa:87:d4:f7:7b:f1:81:1c:6c: 89:2e:1e:c9:38:f9:8b:92:e3:a7:9e:80:28:f2:22:77:31:58: 8c:f1:59:ef:df:c0:a3:28:0d:f2:10:14:cf:fa:35:34:23:c6: 2e:f6:ee:03:1e:c9:c6:cd:c5:4a:5a:59:1c:cb:8d:45:92:79: 4b:68:50:21:d6:5b:71:51:8b:e1:ab:10:cc:6d:14:23:6e:c8: 44:a7:59:72:64:98:ce:7c:bc:e0:c2:4f:7e:75:d5:c9:af:d7: 7d:cd:1c:30:cd:50:b9:4f:e9:ec:fe:15:7e:92:9e:dd:63:3a: c9:77:89:f0:92:bc:e5:d4:bd:99:c4:98:32:e6:d4:8f:98:69: ad:7d:0b:62:7f:e2:bd:b8:57:02:b6:8a:ae:d7:4e:97:9b:49: ef:2b:96:96:f1:c5:4c:fd:b2:ad:57:67:46:1e:66:42:cc:27: ff:45:70:7f:4a:4d:be:d7:1f:37:c8:a8:5b:d1:d2:38:ea:7d: 3b:24:6c:28 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeb3VdbGgSm67h41/O83nd2lgFhAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTA4MjEwODE2NDlaFw0yNTA4MjQxMzU0NDlaMDMxMTAvBgNV BAMTKDNEMjcwOEQwQUMwNjg2MTNCMjQxMUM5MDdENzNBNUUzRkU2RTZDNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPv35T1OAKgP1pfqtoLULOq14R B4nxbOkCKDsfw/WDqpaDtH9wvrFJE7fWcLyUebVxkJuuc21J2tSoc7RIEZxLOGSg Rjyp5RxIhrHDpMrXW5g2lgnn9BXLpOChbop10NOABEd5mJo3b59nmelBvD4njtbO 2DjUyX7cpyimTEosA1jnFWfqdC8WbOMDDLiKYz06e7l4J2d3I6pFOfqD6qBQjAzA FoZJnde+Ah9NtJl6wWJkdNf8S0jHQATFuR4oZNCltJKkR0khdTXb7n/X3iABKs+/ PEOrFaKWbon7OVLx/FdBK+Bd5xkTxTJ7CAMGBVGaSqGWBvVeN32h5+lBzq39AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUPScI0KwGhhOyQRyQfXOl4/5ubG4wHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGyfjjdQ9HwUrNEPtxMKnyQ9Cmxd04N7eo1w VXZiNPa6nAWg6v0I6wKM9o226oTsfIRQ7PRYbTeQSVD7r6ewrqqH1Pd78YEcbIku Hsk4+YuS46eegCjyIncxWIzxWe/fwKMoDfIQFM/6NTQjxi727gMeycbNxUpaWRzL jUWSeUtoUCHWW3FRi+GrEMxtFCNuyESnWXJkmM58vODCT3511cmv133NHDDNULlP 6ez+FX6Snt1jOsl3ifCSvOXUvZnEmDLm1I+Yaa19C2J/4r24VwK2iq7XTpebSe8r lpbxxUz9sq1XZ0YeZkLMJ/9FcH9KTb7XHzfIqFvR0jjqfTskbCg= -----END CERTIFICATE-----Generated at Sat Aug 23 12:28:25 2025 by rpki-client