$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: 7mN9L378IHSHQzj5WxpSE0//Tphl4BMdNqAp8/Deeco= Subject key identifier: 6D:00:8D:55:62:C9:A7:BB:9C:31:72:10:43:C9:4E:D5:D2:E7:9E:6F Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 12D7A2F3813EC4F69743E700D6C7DC84AB3D5FBB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01E1 Signing time: Sun 19 Oct 2025 04:11:48 +0000 Manifest this update: Sun 19 Oct 2025 04:06:48 +0000 Manifest next update: Wed 22 Oct 2025 14:30:48 +0000 Files and hashes: 1: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: 4YIe4LVmWJBMytcdBOyYmyaRo2sDkKqspG1oMWOquJY=) 2: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: 9XabV5C+bxTzwQpxWRFJ2J0ODxVlFWpwxY4ZIRRll5s=) 3: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: 4vYKKc9gCQNLGbY6CdycYfIML4Cvt54/Y7bjgPLGEYU=) 4: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: avxCSiDbdDW7kOsh1a+dBlMPbboYpQF+S49u7QzrJXw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 14:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d7:a2:f3:81:3e:c4:f6:97:43:e7:00:d6:c7:dc:84:ab:3d:5f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Oct 19 04:06:48 2025 GMT Not After : Oct 22 14:30:48 2025 GMT Subject: CN=6D008D5562C9A7BB9C31721043C94ED5D2E79E6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d6:18:63:1a:8a:0b:4a:f5:76:0f:f0:c8:82: d0:e7:31:55:57:89:91:b7:07:2e:e1:57:5f:94:ce: fa:f5:92:27:2e:66:56:72:73:b5:19:de:83:53:aa: fc:c8:ab:f2:cf:1e:3b:f6:d6:5d:51:4f:30:0c:bb: 88:5e:2f:9f:75:2b:a3:9d:7e:d8:48:98:b7:f9:81: d6:ba:06:b7:55:e5:5f:4a:95:13:ca:e3:ba:08:73: ba:df:87:7e:15:b4:89:e4:d2:80:ff:f9:0c:60:0f: 91:55:0e:b7:a3:30:3f:7e:6c:0a:6c:88:5f:7a:5e: f3:bf:50:f9:23:f4:3a:f3:b1:c3:4b:11:c4:7c:88: 88:2e:99:4e:86:33:e3:7f:4c:b0:3c:05:5d:01:c3: fa:36:e0:ba:7e:6f:f1:97:a5:b3:9f:88:ae:08:8c: b7:4b:82:4b:cf:27:47:03:5e:df:11:85:9f:a0:4b: 03:fe:42:b8:f3:db:66:4e:c5:c2:12:dd:08:2d:d7: 08:29:7d:82:a4:5d:0a:fc:7b:dc:11:62:11:e5:15: 72:79:44:84:4d:3a:a5:bc:f2:45:6f:ed:53:63:66: c3:c7:00:52:41:e7:6f:38:6c:1a:64:15:67:f5:ae: 77:2b:2a:d7:f5:98:de:7b:81:fb:7b:ee:fc:4f:1c: 10:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:00:8D:55:62:C9:A7:BB:9C:31:72:10:43:C9:4E:D5:D2:E7:9E:6F X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:ec:92:67:86:1e:7f:f8:8a:72:7c:07:4d:94:18:61:00:75: c8:b6:26:87:5a:24:78:55:50:2b:fe:d0:58:8a:a2:2b:86:bc: 0b:e6:aa:a8:bd:8c:f1:a2:6e:32:11:b8:f1:c2:ef:20:c1:ba: 86:14:b8:15:c6:1e:39:d3:44:11:68:5c:3e:fb:76:49:83:a5: af:55:de:16:89:fb:96:31:9a:44:de:54:1c:67:b6:ca:88:76: 2c:97:0d:76:12:68:42:55:2b:d1:a1:3c:6d:75:ba:8e:fe:26: ab:50:4f:b1:d7:e2:68:97:51:67:e6:97:29:d4:87:d5:bf:ef: 39:34:66:60:c9:55:c1:a2:e5:4a:aa:c8:47:5e:90:d0:57:0b: 92:5f:1b:73:3b:bd:cb:69:61:d9:8e:e8:b8:ef:4e:08:aa:a2: b8:b3:e5:19:10:c3:da:29:82:76:20:4f:b4:76:5c:11:60:d2: 6c:ae:f9:6c:62:6b:33:e3:06:ce:bc:41:48:05:fc:73:70:90: 73:da:b6:88:b0:a9:1d:d3:3a:eb:4c:eb:60:a5:d5:66:55:62: e9:7f:d0:29:61:b5:59:0e:61:af:9e:4d:a9:e5:ed:e0:7d:a3: 1c:e6:f6:d2:cb:05:c3:38:52:83:60:b3:66:81:8a:af:ff:ca: 47:7c:e8:63 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEtei84E+xPaXQ+cA1sfchKs9X7swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTEwMTkwNDA2NDhaFw0yNTEwMjIxNDMwNDhaMDMxMTAvBgNV BAMTKDZEMDA4RDU1NjJDOUE3QkI5QzMxNzIxMDQzQzk0RUQ1RDJFNzlFNkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC71hhjGooLSvV2D/DIgtDnMVVX iZG3By7hV1+Uzvr1kicuZlZyc7UZ3oNTqvzIq/LPHjv21l1RTzAMu4heL591K6Od fthImLf5gda6BrdV5V9KlRPK47oIc7rfh34VtInk0oD/+QxgD5FVDrejMD9+bAps iF96XvO/UPkj9DrzscNLEcR8iIgumU6GM+N/TLA8BV0Bw/o24Lp+b/GXpbOfiK4I jLdLgkvPJ0cDXt8RhZ+gSwP+Qrjz22ZOxcIS3Qgt1wgpfYKkXQr8e9wRYhHlFXJ5 RIRNOqW88kVv7VNjZsPHAFJB5284bBpkFWf1rncrKtf1mN57gft77vxPHBD7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbQCNVWLJp7ucMXIQQ8lO1dLnnm8wHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAILskmeGHn/4inJ8B02UGGEAdci2JodaJHhV UCv+0FiKoiuGvAvmqqi9jPGibjIRuPHC7yDBuoYUuBXGHjnTRBFoXD77dkmDpa9V 3haJ+5YxmkTeVBxntsqIdiyXDXYSaEJVK9GhPG11uo7+JqtQT7HX4miXUWfmlynU h9W/7zk0ZmDJVcGi5UqqyEdekNBXC5JfG3M7vctpYdmO6LjvTgiqoriz5RkQw9op gnYgT7R2XBFg0myu+WxiazPjBs68QUgF/HNwkHPatoiwqR3TOutM62Cl1WZVYul/ 0ClhtVkOYa+eTanl7eB9oxzm9tLLBcM4UoNgs2aBiq//ykd86GM= -----END CERTIFICATE-----Generated at Mon Oct 20 09:40:40 2025 by rpki-client