$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: WCgegD8HVIWcUWp3bQb5KM8J3UWY+YLpcbaBDvLS9NA= Subject key identifier: 4A:FD:F3:D1:F5:05:78:72:0E:2E:DB:8D:61:7F:C7:47:A6:CD:54:54 Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 448343535E63B0509636610CC0796ACD0190D668 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01AF Signing time: Mon 30 Jun 2025 00:51:44 +0000 Manifest this update: Mon 30 Jun 2025 00:46:44 +0000 Manifest next update: Thu 03 Jul 2025 01:39:44 +0000 Files and hashes: 1: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: n7fDyeuU1HQZdFIYr/m3ZztFKIf2iIRMeVjsry1/EpQ=) 2: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: GQPY7ptI5Mp+JWVst8D19X2SUJ1Q5eAYkhFV/JPiS6c=) 3: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: nSaffT2loCbCY4DbpP8GpLCrFZYYKh3bE+jC1cyDP9Y=) 4: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: fGeQBiKX+xxqfH1XXT4otHk8nTCoBgbZ9CMCkIFVfP8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 01:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:83:43:53:5e:63:b0:50:96:36:61:0c:c0:79:6a:cd:01:90:d6:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Jun 30 00:46:44 2025 GMT Not After : Jul 3 01:39:44 2025 GMT Subject: CN=4AFDF3D1F50578720E2EDB8D617FC747A6CD5454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:90:8d:8d:b9:b2:3b:c7:17:4c:d8:b4:8d:4d: db:fd:07:c0:31:19:c6:3b:b1:2b:44:e2:3b:ab:f8: 58:e7:c5:39:2a:88:55:e1:50:13:40:d4:e7:b5:ec: 2d:44:47:04:a3:11:54:d2:a1:ff:8a:b1:ee:f6:4a: a9:69:50:57:70:75:67:90:69:bd:52:d2:a2:ad:e3: 88:8b:48:31:a5:37:33:93:8c:bc:b5:a8:88:4f:61: a8:ca:0d:0e:d0:ef:f5:ca:c3:c5:b2:92:5d:22:f4: a3:71:69:fc:f7:1a:b5:a9:3f:6e:08:58:04:0e:b1: 4a:2b:1d:7a:a5:06:8c:08:2c:b4:b2:24:90:10:ef: e2:d4:e4:41:1f:ca:bb:c7:09:e9:0e:f9:18:1b:8c: b3:7e:96:36:c9:31:dc:a1:83:c6:9f:2e:e2:cc:ec: aa:4a:1e:b1:6d:78:99:6c:23:84:b1:5b:ed:a6:74: 7c:92:7e:b6:d5:77:41:3d:cc:1d:dd:44:5e:2c:65: 04:15:2e:8b:ac:3d:48:dd:df:73:2c:03:a3:6a:70: 1f:dd:3a:bc:cb:24:c1:95:34:71:78:82:7e:f1:8f: 06:76:70:1d:9b:63:1e:0e:d7:4f:19:61:5a:55:98: 5f:a2:15:b0:6d:f5:18:ec:7b:dd:aa:d8:e8:c2:51: 9a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FD:F3:D1:F5:05:78:72:0E:2E:DB:8D:61:7F:C7:47:A6:CD:54:54 X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e3:3b:21:60:f8:fd:5f:29:ea:77:ac:ed:5e:da:91:d9:b6:34: 1d:ee:35:47:ad:9c:99:48:a1:21:48:5d:fb:29:a7:73:5f:01: 43:5f:f6:b5:58:f8:91:8b:68:39:60:18:ec:45:c3:3a:6e:9c: 1c:db:99:8b:c5:5d:54:ea:63:21:22:63:08:1d:54:17:88:5a: 0e:28:c9:ea:15:eb:4e:79:7d:5f:b9:1a:11:f2:cd:49:b8:05: 76:e4:54:c5:24:a3:d8:f5:d7:13:24:a1:53:35:27:ca:6a:8a: 6f:50:2d:55:8f:fb:37:b4:20:e9:29:75:5a:ee:d0:01:2c:5f: 55:0f:3b:3f:66:c1:f9:76:94:f0:23:41:a9:56:f2:96:05:df: 16:49:65:fc:5d:07:a2:7c:03:f5:28:74:80:8e:6a:1b:ac:ff: 1f:8c:9e:5b:4a:01:50:36:00:de:0e:dc:d2:49:6a:b5:04:22: 9b:63:38:34:7f:be:55:f1:7c:57:4f:ef:d6:ca:32:2c:97:0e: 9c:b5:99:f2:a6:f1:ae:61:8e:c2:d9:96:f5:01:16:37:64:20: 8f:dc:5f:aa:5a:16:7c:de:9d:5d:69:ad:b4:d7:91:1b:84:fb: 06:22:45:ff:36:82:da:89:db:24:48:83:26:69:13:d0:04:8a: aa:8e:82:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURINDU15jsFCWNmEMwHlqzQGQ1mgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTA2MzAwMDQ2NDRaFw0yNTA3MDMwMTM5NDRaMDMxMTAvBgNV BAMTKDRBRkRGM0QxRjUwNTc4NzIwRTJFREI4RDYxN0ZDNzQ3QTZDRDU0NTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/kI2NubI7xxdM2LSNTdv9B8Ax GcY7sStE4jur+FjnxTkqiFXhUBNA1Oe17C1ERwSjEVTSof+Kse72SqlpUFdwdWeQ ab1S0qKt44iLSDGlNzOTjLy1qIhPYajKDQ7Q7/XKw8Wykl0i9KNxafz3GrWpP24I WAQOsUorHXqlBowILLSyJJAQ7+LU5EEfyrvHCekO+RgbjLN+ljbJMdyhg8afLuLM 7KpKHrFteJlsI4SxW+2mdHySfrbVd0E9zB3dRF4sZQQVLousPUjd33MsA6NqcB/d OrzLJMGVNHF4gn7xjwZ2cB2bYx4O108ZYVpVmF+iFbBt9Rjse92q2OjCUZqxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSv3z0fUFeHIOLtuNYX/HR6bNVFQwHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOM7IWD4/V8p6nes7V7akdm2NB3uNUetnJlI oSFIXfspp3NfAUNf9rVY+JGLaDlgGOxFwzpunBzbmYvFXVTqYyEiYwgdVBeIWg4o yeoV6055fV+5GhHyzUm4BXbkVMUko9j11xMkoVM1J8pqim9QLVWP+ze0IOkpdVru 0AEsX1UPOz9mwfl2lPAjQalW8pYF3xZJZfxdB6J8A/UodICOahus/x+MnltKAVA2 AN4O3NJJarUEIptjODR/vlXxfFdP79bKMiyXDpy1mfKm8a5hjsLZlvUBFjdkII/c X6paFnzenV1prbTXkRuE+wYiRf82gtqJ2yRIgyZpE9AEiqqOgl0= -----END CERTIFICATE-----Generated at Mon Jun 30 14:47:02 2025 by rpki-client