$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: r8exGyZDc8MS8KH5N2rXiQU/f1OlE4xyUcvlDPJ8Yk0= Subject key identifier: 8D:6F:06:F9:FD:51:9C:6C:89:A3:0A:5B:30:D4:21:03:60:EA:8B:29 Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 6C9E5E80329290515E974A3E7AE88F000DBC7624 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01B8 Signing time: Sat 19 Jul 2025 22:41:45 +0000 Manifest this update: Sat 19 Jul 2025 22:36:45 +0000 Manifest next update: Wed 23 Jul 2025 06:36:45 +0000 Files and hashes: 1: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: nSaffT2loCbCY4DbpP8GpLCrFZYYKh3bE+jC1cyDP9Y=) 2: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: nTTz7tqw02oKYzeRw8s7NxmyvuErdGZADM7MwR7I0Ak=) 3: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: fGeQBiKX+xxqfH1XXT4otHk8nTCoBgbZ9CMCkIFVfP8=) 4: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: n7fDyeuU1HQZdFIYr/m3ZztFKIf2iIRMeVjsry1/EpQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Jul 2025 06:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:9e:5e:80:32:92:90:51:5e:97:4a:3e:7a:e8:8f:00:0d:bc:76:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Jul 19 22:36:45 2025 GMT Not After : Jul 23 06:36:45 2025 GMT Subject: CN=8D6F06F9FD519C6C89A30A5B30D4210360EA8B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f8:5c:86:b4:62:56:9e:49:41:2c:0e:2f:fc: 60:cf:d4:91:d5:79:9b:c2:d8:08:03:16:4e:08:1f: 02:5c:a6:f6:5f:53:fd:fd:46:06:1c:eb:02:96:4d: 45:b2:ab:b9:25:aa:57:dd:77:0e:83:9a:9d:e3:14: db:41:8a:d6:f5:52:f3:7e:57:a6:b4:6d:7f:3f:2f: c2:13:75:35:26:30:0f:76:3f:0d:36:0f:a7:b9:99: fb:5f:28:93:1a:78:6a:e7:4b:3d:de:d3:43:20:77: 6a:f6:bd:ae:db:8e:6f:3e:38:f9:29:0a:01:3f:76: ea:56:ee:91:96:4a:cf:d8:ec:dc:3b:38:9a:1e:29: f8:22:40:b2:dd:db:e2:d1:92:53:38:d0:dd:79:ea: 20:d8:c8:aa:ef:c2:31:ad:da:ca:36:a7:a3:6b:ae: 1f:54:f4:6f:e1:fe:68:4e:17:32:a5:66:9c:27:11: cb:20:70:bc:9e:f9:92:8d:ff:88:83:00:9e:a5:bd: ba:69:74:9d:c6:9f:7c:31:86:81:e6:dd:65:4c:31: f6:8a:e7:41:ae:e9:a9:53:2a:3a:7e:84:81:a1:b7: e1:0c:1b:fe:47:53:ce:38:32:5f:b6:69:de:eb:b6: 83:82:bd:04:3d:53:f0:7b:81:df:e2:e9:91:75:64: 87:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:6F:06:F9:FD:51:9C:6C:89:A3:0A:5B:30:D4:21:03:60:EA:8B:29 X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:9e:27:0d:ba:1a:f9:0c:f5:a8:bf:ff:bf:6f:00:bb:5e:98: 98:1d:44:c5:ec:42:70:fe:fe:46:44:71:fa:2a:a8:44:f5:5f: 41:24:ee:ea:50:8f:6b:14:22:11:93:06:ed:84:d7:e1:eb:d0: d9:1e:76:c5:9c:4f:5d:e9:04:82:b9:f7:b9:d4:b5:bd:4a:51: a4:8a:5a:3a:98:e1:e1:fe:cb:0a:97:4d:e6:f2:27:a4:d0:56: 18:14:e0:a7:9b:f9:54:2a:26:a2:b6:1f:a7:2d:a3:c5:13:39: 9b:7d:df:58:9d:e0:bc:d0:84:68:20:b5:85:0c:c1:0c:3b:53: 57:9b:65:af:e1:ef:c8:3c:5d:1b:e6:03:5f:b5:16:bc:26:d4: d9:6a:a1:dd:1e:5f:b7:c5:92:27:49:cd:4d:71:e6:71:e2:91: fb:db:ad:60:5b:af:b2:07:d0:6c:87:30:ef:4d:3e:3c:67:4c: ec:7d:f7:4f:bf:67:a1:34:bc:e5:91:f7:ec:78:be:30:75:21: 24:ee:fa:3d:14:f5:64:5a:6e:fe:7e:01:58:c8:99:75:a3:8b: b0:97:a5:18:20:59:44:27:18:df:26:de:e9:63:b9:5f:77:b2: ef:d5:e5:ed:de:d4:69:4f:88:89:e0:81:5b:31:69:58:eb:1f: 39:5a:cf:51 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbJ5egDKSkFFel0o+euiPAA28diQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTA3MTkyMjM2NDVaFw0yNTA3MjMwNjM2NDVaMDMxMTAvBgNV BAMTKDhENkYwNkY5RkQ1MTlDNkM4OUEzMEE1QjMwRDQyMTAzNjBFQThCMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS+FyGtGJWnklBLA4v/GDP1JHV eZvC2AgDFk4IHwJcpvZfU/39RgYc6wKWTUWyq7klqlfddw6Dmp3jFNtBitb1UvN+ V6a0bX8/L8ITdTUmMA92Pw02D6e5mftfKJMaeGrnSz3e00Mgd2r2va7bjm8+OPkp CgE/dupW7pGWSs/Y7Nw7OJoeKfgiQLLd2+LRklM40N156iDYyKrvwjGt2so2p6Nr rh9U9G/h/mhOFzKlZpwnEcsgcLye+ZKN/4iDAJ6lvbppdJ3Gn3wxhoHm3WVMMfaK 50Gu6alTKjp+hIGht+EMG/5HU844Ml+2ad7rtoOCvQQ9U/B7gd/i6ZF1ZIfnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjW8G+f1RnGyJowpbMNQhA2DqiykwHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEKeJw26GvkM9ai//79vALtemJgdRMXsQnD+ /kZEcfoqqET1X0Ek7upQj2sUIhGTBu2E1+Hr0NkedsWcT13pBIK597nUtb1KUaSK WjqY4eH+ywqXTebyJ6TQVhgU4Keb+VQqJqK2H6cto8UTOZt931id4LzQhGggtYUM wQw7U1ebZa/h78g8XRvmA1+1Frwm1Nlqod0eX7fFkidJzU1x5nHikfvbrWBbr7IH 0GyHMO9NPjxnTOx990+/Z6E0vOWR9+x4vjB1ISTu+j0U9WRabv5+AVjImXWji7CX pRggWUQnGN8m3uljuV93su/V5e3e1GlPiInggVsxaVjrHzlaz1E= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:49 2025 by rpki-client