$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft File: DD29F5E4CE561760A0212F0448987AFBE75263D7.mft (raw, json) Hash identifier: KRF1DDyzcgczd4509D45/jkaHuVq1FpLqppsa/+3pyY= Subject key identifier: 31:7E:86:2C:46:40:8B:BE:BA:02:02:67:FB:9F:1C:6C:CE:BD:7E:3C Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 4643E8948B85B2C50B58FFD0F258A741F51A5021 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft Manifest number: 0320 Signing time: Sun 07 Sep 2025 02:12:06 +0000 Manifest this update: Sun 07 Sep 2025 02:07:06 +0000 Manifest next update: Wed 10 Sep 2025 09:54:06 +0000 Files and hashes: 1: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (hash: R+HBHXL62WCqMu+S9XZ2lfDd7q3jJVRrizTgz3Qq4sM=) 2: 323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa (hash: w6bNOjpU0I0jjnq/DeAF5pAdWd2fSBGqPyk3RRIO0Ys=) 3: 35382e3134372e3138362e302f32342d3234203d3e203234353334.roa (hash: X9EKF8Z1uFLJC9IzjlT1aPQkzE/clRuy5X9NkdqNVow=) 4: 3130332e34322e3132322e302f32342d3234203d3e203234353334.roa (hash: XqcXXJVRLAigakZzITIJ9WqM9shB4JwPgUNXZenmspo=) 5: 35382e3134372e3139302e302f32342d3234203d3e203234353334.roa (hash: hfJYX7IXK2yRsIkXzTXumWYWspYzmgD5u1H3fLVubkc=) 6: DD29F5E4CE561760A0212F0448987AFBE75263D7.crl (hash: Ro4YVldA4Z3cMyI/bC/Sxg/LjOcGB3P86XdIgL7h/SA=) 7: 35382e3134372e3138392e302f32342d3234203d3e203234353334.roa (hash: yHFhz7s9vTM+0GwcewjykllWnmywdIchHv+vwnUyUtQ=) 8: 35382e3134372e3139312e302f32342d3234203d3e203234353334.roa (hash: 8qZ2PfVPSW4Gale+B6XAN2CyhRmIb70LvF4xop7XFFw=) 9: 35382e3134372e3138342e302f32342d3234203d3e203234353334.roa (hash: x2jz47JNdTLcNfT8vbEKIJnVX3m/vRvrmqpmvqODREA=) 10: 323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa (hash: e59wQms8v5jMBeQnHJR3rPXGniQiJS1tDMckcJ4pEwQ=) 11: 35382e3134372e3138352e302f32342d3234203d3e203234353334.roa (hash: 0+6+N7y7+z5+GZ0LUn4in9mnEACESucH1zgQmC9xHAA=) 12: 3130332e34322e3132302e302f32342d3234203d3e203234353334.roa (hash: of7XjX89CiHFfIQLpt1o6+DFkAA2fUQ2SMQAsL24xtw=) 13: 323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa (hash: ORf8MBvb0cc1Hlu83aqDGCB77dQwtn/c/kHba/c2HYo=) 14: 35382e3134372e3138382e302f32342d3234203d3e203234353334.roa (hash: s32Asfb0Vk2AoqdXXpuFo/1b1Jpm9sVE9gF86xInAZ8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 09:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:43:e8:94:8b:85:b2:c5:0b:58:ff:d0:f2:58:a7:41:f5:1a:50:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Sep 7 02:07:06 2025 GMT Not After : Sep 10 09:54:06 2025 GMT Subject: CN=317E862C46408BBEBA020267FB9F1C6CCEBD7E3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:82:46:18:97:58:4d:5f:73:c8:c4:1d:c9:0a: 6d:a5:eb:05:18:c2:9a:73:84:56:c1:75:38:ff:ae: 8c:2d:2d:49:ba:ab:6d:a2:84:51:6d:46:24:2e:51: a0:1e:88:a4:ef:0a:70:a9:a1:7b:f2:36:06:36:d4: eb:03:ba:90:e9:ef:6e:21:b5:3c:c6:43:dc:13:fa: 26:83:0c:a1:32:ef:ff:8f:e3:91:b7:ee:97:95:51: 23:bc:9c:65:0f:0f:61:cf:8d:94:1b:61:a7:2e:3b: 9d:5b:85:3c:16:63:54:b4:17:b2:6e:a2:d2:be:34: 2f:78:54:41:89:f9:bf:af:d2:fe:0b:80:32:08:a7: 43:08:cb:a4:53:84:3c:eb:59:df:b5:c9:3b:29:d5: 9d:e5:83:78:66:66:b4:01:4e:1c:e1:f3:11:65:fa: c0:23:98:cf:bd:dc:9e:86:15:63:e5:92:2c:76:9b: 04:d7:4f:8d:d2:a8:43:38:cc:36:ec:e0:39:3f:98: df:a5:ed:0c:6f:9a:d5:b5:1d:50:2e:4e:9b:a6:df: 80:c3:52:12:59:92:8a:05:9c:d7:be:40:7e:76:13: 3c:d4:84:d4:5d:7d:54:0c:b8:57:46:b2:33:57:9a: d4:b2:26:c3:7e:53:fa:31:4b:eb:e0:dd:b6:50:f8: 6d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7E:86:2C:46:40:8B:BE:BA:02:02:67:FB:9F:1C:6C:CE:BD:7E:3C X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:79:e2:ba:e2:8f:bb:78:6f:3c:69:e1:53:d4:24:f4:da:b6: 0b:90:e5:e7:df:b3:c8:e5:6a:23:d5:d5:ea:ba:31:33:40:64: a2:a5:fa:77:f8:f8:c1:93:5d:47:cd:99:df:21:bd:e0:aa:40: b0:64:aa:02:ab:ea:92:61:0d:de:67:fb:99:79:22:b6:68:5f: 58:7e:e2:b5:5a:4c:0b:92:ed:99:df:9f:de:9c:9f:e7:b3:13: f1:6e:e4:59:cb:87:4c:f4:46:44:e3:d0:bc:4f:ee:66:8e:2a: 7a:77:6b:4c:c2:1c:f2:a7:8e:8d:cc:f4:6c:04:df:50:ee:d4: 7e:9c:de:04:18:04:3b:e4:97:1e:69:80:54:0e:6e:05:09:4e: 3d:79:79:5e:28:96:72:cf:56:9e:0f:0e:cd:9c:d4:97:34:2f: 4d:05:78:39:74:27:6e:ad:98:ba:c5:3c:93:a6:14:51:87:f2: 26:a4:0f:3e:59:41:aa:ed:66:ac:ee:aa:3b:4f:51:a5:e5:f5: dc:01:5c:59:c2:ab:99:35:e8:1e:fd:0b:cd:a4:17:0c:0e:67: be:3b:03:e7:bc:f9:fe:8f:0b:d5:91:dc:ba:be:11:9a:2a:3e: f5:5c:b9:3b:1e:a3:dd:04:ca:d5:90:2c:65:e8:6c:8f:19:25: 80:c6:cb:44 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURkPolIuFssULWP/Q8linQfUaUCEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTA5MDcwMjA3MDZaFw0yNTA5MTAwOTU0MDZaMDMxMTAvBgNV BAMTKDMxN0U4NjJDNDY0MDhCQkVCQTAyMDI2N0ZCOUYxQzZDQ0VCRDdFM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPgkYYl1hNX3PIxB3JCm2l6wUY wppzhFbBdTj/rowtLUm6q22ihFFtRiQuUaAeiKTvCnCpoXvyNgY21OsDupDp724h tTzGQ9wT+iaDDKEy7/+P45G37peVUSO8nGUPD2HPjZQbYacuO51bhTwWY1S0F7Ju otK+NC94VEGJ+b+v0v4LgDIIp0MIy6RThDzrWd+1yTsp1Z3lg3hmZrQBThzh8xFl +sAjmM+93J6GFWPlkix2mwTXT43SqEM4zDbs4Dk/mN+l7QxvmtW1HVAuTpum34DD UhJZkooFnNe+QH52EzzUhNRdfVQMuFdGsjNXmtSyJsN+U/oxS+vg3bZQ+G2NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMX6GLEZAi766AgJn+58cbM69fjwwHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDYyNDA1MmUtMjIwNS00OGYzLWEz Y2ItY2U4YjMyNmI4ZjcxLzAvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdB RkJFNzUyNjNENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEl54rrij7t4bzxp4VPUJPTatguQ5effs8jl aiPV1eq6MTNAZKKl+nf4+MGTXUfNmd8hveCqQLBkqgKr6pJhDd5n+5l5IrZoX1h+ 4rVaTAuS7Znfn96cn+ezE/Fu5FnLh0z0RkTj0LxP7maOKnp3a0zCHPKnjo3M9GwE 31Du1H6c3gQYBDvklx5pgFQObgUJTj15eV4olnLPVp4PDs2c1Jc0L00FeDl0J26t mLrFPJOmFFGH8iakDz5ZQartZqzuqjtPUaXl9dwBXFnCq5k16B79C82kFwwOZ747 A+e8+f6PC9WR3Lq+EZoqPvVcuTseo90EytWQLGXobI8ZJYDGy0Q= -----END CERTIFICATE-----Generated at Sun Sep 7 15:27:16 2025 by rpki-client