$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft File: DD29F5E4CE561760A0212F0448987AFBE75263D7.mft (raw, json) Hash identifier: VWW3IwMNZL4F5Vba/ItojC13WqOk63XTLkjBUjkz2JU= Subject key identifier: 9A:3B:25:2D:25:7A:76:6B:6E:61:31:AF:3F:AC:94:59:37:94:C3:5B Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 2149CC08762222B0B46BEF94869093AFAE9D1CD3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft Manifest number: 02F4 Signing time: Thu 05 Jun 2025 05:42:04 +0000 Manifest this update: Thu 05 Jun 2025 05:37:04 +0000 Manifest next update: Sun 08 Jun 2025 08:47:04 +0000 Files and hashes: 1: 35382e3134372e3138392e302f32342d3234203d3e203234353334.roa (hash: KCwggPDyjMOHP+o7do6DpKf6RZ3T2/Rfig0q6lMutLA=) 2: 35382e3134372e3139312e302f32342d3234203d3e203234353334.roa (hash: Rflx89NQ3S/Ei3ZTUD7ICkgdTWu+XfG7H70uY/x+4wc=) 3: 3130332e34322e3132322e302f32342d3234203d3e203234353334.roa (hash: U0ZYfoLEU7/YUTuj/HEbmKOFNpez0H5ASCN++eNNi6Y=) 4: 35382e3134372e3138362e302f32342d3234203d3e203234353334.roa (hash: q0d8NLaf44QcZ0mXu0lgVK/f2ztOAP51wfbILAD0OWE=) 5: 323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa (hash: w6bNOjpU0I0jjnq/DeAF5pAdWd2fSBGqPyk3RRIO0Ys=) 6: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (hash: +pkqBDcSIJauOHhuC/iQUrXCbfOiU5mYoeOXWd/Jx7I=) 7: 323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa (hash: e59wQms8v5jMBeQnHJR3rPXGniQiJS1tDMckcJ4pEwQ=) 8: 35382e3134372e3138382e302f32342d3234203d3e203234353334.roa (hash: Tr8KoztX4g1WXnF+96HqpgOulMvRhy41cuaQJFwuUXc=) 9: 35382e3134372e3139302e302f32342d3234203d3e203234353334.roa (hash: VCpqet2tltq6OwAAWmXLVEpkSYf/oR/zTCEWMlMzr2Y=) 10: 3130332e34322e3132302e302f32342d3234203d3e203234353334.roa (hash: of7XjX89CiHFfIQLpt1o6+DFkAA2fUQ2SMQAsL24xtw=) 11: 35382e3134372e3138352e302f32342d3234203d3e203234353334.roa (hash: XlRIM2drE0eVYSx46A7CTq2auxNTRxDcpQdmTnDOrQU=) 12: 35382e3134372e3138342e302f32342d3234203d3e203234353334.roa (hash: pui7zb2XJ4+X3ruOIeMi3Iddl1A0mCCFNXvLOJrEw2o=) 13: 323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa (hash: ORf8MBvb0cc1Hlu83aqDGCB77dQwtn/c/kHba/c2HYo=) 14: DD29F5E4CE561760A0212F0448987AFBE75263D7.crl (hash: BT69FTdbBpVDixX4tL1g5LsRaQL84Gzqkc0ogd4uPok=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 08:47:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:49:cc:08:76:22:22:b0:b4:6b:ef:94:86:90:93:af:ae:9d:1c:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Jun 5 05:37:04 2025 GMT Not After : Jun 8 08:47:04 2025 GMT Subject: CN=9A3B252D257A766B6E6131AF3FAC94593794C35B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d5:99:e9:e0:51:7e:7d:e3:0e:6e:e3:14:13: b2:fd:ee:55:3b:b7:e6:25:5c:51:0f:30:bb:50:45: f1:32:9a:d8:23:c5:95:49:dd:79:d8:fe:38:90:1f: 2b:e3:61:65:0f:68:b5:a0:f4:98:da:ec:09:9b:98: 72:df:81:47:eb:a2:04:ce:ae:12:b5:af:91:42:43: 44:65:9f:71:34:69:a9:62:e8:b7:29:40:26:b6:ed: 63:6f:cd:78:06:92:f9:d7:3c:62:17:53:85:d2:f6: 01:3d:91:16:b6:d7:27:74:28:24:ac:3c:39:13:f0: cd:62:fb:4d:d8:a9:4a:4c:58:26:f5:46:31:e4:c4: 17:d7:e9:de:37:a3:2f:54:7f:40:3f:4e:d8:8c:29: 26:64:5d:3f:57:5e:32:e1:36:d2:1a:a1:04:63:cd: 85:73:77:f2:ac:c2:24:ed:51:15:e6:bb:d8:2c:0a: a7:b9:56:5e:8c:43:69:0a:6a:2a:b0:e4:f6:cf:cc: 9f:84:e3:6b:ab:a3:59:fc:28:cd:30:55:9b:e8:e7: f2:59:ac:a6:05:04:a1:86:d4:ab:1b:15:36:77:12: ad:40:f0:fb:9f:22:9f:d9:00:ed:8b:95:1f:4f:52: 00:26:e9:9d:a2:79:f9:9c:ae:6f:7f:a1:ce:83:8e: 21:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3B:25:2D:25:7A:76:6B:6E:61:31:AF:3F:AC:94:59:37:94:C3:5B X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:9c:6f:2e:36:b6:cc:35:76:9f:dc:28:ef:c2:a4:53:55:f5: 7a:db:80:77:1e:56:92:9e:66:cb:9f:c1:4b:c7:32:cb:d6:47: 41:63:ed:32:10:53:d6:4c:82:60:00:86:9e:d4:9a:e6:67:a2: 2f:7f:a1:d7:53:6e:0d:26:fa:8f:4f:70:84:27:a8:7c:a7:2c: 20:03:be:94:4e:5d:66:4c:b9:89:34:89:55:f3:fb:54:e1:a1: 0a:3e:af:1e:11:cf:8e:52:d3:9e:d4:72:4b:52:e0:ac:40:17: ea:f7:6d:40:64:b7:cc:8b:2d:01:44:ae:09:cd:dd:36:4c:ce: c8:59:d3:c7:5e:bb:d9:45:84:a5:b8:fe:bf:a6:4d:b7:3e:57: 4c:87:be:8e:9b:e6:24:e5:e3:2a:be:e3:d7:00:f6:23:3f:ef: ac:d1:dd:df:8b:01:1a:2c:84:9b:5b:27:c6:af:92:a0:a9:e2: ce:a5:3a:66:6d:e3:a2:2c:09:18:46:65:b6:99:a5:44:9d:5f: f6:b6:e4:73:f5:8e:33:80:d8:7c:78:4e:2c:28:49:b1:9d:63: f3:48:bb:c9:f2:44:04:1a:cc:3d:ff:f8:8b:38:3d:17:03:ac: 29:ea:83:16:ce:df:39:ec:11:12:76:8d:9e:f2:cc:16:f0:db: 10:77:f2:64 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIUnMCHYiIrC0a++UhpCTr66dHNMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTA2MDUwNTM3MDRaFw0yNTA2MDgwODQ3MDRaMDMxMTAvBgNV BAMTKDlBM0IyNTJEMjU3QTc2NkI2RTYxMzFBRjNGQUM5NDU5Mzc5NEMzNUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh1Znp4FF+feMObuMUE7L97lU7 t+YlXFEPMLtQRfEymtgjxZVJ3XnY/jiQHyvjYWUPaLWg9Jja7AmbmHLfgUfrogTO rhK1r5FCQ0Rln3E0aali6LcpQCa27WNvzXgGkvnXPGIXU4XS9gE9kRa21yd0KCSs PDkT8M1i+03YqUpMWCb1RjHkxBfX6d43oy9Uf0A/TtiMKSZkXT9XXjLhNtIaoQRj zYVzd/KswiTtURXmu9gsCqe5Vl6MQ2kKaiqw5PbPzJ+E42uro1n8KM0wVZvo5/JZ rKYFBKGG1KsbFTZ3Eq1A8PufIp/ZAO2LlR9PUgAm6Z2iefmcrm9/oc6DjiFVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmjslLSV6dmtuYTGvP6yUWTeUw1swHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDYyNDA1MmUtMjIwNS00OGYzLWEz Y2ItY2U4YjMyNmI4ZjcxLzAvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdB RkJFNzUyNjNENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAD6cby42tsw1dp/cKO/CpFNV9XrbgHceVpKe ZsufwUvHMsvWR0Fj7TIQU9ZMgmAAhp7UmuZnoi9/oddTbg0m+o9PcIQnqHynLCAD vpROXWZMuYk0iVXz+1ThoQo+rx4Rz45S057UcktS4KxAF+r3bUBkt8yLLQFErgnN 3TZMzshZ08deu9lFhKW4/r+mTbc+V0yHvo6b5iTl4yq+49cA9iM/76zR3d+LARos hJtbJ8avkqCp4s6lOmZt46IsCRhGZbaZpUSdX/a25HP1jjOA2Hx4TiwoSbGdY/NI u8nyRAQazD3/+Is4PRcDrCnqgxbO3znsERJ2jZ7yzBbw2xB38mQ= -----END CERTIFICATE-----Generated at Thu Jun 5 18:14:17 2025 by rpki-client