$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft File: DD29F5E4CE561760A0212F0448987AFBE75263D7.mft (raw, json) Hash identifier: G8s4600jbs9DGfJ5EbbzvRItzMDJ+UfDDX2DSh1hfAE= Subject key identifier: E9:6A:E6:3C:DF:6E:AF:53:63:AD:53:67:59:F1:90:31:A4:FF:09:2A Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 5A806BF35FA761C20FC20C993044CE0A3B75BD59 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft Manifest number: 033A Signing time: Tue 04 Nov 2025 11:32:06 +0000 Manifest this update: Tue 04 Nov 2025 11:27:06 +0000 Manifest next update: Fri 07 Nov 2025 12:01:06 +0000 Files and hashes: 1: 35382e3134372e3138352e302f32342d3234203d3e203234353334.roa (hash: 0+6+N7y7+z5+GZ0LUn4in9mnEACESucH1zgQmC9xHAA=) 2: 323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa (hash: e59wQms8v5jMBeQnHJR3rPXGniQiJS1tDMckcJ4pEwQ=) 3: 35382e3134372e3138382e302f32342d3234203d3e203234353334.roa (hash: s32Asfb0Vk2AoqdXXpuFo/1b1Jpm9sVE9gF86xInAZ8=) 4: 35382e3134372e3138342e302f32342d3234203d3e203234353334.roa (hash: x2jz47JNdTLcNfT8vbEKIJnVX3m/vRvrmqpmvqODREA=) 5: 3130332e34322e3132302e302f32342d3234203d3e203234353334.roa (hash: of7XjX89CiHFfIQLpt1o6+DFkAA2fUQ2SMQAsL24xtw=) 6: 323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa (hash: w6bNOjpU0I0jjnq/DeAF5pAdWd2fSBGqPyk3RRIO0Ys=) 7: 3130332e34322e3132322e302f32342d3234203d3e203234353334.roa (hash: XqcXXJVRLAigakZzITIJ9WqM9shB4JwPgUNXZenmspo=) 8: 323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa (hash: ORf8MBvb0cc1Hlu83aqDGCB77dQwtn/c/kHba/c2HYo=) 9: 35382e3134372e3139312e302f32342d3234203d3e203234353334.roa (hash: 8qZ2PfVPSW4Gale+B6XAN2CyhRmIb70LvF4xop7XFFw=) 10: 35382e3134372e3138362e302f32342d3234203d3e203234353334.roa (hash: X9EKF8Z1uFLJC9IzjlT1aPQkzE/clRuy5X9NkdqNVow=) 11: 35382e3134372e3139302e302f32342d3234203d3e203234353334.roa (hash: hfJYX7IXK2yRsIkXzTXumWYWspYzmgD5u1H3fLVubkc=) 12: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (hash: R+HBHXL62WCqMu+S9XZ2lfDd7q3jJVRrizTgz3Qq4sM=) 13: DD29F5E4CE561760A0212F0448987AFBE75263D7.crl (hash: LbT8cLFe3IM3vxK09qJa/OLqBD0kxmt6aAGNzG3bGB0=) 14: 35382e3134372e3138392e302f32342d3234203d3e203234353334.roa (hash: yHFhz7s9vTM+0GwcewjykllWnmywdIchHv+vwnUyUtQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Nov 2025 12:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:80:6b:f3:5f:a7:61:c2:0f:c2:0c:99:30:44:ce:0a:3b:75:bd:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Nov 4 11:27:06 2025 GMT Not After : Nov 7 12:01:06 2025 GMT Subject: CN=E96AE63CDF6EAF5363AD536759F19031A4FF092A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:38:88:ab:2b:d4:79:eb:59:2a:6b:9f:4f:65: b8:7b:cd:cd:39:f9:bd:84:a7:1b:b3:6b:cc:92:01: b3:8b:d5:48:f2:2f:da:66:2f:de:67:9d:4a:6b:69: bf:45:20:31:26:fa:35:77:50:da:1a:8e:88:c8:f3: 28:a5:20:36:45:e5:ba:31:6c:07:d2:b5:e5:76:c6: 09:8b:1d:f3:ed:b8:b5:c9:f0:8a:41:b5:89:c0:65: 0f:b7:44:ff:fc:03:e8:df:d6:6f:1a:c8:24:2c:3e: dc:17:54:8f:2c:ea:fa:03:60:85:76:b6:15:1e:dc: e5:2d:5d:91:8d:25:06:f4:ba:de:53:d3:66:08:d8: 4c:6f:16:64:d5:8e:ef:e4:3e:b7:c7:00:fa:29:5b: 0d:72:87:bf:18:99:ab:44:b6:f4:a5:d3:fc:21:e0: 13:e8:22:74:4a:e1:10:4b:05:07:91:72:bb:13:3a: 42:73:76:c2:1f:4a:52:eb:11:e4:59:9e:39:b6:46: 0c:bf:4f:93:fb:ad:a5:b7:10:0e:c9:11:a9:fc:8b: 4c:e4:79:04:e0:6d:29:6c:6a:cf:93:53:21:72:73: 98:02:48:d5:0d:7e:bc:02:96:99:5f:b9:37:fe:de: e4:55:4b:f1:6d:64:30:ce:94:b6:a8:28:7e:71:e9: 39:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:6A:E6:3C:DF:6E:AF:53:63:AD:53:67:59:F1:90:31:A4:FF:09:2A X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:04:91:c7:4c:d2:0d:97:9e:c4:0a:d9:4b:67:18:5c:77:58: 0b:40:57:2c:39:dd:43:58:37:01:f4:01:da:6c:dc:ae:7e:63: 62:f9:ab:bf:be:6f:32:dd:8a:24:ca:ea:ea:e9:90:ba:13:bd: bf:47:78:4d:35:61:4e:ea:52:95:ee:95:94:9c:49:6a:46:59: b2:ae:91:8e:f0:fd:6e:fa:04:33:64:c5:55:49:da:18:03:e5: 64:f1:49:8a:bd:a6:7f:67:2f:1d:16:8f:7d:58:ca:a1:ac:48: cb:28:e9:d7:f6:ab:70:cf:0e:2d:a7:eb:dd:e2:99:fa:8e:e1: 18:37:ea:83:42:27:dd:61:9f:c8:9f:f8:48:50:b0:9f:16:30: e1:50:b9:8b:94:87:1e:a7:d8:ef:0c:90:9b:94:b4:c0:1b:7e: 34:a8:0b:89:97:76:04:21:61:c2:c0:8b:ec:ff:5f:9a:c3:76: 81:72:a2:18:69:a5:22:d8:7c:55:12:5c:b6:9c:9a:e3:09:06: 46:1d:df:01:03:18:44:8c:e3:31:45:ef:7f:16:05:4f:c4:f6: e7:29:7f:bc:d5:dd:43:e7:f4:ec:c0:d0:4d:1b:43:60:00:85: 61:0d:50:e5:1a:ee:68:f5:b9:65:de:81:c1:cb:bc:8a:df:4c: 7f:ef:01:1e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWoBr81+nYcIPwgyZMETOCjt1vVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTExMDQxMTI3MDZaFw0yNTExMDcxMjAxMDZaMDMxMTAvBgNV BAMTKEU5NkFFNjNDREY2RUFGNTM2M0FENTM2NzU5RjE5MDMxQTRGRjA5MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjOIirK9R561kqa59PZbh7zc05 +b2Epxuza8ySAbOL1UjyL9pmL95nnUprab9FIDEm+jV3UNoajojI8yilIDZF5box bAfSteV2xgmLHfPtuLXJ8IpBtYnAZQ+3RP/8A+jf1m8ayCQsPtwXVI8s6voDYIV2 thUe3OUtXZGNJQb0ut5T02YI2ExvFmTVju/kPrfHAPopWw1yh78YmatEtvSl0/wh 4BPoInRK4RBLBQeRcrsTOkJzdsIfSlLrEeRZnjm2Rgy/T5P7raW3EA7JEan8i0zk eQTgbSlsas+TUyFyc5gCSNUNfrwClplfuTf+3uRVS/FtZDDOlLaoKH5x6TlJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6WrmPN9ur1NjrVNnWfGQMaT/CSowHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDYyNDA1MmUtMjIwNS00OGYzLWEz Y2ItY2U4YjMyNmI4ZjcxLzAvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdB RkJFNzUyNjNENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIMEkcdM0g2XnsQK2UtnGFx3WAtAVyw53UNY NwH0Adps3K5+Y2L5q7++bzLdiiTK6urpkLoTvb9HeE01YU7qUpXulZScSWpGWbKu kY7w/W76BDNkxVVJ2hgD5WTxSYq9pn9nLx0Wj31YyqGsSMso6df2q3DPDi2n693i mfqO4Rg36oNCJ91hn8if+EhQsJ8WMOFQuYuUhx6n2O8MkJuUtMAbfjSoC4mXdgQh YcLAi+z/X5rDdoFyohhppSLYfFUSXLacmuMJBkYd3wEDGESM4zFF738WBU/E9ucp f7zV3UPn9OzA0E0bQ2AAhWENUOUa7mj1uWXegcHLvIrfTH/vAR4= -----END CERTIFICATE-----Generated at Tue Nov 4 14:02:09 2025 by rpki-client