$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft File: DD29F5E4CE561760A0212F0448987AFBE75263D7.mft (raw, json) Hash identifier: jleB31y44JTiPWfB3Z5QUSEeJU69Ceib4b+PTTk5f/U= Subject key identifier: 66:CF:22:5F:8A:EB:A8:AD:CA:31:22:29:E9:4C:2B:FD:E1:5C:E3:EA Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Certificate serial: 2A9F84BBC37E41C033B2945C4112DC09AD123D54 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft Manifest number: 02D9 Signing time: Sat 05 Apr 2025 06:12:02 +0000 Manifest this update: Sat 05 Apr 2025 06:07:02 +0000 Manifest next update: Tue 08 Apr 2025 12:53:02 +0000 Files and hashes: 1: 35382e3134372e3138372e302f32342d3234203d3e203234353334.roa (hash: +pkqBDcSIJauOHhuC/iQUrXCbfOiU5mYoeOXWd/Jx7I=) 2: 323430343a393538303a34383a3a2f34382d3438203d3e203234353334.roa (hash: ORf8MBvb0cc1Hlu83aqDGCB77dQwtn/c/kHba/c2HYo=) 3: 323430343a393538303a33323a3a2f34382d3438203d3e203234353334.roa (hash: w6bNOjpU0I0jjnq/DeAF5pAdWd2fSBGqPyk3RRIO0Ys=) 4: 35382e3134372e3138342e302f32342d3234203d3e203234353334.roa (hash: pui7zb2XJ4+X3ruOIeMi3Iddl1A0mCCFNXvLOJrEw2o=) 5: 323430343a393538303a33303a3a2f34382d3438203d3e203234353334.roa (hash: e59wQms8v5jMBeQnHJR3rPXGniQiJS1tDMckcJ4pEwQ=) 6: 35382e3134372e3139312e302f32342d3234203d3e203234353334.roa (hash: Rflx89NQ3S/Ei3ZTUD7ICkgdTWu+XfG7H70uY/x+4wc=) 7: 35382e3134372e3138392e302f32342d3234203d3e203234353334.roa (hash: KCwggPDyjMOHP+o7do6DpKf6RZ3T2/Rfig0q6lMutLA=) 8: 35382e3134372e3138382e302f32342d3234203d3e203234353334.roa (hash: Tr8KoztX4g1WXnF+96HqpgOulMvRhy41cuaQJFwuUXc=) 9: 3130332e34322e3132322e302f32342d3234203d3e203234353334.roa (hash: U0ZYfoLEU7/YUTuj/HEbmKOFNpez0H5ASCN++eNNi6Y=) 10: 3130332e34322e3132302e302f32342d3234203d3e203234353334.roa (hash: of7XjX89CiHFfIQLpt1o6+DFkAA2fUQ2SMQAsL24xtw=) 11: 35382e3134372e3138362e302f32342d3234203d3e203234353334.roa (hash: q0d8NLaf44QcZ0mXu0lgVK/f2ztOAP51wfbILAD0OWE=) 12: 35382e3134372e3139302e302f32342d3234203d3e203234353334.roa (hash: VCpqet2tltq6OwAAWmXLVEpkSYf/oR/zTCEWMlMzr2Y=) 13: DD29F5E4CE561760A0212F0448987AFBE75263D7.crl (hash: S6FB8NRVe6+6sm7gpdnEFBNygJLLVYZlBBl5+7iczSw=) 14: 35382e3134372e3138352e302f32342d3234203d3e203234353334.roa (hash: XlRIM2drE0eVYSx46A7CTq2auxNTRxDcpQdmTnDOrQU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:9f:84:bb:c3:7e:41:c0:33:b2:94:5c:41:12:dc:09:ad:12:3d:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7 Validity Not Before: Apr 5 06:07:02 2025 GMT Not After : Apr 8 12:53:02 2025 GMT Subject: CN=66CF225F8AEBA8ADCA312229E94C2BFDE15CE3EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d6:c1:83:95:3c:86:2d:b0:49:80:ec:19:4f: fc:9a:fc:61:ad:62:72:eb:08:84:8e:d0:5b:31:6f: 75:0c:f8:07:36:90:02:65:08:5c:ce:9b:59:27:a6: c9:1a:8e:47:14:f7:42:a1:4a:15:08:94:b2:1a:fc: dc:b1:fa:32:90:e9:8e:96:88:0a:44:f8:5d:8d:80: e5:90:88:62:bc:81:56:55:41:d1:72:80:8e:ad:d9: a6:b1:5b:7e:9b:03:94:a1:1f:09:bd:f3:41:a9:e2: e9:30:85:66:cc:53:78:a8:d0:e0:a3:14:75:29:44: da:92:2f:88:94:0d:7a:46:32:df:a2:87:c2:32:e6: 99:67:63:ae:92:e4:5c:5b:14:a8:9a:19:ad:01:a7: a5:2b:c2:01:4b:d0:cf:64:cd:1c:4d:1c:99:b1:41: 0e:d1:a9:91:fa:5e:1f:86:a9:56:db:34:12:ec:d8: 74:67:95:48:41:73:ea:d7:33:fb:ac:13:2b:36:7b: 03:8d:6f:af:e0:1b:c2:cc:77:97:fa:66:b7:8b:be: bd:30:bb:9e:92:27:2f:9d:51:69:36:5b:27:d2:fb: f0:0f:56:b9:6f:6a:c7:f5:cb:48:dd:ca:43:76:48: 68:a9:4f:02:6d:19:82:0c:fc:8a:71:52:79:90:f2: 60:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:CF:22:5F:8A:EB:A8:AD:CA:31:22:29:E9:4C:2B:FD:E1:5C:E3:EA X509v3 Authority Key Identifier: keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:60:a4:c9:20:a2:5a:08:d6:e9:96:d0:3c:31:9d:c2:b5:f6: 69:61:3f:cc:68:f7:4a:2e:06:cf:35:4d:d7:7a:5f:b8:76:b1: 31:aa:3a:e6:32:94:97:b1:b4:38:e0:06:8a:b3:d5:90:23:39: 19:18:7a:cb:f2:77:f5:ab:0c:c9:db:df:9f:17:4b:a5:07:6b: 0c:8e:8a:3a:82:4f:d2:7d:54:46:62:f3:ec:7b:9d:30:78:7a: f5:67:2b:d7:f6:b9:b6:fb:8b:25:b8:a3:25:81:16:33:18:4d: a3:fc:cc:62:83:5d:32:76:5d:73:40:32:45:7b:a6:15:81:5e: e5:88:ee:fd:24:60:6e:aa:92:95:9a:4f:2a:b2:b8:d5:2d:1a: 37:7d:3d:b9:a7:8d:7b:40:c4:5e:df:8a:88:b7:29:99:66:0c: 32:0f:20:61:f8:b1:e9:ff:9a:4e:99:03:ca:eb:f8:e2:d3:57: 1f:06:63:83:f1:87:43:98:8b:b1:cd:05:28:35:51:de:27:25: 7f:ab:22:a6:ea:06:b3:8b:fc:4d:5b:bb:7c:b5:61:cf:0d:ec: 8a:40:28:06:be:f5:ba:22:74:2a:29:cb:43:40:4e:1f:c1:61: 30:e4:02:21:1e:cc:23:b5:26:45:12:2b:bd:e5:b8:d9:a3:1b: bb:de:99:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKp+Eu8N+QcAzspRcQRLcCa0SPVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJF NzUyNjNENzAeFw0yNTA0MDUwNjA3MDJaFw0yNTA0MDgxMjUzMDJaMDMxMTAvBgNV BAMTKDY2Q0YyMjVGOEFFQkE4QURDQTMxMjIyOUU5NEMyQkZERTE1Q0UzRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl1sGDlTyGLbBJgOwZT/ya/GGt YnLrCISO0Fsxb3UM+Ac2kAJlCFzOm1knpskajkcU90KhShUIlLIa/Nyx+jKQ6Y6W iApE+F2NgOWQiGK8gVZVQdFygI6t2aaxW36bA5ShHwm980Gp4ukwhWbMU3io0OCj FHUpRNqSL4iUDXpGMt+ih8Iy5plnY66S5FxbFKiaGa0Bp6UrwgFL0M9kzRxNHJmx QQ7RqZH6Xh+GqVbbNBLs2HRnlUhBc+rXM/usEys2ewONb6/gG8LMd5f6ZreLvr0w u56SJy+dUWk2WyfS+/APVrlvasf1y0jdykN2SGipTwJtGYIM/IpxUnmQ8mAHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZs8iX4rrqK3KMSIp6Uwr/eFc4+owHwYDVR0j BBgwFoAU3Sn15M5WF2CgIS8ESJh6++dSY9cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NjI0MDUyZS0yMjA1LTQ4ZjMtYTNjYi1jZThiMzI2YjhmNzEvMC9ERDI5RjVFNENF NTYxNzYwQTAyMTJGMDQ0ODk4N0FGQkU3NTI2M0Q3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdBRkJFNzUy NjNENy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDYyNDA1MmUtMjIwNS00OGYzLWEz Y2ItY2U4YjMyNmI4ZjcxLzAvREQyOUY1RTRDRTU2MTc2MEEwMjEyRjA0NDg5ODdB RkJFNzUyNjNENy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAZgpMkgoloI1umW0DwxncK19mlhP8xo90ou Bs81Tdd6X7h2sTGqOuYylJextDjgBoqz1ZAjORkYesvyd/WrDMnb358XS6UHawyO ijqCT9J9VEZi8+x7nTB4evVnK9f2ubb7iyW4oyWBFjMYTaP8zGKDXTJ2XXNAMkV7 phWBXuWI7v0kYG6qkpWaTyqyuNUtGjd9PbmnjXtAxF7fioi3KZlmDDIPIGH4sen/ mk6ZA8rr+OLTVx8GY4Pxh0OYi7HNBSg1Ud4nJX+rIqbqBrOL/E1bu3y1Yc8N7IpA KAa+9boidCopy0NATh/BYTDkAiEezCO1JkUSK73luNmjG7vemaU= -----END CERTIFICATE-----Generated at Sat Apr 5 19:03:25 2025 by rpki-client