$ rpki-client -vvf repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft File: AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft (raw, json) Hash identifier: GvNh7la31Mrwf0sExWDTx56Rq/d2t8bougofgCn+rgU= Subject key identifier: E8:7B:FA:1C:74:CB:1A:1F:08:4F:0F:1D:F3:F4:56:F5:4C:C1:A9:F9 Authority key identifier: AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38 Certificate issuer: /CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38 Certificate serial: 11629A957978A63F8D5BAD606937DD3D3508A1FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft Manifest number: 02A8 Signing time: Tue 07 May 2024 18:11:45 +0000 Manifest this update: Tue 07 May 2024 18:06:45 +0000 Manifest next update: Sat 11 May 2024 05:41:45 +0000 Files and hashes: 1: AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl (hash: RslvJDoAy7rMsFGnpsElknoWwy2sDeJXFH8NRkUpIx0=) 2: 3130332e3136392e342e302f32332d3234203d3e203137393935.roa (hash: rrNVuw+gyG5fNfMRuErVCzVZRchl+1rKIOvAk+VOyqA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:62:9a:95:79:78:a6:3f:8d:5b:ad:60:69:37:dd:3d:35:08:a1:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38 Validity Not Before: May 7 18:06:45 2024 GMT Not After : May 11 05:41:45 2024 GMT Subject: CN=E87BFA1C74CB1A1F084F0F1DF3F456F54CC1A9F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ed:da:9d:d1:e5:59:07:b4:9d:9e:af:26:db: 8d:70:89:77:6a:b0:13:e8:30:8d:fe:3e:67:e3:65: 90:97:2b:44:bf:ec:04:fb:5f:98:b1:22:8d:7b:72: 9f:d6:ed:4b:14:b4:25:81:2d:e9:2b:b2:b4:86:11: 51:ec:60:1e:35:c4:02:59:c5:d7:98:bf:54:b7:b4: ae:61:54:60:b5:7f:97:c4:6b:43:b2:47:1a:85:3a: 12:26:b8:0c:2d:69:4e:18:be:49:f7:9f:ed:77:79: 0a:06:a3:83:c1:48:6f:fb:de:93:90:c8:80:3c:b4: de:87:49:35:b9:2d:76:4a:1a:38:ce:7e:9a:79:c1: 17:c7:81:0f:5a:de:4e:3a:cd:ed:92:27:c2:93:b3: d5:82:8a:43:ca:26:2d:1c:b1:a6:e0:97:10:17:c0: ee:3d:f7:d1:21:b9:cb:7d:74:28:49:91:63:8a:2b: fd:be:12:fc:a2:d5:6b:f3:df:c3:b5:f6:76:0a:a3: 0e:e7:e7:fa:39:df:cb:f4:34:bd:e9:ec:c3:9a:19: 06:7e:51:bf:03:e4:04:78:ac:a9:40:cf:9d:e3:71: 0c:77:74:3b:91:85:49:bf:1b:8a:7d:dd:23:23:ae: 2f:1d:b3:a3:d1:54:4f:4b:ac:c7:b2:90:4c:5d:fa: d0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:7B:FA:1C:74:CB:1A:1F:08:4F:0F:1D:F3:F4:56:F5:4C:C1:A9:F9 X509v3 Authority Key Identifier: keyid:AF:5A:2A:D0:C9:E5:CB:1D:9E:F8:5E:6F:8F:44:03:10:F1:00:CE:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/041e4ac9-c06b-4343-8526-3a1f1b1b5d82/0/AF5A2AD0C9E5CB1D9EF85E6F8F440310F100CE38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:bc:0a:77:c5:4d:15:bb:d0:54:3a:2e:c8:e9:4d:4e:38:83: 7b:42:43:bf:20:01:5f:34:c5:a9:14:42:d8:31:86:fe:87:48: 31:1d:09:10:f0:74:75:21:54:98:62:8d:95:ef:97:54:59:ba: 80:5f:2c:cb:e8:6f:1f:e6:14:eb:78:c7:74:f7:8c:ab:2c:49: 82:8c:41:b7:56:ae:67:33:4e:0f:c4:a7:3d:ae:d7:d9:50:7f: 1c:06:1f:16:34:d8:59:4e:1c:16:86:c4:ad:af:7c:02:40:34: 7a:b4:da:93:74:f7:3e:47:43:5d:c3:45:5f:56:0e:7d:76:a5: 6b:69:62:39:6c:9c:0d:51:c0:e4:4a:c7:73:16:0a:06:31:7e: b9:8b:78:02:45:66:85:7b:f7:39:43:a9:2d:58:fa:85:72:22: 85:86:22:b4:8c:46:fa:6f:88:a3:c1:26:c1:a6:7d:fe:2b:15: c4:1d:ae:27:3c:e8:41:37:e8:97:ef:41:af:b3:7d:f6:f5:6c: af:1c:f6:d4:bc:bb:c0:1d:9f:f2:7b:4d:9c:ac:52:9a:5f:3d: af:1f:5e:11:99:d4:70:99:5c:34:69:8a:b6:52:18:f2:40:2f: 11:b0:fd:e3:3b:db:b2:e9:91:b1:0f:f2:1d:98:bc:8a:73:a9: 14:cc:84:ab -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEWKalXl4pj+NW61gaTfdPTUIof8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAzMTBG MTAwQ0UzODAeFw0yNDA1MDcxODA2NDVaFw0yNDA1MTEwNTQxNDVaMDMxMTAvBgNV BAMTKEU4N0JGQTFDNzRDQjFBMUYwODRGMEYxREYzRjQ1NkY1NENDMUE5RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv7dqd0eVZB7Sdnq8m241wiXdq sBPoMI3+PmfjZZCXK0S/7AT7X5ixIo17cp/W7UsUtCWBLekrsrSGEVHsYB41xAJZ xdeYv1S3tK5hVGC1f5fEa0OyRxqFOhImuAwtaU4Yvkn3n+13eQoGo4PBSG/73pOQ yIA8tN6HSTW5LXZKGjjOfpp5wRfHgQ9a3k46ze2SJ8KTs9WCikPKJi0csabglxAX wO4999Ehuct9dChJkWOKK/2+Evyi1Wvz38O19nYKow7n5/o538v0NL3p7MOaGQZ+ Ub8D5AR4rKlAz53jcQx3dDuRhUm/G4p93SMjri8ds6PRVE9LrMeykExd+tDdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6Hv6HHTLGh8ITw8d8/RW9UzBqfkwHwYDVR0j BBgwFoAUr1oq0Mnlyx2e+F5vj0QDEPEAzjgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NDFlNGFjOS1jMDZiLTQzNDMtODUyNi0zYTFmMWIxYjVkODIvMC9BRjVBMkFEMEM5 RTVDQjFEOUVGODVFNkY4RjQ0MDMxMEYxMDBDRTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAzMTBGMTAw Q0UzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDQxZTRhYzktYzA2Yi00MzQzLTg1 MjYtM2ExZjFiMWI1ZDgyLzAvQUY1QTJBRDBDOUU1Q0IxRDlFRjg1RTZGOEY0NDAz MTBGMTAwQ0UzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA+8CnfFTRW70FQ6LsjpTU44g3tCQ78gAV80 xakUQtgxhv6HSDEdCRDwdHUhVJhijZXvl1RZuoBfLMvobx/mFOt4x3T3jKssSYKM QbdWrmczTg/Epz2u19lQfxwGHxY02FlOHBaGxK2vfAJANHq02pN09z5HQ13DRV9W Dn12pWtpYjlsnA1RwORKx3MWCgYxfrmLeAJFZoV79zlDqS1Y+oVyIoWGIrSMRvpv iKPBJsGmff4rFcQdric86EE36JfvQa+zffb1bK8c9tS8u8Adn/J7TZysUppfPa8f XhGZ1HCZXDRpirZSGPJALxGw/eM727LpkbEP8h2YvIpzqRTMhKs= -----END CERTIFICATE-----Generated at Tue May 7 19:21:55 2024 by rpki-client on console-ams.rpki-client.org