$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft File: 25D788BD2A450C01354B9AB70826895FDFF56208.mft (raw, json) Hash identifier: bUZ8k2yRfsYVKFV+vGIk6gDsjiVra50h/SNDyUST4NU= Subject key identifier: FC:E9:4B:49:33:E0:03:1A:DA:07:05:AE:07:C0:9D:2C:A4:BC:9F:B2 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 65F24B075678A591F737D4521EFF1146EEF49EAD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft Manifest number: 0281 Signing time: Sun 19 May 2024 08:10:55 +0000 Manifest this update: Sun 19 May 2024 08:05:55 +0000 Manifest next update: Wed 22 May 2024 11:24:55 +0000 Files and hashes: 1: 25D788BD2A450C01354B9AB70826895FDFF56208.crl (hash: EFkK2830EkO67zMmOHYY0ke6DUo6zkLnr1C9qq0khkw=) 2: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (hash: uyuv0G7859wvpGZqKT3XscbmCB/JrnGngOBz3JUqmus=) 3: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (hash: YbEVGUqkmlzXuTe7iJMy8RMDInmFiT0pQ1ecmexSJ6E=) 4: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (hash: umfOMEf4PNhhbuKnch8HYrE60kq2nglkRwojJY3Rq50=) 5: 3132332e3235332e3234382e302f32332d3234203d3e20313336383235.roa (hash: oqv+MiKAwkTGiNOSa3FKWv6BqNY8kUkfk9xzBvpieFg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 03:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:f2:4b:07:56:78:a5:91:f7:37:d4:52:1e:ff:11:46:ee:f4:9e:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: May 19 08:05:55 2024 GMT Not After : May 22 11:24:55 2024 GMT Subject: CN=FCE94B4933E0031ADA0705AE07C09D2CA4BC9FB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5f:7c:71:11:5a:c2:ee:fe:1d:cf:fb:28:7c: 08:eb:94:20:20:fe:18:f5:bd:ec:ab:af:75:db:81: d0:b0:4c:58:51:80:d3:08:a6:45:e9:02:25:2f:09: 5c:cf:8d:24:1d:6e:77:32:0c:43:11:74:5d:bb:c2: de:24:8c:d0:e0:4d:43:57:9a:ac:a7:c8:03:a6:ff: f7:08:95:f1:3d:85:67:33:e8:d1:f0:f5:3a:d3:21: d1:df:14:83:b2:dc:4b:8f:12:5c:67:2c:11:89:63: 36:1e:13:82:62:19:a7:ed:77:93:09:3c:42:a1:b6: c3:c3:27:45:18:af:6a:74:a1:c8:de:bb:fd:3f:5b: 3e:05:89:87:a7:8a:0d:a7:17:3b:6a:1f:8b:91:e9: 35:c6:2e:9d:cc:69:ba:2a:ba:2a:01:4b:7f:c6:8f: 41:ae:21:e5:04:7a:cf:73:7b:8f:ac:bc:bb:99:a0: 8d:ef:5b:da:df:9a:fd:74:d2:be:e2:5b:8a:99:52: 7d:92:74:f1:e1:3d:e7:4a:0b:fe:7d:fb:1f:f1:89: 60:a5:97:1a:6d:4d:ed:30:03:7d:91:a2:fe:b2:42: 9f:64:75:f3:09:b1:40:18:71:7e:bb:8a:19:31:10: 7f:21:50:c3:f1:80:f6:d6:38:00:6a:4a:e4:50:f5: d5:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E9:4B:49:33:E0:03:1A:DA:07:05:AE:07:C0:9D:2C:A4:BC:9F:B2 X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:b1:5b:02:80:ba:85:cd:fb:af:5d:66:44:3c:2f:c8:03:ef: d2:17:29:20:76:f1:b1:f8:fa:8d:1e:db:40:8b:b2:22:ca:ee: fc:b1:d5:bb:74:3f:6f:5b:12:38:a4:5b:2c:d1:2e:15:6a:b7: 88:23:94:33:85:05:6a:ae:21:8d:b0:af:6f:2c:d3:0a:05:48: 20:a3:dd:bf:1a:9e:ed:42:b3:a8:77:b3:fb:10:f4:73:a8:c6: c7:b8:97:07:25:8d:2d:ba:75:f5:54:b0:b8:5f:44:b3:ec:f0: c0:65:b7:9f:a4:bf:7a:71:40:68:67:77:b4:06:46:63:89:b0: e0:01:50:2c:94:e8:26:59:3c:e0:df:66:2f:38:18:c5:82:be: 24:51:be:5d:61:02:5c:12:71:09:4c:d2:34:fc:15:54:33:86: c7:82:2a:67:98:75:34:ff:52:5c:ce:cc:03:62:7e:df:0f:ae: 4d:99:ed:49:99:a2:da:2b:58:62:eb:22:fb:de:b5:4f:14:6c: c1:b6:63:ad:1b:98:ea:11:b8:66:93:72:20:30:79:90:94:fe: 15:94:49:67:19:e5:23:54:0e:96:76:9c:2e:2a:0d:a4:89:6d: 92:04:92:5c:40:1d:07:59:84:42:53:38:21:79:af:64:bb:79: 26:c7:b2:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZfJLB1Z4pZH3N9RSHv8RRu70nq0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNDA1MTkwODA1NTVaFw0yNDA1MjIxMTI0NTVaMDMxMTAvBgNV BAMTKEZDRTk0QjQ5MzNFMDAzMUFEQTA3MDVBRTA3QzA5RDJDQTRCQzlGQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdX3xxEVrC7v4dz/sofAjrlCAg /hj1veyrr3XbgdCwTFhRgNMIpkXpAiUvCVzPjSQdbncyDEMRdF27wt4kjNDgTUNX mqynyAOm//cIlfE9hWcz6NHw9TrTIdHfFIOy3EuPElxnLBGJYzYeE4JiGaftd5MJ PEKhtsPDJ0UYr2p0ocjeu/0/Wz4FiYenig2nFztqH4uR6TXGLp3MaboquioBS3/G j0GuIeUEes9ze4+svLuZoI3vW9rfmv100r7iW4qZUn2SdPHhPedKC/59+x/xiWCl lxptTe0wA32Rov6yQp9kdfMJsUAYcX67ihkxEH8hUMPxgPbWOABqSuRQ9dUfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/OlLSTPgAxraBwWuB8CdLKS8n7IwHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZhNzY2NWEtYjUwYi00YTQ1LWE4 ZjktMGQ2OWJkN2Q3NDNkLzAvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5 NUZERkY1NjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI2xWwKAuoXN+69dZkQ8L8gD79IXKSB28bH4 +o0e20CLsiLK7vyx1bt0P29bEjikWyzRLhVqt4gjlDOFBWquIY2wr28s0woFSCCj 3b8anu1Cs6h3s/sQ9HOoxse4lwcljS26dfVUsLhfRLPs8MBlt5+kv3pxQGhnd7QG RmOJsOABUCyU6CZZPODfZi84GMWCviRRvl1hAlwScQlM0jT8FVQzhseCKmeYdTT/ UlzOzANift8Prk2Z7UmZotorWGLrIvvetU8UbMG2Y60bmOoRuGaTciAweZCU/hWU SWcZ5SNUDpZ2nC4qDaSJbZIEklxAHQdZhEJTOCF5r2S7eSbHsgQ= -----END CERTIFICATE-----Generated at Sun May 19 09:03:52 2024 by rpki-client on console-fra.rpki-client.org