$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: 5KzWzJgAZ/f4xJlKTvqnkFYJiIIkXSi2vZtp8MaYXs4= Subject key identifier: 98:1C:5C:C3:72:6E:E8:93:91:20:D2:2C:66:AF:ED:9C:88:80:D1:82 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 691EAC161637AFE5CCD38F91E8E41F9AE7C2BA74 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 042A Signing time: Thu 02 May 2024 21:40:48 +0000 Manifest this update: Thu 02 May 2024 21:35:48 +0000 Manifest next update: Mon 06 May 2024 08:05:48 +0000 Files and hashes: 1: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: n+C8qhrh9HgdYM2f2DHI+4BycNVwDIKRcEDrMbs0IIQ=) 2: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: NkGE7egrmKZH4727pm6vWntt61gvK28kS+95VzPF7gY=) 3: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: Ph2LxEiolC6ArIBIyc7nIIe12ZHiBP++mEznYLkMNzE=) 4: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: RsjclfA4UI4Ib3XQzvsEeNxGPTVUI6STPHh+sY8Jop8=) 5: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: zg2ywZvhXk1OBE+v0Nmay43y91QU2g9xsVV4MCw8I0Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:1e:ac:16:16:37:af:e5:cc:d3:8f:91:e8:e4:1f:9a:e7:c2:ba:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: May 2 21:35:48 2024 GMT Not After : May 6 08:05:48 2024 GMT Subject: CN=981C5CC3726EE8939120D22C66AFED9C8880D182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:1c:b7:f8:bb:d1:d1:b5:21:66:3c:c8:ae: aa:f6:cf:d2:cf:65:bc:b8:1c:bc:6e:60:71:0d:ee: 88:26:a8:cf:d9:3c:01:19:0c:05:3c:f3:73:41:97: de:5a:78:0e:4e:ce:f8:b8:e0:5b:fd:a4:75:4f:a7: f4:41:f7:da:e1:c1:27:14:cf:c4:7f:94:82:b1:c5: 1b:88:77:17:fc:0e:21:d8:e1:82:6b:8c:8d:50:33: 37:19:04:75:75:6d:15:0c:06:78:44:3c:c1:14:2e: 2f:fe:ef:ff:c6:70:a7:8d:c1:47:10:5c:40:47:e3: eb:52:81:20:ed:89:be:66:72:18:e1:fb:b7:dd:54: 3e:96:bd:73:2f:a7:4b:fb:7d:06:e0:b9:0c:74:89: 60:6a:e7:09:4e:b7:3e:98:60:a2:72:b8:d2:8d:ea: 3a:bf:c8:d0:82:09:a7:95:6b:7a:bb:50:0b:1e:a4: 96:2c:2a:13:07:55:ad:37:67:2a:51:a9:d9:cf:6d: 7e:ff:59:30:d5:3b:9a:52:22:dd:c1:f8:a0:28:33: f4:e3:94:a4:1a:fa:31:cd:52:48:cd:e9:2b:a1:87: 3d:cd:e8:5b:48:d3:64:15:60:49:95:22:80:4b:f9: 14:bd:eb:34:a7:e8:05:33:77:be:bf:44:95:b0:09: 50:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:1C:5C:C3:72:6E:E8:93:91:20:D2:2C:66:AF:ED:9C:88:80:D1:82 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5e:35:1f:b6:8e:2c:0e:bf:55:d3:72:2d:42:21:7d:5f:05: b2:8c:bd:15:dd:1d:cd:de:ab:cd:6b:3f:ff:89:19:65:70:4a: 95:86:72:61:f1:58:7d:1f:52:f3:aa:c2:04:0a:1a:71:2e:9c: 7b:1e:dd:9a:fb:b3:0c:c3:d8:4c:fb:4e:1c:1e:cf:73:0c:44: 88:77:79:40:60:46:03:48:61:7e:af:18:59:36:92:7a:51:cd: 47:ff:9b:99:e9:36:e3:07:59:2f:1a:0b:44:07:01:e2:1d:68: 72:f5:12:1e:62:1f:c1:d3:fc:e1:a6:b1:64:12:92:eb:45:8e: 97:7a:21:75:3d:10:80:10:11:4a:e6:fe:dc:4a:91:64:09:f3: 66:b7:75:e9:83:ca:e4:dc:68:b0:04:38:c2:3c:12:26:ac:b2: 4b:ce:32:7c:ba:fe:49:39:bb:ac:10:31:d2:c6:d7:8d:89:3a: 54:32:0f:a2:67:26:9a:c1:4e:9c:1d:11:ec:5c:c8:28:40:5b: 9b:93:00:9b:1d:fd:cd:97:08:a4:b1:0e:21:be:5c:85:94:ec: b9:e1:9a:a6:ac:3e:8e:30:99:f7:fb:39:92:6f:b9:b7:f5:72: 03:90:a6:e9:75:b6:46:b3:2d:3b:01:5d:9d:b0:33:31:01:40: 1b:22:53:65 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaR6sFhY3r+XM04+R6OQfmufCunQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNDA1MDIyMTM1NDhaFw0yNDA1MDYwODA1NDhaMDMxMTAvBgNV BAMTKDk4MUM1Q0MzNzI2RUU4OTM5MTIwRDIyQzY2QUZFRDlDODg4MEQxODIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8ghy3+LvR0bUhZjzIrqr2z9LP Zby4HLxuYHEN7ogmqM/ZPAEZDAU883NBl95aeA5Ozvi44Fv9pHVPp/RB99rhwScU z8R/lIKxxRuIdxf8DiHY4YJrjI1QMzcZBHV1bRUMBnhEPMEULi/+7//GcKeNwUcQ XEBH4+tSgSDtib5mchjh+7fdVD6WvXMvp0v7fQbguQx0iWBq5wlOtz6YYKJyuNKN 6jq/yNCCCaeVa3q7UAsepJYsKhMHVa03ZypRqdnPbX7/WTDVO5pSIt3B+KAoM/Tj lKQa+jHNUkjN6Suhhz3N6FtI02QVYEmVIoBL+RS96zSn6AUzd76/RJWwCVAhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmBxcw3Ju6JORINIsZq/tnIiA0YIwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIxeNR+2jiwOv1XTci1CIX1fBbKMvRXdHc3e q81rP/+JGWVwSpWGcmHxWH0fUvOqwgQKGnEunHse3Zr7swzD2Ez7Thwez3MMRIh3 eUBgRgNIYX6vGFk2knpRzUf/m5npNuMHWS8aC0QHAeIdaHL1Eh5iH8HT/OGmsWQS kutFjpd6IXU9EIAQEUrm/txKkWQJ82a3demDyuTcaLAEOMI8EiasskvOMny6/kk5 u6wQMdLG142JOlQyD6JnJprBTpwdEexcyChAW5uTAJsd/c2XCKSxDiG+XIWU7Lnh mqasPo4wmff7OZJvubf1cgOQpul1tkazLTsBXZ2wMzEBQBsiU2U= -----END CERTIFICATE-----Generated at Thu May 2 22:11:05 2024 by rpki-client on console-fra.rpki-client.org