$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft File: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft (raw, json) Hash identifier: Mh4SMzAxVrZbq8S2UHUp4b33cqkvw4UeXv21hnmlDUE= Subject key identifier: B0:5B:35:06:CE:96:6B:DA:5C:3C:08:CC:E3:04:87:33:B1:03:94:42 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 1EC9B38CC0342D7CFC107FAD529963EABDF717F9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft Manifest number: 041A Signing time: Wed 27 Mar 2024 04:01:15 +0000 Manifest this update: Wed 27 Mar 2024 03:56:15 +0000 Manifest next update: Sat 30 Mar 2024 15:23:15 +0000 Files and hashes: 1: 3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa (hash: LSzUMoVvmiAEZu3xuJ4+608FfpEFwxeakvsDBs0f8CQ=) 2: 323430333a353763303a3a2f33322d3438203d3e20313333383135.roa (hash: XxMdqqymwnXaFzBio3OOU6QSxneZX5Wc0L1Yuf8qvgo=) 3: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (hash: 62AOXONPCfPBRxAtpNp6448deYzXkfkQpY21xizhiY0=) 4: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (hash: Q1RZouAbRj9rNWYYHBYFWZvoZELLl8OZIK8cMQWUDXA=) 5: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl (hash: n2urguGisGbHHUsQAEP3lz3VDAuW4zBUX3rI5FS3Hz8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Mar 2024 16:36:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c9:b3:8c:c0:34:2d:7c:fc:10:7f:ad:52:99:63:ea:bd:f7:17:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Mar 27 03:56:15 2024 GMT Not After : Mar 30 15:23:15 2024 GMT Subject: CN=B05B3506CE966BDA5C3C08CCE3048733B1039442 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:2f:14:33:41:52:ea:5e:54:79:a6:18:76:51: 14:96:18:1e:28:51:27:1f:7b:94:1a:f1:8c:52:39: 55:fa:38:ee:91:40:a6:90:c5:65:2f:ba:92:6d:d5: 15:73:b8:d6:07:e2:80:93:0a:dd:f3:a8:6d:1c:25: 94:87:b6:2a:b3:81:63:61:17:f0:72:8b:40:09:ec: 46:2b:aa:a8:ec:64:8c:d0:6c:a2:d3:aa:b2:bc:06: 51:a3:20:c9:a9:63:2c:f6:65:c3:67:37:be:2f:e6: e0:f8:05:3a:6f:93:75:be:29:2d:91:50:ca:be:3f: 8d:aa:2d:33:16:eb:0d:51:17:1b:be:6b:34:c2:4c: 51:ed:14:4c:19:1a:f7:9f:cf:f8:5f:d2:ca:17:57: d0:ff:6a:e4:1b:0e:38:62:0b:2b:3b:ca:23:51:d1: 37:2b:c4:dc:14:35:30:69:52:96:14:1b:17:a9:4a: 25:9f:31:cb:83:49:df:bf:34:d7:a9:0a:26:0b:a0: 93:5a:ab:7c:46:b3:37:94:74:3f:46:c6:28:18:6c: 73:e8:92:3c:a4:50:77:ca:9d:fa:f6:27:0a:04:09: 54:12:1d:a4:5e:0d:dc:f0:7e:e5:e3:ec:96:80:02: 5e:37:4b:d0:53:a3:e9:f6:8e:4b:1c:60:e8:90:82: 3c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5B:35:06:CE:96:6B:DA:5C:3C:08:CC:E3:04:87:33:B1:03:94:42 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:e1:73:eb:8b:53:04:7f:0a:ee:8d:f4:1e:64:0e:4e:ce:90: d8:82:df:ba:af:58:da:fe:65:e3:0f:b7:ad:32:80:1c:08:e0: 90:5d:52:84:2d:f0:22:a6:2a:fa:f6:db:82:e3:45:b8:da:0b: 3d:d6:b1:94:02:a1:9d:fe:55:a1:cd:cb:24:4b:44:e8:39:68: 22:52:69:22:7f:c7:66:d3:f1:f8:ef:7b:c0:4e:3d:53:d9:15: 4b:74:34:72:e8:af:76:60:e5:85:c6:e4:89:b6:87:b9:2e:cd: 8a:b8:9b:06:d9:19:94:93:cb:94:23:7e:ef:a5:33:3c:bc:f6: dc:4f:b8:df:96:6d:4c:b7:84:df:10:68:e6:45:af:46:6a:34: 76:8e:30:a1:2b:65:01:19:7a:d7:90:e1:80:1a:52:99:93:16: c1:e3:1e:d9:9b:a4:d6:0e:47:9a:2c:80:45:8f:02:3c:ed:37: 2f:b1:fd:2a:f2:2d:17:a9:f9:a8:ad:cf:f3:86:5d:06:2a:76: bb:12:6b:de:7c:a6:87:2d:44:3c:87:2f:98:d1:ba:9f:df:26: 5c:4c:9b:c1:06:7a:57:19:24:e6:24:7a:74:f0:24:a8:c5:9f: 3a:19:91:00:d7:34:44:6a:e4:81:5d:fd:13:13:c0:f0:74:f2: a4:39:38:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHsmzjMA0LXz8EH+tUplj6r33F/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNDAzMjcwMzU2MTVaFw0yNDAzMzAxNTIzMTVaMDMxMTAvBgNV BAMTKEIwNUIzNTA2Q0U5NjZCREE1QzNDMDhDQ0UzMDQ4NzMzQjEwMzk0NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqLxQzQVLqXlR5phh2URSWGB4o UScfe5Qa8YxSOVX6OO6RQKaQxWUvupJt1RVzuNYH4oCTCt3zqG0cJZSHtiqzgWNh F/Byi0AJ7EYrqqjsZIzQbKLTqrK8BlGjIMmpYyz2ZcNnN74v5uD4BTpvk3W+KS2R UMq+P42qLTMW6w1RFxu+azTCTFHtFEwZGvefz/hf0soXV9D/auQbDjhiCys7yiNR 0TcrxNwUNTBpUpYUGxepSiWfMcuDSd+/NNepCiYLoJNaq3xGszeUdD9GxigYbHPo kjykUHfKnfr2JwoECVQSHaReDdzwfuXj7JaAAl43S9BTo+n2jkscYOiQgjwLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUsFs1Bs6Wa9pcPAjM4wSHM7EDlEIwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmEzYWU0ODUtYTY1OC00YzVjLWFi ZTItMWU3ZmQ4YjAzOGEwLzAvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0 RTcwMzEyQUQ1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEbhc+uLUwR/Cu6N9B5kDk7OkNiC37qvWNr+ ZeMPt60ygBwI4JBdUoQt8CKmKvr224LjRbjaCz3WsZQCoZ3+VaHNyyRLROg5aCJS aSJ/x2bT8fjve8BOPVPZFUt0NHLor3Zg5YXG5Im2h7kuzYq4mwbZGZSTy5Qjfu+l Mzy89txPuN+WbUy3hN8QaOZFr0ZqNHaOMKErZQEZeteQ4YAaUpmTFsHjHtmbpNYO R5osgEWPAjztNy+x/SryLRep+aitz/OGXQYqdrsSa958poctRDyHL5jRup/fJlxM m8EGelcZJOYkenTwJKjFnzoZkQDXNERq5IFd/RMTwPB08qQ5OM4= -----END CERTIFICATE-----Generated at Wed Mar 27 04:37:32 2024 by rpki-client on console-ams.rpki-client.org