$ rpki-client -vvf repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft File: 2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft (raw, json) Hash identifier: 4tlA3xo1EB8xIO0SmxG6/KPrbpi2iqEGVvTIPrwX/LQ= Subject key identifier: 38:13:19:47:0A:B8:B4:2E:2B:03:48:7C:24:13:BF:91:82:EA:46:FF Authority key identifier: 2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 Certificate issuer: /CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Certificate serial: 2684F2DB3465E493D786BDBB1AC0CC2F54DF1E6E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft Manifest number: 0428 Signing time: Fri 26 Apr 2024 09:31:10 +0000 Manifest this update: Fri 26 Apr 2024 09:26:10 +0000 Manifest next update: Mon 29 Apr 2024 10:13:10 +0000 Files and hashes: 1: 2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl (hash: MrDwCRBd5nHabAqqdtByZwP+MxMr56cpeZI/Y9o/LLI=) 2: 3130332e3134342e3130332e302f32342d3234203d3e20313339343231.roa (hash: EFYCBr9//5i3XPEonEOz7+19YXInh6wuuTXbjE9oijo=) 3: 3130332e3134342e3130322e302f32342d3234203d3e20313339343231.roa (hash: 3Ls2p0rKHrPNxIiadvIk+pUyp1gPzCOPFPqoplRe3SY=) 4: 3130332e3134342e3130322e302f32332d3234203d3e20313339343231.roa (hash: XdZFfHv73MmMxr67KWTebXMbK3einYwjrX0Bd9m8ZRU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 10:13:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:84:f2:db:34:65:e4:93:d7:86:bd:bb:1a:c0:cc:2f:54:df:1e:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D9D9137D4427A9D34E1B15F16C5C689A8C549D9 Validity Not Before: Apr 26 09:26:10 2024 GMT Not After : Apr 29 10:13:10 2024 GMT Subject: CN=381319470AB8B42E2B03487C2413BF9182EA46FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:97:95:22:99:e5:f9:0c:03:0f:fa:bf:ec:99: a3:c2:af:d2:66:17:64:d7:3d:ff:02:b6:6e:4f:97: c1:ce:3a:d6:20:86:af:7d:6f:5a:aa:e6:be:e0:36: e9:dd:fa:62:7e:77:00:b6:f2:ac:67:ff:29:6f:f9: 08:55:f9:8d:f2:d9:0b:9c:77:d3:fd:f7:02:f9:04: ee:fc:c6:3d:4c:b3:7f:69:7f:18:79:fb:7b:b5:86: 38:ec:13:11:f1:2b:19:35:39:0f:8a:c5:83:82:22: dc:88:e4:e6:3e:c6:5d:2a:ce:7e:ff:86:1a:4b:8e: 27:98:fd:56:a1:4e:a9:c9:f6:4e:17:64:20:77:b7: 5c:b6:0f:99:b6:d5:0a:65:06:13:b3:bb:b3:32:00: 14:0f:96:13:29:5a:9c:55:71:3c:54:3a:57:e8:e0: 88:54:04:61:87:e6:d4:1d:87:9f:36:f5:6d:06:fe: c6:0c:8d:71:d5:8c:02:8d:90:38:01:5a:c9:9d:ae: 39:c0:38:58:7e:12:85:83:dc:93:8d:57:62:5d:e8: 39:b8:6c:20:4d:f1:a7:58:54:4a:02:1f:2b:e5:24: 2a:de:4c:38:c5:e0:03:c8:ce:2c:ed:cc:08:e4:61: 92:c7:23:a7:a1:be:b0:ef:55:f1:61:f7:9e:4e:b9: b6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:13:19:47:0A:B8:B4:2E:2B:03:48:7C:24:13:BF:91:82:EA:46:FF X509v3 Authority Key Identifier: keyid:2D:9D:91:37:D4:42:7A:9D:34:E1:B1:5F:16:C5:C6:89:A8:C5:49:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a5341e8-22d8-449c-a753-e47bbfc48538/0/2D9D9137D4427A9D34E1B15F16C5C689A8C549D9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:c4:5d:9e:8f:90:11:66:9e:b3:c5:59:d3:f3:ee:8c:5d:df: 77:2d:a1:23:4b:12:c9:c0:52:d3:70:da:64:c0:62:08:26:08: c1:86:a9:90:7a:ff:e5:63:3f:ed:a6:32:0e:fb:05:4d:b5:a8: 9b:ba:ef:ee:eb:bb:1c:46:47:89:3f:69:8f:5c:e0:11:20:59: 64:37:0a:3c:97:fa:40:2e:61:0a:e5:e4:da:01:03:4c:0b:2c: dd:d4:de:bd:4f:29:e4:05:07:9e:04:fd:d3:cb:4a:a1:e6:dc: b4:9b:55:87:a8:af:74:6e:95:9c:79:8f:f1:af:17:ba:74:8b: 0b:ef:00:e8:e5:9b:ac:4b:22:e0:81:af:15:83:51:e7:fb:86: c7:d5:80:18:44:db:83:e6:f0:58:15:91:46:12:09:c1:24:e5: 26:78:ab:70:15:ad:f1:91:42:20:6b:b8:91:71:42:98:ca:a6: 04:f1:79:08:d9:15:28:82:19:98:7b:e9:15:14:e0:92:94:da: 58:2e:12:d2:7e:81:72:e8:10:af:5d:0f:2b:81:45:80:bf:0a: 26:10:7c:07:ee:23:a1:b6:b0:35:51:9a:bc:0a:3e:d6:42:37: 96:9e:9a:41:4b:cb:0b:49:db:d9:06:f4:a8:3a:31:fd:0f:35: 3d:9a:f5:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJoTy2zRl5JPXhr27GsDML1TfHm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlB OEM1NDlEOTAeFw0yNDA0MjYwOTI2MTBaFw0yNDA0MjkxMDEzMTBaMDMxMTAvBgNV BAMTKDM4MTMxOTQ3MEFCOEI0MkUyQjAzNDg3QzI0MTNCRjkxODJFQTQ2RkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1l5UimeX5DAMP+r/smaPCr9Jm F2TXPf8Ctm5Pl8HOOtYghq99b1qq5r7gNund+mJ+dwC28qxn/ylv+QhV+Y3y2Quc d9P99wL5BO78xj1Ms39pfxh5+3u1hjjsExHxKxk1OQ+KxYOCItyI5OY+xl0qzn7/ hhpLjieY/VahTqnJ9k4XZCB3t1y2D5m21QplBhOzu7MyABQPlhMpWpxVcTxUOlfo 4IhUBGGH5tQdh5829W0G/sYMjXHVjAKNkDgBWsmdrjnAOFh+EoWD3JONV2Jd6Dm4 bCBN8adYVEoCHyvlJCreTDjF4APIziztzAjkYZLHI6ehvrDvVfFh955Ouba9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOBMZRwq4tC4rA0h8JBO/kYLqRv8wHwYDVR0j BBgwFoAULZ2RN9RCep004bFfFsXGiajFSdkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTUzNDFlOC0yMmQ4LTQ0OWMtYTc1My1lNDdiYmZjNDg1MzgvMC8yRDlEOTEzN0Q0 NDI3QTlEMzRFMUIxNUYxNkM1QzY4OUE4QzU0OUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2ODlBOEM1 NDlEOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmE1MzQxZTgtMjJkOC00NDljLWE3 NTMtZTQ3YmJmYzQ4NTM4LzAvMkQ5RDkxMzdENDQyN0E5RDM0RTFCMTVGMTZDNUM2 ODlBOEM1NDlEOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG/EXZ6PkBFmnrPFWdPz7oxd33ctoSNLEsnA UtNw2mTAYggmCMGGqZB6/+VjP+2mMg77BU21qJu67+7ruxxGR4k/aY9c4BEgWWQ3 CjyX+kAuYQrl5NoBA0wLLN3U3r1PKeQFB54E/dPLSqHm3LSbVYeor3RulZx5j/Gv F7p0iwvvAOjlm6xLIuCBrxWDUef7hsfVgBhE24Pm8FgVkUYSCcEk5SZ4q3AVrfGR QiBruJFxQpjKpgTxeQjZFSiCGZh76RUU4JKU2lguEtJ+gXLoEK9dDyuBRYC/CiYQ fAfuI6G2sDVRmrwKPtZCN5aemkFLywtJ29kG9Kg6Mf0PNT2a9bg= -----END CERTIFICATE-----Generated at Fri Apr 26 10:57:38 2024 by rpki-client on console-ams.rpki-client.org