$ rpki-client -vvf repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft File: 17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft (raw, json) Hash identifier: 6l6WijPRR5KAEwkqTksZfFmRC1jvUlUXZ2qOnEIbrvc= Subject key identifier: 90:F3:6E:07:9C:6B:DA:BF:5B:15:93:95:A8:B9:F5:8B:27:62:75:E4 Authority key identifier: 17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 Certificate issuer: /CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Certificate serial: 2F6591867657D54D27CE6899F6A2C6B45094D8FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft Manifest number: 03F4 Signing time: Tue 07 May 2024 07:34:50 +0000 Manifest this update: Tue 07 May 2024 07:29:50 +0000 Manifest next update: Fri 10 May 2024 16:05:50 +0000 Files and hashes: 1: 3130332e34372e3133342e302f32342d3234203d3e203633383539.roa (hash: d1M2Qas2ESRzzupnOZWeqZxveIlcoBIs/V8NeqRZsWI=) 2: 3130332e34372e3133352e302f32342d3234203d3e203633383539.roa (hash: AWozFiAIZWfxU287x13FXYtmmWl75ad9OAGJuE9QWfs=) 3: 17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl (hash: AnFy39431n8cnJ3ylBa8VcJjBQNGWmDUCYqFO7XJIVY=) 4: 3130332e34372e3133332e302f32342d3234203d3e203633383539.roa (hash: 2aYviQF5pT9dB4f6DFyirinje01w0LWCrHsBX6MFnLc=) 5: 3130332e34372e3133322e302f32342d3234203d3e203633383539.roa (hash: AZ/rrLVpYCLk7CInpDZBCjxvb0NiSY9xYAK4edmbBx4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 10:11:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:65:91:86:76:57:d5:4d:27:ce:68:99:f6:a2:c6:b4:50:94:d8:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=17D02B116D4BBA651245CBC7CCC30A5927A744E4 Validity Not Before: May 7 07:29:50 2024 GMT Not After : May 10 16:05:50 2024 GMT Subject: CN=90F36E079C6BDABF5B159395A8B9F58B276275E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:35:26:61:af:b2:9e:a0:98:f1:d5:cf:d4:93: 6f:ee:c4:61:61:75:71:92:77:6d:7f:99:3e:4f:85: e5:c7:c9:71:b0:b6:81:bc:07:09:3d:9c:98:6a:ac: 09:4a:76:ef:fe:2c:a3:40:2f:02:21:9b:7a:9c:cf: 7d:29:a7:1f:1a:fc:d0:9e:2c:c2:61:ad:42:27:75: 54:20:a4:4f:fd:07:1c:56:85:59:cb:1d:0c:02:e1: 91:45:35:42:ef:80:83:78:f2:6e:8f:2e:dd:e3:ca: ef:3c:87:fe:11:6a:f8:5a:c2:03:7d:7d:50:9d:b6: 08:da:d6:69:ce:9a:ab:97:c3:4d:ec:60:f3:0a:e7: 50:6d:ab:52:45:18:ea:de:60:c3:d9:77:bb:13:5d: 5b:c9:71:f3:c2:d1:b6:9e:34:01:6b:96:05:84:3d: 6f:7c:4c:82:62:e5:88:74:a5:cb:24:30:6e:dc:64: 4d:e0:32:2f:bb:c5:ea:23:e7:c7:17:9b:b4:33:ed: f3:d2:7b:3b:d5:52:af:26:0d:40:a1:07:33:3c:c3: 74:dc:d9:7a:ff:28:30:32:5b:3f:4d:c9:f2:b3:a2: cf:78:05:63:0d:47:32:25:b8:22:18:03:c1:66:89: 06:0b:9a:ce:6d:49:e2:93:9b:14:1d:af:44:ef:ff: d7:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F3:6E:07:9C:6B:DA:BF:5B:15:93:95:A8:B9:F5:8B:27:62:75:E4 X509v3 Authority Key Identifier: keyid:17:D0:2B:11:6D:4B:BA:65:12:45:CB:C7:CC:C3:0A:59:27:A7:44:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/17D02B116D4BBA651245CBC7CCC30A5927A744E4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3bbb2734-e5fa-40eb-8598-b7cd101343ca/0/17D02B116D4BBA651245CBC7CCC30A5927A744E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:06:91:2d:15:5b:32:f6:ad:e9:c9:82:b0:66:de:1b:61:4f: 49:47:c9:c2:72:25:db:82:c6:8e:01:3c:05:ec:56:68:40:91: 92:6a:10:18:57:bb:b7:cf:27:9b:d2:18:6a:45:a4:57:60:35: 67:af:3c:96:23:bf:49:58:8d:31:11:e2:66:a1:a6:58:a0:8b: 51:f7:8d:d2:1e:46:f1:9d:60:8a:a8:79:8a:7a:6c:64:8d:ac: 08:e0:88:b8:2d:c8:c4:88:53:7d:fd:3a:4c:da:5e:39:74:77: 3c:96:d6:bb:84:d5:b6:a9:7d:20:af:ab:ec:f3:a4:aa:64:85: a6:f5:15:18:8d:6f:d3:d0:bc:79:f1:df:f3:e4:87:fb:a4:49: 1e:41:d0:dd:01:b9:f3:59:26:08:c0:39:62:35:dc:17:40:b1: 84:37:6e:cf:2b:d3:95:a9:62:08:80:9c:70:2e:ce:3e:f8:1c: 2f:ad:4e:62:d1:7a:ec:d2:81:4b:c8:4a:01:6e:30:9e:36:ec: fd:07:48:f6:4e:c7:c1:d1:fc:9b:b4:b5:7c:a6:f3:a8:4b:2b: af:16:3f:2c:09:05:9f:5d:d8:cc:95:92:fb:9f:f7:ce:b6:45: 6d:30:20:4c:60:ab:36:8a:2c:86:e8:2b:80:18:a1:dc:6c:cf: 6f:f4:08:56 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUL2WRhnZX1U0nzmiZ9qLGtFCU2P4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTky N0E3NDRFNDAeFw0yNDA1MDcwNzI5NTBaFw0yNDA1MTAxNjA1NTBaMDMxMTAvBgNV BAMTKDkwRjM2RTA3OUM2QkRBQkY1QjE1OTM5NUE4QjlGNThCMjc2Mjc1RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoNSZhr7KeoJjx1c/Uk2/uxGFh dXGSd21/mT5PheXHyXGwtoG8Bwk9nJhqrAlKdu/+LKNALwIhm3qcz30ppx8a/NCe LMJhrUIndVQgpE/9BxxWhVnLHQwC4ZFFNULvgIN48m6PLt3jyu88h/4RavhawgN9 fVCdtgja1mnOmquXw03sYPMK51Btq1JFGOreYMPZd7sTXVvJcfPC0baeNAFrlgWE PW98TIJi5Yh0pcskMG7cZE3gMi+7xeoj58cXm7Qz7fPSezvVUq8mDUChBzM8w3Tc 2Xr/KDAyWz9NyfKzos94BWMNRzIluCIYA8FmiQYLms5tSeKTmxQdr0Tv/9d7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkPNuB5xr2r9bFZOVqLn1iydideQwHwYDVR0j BBgwFoAUF9ArEW1LumUSRcvHzMMKWSenROQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YmJiMjczNC1lNWZhLTQwZWItODU5OC1iN2NkMTAxMzQzY2EvMC8xN0QwMkIxMTZE NEJCQTY1MTI0NUNCQzdDQ0MzMEE1OTI3QTc0NEU0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBBNTkyN0E3 NDRFNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2JiYjI3MzQtZTVmYS00MGViLTg1 OTgtYjdjZDEwMTM0M2NhLzAvMTdEMDJCMTE2RDRCQkE2NTEyNDVDQkM3Q0NDMzBB NTkyN0E3NDRFNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAsGkS0VWzL2renJgrBm3hthT0lHycJyJduC xo4BPAXsVmhAkZJqEBhXu7fPJ5vSGGpFpFdgNWevPJYjv0lYjTER4mahpligi1H3 jdIeRvGdYIqoeYp6bGSNrAjgiLgtyMSIU339OkzaXjl0dzyW1ruE1bapfSCvq+zz pKpkhab1FRiNb9PQvHnx3/Pkh/ukSR5B0N0BufNZJgjAOWI13BdAsYQ3bs8r05Wp YgiAnHAuzj74HC+tTmLReuzSgUvISgFuMJ427P0HSPZOx8HR/Ju0tXym86hLK68W PywJBZ9d2MyVkvuf9862RW0wIExgqzaKLIboK4AYodxsz2/0CFY= -----END CERTIFICATE-----Generated at Tue May 7 09:40:45 2024 by rpki-client on console-fra.rpki-client.org