$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: iXhgwbvrnUF3GOt3NdTVwevwobv2oA4upgrrZf+zUno= Subject key identifier: F2:75:3E:5F:E2:A5:61:AD:E9:CC:69:30:B5:AF:0F:1C:FD:31:27:4B Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 3B5281BF13BADE53E8866FD3D24534AEE2E71C06 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 0429 Signing time: Tue 30 Apr 2024 02:50:38 +0000 Manifest this update: Tue 30 Apr 2024 02:45:38 +0000 Manifest next update: Fri 03 May 2024 09:52:38 +0000 Files and hashes: 1: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: YX7tOEVArEOdkiA4C7zme7PmlOS4ADJILeAE/TxulXc=) 2: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: TjxBZprK+4c1VdoLERulYDZI7f7CTinOUgTlqvOLgCI=) 3: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: 3fTI/WxA7kYpZmfRx97Qf7vsJ99FuhNt9oBu679sNYI=) 4: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: QOCflxZFA0rwjrdjdOCUJWfHarPw0t346vF4PldIHrk=) 5: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: 8TSAFwAwazBqhy+GPHIR6ftOiuCtYAP9k8BxJqKNcD0=) 6: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: PTeJT+Kt8t7dXnSCV0a4HydjL1Wn61QCXBrXZBU3xos=) 7: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: lwY8Iqj/L+MqVioOcHjo2IEQQXALXrJw1VDgfhmmmvs=) 8: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: 9CUp5v0nNfMTiiFje+vMbQOjaUkUdgFiwUEFW5sFT3s=) 9: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: IH72DTP1OUOtU5wqW1xVvXj/E0hd99j6kGl6PQ2vQro=) 10: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: TBL+YzOnMtt+icdLvdAKPf5E0nlulonDhr9ktWp19LI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:52:81:bf:13:ba:de:53:e8:86:6f:d3:d2:45:34:ae:e2:e7:1c:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Apr 30 02:45:38 2024 GMT Not After : May 3 09:52:38 2024 GMT Subject: CN=F2753E5FE2A561ADE9CC6930B5AF0F1CFD31274B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:12:8a:c1:41:b7:fa:d9:e3:7e:08:cb:a5:18: 5b:e6:53:a8:fa:c4:70:2e:d5:4b:7c:e1:d6:99:f5: 94:2b:2e:a1:11:02:6e:63:bc:40:f9:0e:89:26:d0: 56:22:b6:5e:7c:56:c6:5d:bd:51:3c:f7:d9:c7:76: 5e:31:74:25:eb:1d:66:9f:51:66:0f:e9:3b:e7:6a: 86:75:5d:58:03:eb:39:34:6d:34:bb:6a:c4:94:25: 5e:23:d8:16:59:7c:ce:8c:7f:d9:74:99:a8:c6:21: c3:6f:b3:ba:a9:7c:b2:80:ed:70:6a:93:b4:75:4d: b5:1f:7d:cc:7a:df:da:0f:f7:45:66:b9:8c:be:4d: 7f:65:34:60:05:04:22:ba:eb:e6:cd:0c:d7:62:4d: 33:26:6b:01:b6:29:57:17:d9:16:c9:eb:26:25:02: 62:63:02:db:83:a1:e9:5e:1a:9c:d8:2f:43:b0:a2: 21:70:e9:02:e7:e6:b4:cb:8e:cc:35:41:19:f1:0b: e8:89:38:a1:3c:33:76:79:83:d7:61:c5:2d:e5:d7: 8d:05:cb:92:1d:11:d8:d7:a0:8d:76:70:03:98:9f: 83:c2:13:ce:cf:0a:07:f3:ce:03:e0:90:6b:e7:87: ed:60:a6:e6:74:3d:d5:df:f0:4f:4e:d9:f5:08:73: 51:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:75:3E:5F:E2:A5:61:AD:E9:CC:69:30:B5:AF:0F:1C:FD:31:27:4B X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:be:33:c1:a7:a1:67:07:3b:72:fb:0c:1b:31:db:6c:81:fc: cb:63:04:0c:ff:aa:34:14:54:9a:d7:a2:c4:61:aa:a6:1e:99: d4:b0:66:96:69:82:c6:6f:d9:85:09:0f:7b:e2:13:c4:f8:e5: b2:fd:67:48:12:24:eb:a7:9e:b0:1b:b5:25:56:a5:bb:de:38: 0a:0f:06:14:db:89:6e:c2:9d:03:b5:81:22:bc:d2:ff:5a:4d: 48:60:e2:f4:29:31:d9:b8:6f:48:72:7f:03:56:35:56:58:5b: 93:94:03:19:cb:93:56:1c:fe:cc:6a:93:b9:84:38:a3:a8:33: 2f:c8:6c:9e:96:7b:84:f9:3f:07:6c:07:cf:c7:1d:0d:76:11: c2:3e:14:19:84:26:a4:d5:4a:62:80:a3:5d:ba:7c:7e:11:22: ea:0f:87:57:bb:bb:1a:17:60:6f:87:f2:01:53:33:82:31:6e: e3:a6:4e:36:30:c2:40:84:42:75:7a:e3:c5:e0:cf:33:98:a8: 53:a7:f2:8a:29:75:22:2a:28:db:5c:e7:18:b5:d3:50:60:1c: da:66:cb:8b:a2:8e:3e:0d:f2:a2:c4:37:56:cd:fa:ec:da:3e: 3f:25:37:c4:35:ea:1b:d5:b8:41:1f:57:01:30:cc:bc:72:24: f2:68:7d:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO1KBvxO63lPohm/T0kU0ruLnHAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNDA0MzAwMjQ1MzhaFw0yNDA1MDMwOTUyMzhaMDMxMTAvBgNV BAMTKEYyNzUzRTVGRTJBNTYxQURFOUNDNjkzMEI1QUYwRjFDRkQzMTI3NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzEorBQbf62eN+CMulGFvmU6j6 xHAu1Ut84daZ9ZQrLqERAm5jvED5Dokm0FYitl58VsZdvVE899nHdl4xdCXrHWaf UWYP6TvnaoZ1XVgD6zk0bTS7asSUJV4j2BZZfM6Mf9l0majGIcNvs7qpfLKA7XBq k7R1TbUffcx639oP90VmuYy+TX9lNGAFBCK66+bNDNdiTTMmawG2KVcX2RbJ6yYl AmJjAtuDoeleGpzYL0OwoiFw6QLn5rTLjsw1QRnxC+iJOKE8M3Z5g9dhxS3l140F y5IdEdjXoI12cAOYn4PCE87PCgfzzgPgkGvnh+1gpuZ0PdXf8E9O2fUIc1EFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8nU+X+KlYa3pzGkwta8PHP0xJ0swHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACW+M8GnoWcHO3L7DBsx22yB/MtjBAz/qjQU VJrXosRhqqYemdSwZpZpgsZv2YUJD3viE8T45bL9Z0gSJOunnrAbtSVWpbveOAoP BhTbiW7CnQO1gSK80v9aTUhg4vQpMdm4b0hyfwNWNVZYW5OUAxnLk1Yc/sxqk7mE OKOoMy/IbJ6We4T5PwdsB8/HHQ12EcI+FBmEJqTVSmKAo126fH4RIuoPh1e7uxoX YG+H8gFTM4IxbuOmTjYwwkCEQnV648XgzzOYqFOn8oopdSIqKNtc5xi101BgHNpm y4uijj4N8qLEN1bN+uzaPj8lN8Q16hvVuEEfVwEwzLxyJPJofTU= -----END CERTIFICATE-----Generated at Tue Apr 30 03:30:49 2024 by rpki-client on console-fra.rpki-client.org