$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: NDs1RVKBVaT5eI4AsN53MzLtlWymF0gKeB6RqMaDfAI= Subject key identifier: 8A:4B:A1:B6:00:DC:F9:8F:65:4D:15:66:F0:91:51:03:84:B2:5C:49 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 0935E5589B5E8817761915B69B8FF40D61375A13 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 042D Signing time: Tue 30 Apr 2024 20:40:34 +0000 Manifest this update: Tue 30 Apr 2024 20:35:34 +0000 Manifest next update: Sat 04 May 2024 01:31:34 +0000 Files and hashes: 1: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: vZm3NWRzwyzo3z+zAWP4h4lHPE/U4LVNvDYSS2K5aoI=) 2: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: tZ93saC5aRi6jeroc2LHcuU4mqbDws5+EuAQSFlI3io=) 3: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: iiV39b4zGfd/FfVIBx3iGtG9jUqrW2Fn3rb5sHdNatA=) 4: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: PQyUCOKeV8GaNhFn3qGKZ89Sa664IqyavOG5j9X8+bM=) 5: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: xR4A9sZB+TcNk4+A70alpJ8SkoSqR7eK3tdu5bOkUrc=) 6: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: laYi/Ioje0Un95aRqiZvDytrIdl62SvdSpCkVBVXSbY=) 7: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: xbDBcz7h5MQ8p7Ub6USn4BOYLaC1Dw7K29tSjpxMTaY=) 8: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: TqAaJSXTeepR0ncZUZPgI9FHSgBXciaZzpuvJVZEEJs=) 9: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: XC7yNKfsnOBCYZg8fNaUt+MbvacDuHP8DSgeFOFe8Rk=) 10: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: Y1vxfNpBEkDUu759owztLKdhxj1gYyNzrkNzIZ6OPcA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 01:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:35:e5:58:9b:5e:88:17:76:19:15:b6:9b:8f:f4:0d:61:37:5a:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Apr 30 20:35:34 2024 GMT Not After : May 4 01:31:34 2024 GMT Subject: CN=8A4BA1B600DCF98F654D1566F091510384B25C49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:37:fd:34:1b:c2:e0:27:31:da:3b:37:51:26: 9e:81:0d:8c:4e:32:7c:a1:2e:4c:5c:92:e1:87:39: de:68:15:81:38:1d:95:67:64:f4:d4:d7:54:40:23: 8c:88:73:58:60:8b:fc:2f:b5:33:81:a8:8d:94:7a: d6:1c:ea:6a:f7:4e:e0:80:c7:e8:ce:54:f4:8f:11: 95:fb:21:d2:3e:2b:84:a1:1b:69:01:e5:e7:76:de: f2:74:ac:fb:18:e2:35:b2:97:44:35:4f:5f:54:11: 12:78:cf:2b:bd:70:91:3d:57:e8:5a:29:61:d2:af: 05:b6:e4:9a:99:b6:8c:28:92:bf:b8:a1:52:c5:d5: db:65:94:6c:ae:a3:3d:91:f1:bd:e3:df:39:ae:19: fa:64:04:77:9f:e6:99:5b:b6:81:26:68:68:54:d3: aa:c3:1a:92:da:3a:cb:df:bf:ee:2f:f4:21:a3:e2: a6:83:ea:6f:ad:dd:32:dd:e3:eb:47:9c:16:8b:42: dd:95:6d:a5:62:7b:26:69:ce:9e:61:60:95:b8:f8: 78:ab:08:5f:d6:13:9b:c4:06:83:b6:7e:1a:99:af: 19:72:a5:f1:fe:47:fe:fa:82:fd:6c:cf:a7:35:23: cf:8e:38:8e:e7:0d:e0:c0:6f:7c:0e:96:89:62:88: 3d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4B:A1:B6:00:DC:F9:8F:65:4D:15:66:F0:91:51:03:84:B2:5C:49 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:9d:3f:a3:0d:a1:d1:33:d6:2f:00:7d:4a:ac:c8:f8:83:22: e8:47:c3:01:b9:1c:06:ab:6b:d5:c7:b4:ec:d3:27:c4:ed:ee: a0:54:ec:e4:45:ed:e0:b2:1e:86:1b:96:c7:6a:64:5d:f3:7a: 03:3b:7e:96:93:f8:b1:67:99:30:df:f5:68:1a:d3:52:95:a2: 7d:e0:0d:91:bf:b9:3f:13:c9:26:81:29:50:66:26:18:4a:34: 99:15:d5:b3:0b:1b:2a:15:56:4f:78:ce:8a:72:1c:9f:db:44: eb:5f:87:b4:c7:c4:75:7c:f2:7c:dd:04:4c:17:60:77:77:b4: 8e:3e:40:fb:35:20:a1:61:9a:59:48:15:9c:cf:5e:27:c1:24: 67:72:35:ad:13:79:c8:5a:1c:71:ee:02:29:5c:5a:50:ba:88: db:35:2b:7a:ac:57:58:72:5e:94:58:0e:7c:54:bb:d4:6a:ec: 85:90:11:5b:14:77:fb:f7:44:6e:20:85:65:58:78:a1:46:50: 57:71:5b:b2:f5:4c:bf:67:6c:13:a2:dc:1c:ae:9b:76:f5:30: 95:d1:93:71:bf:4d:68:6a:b4:87:aa:24:95:4f:fb:a5:53:6d: ad:15:c7:f8:51:27:dd:3f:3d:11:b4:29:9a:89:fe:22:88:e9: 14:71:f7:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCTXlWJteiBd2GRW2m4/0DWE3WhMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNDA0MzAyMDM1MzRaFw0yNDA1MDQwMTMxMzRaMDMxMTAvBgNV BAMTKDhBNEJBMUI2MDBEQ0Y5OEY2NTREMTU2NkYwOTE1MTAzODRCMjVDNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiN/00G8LgJzHaOzdRJp6BDYxO MnyhLkxckuGHOd5oFYE4HZVnZPTU11RAI4yIc1hgi/wvtTOBqI2UetYc6mr3TuCA x+jOVPSPEZX7IdI+K4ShG2kB5ed23vJ0rPsY4jWyl0Q1T19UERJ4zyu9cJE9V+ha KWHSrwW25JqZtowokr+4oVLF1dtllGyuoz2R8b3j3zmuGfpkBHef5plbtoEmaGhU 06rDGpLaOsvfv+4v9CGj4qaD6m+t3TLd4+tHnBaLQt2VbaVieyZpzp5hYJW4+Hir CF/WE5vEBoO2fhqZrxlypfH+R/76gv1sz6c1I8+OOI7nDeDAb3wOloliiD2HAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUikuhtgDc+Y9lTRVm8JFRA4SyXEkwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE2dP6MNodEz1i8AfUqsyPiDIuhHwwG5HAar a9XHtOzTJ8Tt7qBU7ORF7eCyHoYblsdqZF3zegM7fpaT+LFnmTDf9Wga01KVon3g DZG/uT8TySaBKVBmJhhKNJkV1bMLGyoVVk94zopyHJ/bROtfh7THxHV88nzdBEwX YHd3tI4+QPs1IKFhmllIFZzPXifBJGdyNa0TechaHHHuAilcWlC6iNs1K3qsV1hy XpRYDnxUu9Rq7IWQEVsUd/v3RG4ghWVYeKFGUFdxW7L1TL9nbBOi3Byum3b1MJXR k3G/TWhqtIeqJJVP+6VTba0Vx/hRJ90/PRG0KZqJ/iKI6RRx98w= -----END CERTIFICATE-----Generated at Tue Apr 30 21:36:30 2024 by rpki-client on console-fra.rpki-client.org