$ rpki-client -vvf repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.mft (raw, json) Hash identifier: o+QrCfxqxTVJJpEx9DACA7dARHnth1OyCmALrlQDQ3c= Subject key identifier: 58:55:E6:9E:95:2E:20:9C:8C:9B:AE:62:05:64:0F:28:12:F0:40:06 Authority key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Certificate issuer: /CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Certificate serial: 5D210936085745D40B8B3D560B92B6E452553856 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft Manifest number: 03E5 Signing time: Tue 30 Apr 2024 04:40:51 +0000 Manifest this update: Tue 30 Apr 2024 04:35:51 +0000 Manifest next update: Fri 03 May 2024 13:47:51 +0000 Files and hashes: 1: 3230322e31302e35382e302f32342d3234203d3e20313336313139.roa (hash: o3WMZYz6/RfKhb+hH+uQ23zvT085Bt8bn8P2vXJFSpE=) 2: 3130332e39342e3136382e302f32322d3234203d3e20313336313139.roa (hash: Uzl5R9EnEpmpOLqHiqB8DlSZrBRFKmVZJFsQBp0f1Qw=) 3: 323430313a343863303a3a2f33322d3438203d3e20313336313139.roa (hash: jAz39SdWZW3PqGl85Mh4bH/ieeJ4OrIo0vM5oR1ubg8=) 4: 21AC220B77A77D0516BC73B4C29C8363DD00911B.crl (hash: ySrt6G6+QqOBdQdF0uMBKsdJUURZZSSllKgjlzHSQpU=) 5: 3230322e31302e35392e302f32342d3234203d3e20313336313139.roa (hash: U0r5M5QKpIV07hyrK8XcZx+RiwaaVYR70kI5FooPpDM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 04:41:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:21:09:36:08:57:45:d4:0b:8b:3d:56:0b:92:b6:e4:52:55:38:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Validity Not Before: Apr 30 04:35:51 2024 GMT Not After : May 3 13:47:51 2024 GMT Subject: CN=5855E69E952E209C8C9BAE6205640F2812F04006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:62:cb:71:16:54:f7:5e:45:18:06:83:1b:69: 27:a2:2b:79:55:74:33:3d:9d:d2:91:b6:42:da:51: a7:b3:9e:0c:bc:7d:ff:dc:66:0b:15:bb:f8:cc:b2: 4f:83:10:d7:7b:14:91:7c:d1:43:cb:1c:5a:35:dc: d9:18:52:c8:6a:c6:89:8a:bf:05:58:3c:f9:dd:8a: d4:16:b4:7c:ac:08:fd:9b:1d:9a:d9:06:62:e5:b6: 35:05:55:5e:f4:d4:88:6f:30:ea:78:d5:6b:7b:88: ca:7c:3d:cc:b9:28:b2:4d:e0:4f:a1:d7:6c:10:b7: 4a:7f:ee:87:58:52:05:23:9a:f8:10:92:0b:19:57: 2a:e2:18:7d:13:39:74:92:f2:6c:e4:87:5f:c6:9c: 99:f1:06:de:6c:ee:dd:10:06:41:97:34:19:4d:96: 5e:2d:5c:a1:75:04:84:d6:20:44:88:82:00:ca:ab: 6c:8e:21:04:8c:06:26:79:5a:e7:08:46:1f:12:44: fb:99:cb:39:77:97:31:aa:9c:54:a7:78:a2:8e:46: 74:32:64:0f:9e:8e:5c:d2:93:39:1f:34:70:87:34: 48:15:30:9f:a6:be:e0:f8:8e:9a:11:8d:9f:17:df: 73:cf:c0:c4:4e:e6:14:4e:56:85:4b:95:fb:1e:2c: 6f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:55:E6:9E:95:2E:20:9C:8C:9B:AE:62:05:64:0F:28:12:F0:40:06 X509v3 Authority Key Identifier: keyid:21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:5b:44:d3:24:59:9e:81:58:82:7e:59:ad:17:03:ce:99:84: 46:6e:f3:e8:80:72:55:fc:3b:db:8b:e0:6d:6b:0f:23:05:16: d5:f5:75:b0:2a:90:f0:d1:f9:01:f6:4e:c2:2d:ee:f5:ab:de: c9:f9:10:7b:c6:90:ba:ce:a5:22:7b:79:75:b3:47:ad:cc:e7: 4e:f6:a1:8e:5b:f9:b5:42:69:b8:79:2a:81:e6:e4:c2:07:57: 27:52:84:1a:1b:9c:4b:00:6a:f7:f1:80:c3:53:7f:0e:57:9a: 41:28:c9:b0:a5:5f:82:4b:b1:9b:c0:bb:47:64:bc:75:f6:2c: d3:4c:05:4b:b9:db:88:fe:fc:59:1a:d7:5b:fc:40:5a:3d:30: 04:20:52:52:e0:7a:c1:1e:03:52:e1:5d:2b:2b:4e:d6:2e:e4: 1b:34:b0:a1:6b:c0:25:5c:53:ea:65:43:24:70:74:63:40:8a: 6c:92:90:a6:c6:25:b2:34:19:50:49:77:1e:8b:5b:b9:00:9c: 4e:1c:be:55:21:47:57:75:72:3d:8e:03:33:5d:ed:39:21:e5: 04:2c:2f:75:3f:ef:2a:22:85:8b:b9:be:e0:86:15:f7:2b:40: b3:69:f4:d4:32:44:eb:90:1a:16:eb:d1:db:a7:1b:be:43:d5: 8f:b8:f4:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXSEJNghXRdQLiz1WC5K25FJVOFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNE RDAwOTExQjAeFw0yNDA0MzAwNDM1NTFaFw0yNDA1MDMxMzQ3NTFaMDMxMTAvBgNV BAMTKDU4NTVFNjlFOTUyRTIwOUM4QzlCQUU2MjA1NjQwRjI4MTJGMDQwMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9YstxFlT3XkUYBoMbaSeiK3lV dDM9ndKRtkLaUaezngy8ff/cZgsVu/jMsk+DENd7FJF80UPLHFo13NkYUshqxomK vwVYPPnditQWtHysCP2bHZrZBmLltjUFVV701IhvMOp41Wt7iMp8Pcy5KLJN4E+h 12wQt0p/7odYUgUjmvgQkgsZVyriGH0TOXSS8mzkh1/GnJnxBt5s7t0QBkGXNBlN ll4tXKF1BITWIESIggDKq2yOIQSMBiZ5WucIRh8SRPuZyzl3lzGqnFSneKKORnQy ZA+ejlzSkzkfNHCHNEgVMJ+mvuD4jpoRjZ8X33PPwMRO5hROVoVLlfseLG+VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWFXmnpUuIJyMm65iBWQPKBLwQAYwHwYDVR0j BBgwFoAUIawiC3enfQUWvHO0wpyDY90AkRswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMC8yMUFDMjIwQjc3 QTc3RDA1MTZCQzczQjRDMjlDODM2M0REMDA5MTFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5QzgzNjNERDAw OTExQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmRhYmMwYmEtOTIyMi00YzQ1LTgz NDItZWI4NjQzYzQ5NjdkLzAvMjFBQzIyMEI3N0E3N0QwNTE2QkM3M0I0QzI5Qzgz NjNERDAwOTExQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHlbRNMkWZ6BWIJ+Wa0XA86ZhEZu8+iAclX8 O9uL4G1rDyMFFtX1dbAqkPDR+QH2TsIt7vWr3sn5EHvGkLrOpSJ7eXWzR63M5072 oY5b+bVCabh5KoHm5MIHVydShBobnEsAavfxgMNTfw5XmkEoybClX4JLsZvAu0dk vHX2LNNMBUu524j+/Fka11v8QFo9MAQgUlLgesEeA1LhXSsrTtYu5Bs0sKFrwCVc U+plQyRwdGNAimySkKbGJbI0GVBJdx6LW7kAnE4cvlUhR1d1cj2OAzNd7Tkh5QQs L3U/7yoihYu5vuCGFfcrQLNp9NQyROuQGhbr0dunG75D1Y+49OY= -----END CERTIFICATE-----Generated at Tue Apr 30 07:33:41 2024 by rpki-client on console-fra.rpki-client.org