$ rpki-client -vvf repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft File: B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft (raw, json) Hash identifier: pgT1EFsPfaJi3RoedjfeAfXW2moTvH+U5A2IXujjo3g= Subject key identifier: 1F:F5:30:42:5C:33:E1:4A:DE:87:10:25:EA:7E:EF:55:47:E7:3A:EB Authority key identifier: B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 Certificate issuer: /CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Certificate serial: 56CD77FF4D1018A647DE0CB5C99EBFE59535D3CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft Manifest number: 0429 Signing time: Thu 02 May 2024 08:31:28 +0000 Manifest this update: Thu 02 May 2024 08:26:28 +0000 Manifest next update: Sun 05 May 2024 14:39:28 +0000 Files and hashes: 1: B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl (hash: 2VDV017qaKAuc2y25dpfCZd8H3skfQzFu+YedTjfgjw=) 2: 3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa (hash: t5aqcdifr99YTsNsrp+Th8qjHneTIsQfI7h4VwY+z3M=) 3: 323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa (hash: sa5tZRwsGRVnGF2AkxFN+SCmRNxhz+OixHwP5PGmIRw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 14:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:cd:77:ff:4d:10:18:a6:47:de:0c:b5:c9:9e:bf:e5:95:35:d3:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Validity Not Before: May 2 08:26:28 2024 GMT Not After : May 5 14:39:28 2024 GMT Subject: CN=1FF530425C33E14ADE871025EA7EEF5547E73AEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:a5:50:e7:f4:85:ec:7b:39:19:2d:e2:c5: 9b:5d:ac:d5:74:68:9b:95:59:6f:ff:d8:0b:d8:1f: eb:c0:89:68:59:a8:cf:f6:1a:3f:dc:f2:b3:4d:b9: 48:bb:01:7e:06:4d:b8:92:10:38:4a:4c:a9:3b:73: 48:9c:ee:58:c7:76:bc:d4:b8:ce:c8:23:64:a2:cb: 6d:a7:b6:e0:de:3d:f4:32:5f:3a:d0:5d:07:39:e0: 77:e9:cd:fe:44:4a:5b:3a:20:e6:ec:9c:ca:98:68: 3f:52:a7:27:8a:8c:26:c9:25:8e:a8:f3:19:9f:f4: 24:95:b0:94:ce:8e:e9:13:76:70:45:2b:59:f8:ca: 2a:a3:32:5f:3f:79:f9:fc:4c:f6:b0:be:ac:21:85: a5:0a:1c:04:6a:00:d9:b7:ea:6a:1f:04:88:a8:eb: 74:73:a4:ed:8c:15:33:68:04:36:45:68:6d:20:34: 5e:f5:3a:f4:22:1e:c6:75:36:96:e5:fe:c5:28:59: f4:74:02:76:63:1b:96:91:9b:78:e8:17:6a:d0:7c: 68:06:ab:d0:7b:07:81:1d:6a:2a:ac:49:4a:67:e7: 18:7f:0a:aa:59:f8:6c:35:2d:79:d9:04:5d:c4:61: 06:d9:5e:48:8f:51:e2:79:c3:b3:82:d3:4a:47:55: b8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F5:30:42:5C:33:E1:4A:DE:87:10:25:EA:7E:EF:55:47:E7:3A:EB X509v3 Authority Key Identifier: keyid:B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:35:9b:9b:3c:00:e3:66:85:86:5f:f8:77:86:73:19:b0:44: 52:de:17:01:e8:3b:da:b4:8c:be:4b:11:d3:59:ef:37:3c:54: 1a:01:f1:32:60:38:a4:40:50:f4:1c:df:c5:b5:0f:3a:d1:56: 7c:9b:8a:e3:91:e9:b3:e7:7e:10:f4:15:be:91:cf:df:aa:8b: b6:0d:06:44:b7:a7:5d:7c:b1:23:fc:ff:61:15:29:3a:ec:ef: f7:4f:60:8a:35:4c:55:85:44:8e:b8:06:33:57:1a:90:c6:d3: fd:9f:bb:92:27:de:e8:2e:ce:8a:06:dd:7b:1b:b4:a8:26:0c: 58:e6:9e:30:26:38:21:2b:d0:71:27:de:e8:b9:49:2c:bb:5f: 7c:22:13:00:5e:dd:7a:d7:f4:12:c8:a1:91:ee:79:c0:c3:4b: ed:80:59:63:29:70:13:45:8b:88:68:2a:b4:df:f1:54:23:93: d3:35:4c:78:b9:79:9c:fb:c4:89:9e:41:ad:43:f6:00:68:35: f3:92:cb:66:2f:a7:b2:39:2f:37:87:82:56:09:0d:bd:e7:1d: c3:d4:cc:92:0d:81:9a:25:55:06:b1:c8:4a:e7:75:30:36:f1: 96:2a:da:fb:18:8d:bd:46:99:5e:54:6a:18:ac:fd:0d:4d:51: 35:99:19:01 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVs13/00QGKZH3gy1yZ6/5ZU1080wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RG RkM5Q0MxNjAeFw0yNDA1MDIwODI2MjhaFw0yNDA1MDUxNDM5MjhaMDMxMTAvBgNV BAMTKDFGRjUzMDQyNUMzM0UxNEFERTg3MTAyNUVBN0VFRjU1NDdFNzNBRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9b6VQ5/SF7Hs5GS3ixZtdrNV0 aJuVWW//2AvYH+vAiWhZqM/2Gj/c8rNNuUi7AX4GTbiSEDhKTKk7c0ic7ljHdrzU uM7II2Siy22ntuDePfQyXzrQXQc54Hfpzf5ESls6IObsnMqYaD9SpyeKjCbJJY6o 8xmf9CSVsJTOjukTdnBFK1n4yiqjMl8/efn8TPawvqwhhaUKHARqANm36mofBIio 63RzpO2MFTNoBDZFaG0gNF71OvQiHsZ1Npbl/sUoWfR0AnZjG5aRm3joF2rQfGgG q9B7B4EdaiqsSUpn5xh/CqpZ+Gw1LXnZBF3EYQbZXkiPUeJ5w7OC00pHVbgfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUH/UwQlwz4UrehxAl6n7vVUfnOuswHwYDVR0j BBgwFoAUuJOYumA8Q733EaKzH63Izf/JzBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWE3OTM0MC00ZGIyLTQ1OGQtOTVkZC1hZjIwYjRmY2RiM2QvMC9CODkzOThCQTYw M0M0M0JERjcxMUEyQjMxRkFEQzhDREZGQzlDQzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RGRkM5 Q0MxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGVhNzkzNDAtNGRiMi00NThkLTk1 ZGQtYWYyMGI0ZmNkYjNkLzAvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4 Q0RGRkM5Q0MxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGI1m5s8AONmhYZf+HeGcxmwRFLeFwHoO9q0 jL5LEdNZ7zc8VBoB8TJgOKRAUPQc38W1DzrRVnybiuOR6bPnfhD0Fb6Rz9+qi7YN BkS3p118sSP8/2EVKTrs7/dPYIo1TFWFRI64BjNXGpDG0/2fu5In3uguzooG3Xsb tKgmDFjmnjAmOCEr0HEn3ui5SSy7X3wiEwBe3XrX9BLIoZHuecDDS+2AWWMpcBNF i4hoKrTf8VQjk9M1THi5eZz7xImeQa1D9gBoNfOSy2Yvp7I5LzeHglYJDb3nHcPU zJINgZolVQaxyErndTA28ZYq2vsYjb1GmV5Uahis/Q1NUTWZGQE= -----END CERTIFICATE-----Generated at Thu May 2 11:32:29 2024 by rpki-client on console-fra.rpki-client.org