$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: 3MxQKXToMy+vGLt+GfvHnu0rGAyTdcMA6jrXlISN7Ds= Subject key identifier: E0:6F:E5:BE:2C:DC:4C:B4:C4:32:5C:82:5D:F8:84:B6:BD:A1:F8:5D Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 25A91C75A354731D18053FACA3D125D1DDB4E5F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 03F1 Signing time: Thu 02 May 2024 07:50:42 +0000 Manifest this update: Thu 02 May 2024 07:45:42 +0000 Manifest next update: Sun 05 May 2024 09:05:42 +0000 Files and hashes: 1: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: 1FA533AkGgHp1U3quAKbobbsrJL/xhEEsjgFSx9m++M=) 2: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: LKQ8XjfBdPZzD6wV85IhJ+CRHZwJAWSK3nJw8LV1UIc=) 3: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: HJorga0IKiHzCosho2900+K+4LuiqhB9t6Fw3ETjJjQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 09:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:a9:1c:75:a3:54:73:1d:18:05:3f:ac:a3:d1:25:d1:dd:b4:e5:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: May 2 07:45:42 2024 GMT Not After : May 5 09:05:42 2024 GMT Subject: CN=E06FE5BE2CDC4CB4C4325C825DF884B6BDA1F85D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e1:2e:92:ae:19:f4:a2:9b:13:ff:2b:bb:7e: 04:e2:53:09:3c:f4:0f:11:b2:b9:4d:7d:60:ce:a0: 53:fa:d5:0f:62:3b:1c:ce:5f:ea:1a:2a:3e:9f:4d: 03:f5:a2:91:df:89:7b:bd:06:36:aa:22:af:68:7f: 76:19:25:92:45:ce:38:1b:3a:e1:a0:f8:72:c1:43: 12:e1:6a:07:12:f3:02:1a:73:38:7f:a6:d3:05:aa: ed:77:bd:d2:35:4f:a1:46:f1:5b:3c:16:12:ab:f0: 7f:14:3e:65:a1:c6:d2:97:64:ef:7d:e2:5e:8a:29: d1:e8:80:c5:ce:77:6e:a9:c0:8d:13:ae:ff:e2:ff: ac:5a:78:99:45:17:b5:e6:75:90:80:7b:97:b9:26: 76:5e:9b:c6:ff:47:11:9a:96:09:bb:c3:a9:73:26: 5f:35:f2:e3:59:19:b2:6b:c5:84:ca:a5:ca:8d:b1: 0d:f0:9e:16:ff:04:3f:35:7e:a2:0f:a2:3e:34:6a: 5e:7e:2e:a8:08:d6:35:88:e2:33:44:b2:e6:7c:6b: 37:87:7d:41:6f:09:c3:67:c1:33:5d:67:71:ac:8e: b8:5d:80:49:5e:14:2e:0b:62:56:8b:59:50:80:a8: b5:81:21:26:a5:ba:09:42:21:c3:b6:40:1c:0c:79: e2:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:6F:E5:BE:2C:DC:4C:B4:C4:32:5C:82:5D:F8:84:B6:BD:A1:F8:5D X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:5f:3c:fe:c6:fa:7b:d3:e6:c1:ae:c9:08:19:07:51:b7:44: db:c6:37:53:57:80:d4:71:7b:ba:4c:49:0b:46:92:27:5d:e3: 54:a1:48:15:fc:f0:d5:b7:cf:2f:10:6d:5a:e1:41:42:a0:60: 55:63:35:11:c4:3f:b4:68:b8:44:22:20:1b:51:f8:3a:f9:cd: 3b:11:ac:85:08:c8:4c:78:e4:9b:54:c0:64:78:1e:50:da:06: f6:76:c1:9f:cb:e4:3c:7e:c4:98:7c:55:4c:9d:f0:50:0e:a6: b1:1e:4b:79:75:68:42:08:1f:9d:31:0c:11:df:81:af:19:65: 51:6c:32:41:59:25:e2:bf:dc:ab:fb:61:6c:2f:9e:b9:12:8b: d7:0f:39:ec:4e:f9:6e:43:55:68:21:e6:5c:29:1c:a6:3d:98: 35:86:db:e3:f5:51:4a:14:2b:ef:81:95:4c:6a:25:c4:17:e8: e9:8b:d4:e5:56:4d:33:f6:75:36:39:fc:65:20:ce:63:fc:0f: fe:3a:29:10:05:c5:18:68:73:48:7d:19:ea:61:ab:8d:cb:b3: a9:f7:b2:62:16:07:bf:66:57:0f:2f:93:55:e8:41:64:af:8d: dc:a7:a5:ca:87:37:3d:3b:7a:41:84:fc:32:dd:fe:b5:da:c9: aa:c1:57:27 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJakcdaNUcx0YBT+so9El0d205fAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNDA1MDIwNzQ1NDJaFw0yNDA1MDUwOTA1NDJaMDMxMTAvBgNV BAMTKEUwNkZFNUJFMkNEQzRDQjRDNDMyNUM4MjVERjg4NEI2QkRBMUY4NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI4S6Srhn0opsT/yu7fgTiUwk8 9A8RsrlNfWDOoFP61Q9iOxzOX+oaKj6fTQP1opHfiXu9BjaqIq9of3YZJZJFzjgb OuGg+HLBQxLhagcS8wIaczh/ptMFqu13vdI1T6FG8Vs8FhKr8H8UPmWhxtKXZO99 4l6KKdHogMXOd26pwI0Trv/i/6xaeJlFF7XmdZCAe5e5JnZem8b/RxGalgm7w6lz Jl818uNZGbJrxYTKpcqNsQ3wnhb/BD81fqIPoj40al5+LqgI1jWI4jNEsuZ8azeH fUFvCcNnwTNdZ3GsjrhdgEleFC4LYlaLWVCAqLWBISaluglCIcO2QBwMeeJnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4G/lvizcTLTEMlyCXfiEtr2h+F0wHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEBfPP7G+nvT5sGuyQgZB1G3RNvGN1NXgNRx e7pMSQtGkidd41ShSBX88NW3zy8QbVrhQUKgYFVjNRHEP7RouEQiIBtR+Dr5zTsR rIUIyEx45JtUwGR4HlDaBvZ2wZ/L5Dx+xJh8VUyd8FAOprEeS3l1aEIIH50xDBHf ga8ZZVFsMkFZJeK/3Kv7YWwvnrkSi9cPOexO+W5DVWgh5lwpHKY9mDWG2+P1UUoU K++BlUxqJcQX6OmL1OVWTTP2dTY5/GUgzmP8D/46KRAFxRhoc0h9Gephq43Ls6n3 smIWB79mVw8vk1XoQWSvjdynpcqHNz07ekGE/DLd/rXayarBVyc= -----END CERTIFICATE-----Generated at Thu May 2 08:50:12 2024 by rpki-client on console-fra.rpki-client.org