$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: T3K3brWztLJ+kGT5fS24thzQcJcg7y/ES6O2pJi/mVg= Subject key identifier: A5:66:A9:E9:C9:F5:81:95:99:3C:F3:D7:E1:B0:03:BA:82:7C:3C:95 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 458B45D01E303F8517DD291330D959581F7FDD98 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 42 Signing time: Fri 27 Sep 2024 17:31:01 +0000 Manifest this update: Fri 27 Sep 2024 17:26:01 +0000 Manifest next update: Tue 01 Oct 2024 02:57:01 +0000 Files and hashes: 1: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: aoWHMzseHdogCDakXwd7ruKfvR17jJA+n+cXkhk+XL8=) 2: 3135372e32302e34352e302f32342d3234203d3e20313532333932.roa (hash: jbMFn3kNUo/m8uz8dpflKAJHnKvcbaIlaJRtbj0yWV0=) 3: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: 20xyi7WGXkhpJhYMMa60rCEDcWMrrO4WibLNf+8UjDs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Sep 2024 10:04:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:8b:45:d0:1e:30:3f:85:17:dd:29:13:30:d9:59:58:1f:7f:dd:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Sep 27 17:26:01 2024 GMT Not After : Oct 1 02:57:01 2024 GMT Subject: CN=A566A9E9C9F58195993CF3D7E1B003BA827C3C95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ba:e6:e1:06:13:89:c3:0b:9b:1f:44:fb:19: 75:19:b7:98:e5:08:38:b5:bf:48:ed:05:1d:7c:ef: 26:a0:59:7a:35:05:33:91:d8:01:65:48:27:03:65: 09:70:5c:d0:73:9c:5f:61:2d:24:6a:ad:70:d0:65: 8f:ac:fe:e1:af:bb:71:fd:ca:22:7c:2d:15:46:cc: 4b:71:88:e7:7a:c3:af:42:c2:b7:f6:8f:52:4a:c1: 62:f2:79:3e:39:43:7d:ee:46:ff:a6:f8:a8:89:9d: 97:84:6c:24:84:e8:13:4d:b2:2d:91:65:c2:66:33: 00:92:ac:da:d4:e9:58:b6:88:6b:d4:a4:01:7a:8d: e7:19:b8:8a:c0:ed:b1:68:60:61:06:3a:4e:e3:ae: 95:79:62:da:e6:ee:59:16:ca:ed:c7:c9:47:ec:2c: 32:c5:d4:eb:1b:6e:62:27:6d:20:e5:0c:6b:aa:20: e5:cb:ff:41:32:da:89:00:22:8e:22:47:a0:c1:67: 2e:5a:71:fd:8f:24:34:5a:f8:de:b4:52:5c:12:d1: 0c:70:75:61:e0:05:79:18:43:ee:26:d0:95:7f:a4: 66:2f:9b:53:03:35:07:59:65:57:f6:0b:54:8d:91: e7:b0:d7:06:f4:9e:a2:15:08:23:ce:74:46:bc:0f: 57:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:66:A9:E9:C9:F5:81:95:99:3C:F3:D7:E1:B0:03:BA:82:7C:3C:95 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:f2:9c:9a:a3:52:1f:b5:5b:c9:69:1a:e1:20:9b:fa:88:4b: e1:64:ba:87:0e:e6:30:56:e9:65:05:6d:d1:ca:55:e3:eb:88: 16:17:52:28:b1:5c:58:44:8f:c2:39:3d:12:aa:e7:ae:21:eb: e6:91:f3:8e:61:77:53:84:c1:cc:8d:36:c3:88:8c:4c:e7:37: bc:bb:7b:6d:ba:7f:ab:32:b9:94:60:c3:c0:90:0c:52:b0:14: 05:5e:71:1d:0e:eb:1c:6a:71:ef:5f:30:a6:eb:21:79:5a:19: 70:6a:b1:48:b4:33:f7:1e:75:05:1a:41:1a:e9:06:d4:cb:3b: 39:bc:f5:40:61:80:6a:87:da:8c:0d:9c:d3:b5:3d:a0:d3:e1: 68:ce:77:e8:d3:a8:0f:eb:a1:3b:e7:0f:49:36:92:78:41:c3: 8f:fb:78:79:67:e7:23:3e:21:07:38:75:ff:5e:b9:19:2c:5b: 63:45:9d:4d:82:54:a2:bb:0f:b8:16:86:fe:1f:b7:4b:b4:63: 61:f3:77:ae:a4:dc:61:50:f3:3d:20:34:2a:4b:5a:e7:9a:07: 0e:1e:ea:7a:37:0f:f2:1e:8a:58:10:44:d0:8e:30:ef:8d:e2: 40:36:4b:e4:1c:06:92:65:bc:ce:ca:19:df:e2:ee:d6:bd:a8: bd:ff:2d:77 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURYtF0B4wP4UX3SkTMNlZWB9/3ZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNDA5MjcxNzI2MDFaFw0yNDEwMDEwMjU3MDFaMDMxMTAvBgNV BAMTKEE1NjZBOUU5QzlGNTgxOTU5OTNDRjNEN0UxQjAwM0JBODI3QzNDOTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQuubhBhOJwwubH0T7GXUZt5jl CDi1v0jtBR187yagWXo1BTOR2AFlSCcDZQlwXNBznF9hLSRqrXDQZY+s/uGvu3H9 yiJ8LRVGzEtxiOd6w69Cwrf2j1JKwWLyeT45Q33uRv+m+KiJnZeEbCSE6BNNsi2R ZcJmMwCSrNrU6Vi2iGvUpAF6jecZuIrA7bFoYGEGOk7jrpV5Ytrm7lkWyu3HyUfs LDLF1OsbbmInbSDlDGuqIOXL/0Ey2okAIo4iR6DBZy5acf2PJDRa+N60UlwS0Qxw dWHgBXkYQ+4m0JV/pGYvm1MDNQdZZVf2C1SNkeew1wb0nqIVCCPOdEa8D1cNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpWap6cn1gZWZPPPX4bADuoJ8PJUwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG7ynJqjUh+1W8lpGuEgm/qIS+FkuocO5jBW 6WUFbdHKVePriBYXUiixXFhEj8I5PRKq564h6+aR845hd1OEwcyNNsOIjEznN7y7 e226f6syuZRgw8CQDFKwFAVecR0O6xxqce9fMKbrIXlaGXBqsUi0M/cedQUaQRrp BtTLOzm89UBhgGqH2owNnNO1PaDT4WjOd+jTqA/roTvnD0k2knhBw4/7eHln5yM+ IQc4df9euRksW2NFnU2CVKK7D7gWhv4ft0u0Y2Hzd66k3GFQ8z0gNCpLWueaBw4e 6no3D/IeilgQRNCOMO+N4kA2S+QcBpJlvM7KGd/i7ta9qL3/LXc= -----END CERTIFICATE-----Generated at Fri Sep 27 18:43:06 2024 by rpki-client on console-fra.rpki-client.org