$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: PljLTPZOBU0bn7v7R+MStg4gkEu0zaJR54ZRYyIOAWA= Subject key identifier: A7:FC:1F:5E:AC:63:91:FC:88:DE:25:3F:5C:7F:D6:46:90:60:30:D2 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 191F254A8FF1A9549236537B9DDF9343B763D216 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 5A Signing time: Thu 21 Nov 2024 04:31:05 +0000 Manifest this update: Thu 21 Nov 2024 04:26:05 +0000 Manifest next update: Sun 24 Nov 2024 13:48:05 +0000 Files and hashes: 1: 3135372e32302e34352e302f32342d3234203d3e20313532333932.roa (hash: jbMFn3kNUo/m8uz8dpflKAJHnKvcbaIlaJRtbj0yWV0=) 2: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: H/Yzp6kqsmqWDLuhbMl4NZkayPM6uFveNaKr9TMlbGs=) 3: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: 20xyi7WGXkhpJhYMMa60rCEDcWMrrO4WibLNf+8UjDs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:1f:25:4a:8f:f1:a9:54:92:36:53:7b:9d:df:93:43:b7:63:d2:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Nov 21 04:26:05 2024 GMT Not After : Nov 24 13:48:05 2024 GMT Subject: CN=A7FC1F5EAC6391FC88DE253F5C7FD646906030D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:17:a5:6d:9f:70:a6:f8:12:ab:64:e0:0b:10: e4:98:87:f3:0e:33:91:b8:68:3c:60:5e:a1:e2:6d: bb:d3:20:c8:c4:20:3a:c3:f4:2a:b7:5e:02:68:9d: 18:c3:36:2d:d1:a8:3a:21:13:5c:0c:67:4f:8b:b7: be:d0:34:db:a9:be:72:fe:9e:d0:cb:1d:65:21:d2: 49:c4:6e:03:e7:f7:f2:76:bd:53:d5:df:9e:60:8b: db:97:33:12:7e:77:27:49:93:b0:8c:f4:86:bd:2e: 15:2f:a9:f2:9b:b6:79:98:c9:25:0e:bb:15:39:58: 5a:c7:9e:32:b8:7f:a9:c1:3e:63:00:9e:c6:11:df: df:2a:1a:88:4d:c7:56:20:e1:61:be:b7:90:21:ba: bc:2c:e2:fc:1d:4b:a7:b4:ae:ab:c4:45:73:ea:75: 12:34:e3:5c:d0:a4:6e:9a:90:15:34:da:12:87:24: de:b0:39:2e:c4:f7:5d:24:44:a9:60:97:e5:a3:81: b7:36:7a:33:78:68:65:e3:ac:0c:86:e9:7e:0b:5d: 44:f0:5c:df:ba:f4:93:57:73:ac:9e:85:de:0d:f4: aa:96:a0:4c:e1:12:18:b7:99:89:33:fe:3d:4a:a4: 10:6c:70:57:13:a0:d6:c7:58:c9:72:58:ca:f6:d5: cb:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:FC:1F:5E:AC:63:91:FC:88:DE:25:3F:5C:7F:D6:46:90:60:30:D2 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:34:a8:d5:ad:9e:19:f7:f8:fe:6d:b5:1c:52:56:3c:34:13: 36:ec:d3:b6:6d:2a:a4:27:49:b0:e4:4f:0b:62:db:60:da:a0: 5d:d4:6c:83:46:48:f6:fe:59:69:a4:af:40:d8:69:21:44:42: e8:fd:00:52:b5:b5:de:28:b8:8b:75:6e:b4:ca:07:2b:32:2f: f9:c1:4c:82:8f:da:d6:3e:33:fd:e9:8f:b9:99:08:be:0b:7d: 87:72:53:7c:a1:57:d0:9f:ea:93:dc:ab:da:93:49:2d:95:9f: 51:bd:dc:cd:c9:31:da:a7:cd:87:3a:b2:fa:4d:3c:a9:dd:eb: c0:e0:fa:2a:4b:7a:d3:59:9f:cc:b8:e0:53:0e:34:1d:2a:f6: 9f:ef:5d:66:5d:7d:7f:8d:5a:9e:98:35:19:56:e9:16:88:47: 21:38:64:8c:30:c8:47:db:0a:9a:d0:56:d7:3c:6b:b4:58:0e: d4:82:ca:17:4b:a7:ba:2a:79:46:6c:b3:1b:38:09:1b:be:e7: 3d:a2:e6:cf:7b:08:ce:a6:f0:b4:14:e4:8e:ef:58:ba:16:10: 56:74:41:93:a1:5d:24:51:e7:2b:7b:9a:6b:9f:d7:39:3b:b4: 48:30:dd:06:41:98:18:ec:0e:c4:ef:a9:cc:05:94:71:3b:8b: bd:a7:4b:92 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGR8lSo/xqVSSNlN7nd+TQ7dj0hYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNDExMjEwNDI2MDVaFw0yNDExMjQxMzQ4MDVaMDMxMTAvBgNV BAMTKEE3RkMxRjVFQUM2MzkxRkM4OERFMjUzRjVDN0ZENjQ2OTA2MDMwRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsF6Vtn3Cm+BKrZOALEOSYh/MO M5G4aDxgXqHibbvTIMjEIDrD9Cq3XgJonRjDNi3RqDohE1wMZ0+Lt77QNNupvnL+ ntDLHWUh0knEbgPn9/J2vVPV355gi9uXMxJ+dydJk7CM9Ia9LhUvqfKbtnmYySUO uxU5WFrHnjK4f6nBPmMAnsYR398qGohNx1Yg4WG+t5Ahurws4vwdS6e0rqvERXPq dRI041zQpG6akBU02hKHJN6wOS7E910kRKlgl+Wjgbc2ejN4aGXjrAyG6X4LXUTw XN+69JNXc6yehd4N9KqWoEzhEhi3mYkz/j1KpBBscFcToNbHWMlyWMr21csPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUp/wfXqxjkfyI3iU/XH/WRpBgMNIwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACA0qNWtnhn3+P5ttRxSVjw0Ezbs07ZtKqQn SbDkTwti22DaoF3UbINGSPb+WWmkr0DYaSFEQuj9AFK1td4ouIt1brTKBysyL/nB TIKP2tY+M/3pj7mZCL4LfYdyU3yhV9Cf6pPcq9qTSS2Vn1G93M3JMdqnzYc6svpN PKnd68Dg+ipLetNZn8y44FMONB0q9p/vXWZdfX+NWp6YNRlW6RaIRyE4ZIwwyEfb CprQVtc8a7RYDtSCyhdLp7oqeUZssxs4CRu+5z2i5s97CM6m8LQU5I7vWLoWEFZ0 QZOhXSRR5yt7mmuf1zk7tEgw3QZBmBjsDsTvqcwFlHE7i72nS5I= -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:31 2024 by rpki-client on console-fra.rpki-client.org