$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft File: 25D788BD2A450C01354B9AB70826895FDFF56208.mft (raw, json) Hash identifier: P1MWLqxcN7BYKDxFY6UsWORWYDWd1YV90qGv93q9wFg= Subject key identifier: B9:53:05:34:74:F8:56:14:BC:A5:56:AA:77:18:25:74:70:C0:F8:88 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 7242F67BC6CA51BE5E7FBA795BE506855A333E89 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft Manifest number: 02D5 Signing time: Thu 21 Nov 2024 04:11:06 +0000 Manifest this update: Thu 21 Nov 2024 04:06:06 +0000 Manifest next update: Sun 24 Nov 2024 15:34:06 +0000 Files and hashes: 1: 25D788BD2A450C01354B9AB70826895FDFF56208.crl (hash: AvrRLPgrZ1vijVenBy1mmNoafnLnZY2Fockr4YcZ++w=) 2: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (hash: wuLvX+Xgm0i3AJgZLRAJ8zSBRz4zFDFFXcC9P9aZOYA=) 3: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (hash: rd1DlMh/MYO7HpSHAI7Fm6/tPrgqiJvxbgj5UtMH0zE=) 4: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (hash: LXUvF/9HV9LQjuPpMuWCi7neUUmU+exlVXTngKvHYow=) 5: 3132332e3235332e3234382e302f32332d3234203d3e20313336383235.roa (hash: fqCZ9+V4OhrivrL7rJsmVltpUel/D0iJtOWt/NWMlmg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 06:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:42:f6:7b:c6:ca:51:be:5e:7f:ba:79:5b:e5:06:85:5a:33:3e:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Nov 21 04:06:06 2024 GMT Not After : Nov 24 15:34:06 2024 GMT Subject: CN=B953053474F85614BCA556AA7718257470C0F888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e5:e2:bb:0e:03:cb:48:74:e1:40:3f:fe:70: 62:58:50:b2:05:bd:dc:8e:9b:40:69:84:fe:9b:27: 8f:61:34:d0:5a:cb:20:3b:40:ab:85:23:e9:b1:4d: 69:27:3d:28:ee:8a:74:33:1e:cb:77:86:bf:38:16: 06:e1:17:3b:ac:4a:6c:c0:db:ac:12:8c:41:5d:d6: 3d:1a:57:f7:1e:e9:b7:74:75:8e:ac:35:9c:fb:7f: 82:77:2a:85:51:4f:32:48:9d:07:f1:41:dc:72:4b: 37:90:b4:9d:7e:4f:59:76:d5:30:7c:b4:f2:6c:2c: d8:7f:e4:84:8d:eb:ad:45:54:9d:95:8e:33:79:9d: fe:62:0b:fd:87:43:bf:c3:00:c5:8c:3c:d1:26:58: ee:8d:72:3e:08:49:cf:6a:90:37:03:f6:1e:d6:3d: af:d9:24:f3:ce:e6:a8:0e:47:c3:4a:2d:66:17:94: 9d:4f:0b:e9:53:64:d2:e8:f6:89:12:50:aa:fb:c5: a3:54:52:dc:30:67:71:e6:45:ba:39:0c:b4:22:7b: 49:3a:70:08:f6:5a:75:e5:02:ff:de:d5:4c:88:0c: 10:e0:d0:e9:87:b4:ab:3f:e7:38:a5:a6:31:3c:07: 7b:cb:ce:be:34:32:9f:8c:b8:8e:d1:45:42:52:a0: e1:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:53:05:34:74:F8:56:14:BC:A5:56:AA:77:18:25:74:70:C0:F8:88 X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:69:b6:d0:44:82:e3:c5:19:dd:ce:2b:7e:11:17:eb:f1:41: 04:81:d6:94:0f:86:51:88:56:96:88:f6:74:e4:c2:19:e8:30: 38:be:3b:2e:fe:87:84:38:50:c7:67:4c:a4:42:d1:f8:56:d4: 23:42:c8:54:fa:d5:c8:82:9c:f6:3e:5f:fe:37:bd:2f:51:28: 75:4a:02:0c:37:1f:d5:40:13:09:a4:5d:f9:bf:cf:e8:d1:07: 2e:7e:02:ea:b2:d3:d3:c9:03:37:13:a7:23:90:c5:98:cf:7f: dc:45:df:c8:53:76:b4:d5:93:b3:85:be:ff:26:bb:f5:37:08: a6:0f:2a:30:25:d6:5e:3f:a0:76:e5:fc:77:f1:8f:0b:23:f3: 58:71:9a:33:5a:e8:1d:f9:04:91:fb:bd:a9:4e:72:04:55:3b: 28:0a:0f:78:3d:60:b6:2b:37:63:c5:35:a8:b8:2e:d7:cd:48: c2:b6:5f:3c:34:be:ac:7d:df:62:9d:dc:64:55:e6:65:b4:13: b2:bd:a0:88:32:4b:aa:15:ff:d6:ee:f4:87:a6:9e:9c:65:25: c2:2a:67:fa:b5:95:ad:ab:b2:9a:ff:3d:b4:a6:1b:69:83:f5: 26:ae:75:57:59:71:d3:87:ae:6d:2f:b7:3e:1c:a6:91:e3:5f: e4:a8:cf:56 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUckL2e8bKUb5ef7p5W+UGhVozPokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNDExMjEwNDA2MDZaFw0yNDExMjQxNTM0MDZaMDMxMTAvBgNV BAMTKEI5NTMwNTM0NzRGODU2MTRCQ0E1NTZBQTc3MTgyNTc0NzBDMEY4ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg5eK7DgPLSHThQD/+cGJYULIF vdyOm0BphP6bJ49hNNBayyA7QKuFI+mxTWknPSjuinQzHst3hr84FgbhFzusSmzA 26wSjEFd1j0aV/ce6bd0dY6sNZz7f4J3KoVRTzJInQfxQdxySzeQtJ1+T1l21TB8 tPJsLNh/5ISN661FVJ2VjjN5nf5iC/2HQ7/DAMWMPNEmWO6Ncj4ISc9qkDcD9h7W Pa/ZJPPO5qgOR8NKLWYXlJ1PC+lTZNLo9okSUKr7xaNUUtwwZ3HmRbo5DLQie0k6 cAj2WnXlAv/e1UyIDBDg0OmHtKs/5zilpjE8B3vLzr40Mp+MuI7RRUJSoOF3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUuVMFNHT4VhS8pVaqdxgldHDA+IgwHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZhNzY2NWEtYjUwYi00YTQ1LWE4 ZjktMGQ2OWJkN2Q3NDNkLzAvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5 NUZERkY1NjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADRpttBEguPFGd3OK34RF+vxQQSB1pQPhlGI VpaI9nTkwhnoMDi+Oy7+h4Q4UMdnTKRC0fhW1CNCyFT61ciCnPY+X/43vS9RKHVK Agw3H9VAEwmkXfm/z+jRBy5+Auqy09PJAzcTpyOQxZjPf9xF38hTdrTVk7OFvv8m u/U3CKYPKjAl1l4/oHbl/Hfxjwsj81hxmjNa6B35BJH7valOcgRVOygKD3g9YLYr N2PFNai4LtfNSMK2Xzw0vqx932Kd3GRV5mW0E7K9oIgyS6oV/9bu9IemnpxlJcIq Z/q1la2rspr/PbSmG2mD9SaudVdZcdOHrm0vtz4cppHjX+Soz1Y= -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org