$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft File: 25D788BD2A450C01354B9AB70826895FDFF56208.mft (raw, json) Hash identifier: 8yCauPL3rZtPCK5XtdVGbJuItxoeFKR+3oVqiHVBH5U= Subject key identifier: 0E:FA:E2:BD:27:BE:DA:40:AE:B7:C6:24:12:5E:C8:61:D2:41:13:52 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 5A0619C9C47805BB9F939D49052039DB67AA077E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft Manifest number: 0283 Signing time: Thu 23 May 2024 18:50:57 +0000 Manifest this update: Thu 23 May 2024 18:45:57 +0000 Manifest next update: Mon 27 May 2024 01:12:57 +0000 Files and hashes: 1: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (hash: YbEVGUqkmlzXuTe7iJMy8RMDInmFiT0pQ1ecmexSJ6E=) 2: 25D788BD2A450C01354B9AB70826895FDFF56208.crl (hash: tp9pMV3y5FWzafH/oDdQ+MloOyMJqzRvfekEmlQvDos=) 3: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (hash: uyuv0G7859wvpGZqKT3XscbmCB/JrnGngOBz3JUqmus=) 4: 3132332e3235332e3234382e302f32332d3234203d3e20313336383235.roa (hash: oqv+MiKAwkTGiNOSa3FKWv6BqNY8kUkfk9xzBvpieFg=) 5: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (hash: umfOMEf4PNhhbuKnch8HYrE60kq2nglkRwojJY3Rq50=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 23:29:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:06:19:c9:c4:78:05:bb:9f:93:9d:49:05:20:39:db:67:aa:07:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: May 23 18:45:57 2024 GMT Not After : May 27 01:12:57 2024 GMT Subject: CN=0EFAE2BD27BEDA40AEB7C624125EC861D2411352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b9:f5:e7:d2:1d:15:f0:c7:4b:1c:53:d6:04: 7b:92:bb:af:90:7c:c8:b4:81:34:51:58:b2:6d:80: f6:2a:f8:4c:98:69:45:61:6c:39:cf:bd:68:3d:ac: df:d8:a9:49:83:9d:4e:bc:d5:c4:be:4f:5f:3b:c7: 0d:cd:99:d0:62:bd:dc:34:c9:3c:40:cd:1f:e1:24: 69:4b:f9:0a:9f:8b:3e:2d:88:a0:fb:1b:72:06:cd: a9:62:9d:45:d4:31:9d:28:ed:51:ff:77:6c:05:29: a1:dc:73:76:ba:74:00:a0:3a:39:96:28:a4:4f:a0: 10:f5:7e:2e:c3:fa:c0:c0:c9:ba:e2:7e:5d:eb:16: 2f:a5:9b:9a:ff:1a:bc:83:db:e5:a0:54:83:67:de: 52:ed:b2:68:cf:d2:2f:d7:48:9c:31:e1:8c:99:46: 22:db:2c:05:82:65:13:25:f1:1a:69:88:29:1e:2d: 66:ae:4c:c9:9e:51:5c:a9:19:24:6d:6f:b5:a7:41: 9b:60:93:91:b2:63:86:94:7a:8e:ba:e6:76:64:dc: a9:c4:8e:22:da:a7:67:f0:a4:60:a1:42:0f:34:eb: 9e:72:b5:7b:e2:02:67:d9:19:45:89:07:0a:3f:f9: ef:a4:32:e9:c5:dd:14:bd:76:77:76:6f:0c:99:16: 05:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:FA:E2:BD:27:BE:DA:40:AE:B7:C6:24:12:5E:C8:61:D2:41:13:52 X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:51:10:fd:7c:40:69:9f:d7:32:b7:38:e8:d1:02:40:05:2e: a5:98:4f:1a:29:f6:65:d1:73:c3:81:c2:a7:1d:eb:2e:79:70: 6a:90:3e:fe:2a:7c:83:6a:15:12:7e:a4:e8:0f:35:f6:1e:0d: b7:ed:0c:34:97:55:dd:23:83:d0:b1:b6:85:94:bf:cc:d7:e2: ea:a9:48:84:ca:b5:fa:81:39:82:34:67:15:0c:d8:d4:95:b8: cc:98:eb:65:88:6d:11:c3:cc:d9:b0:1d:37:1d:46:46:5b:e5: 99:76:9c:1e:4f:a5:91:82:06:06:f9:6a:c2:02:ec:16:0e:c2: e9:12:f4:81:71:5c:bf:0d:a4:85:f6:c2:dc:1b:ab:b3:b0:43: 4b:7f:e4:8f:4c:b6:8f:fd:dc:75:70:71:cb:06:38:62:01:a4: 9e:3a:e1:57:9a:17:80:04:f6:94:62:b4:aa:e4:21:9d:2d:1b: 70:67:0d:a9:35:d4:4b:c5:7b:cc:00:9d:48:e1:80:d5:8d:ca: 9e:c9:71:f3:ea:df:18:87:ed:3d:75:85:d7:c0:9d:0e:7d:a4: bf:40:fe:63:11:0e:6a:a3:6c:86:ca:a2:35:29:db:8d:17:f6: 13:d2:ab:6f:b7:66:a2:42:63:3f:cd:46:10:a9:c8:5d:61:d2: 0e:72:09:69 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWgYZycR4Bbufk51JBSA522eqB34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNDA1MjMxODQ1NTdaFw0yNDA1MjcwMTEyNTdaMDMxMTAvBgNV BAMTKDBFRkFFMkJEMjdCRURBNDBBRUI3QzYyNDEyNUVDODYxRDI0MTEzNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBufXn0h0V8MdLHFPWBHuSu6+Q fMi0gTRRWLJtgPYq+EyYaUVhbDnPvWg9rN/YqUmDnU681cS+T187xw3NmdBivdw0 yTxAzR/hJGlL+Qqfiz4tiKD7G3IGzalinUXUMZ0o7VH/d2wFKaHcc3a6dACgOjmW KKRPoBD1fi7D+sDAybrifl3rFi+lm5r/GryD2+WgVINn3lLtsmjP0i/XSJwx4YyZ RiLbLAWCZRMl8RppiCkeLWauTMmeUVypGSRtb7WnQZtgk5GyY4aUeo665nZk3KnE jiLap2fwpGChQg80655ytXviAmfZGUWJBwo/+e+kMunF3RS9dnd2bwyZFgWlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDvrivSe+2kCut8YkEl7IYdJBE1IwHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZhNzY2NWEtYjUwYi00YTQ1LWE4 ZjktMGQ2OWJkN2Q3NDNkLzAvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5 NUZERkY1NjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKpREP18QGmf1zK3OOjRAkAFLqWYTxop9mXR c8OBwqcd6y55cGqQPv4qfINqFRJ+pOgPNfYeDbftDDSXVd0jg9CxtoWUv8zX4uqp SITKtfqBOYI0ZxUM2NSVuMyY62WIbRHDzNmwHTcdRkZb5Zl2nB5PpZGCBgb5asIC 7BYOwukS9IFxXL8NpIX2wtwbq7OwQ0t/5I9Mto/93HVwccsGOGIBpJ464VeaF4AE 9pRitKrkIZ0tG3BnDak11EvFe8wAnUjhgNWNyp7JcfPq3xiH7T11hdfAnQ59pL9A /mMRDmqjbIbKojUp240X9hPSq2+3ZqJCYz/NRhCpyF1h0g5yCWk= -----END CERTIFICATE-----Generated at Thu May 23 19:41:03 2024 by rpki-client on console-fra.rpki-client.org