$ rpki-client -vvf repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft File: 3CA825E93FE8830376EF386786BF847CB239BE70.mft (raw, json) Hash identifier: 7++azTnRqfhKjeGe99XxmZZwZ7rav3QHByYCWZUOziQ= Subject key identifier: 76:63:43:19:B3:62:4E:68:24:66:64:B0:B2:8F:44:E8:00:08:35:30 Authority key identifier: 3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 Certificate issuer: /CN=3CA825E93FE8830376EF386786BF847CB239BE70 Certificate serial: 7F990752806C35570D4CB7FCC57D42FCB0F9F395 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft Manifest number: 0428 Signing time: Sat 04 May 2024 00:31:31 +0000 Manifest this update: Sat 04 May 2024 00:26:31 +0000 Manifest next update: Tue 07 May 2024 12:20:31 +0000 Files and hashes: 1: 3130332e38332e39322e302f32322d3234203d3e20313331313131.roa (hash: +nqofuvEbBfsZqlztZgscbdrDBEKeChRARKHZSmH79g=) 2: 3131392e38322e3232342e302f32302d3234203d3e203234323133.roa (hash: 3KwPZXV5ZGwA8NpIeaUHAFELMZPZbPJ5BZjq+sQjtXU=) 3: 3CA825E93FE8830376EF386786BF847CB239BE70.crl (hash: ght8xvtRdcA7PCXpWFuVHYrWZ9MWNO9dldPma5FcHPE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:99:07:52:80:6c:35:57:0d:4c:b7:fc:c5:7d:42:fc:b0:f9:f3:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CA825E93FE8830376EF386786BF847CB239BE70 Validity Not Before: May 4 00:26:31 2024 GMT Not After : May 7 12:20:31 2024 GMT Subject: CN=76634319B3624E68246664B0B28F44E800083530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c5:70:68:84:f6:cc:29:e1:6b:cb:fb:09:b1: e4:b3:6d:0e:38:8c:5a:48:c8:ff:51:2a:0e:a6:27: c7:80:48:d7:51:e8:87:9e:88:df:a0:72:d7:07:36: 82:fe:3b:23:a7:90:e6:06:c4:8c:06:4a:35:74:30: 22:a5:90:ef:67:b2:f1:40:f8:d6:cd:27:6a:e2:e1: 2e:46:c0:e9:b3:15:0f:6b:a8:dc:28:10:7f:93:4f: c1:c3:80:be:11:cb:53:5b:2c:ab:0b:b7:cd:b7:81: 3c:c3:41:b3:33:88:57:07:0f:0b:f5:1d:c0:e9:02: d5:70:6e:e7:76:95:dd:31:ad:85:2a:03:f8:2f:ac: d7:88:9f:a6:06:6c:7b:6e:ef:2c:c9:a7:9d:f6:ca: fb:d6:d3:45:33:c3:88:7e:46:48:3b:74:45:41:d7: b6:33:9d:f3:d9:a8:9a:f5:93:3d:34:8b:61:a4:3b: f0:16:bf:b3:33:f9:0c:38:82:a6:c0:6d:4d:30:c2: 2b:4f:43:35:83:cd:2a:88:fb:99:88:8a:9b:bb:fa: 22:c3:52:0e:d4:f5:28:52:5a:5d:eb:96:cc:b4:f5: 51:7b:ae:b3:aa:d1:07:e0:91:65:bf:61:93:a0:7f: 67:31:45:b5:89:7e:5b:e8:0a:b1:5b:7b:f2:7c:2e: e4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:63:43:19:B3:62:4E:68:24:66:64:B0:B2:8F:44:E8:00:08:35:30 X509v3 Authority Key Identifier: keyid:3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:02:8b:2d:e3:c3:a0:78:a7:0a:60:50:24:82:d1:c3:7f:c7: 8a:a6:4b:c4:0d:b8:ba:4e:ac:5d:42:2d:9c:98:83:55:f7:d8: 65:5b:aa:e4:cd:65:40:93:4b:bb:75:25:30:69:d7:83:dd:e8: a7:b4:07:d6:89:a6:ad:15:88:33:74:02:c0:04:ac:b3:73:49: cf:b5:4c:a3:3b:89:24:a8:f2:8c:b3:2d:8b:ad:84:82:e6:90: 05:be:49:ad:0b:b0:81:4a:35:e9:02:fc:01:2d:7b:2e:e2:83: 53:a4:0c:7b:12:dc:53:0f:98:14:6f:57:23:26:09:8a:26:80: cf:cf:89:31:6f:9a:19:a1:b2:42:dd:5f:28:62:83:2d:6a:d0: fd:5a:f6:06:87:80:f5:de:b3:1c:92:45:1a:ba:0c:eb:52:86: 3f:9f:ea:d3:32:7e:63:58:ee:5f:f0:59:10:36:64:96:1a:e1: ea:8e:d2:b2:4c:5b:69:16:60:cd:ac:a3:18:17:b1:e5:d2:78: 3a:04:4a:c2:4c:85:50:0c:8d:c0:08:c4:d8:e4:75:de:08:1a: 0a:3b:34:55:81:9a:46:f3:4b:32:75:1d:13:06:fb:86:ac:59: 05:61:be:17:8e:4a:a7:09:59:4e:6a:eb:5f:45:10:2d:3d:00: c0:b1:ee:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf5kHUoBsNVcNTLf8xX1C/LD585UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NC MjM5QkU3MDAeFw0yNDA1MDQwMDI2MzFaFw0yNDA1MDcxMjIwMzFaMDMxMTAvBgNV BAMTKDc2NjM0MzE5QjM2MjRFNjgyNDY2NjRCMEIyOEY0NEU4MDAwODM1MzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3xXBohPbMKeFry/sJseSzbQ44 jFpIyP9RKg6mJ8eASNdR6IeeiN+gctcHNoL+OyOnkOYGxIwGSjV0MCKlkO9nsvFA +NbNJ2ri4S5GwOmzFQ9rqNwoEH+TT8HDgL4Ry1NbLKsLt823gTzDQbMziFcHDwv1 HcDpAtVwbud2ld0xrYUqA/gvrNeIn6YGbHtu7yzJp532yvvW00Uzw4h+Rkg7dEVB 17YznfPZqJr1kz00i2GkO/AWv7Mz+Qw4gqbAbU0wwitPQzWDzSqI+5mIipu7+iLD Ug7U9ShSWl3rlsy09VF7rrOq0QfgkWW/YZOgf2cxRbWJflvoCrFbe/J8LuSjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdmNDGbNiTmgkZmSwso9E6AAINTAwHwYDVR0j BBgwFoAUPKgl6T/ogwN27zhnhr+EfLI5vnAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OGI4YzFiNS0zYmU4LTRhYTctYTRjNi0yMWJjYzhmM2ZhNDAvMC8zQ0E4MjVFOTNG RTg4MzAzNzZFRjM4Njc4NkJGODQ3Q0IyMzlCRTcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NCMjM5 QkU3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDhiOGMxYjUtM2JlOC00YWE3LWE0 YzYtMjFiY2M4ZjNmYTQwLzAvM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0 N0NCMjM5QkU3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHQCiy3jw6B4pwpgUCSC0cN/x4qmS8QNuLpO rF1CLZyYg1X32GVbquTNZUCTS7t1JTBp14Pd6Ke0B9aJpq0ViDN0AsAErLNzSc+1 TKM7iSSo8oyzLYuthILmkAW+Sa0LsIFKNekC/AEtey7ig1OkDHsS3FMPmBRvVyMm CYomgM/PiTFvmhmhskLdXyhigy1q0P1a9gaHgPXesxySRRq6DOtShj+f6tMyfmNY 7l/wWRA2ZJYa4eqO0rJMW2kWYM2soxgXseXSeDoESsJMhVAMjcAIxNjkdd4IGgo7 NFWBmkbzSzJ1HRMG+4asWQVhvheOSqcJWU5q619FEC09AMCx7ik= -----END CERTIFICATE-----Generated at Sat May 4 02:34:28 2024 by rpki-client on console-fra.rpki-client.org