$ rpki-client -vvf repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft File: 3CA825E93FE8830376EF386786BF847CB239BE70.mft (raw, json) Hash identifier: 14m0gZ8AHjUElwgafOO0+RCkOCIbCnyyiDLeMd23GDw= Subject key identifier: 0B:CD:BE:1D:46:6B:FC:8D:D4:D8:B9:F6:F2:9B:8D:BA:7C:F1:8F:B5 Authority key identifier: 3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 Certificate issuer: /CN=3CA825E93FE8830376EF386786BF847CB239BE70 Certificate serial: 6C72C0A16D1C923683C086C2DBA031464B68541E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject info access: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft Manifest number: 0482 Signing time: Thu 21 Nov 2024 03:31:51 +0000 Manifest this update: Thu 21 Nov 2024 03:26:51 +0000 Manifest next update: Sun 24 Nov 2024 05:44:51 +0000 Files and hashes: 1: 3130332e38332e39322e302f32322d3234203d3e20313331313131.roa (hash: +nqofuvEbBfsZqlztZgscbdrDBEKeChRARKHZSmH79g=) 2: 3CA825E93FE8830376EF386786BF847CB239BE70.crl (hash: 19F3DRH/jlzmvDyzK4Fdmg5nw5Q3w0rXqHOjuEYGjZo=) 3: 3131392e38322e3232342e302f32302d3234203d3e203234323133.roa (hash: BSvE+OLnytfbf8toiJJMEZBKYqLTRbQfxnqbMWT62fk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 05:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:72:c0:a1:6d:1c:92:36:83:c0:86:c2:db:a0:31:46:4b:68:54:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3CA825E93FE8830376EF386786BF847CB239BE70 Validity Not Before: Nov 21 03:26:51 2024 GMT Not After : Nov 24 05:44:51 2024 GMT Subject: CN=0BCDBE1D466BFC8DD4D8B9F6F29B8DBA7CF18FB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:24:47:75:a4:66:38:f9:99:3f:7b:f3:00:7d: b0:0a:9d:c9:64:99:90:41:8c:26:df:12:8c:fa:5b: e2:a0:5f:02:21:46:67:82:71:38:59:c2:9a:ee:df: 00:c9:9c:6b:c4:62:c1:d2:08:26:a3:5f:32:18:60: 3b:08:f4:d3:f8:96:ed:6b:8e:1d:a6:7d:ae:93:04: 47:c5:3a:8d:c7:68:74:79:34:91:bc:f2:d9:4c:a2: 0a:c4:79:e6:04:76:69:74:a6:16:32:44:13:df:3b: 76:24:4e:2e:35:2b:d6:e0:9f:19:f1:93:7c:0a:39: 69:55:8c:98:b4:99:6a:3e:b9:9f:bd:a5:48:fe:21: c2:27:39:34:2d:52:6e:7f:47:40:fb:d1:58:88:58: e9:a2:ab:c3:af:26:8f:1a:82:70:20:32:f3:5d:ba: 43:c9:0d:ee:d1:31:3d:7a:7d:a6:ca:50:35:b8:b7: f7:16:77:22:d7:cb:92:7b:fd:59:95:8d:e4:f2:32: 21:27:2a:c0:e7:f0:bf:cf:60:5b:08:db:a6:92:26: 35:01:9e:cc:fc:04:ed:44:f6:8c:6d:39:a7:6c:82: f6:e7:fb:56:67:09:99:6f:94:c4:b5:02:e4:e7:96: da:d4:11:0d:f3:90:9d:13:a7:01:23:f5:51:20:39: 3a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:CD:BE:1D:46:6B:FC:8D:D4:D8:B9:F6:F2:9B:8D:BA:7C:F1:8F:B5 X509v3 Authority Key Identifier: keyid:3C:A8:25:E9:3F:E8:83:03:76:EF:38:67:86:BF:84:7C:B2:39:BE:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3CA825E93FE8830376EF386786BF847CB239BE70.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/08b8c1b5-3be8-4aa7-a4c6-21bcc8f3fa40/0/3CA825E93FE8830376EF386786BF847CB239BE70.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:d1:76:e7:25:7c:fa:8b:7d:f5:75:23:e3:65:59:8d:e5:af: 11:a4:ef:8a:d8:39:73:e0:02:7e:0c:32:6b:6c:ff:4a:50:9f: 9e:45:3b:bf:bd:ac:43:4b:e0:11:17:5b:25:bb:e7:96:11:9c: 6b:50:00:e4:00:3b:fe:ff:14:de:b2:e5:c1:a6:09:f5:a3:31: e2:27:17:4a:2e:ce:cb:ae:4e:65:d8:79:42:4b:9e:8d:fc:10: fc:5e:df:28:00:c6:f9:44:74:cd:2b:a7:08:9c:ee:fb:0e:8f: 32:ac:05:4a:e8:27:31:68:b4:00:ce:31:ea:97:01:b3:f9:95: 82:87:09:20:ae:83:04:8f:a7:24:89:6a:a6:bb:90:9e:d6:5f: 06:69:2e:7d:77:72:09:b0:2f:ce:6f:e3:74:02:5a:42:cc:a2: b1:ec:5b:f8:cb:99:83:a3:20:76:cc:e5:a8:af:37:78:11:57: 3a:85:bd:dd:86:6b:8c:7b:58:0a:46:5e:8d:06:33:ec:28:58: 81:aa:a7:5a:89:ba:e5:d0:ad:1a:91:8c:b0:b3:62:f1:c4:0d: f7:7b:2d:1d:6c:ea:02:a2:61:dd:46:de:0d:b3:e3:de:7e:e2: 13:de:23:ad:6c:d9:f9:2a:58:1e:6e:1d:d4:aa:f4:b4:af:d5: f6:43:f2:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbHLAoW0ckjaDwIbC26AxRktoVB4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NC MjM5QkU3MDAeFw0yNDExMjEwMzI2NTFaFw0yNDExMjQwNTQ0NTFaMDMxMTAvBgNV BAMTKDBCQ0RCRTFENDY2QkZDOERENEQ4QjlGNkYyOUI4REJBN0NGMThGQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJJEd1pGY4+Zk/e/MAfbAKnclk mZBBjCbfEoz6W+KgXwIhRmeCcThZwpru3wDJnGvEYsHSCCajXzIYYDsI9NP4lu1r jh2mfa6TBEfFOo3HaHR5NJG88tlMogrEeeYEdml0phYyRBPfO3YkTi41K9bgnxnx k3wKOWlVjJi0mWo+uZ+9pUj+IcInOTQtUm5/R0D70ViIWOmiq8OvJo8agnAgMvNd ukPJDe7RMT16fabKUDW4t/cWdyLXy5J7/VmVjeTyMiEnKsDn8L/PYFsI26aSJjUB nsz8BO1E9oxtOadsgvbn+1ZnCZlvlMS1AuTnltrUEQ3zkJ0TpwEj9VEgOToBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUC82+HUZr/I3U2Ln28puNunzxj7UwHwYDVR0j BBgwFoAUPKgl6T/ogwN27zhnhr+EfLI5vnAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w OGI4YzFiNS0zYmU4LTRhYTctYTRjNi0yMWJjYzhmM2ZhNDAvMC8zQ0E4MjVFOTNG RTg4MzAzNzZFRjM4Njc4NkJGODQ3Q0IyMzlCRTcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0N0NCMjM5 QkU3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDhiOGMxYjUtM2JlOC00YWE3LWE0 YzYtMjFiY2M4ZjNmYTQwLzAvM0NBODI1RTkzRkU4ODMwMzc2RUYzODY3ODZCRjg0 N0NCMjM5QkU3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG7RduclfPqLffV1I+NlWY3lrxGk74rYOXPg An4MMmts/0pQn55FO7+9rENL4BEXWyW755YRnGtQAOQAO/7/FN6y5cGmCfWjMeIn F0ouzsuuTmXYeUJLno38EPxe3ygAxvlEdM0rpwic7vsOjzKsBUroJzFotADOMeqX AbP5lYKHCSCugwSPpySJaqa7kJ7WXwZpLn13cgmwL85v43QCWkLMorHsW/jLmYOj IHbM5aivN3gRVzqFvd2Ga4x7WApGXo0GM+woWIGqp1qJuuXQrRqRjLCzYvHEDfd7 LR1s6gKiYd1G3g2z495+4hPeI61s2fkqWB5uHdSq9LSv1fZD8uw= -----END CERTIFICATE-----Generated at Thu Nov 21 05:03:32 2024 by rpki-client on console-fra.rpki-client.org