$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft File: 535D46F4044E2CC21293CC061A2783074BDF7AE7.mft (raw, json) Hash identifier: 8w+JUH8pfatn5MXpDYujYndV3qtCqTMJPbk/ULcC8B4= Subject key identifier: 78:DF:0F:ED:57:36:32:9F:0C:F4:85:4C:52:DF:B1:6D:EE:0B:83:BF Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 5CE352009139BC63B675D966E78F4356C3AA5F64 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft Manifest number: 42 Signing time: Fri 17 May 2024 14:01:13 +0000 Manifest this update: Fri 17 May 2024 13:56:13 +0000 Manifest next update: Mon 20 May 2024 23:05:13 +0000 Files and hashes: 1: 3130332e3134332e32322e302f32342d3234203d3e20313339343331.roa (hash: EYnGAQNnDVrZFM66IQvAb4QRqXunRiEw0PyRjQG3ZOw=) 2: 323430353a343663303a3a2f33322d3332203d3e20313339343331.roa (hash: 3pS2gdVpnMSn6MfOHZUD+7qqSVAvHXmjQNRWPVV5aNE=) 3: 3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa (hash: n/NCfba+MTF8gD1E0XGKXU4BQXcOJ9ag8opKUX7WYmI=) 4: 535D46F4044E2CC21293CC061A2783074BDF7AE7.crl (hash: v3ITGOJaSWRR54GKmAS+aERx+wjrNoKFaIIVQ6sMv1Q=) 5: 3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa (hash: BKu0Q+gBWw7pBjRiZjpLoAHeTfK/ZyDu7d1/f2XQFSI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 23:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e3:52:00:91:39:bc:63:b6:75:d9:66:e7:8f:43:56:c3:aa:5f:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: May 17 13:56:13 2024 GMT Not After : May 20 23:05:13 2024 GMT Subject: CN=78DF0FED5736329F0CF4854C52DFB16DEE0B83BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:7a:5c:fc:49:51:4b:39:24:50:51:b1:25:7f: 7b:00:7d:82:b9:0b:e1:34:22:b4:30:55:1d:56:e2: 02:42:7a:05:47:3e:40:26:88:56:5c:30:af:3d:f0: b3:ca:0e:b9:18:72:5a:e4:fd:c7:d9:30:7a:28:5a: 0a:8c:3f:e1:02:cf:9d:e5:d3:82:d3:d5:5a:ac:d2: ec:a7:83:96:49:80:8f:5b:0d:94:7b:73:4f:20:20: 29:54:b2:fd:d2:85:96:f0:09:93:4f:9f:c8:2e:8f: 6b:73:eb:75:b5:a3:c3:4d:0c:e4:4d:ae:8f:87:9f: 9d:9c:f1:55:47:d0:d2:71:51:60:e3:19:bd:ba:4d: e5:b0:8a:f8:2e:57:59:37:21:c0:76:a9:b4:2f:04: 78:e5:0b:3a:fb:1a:85:b4:0d:57:9d:de:88:45:66: 23:01:98:c0:75:38:07:72:cd:4c:01:8a:ed:7e:e7: 76:bf:ca:d7:5b:62:6e:b2:b1:8d:fa:92:f1:54:65: f3:49:4c:96:40:6f:b2:14:57:be:40:7c:19:68:ab: 5b:b0:a3:e8:f4:b9:8f:69:39:f0:c1:1b:3d:1f:d3: fb:e7:95:6a:b1:53:34:00:9d:d3:6c:9e:62:fc:dc: 96:35:12:9d:24:63:4e:43:41:73:fc:ce:ea:a6:b4: f4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:DF:0F:ED:57:36:32:9F:0C:F4:85:4C:52:DF:B1:6D:EE:0B:83:BF X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:10:ae:f3:12:3f:8f:e1:3a:2c:9b:6e:30:3b:99:a6:cb:1e: 41:8f:85:14:5b:a6:79:a3:4d:5c:16:ce:13:0e:1e:5b:c9:b6: 12:1a:69:10:a3:5f:10:e7:ce:4f:f2:84:08:24:aa:a6:e6:94: b5:c4:a3:6c:49:ad:52:3e:61:23:a9:f3:4a:cf:5e:0b:23:a8: 2e:c9:b8:09:01:92:7b:93:37:21:c5:b3:41:2b:ed:83:81:e1: b8:57:7a:bf:15:6b:93:d0:d6:5c:d7:2d:5f:c4:a4:95:b8:73: 4c:32:40:c0:0f:17:4b:e9:9a:23:dd:ad:b9:f4:7d:86:7c:47: 33:ed:3f:3b:a6:df:5f:dd:1c:74:18:24:8d:9b:68:0f:15:63: c4:0a:b8:50:e3:73:af:41:0e:54:4b:63:cf:6c:73:54:85:b9: ee:5b:22:ea:d2:d9:40:3d:cc:0e:21:2e:cd:35:b9:7b:af:02: 0b:3e:7b:c9:7b:bb:db:13:a3:8e:f8:2b:7d:8e:37:59:39:0c: 6a:2a:31:15:c1:87:55:4c:65:c7:77:55:b8:bb:bd:59:fa:81: bf:1c:4f:0a:dc:0c:e1:26:e5:6d:e7:e4:0c:bd:23:fb:e8:4c: d1:a9:93:52:bf:57:6a:b3:7f:07:5f:60:37:8c:75:df:ae:23: 30:9c:a2:20 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXONSAJE5vGO2ddlm549DVsOqX2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yNDA1MTcxMzU2MTNaFw0yNDA1MjAyMzA1MTNaMDMxMTAvBgNV BAMTKDc4REYwRkVENTczNjMyOUYwQ0Y0ODU0QzUyREZCMTZERUUwQjgzQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1elz8SVFLOSRQUbElf3sAfYK5 C+E0IrQwVR1W4gJCegVHPkAmiFZcMK898LPKDrkYclrk/cfZMHooWgqMP+ECz53l 04LT1Vqs0uyng5ZJgI9bDZR7c08gIClUsv3ShZbwCZNPn8guj2tz63W1o8NNDORN ro+Hn52c8VVH0NJxUWDjGb26TeWwivguV1k3IcB2qbQvBHjlCzr7GoW0DVed3ohF ZiMBmMB1OAdyzUwBiu1+53a/ytdbYm6ysY36kvFUZfNJTJZAb7IUV75AfBloq1uw o+j0uY9pOfDBGz0f0/vnlWqxUzQAndNsnmL83JY1Ep0kY05DQXP8zuqmtPTvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeN8P7Vc2Mp8M9IVMUt+xbe4Lg78wHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQ2ZjMzZjItZjA2ZS00ZWI2LWFl NjEtNTUyOWJjYTFjZGNkLzAvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgz MDc0QkRGN0FFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGgQrvMSP4/hOiybbjA7mabLHkGPhRRbpnmj TVwWzhMOHlvJthIaaRCjXxDnzk/yhAgkqqbmlLXEo2xJrVI+YSOp80rPXgsjqC7J uAkBknuTNyHFs0Er7YOB4bhXer8Va5PQ1lzXLV/EpJW4c0wyQMAPF0vpmiPdrbn0 fYZ8RzPtPzum31/dHHQYJI2baA8VY8QKuFDjc69BDlRLY89sc1SFue5bIurS2UA9 zA4hLs01uXuvAgs+e8l7u9sTo474K32ON1k5DGoqMRXBh1VMZcd3Vbi7vVn6gb8c TwrcDOEm5W3n5Ay9I/voTNGpk1K/V2qzfwdfYDeMdd+uIzCcoiA= -----END CERTIFICATE-----Generated at Fri May 17 16:04:25 2024 by rpki-client on console-fra.rpki-client.org