$ rpki-client -vvf repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft File: 523EE387D3C00A87B7E355ABF1EE524AADF74148.mft (raw, json) Hash identifier: icCeGuQaLEn5G3RHwI20jyHQOZJT7pj7fw+TjtNLATE= Subject key identifier: 51:78:84:22:89:5B:A4:87:5D:0D:44:BC:D9:C4:DB:F3:41:88:1C:14 Authority key identifier: 52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 Certificate issuer: /CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Certificate serial: 7BEC1230F7E9CBABB783FCBF65C4B2461AEBB159 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft Manifest number: 0484 Signing time: Fri 22 Nov 2024 03:40:59 +0000 Manifest this update: Fri 22 Nov 2024 03:35:59 +0000 Manifest next update: Mon 25 Nov 2024 10:30:59 +0000 Files and hashes: 1: 3130332e3135332e36302e302f32332d3233203d3e20313430343536.roa (hash: S+MMrSxkm+20Gx180EdlH1YNBkEDPrj8PEBtJ4+Q9J4=) 2: 523EE387D3C00A87B7E355ABF1EE524AADF74148.crl (hash: 2UCG6PjEH4Cy0QerjS03sQ4tBDbybyqJ6GCRGVexwVw=) 3: 3130332e3135332e36312e302f32342d3234203d3e20313430343536.roa (hash: QEq8jNx2qgo9wFvMjpQwwTDlq5Z+M7FLAg6t2ZLkWJY=) 4: 3130332e3135332e36302e302f32342d3234203d3e20313430343536.roa (hash: cZVBXXGJKiJCT/zUIwExIpoODQYqK0TgIQSfYHzcYPg=) 5: 323030313a6466343a333638303a3a2f34382d3438203d3e20313430343536.roa (hash: UWqkjfovjwl/QKGqzpJlq4xcCareXuzDyb/5yleHEFU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ec:12:30:f7:e9:cb:ab:b7:83:fc:bf:65:c4:b2:46:1a:eb:b1:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=523EE387D3C00A87B7E355ABF1EE524AADF74148 Validity Not Before: Nov 22 03:35:59 2024 GMT Not After : Nov 25 10:30:59 2024 GMT Subject: CN=51788422895BA4875D0D44BCD9C4DBF341881C14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2c:c0:d6:d1:25:32:c8:1c:0a:0f:86:e9:f1: 98:24:0d:99:5a:c1:03:58:e3:77:d9:26:bd:eb:5b: 1f:ae:f4:1e:bc:0b:f5:1b:33:74:59:85:e5:3b:88: 87:38:5e:39:c0:5c:db:b8:64:0a:48:58:57:12:db: 2c:f7:58:01:b9:41:8e:2a:83:35:d6:d9:56:07:e9: 3b:96:28:1c:58:1f:b7:7a:97:e6:98:ef:17:ec:78: 8e:13:bd:83:73:8f:3f:77:7a:5a:8a:cd:15:b8:ff: ab:0a:7d:90:df:ea:45:31:4d:a8:4e:c8:52:a5:5a: 91:4d:af:ed:12:67:95:9a:a6:d4:fe:2f:8a:6d:e8: af:d0:d6:9c:7a:1d:0d:e6:28:66:60:74:13:c3:62: 4b:2f:c2:c6:32:d1:e1:22:94:17:39:8b:ff:2e:af: ee:5f:de:0d:58:7b:52:6b:43:ef:86:78:5e:df:2a: 0a:78:84:2c:f2:31:42:95:84:05:63:05:34:53:3a: 5c:86:e2:76:8c:ea:04:26:57:e5:12:90:98:ce:34: f7:5f:7f:96:bf:ad:38:c1:ec:7a:01:62:ec:35:73: d4:84:36:39:ed:17:4f:9f:37:88:24:3f:95:b7:30: 68:06:3f:81:5f:b4:4b:d2:1d:08:67:34:f9:6b:20: f8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:78:84:22:89:5B:A4:87:5D:0D:44:BC:D9:C4:DB:F3:41:88:1C:14 X509v3 Authority Key Identifier: keyid:52:3E:E3:87:D3:C0:0A:87:B7:E3:55:AB:F1:EE:52:4A:AD:F7:41:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE387D3C00A87B7E355ABF1EE524AADF74148.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a9520fd-8de5-4a69-85f1-c44897ae6121/0/523EE387D3C00A87B7E355ABF1EE524AADF74148.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:eb:06:21:38:78:57:00:48:55:ea:40:09:09:32:76:e7:38: 27:0a:81:fb:0d:e8:a4:f3:e7:ec:18:6f:20:2a:82:8f:63:dc: 61:d9:fe:9e:26:ac:74:cd:6b:28:72:c9:59:9e:31:76:18:26: f6:f1:fb:f4:00:b8:53:69:cd:ca:dd:c9:e9:56:c3:e9:21:37: 27:ce:6c:83:74:a6:bc:3a:ba:9e:53:e4:23:4b:5e:1d:9c:ee: 04:6a:4c:26:b3:30:92:de:3d:f3:85:42:ce:9f:73:ad:dd:d3: ea:ec:76:80:f0:24:0e:af:dd:b0:b2:63:86:b5:11:51:dd:68: af:70:bf:e7:64:ce:ff:16:d3:99:67:35:1e:8f:47:fa:f5:d6: 18:88:9b:1f:3e:e5:86:0b:5b:28:5e:57:25:e3:40:12:36:37: 33:a3:6d:9e:21:02:6d:85:69:50:f6:7a:c1:44:bd:22:3c:5a: 28:0c:82:15:bb:19:c0:be:d3:d9:4d:c1:78:8a:b1:fc:50:39: 83:9a:fb:ec:a9:79:cc:1b:73:59:d7:6d:c4:e6:50:0a:0c:06: 31:1d:41:de:c9:a0:6a:ab:90:e2:90:6e:86:44:ca:0a:bf:69: 51:ac:3b:8e:4f:da:66:61:f2:d0:a8:57:47:04:ae:bb:94:92: 5f:81:96:13 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUe+wSMPfpy6u3g/y/ZcSyRhrrsVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFB REY3NDE0ODAeFw0yNDExMjIwMzM1NTlaFw0yNDExMjUxMDMwNTlaMDMxMTAvBgNV BAMTKDUxNzg4NDIyODk1QkE0ODc1RDBENDRCQ0Q5QzREQkYzNDE4ODFDMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPLMDW0SUyyBwKD4bp8ZgkDZla wQNY43fZJr3rWx+u9B68C/UbM3RZheU7iIc4XjnAXNu4ZApIWFcS2yz3WAG5QY4q gzXW2VYH6TuWKBxYH7d6l+aY7xfseI4TvYNzjz93elqKzRW4/6sKfZDf6kUxTahO yFKlWpFNr+0SZ5WaptT+L4pt6K/Q1px6HQ3mKGZgdBPDYksvwsYy0eEilBc5i/8u r+5f3g1Ye1JrQ++GeF7fKgp4hCzyMUKVhAVjBTRTOlyG4naM6gQmV+USkJjONPdf f5a/rTjB7HoBYuw1c9SENjntF0+fN4gkP5W3MGgGP4FftEvSHQhnNPlrIPhDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUXiEIolbpIddDUS82cTb80GIHBQwHwYDVR0j BBgwFoAUUj7jh9PACoe341Wr8e5SSq33QUgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTk1MjBmZC04ZGU1LTRhNjktODVmMS1jNDQ4OTdhZTYxMjEvMC81MjNFRTM4N0Qz QzAwQTg3QjdFMzU1QUJGMUVFNTI0QUFERjc0MTQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUyNEFBREY3 NDE0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWE5NTIwZmQtOGRlNS00YTY5LTg1 ZjEtYzQ0ODk3YWU2MTIxLzAvNTIzRUUzODdEM0MwMEE4N0I3RTM1NUFCRjFFRTUy NEFBREY3NDE0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEjrBiE4eFcASFXqQAkJMnbnOCcKgfsN6KTz 5+wYbyAqgo9j3GHZ/p4mrHTNayhyyVmeMXYYJvbx+/QAuFNpzcrdyelWw+khNyfO bIN0prw6up5T5CNLXh2c7gRqTCazMJLePfOFQs6fc63d0+rsdoDwJA6v3bCyY4a1 EVHdaK9wv+dkzv8W05lnNR6PR/r11hiImx8+5YYLWyheVyXjQBI2NzOjbZ4hAm2F aVD2esFEvSI8WigMghW7GcC+09lNwXiKsfxQOYOa++ypecwbc1nXbcTmUAoMBjEd Qd7JoGqrkOKQboZEygq/aVGsO45P2mZh8tCoV0cErruUkl+BlhM= -----END CERTIFICATE-----Generated at Fri Nov 22 05:48:03 2024 by rpki-client on console-fra.rpki-client.org