$ rpki-client -vvf repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft File: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft (raw, json) Hash identifier: LXNYJ0bqGI1YsC4O1FWYejTtrKxzoLj08eWoN9S0bqs= Subject key identifier: 13:E4:B0:BE:E8:55:7B:7C:CB:52:7F:12:48:D2:FE:D6:E0:0D:D1:BD Authority key identifier: 9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 Certificate issuer: /CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Certificate serial: 6A232CE4BE5298817D461AB0F580C5A80D736D9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject info access: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft Manifest number: 0238 Signing time: Sat 18 May 2024 07:31:29 +0000 Manifest this update: Sat 18 May 2024 07:26:29 +0000 Manifest next update: Tue 21 May 2024 16:57:29 +0000 Files and hashes: 1: 9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl (hash: uOlQlH13RUqFxo+HNBeFLJDWJmqxqyXvqCg/GLgJRmI=) 2: 3130332e3137322e3137302e302f32342d3234203d3e20313432333936.roa (hash: k+kwAAAIrk95zjKHnOcFnTyTETWsgdNpFJIs9mfugZw=) 3: 3130332e3137322e3137302e302f32332d3233203d3e20313432333936.roa (hash: TvWHnUKo2xhEgoxAqKm7Plw6YbdrJWdaG/hHqjk5lHQ=) 4: 3130332e3137322e3137312e302f32342d3234203d3e20313432333936.roa (hash: lnLqJr0XXuYtEPPO0aahc0SCjYi1I6R7xZR80UCYRc4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 14:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:23:2c:e4:be:52:98:81:7d:46:1a:b0:f5:80:c5:a8:0d:73:6d:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BF72C8BB7CA359BE46741ABCE4EB69F056DF094 Validity Not Before: May 18 07:26:29 2024 GMT Not After : May 21 16:57:29 2024 GMT Subject: CN=13E4B0BEE8557B7CCB527F1248D2FED6E00DD1BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:2f:d0:61:34:9e:e9:b1:f2:74:66:55:0b:b6: 0f:f5:fe:46:b2:db:31:8b:43:3b:66:0d:19:c4:72: 09:7f:31:77:87:9b:93:37:4a:c4:71:47:97:06:9d: 6e:95:6c:87:a4:9d:19:4f:ba:8f:e8:eb:7b:56:ef: 57:12:30:30:a3:4c:a8:df:eb:06:8c:29:f1:00:2c: 47:1b:7b:a8:d6:12:a5:43:e9:d6:fa:df:4b:5c:57: 61:d5:07:60:79:97:66:5f:8e:3d:ea:17:5d:a2:38: b4:ca:3a:38:44:c4:98:79:d8:bb:a6:85:b0:93:15: ad:5a:a2:54:7f:5c:9b:b5:da:f3:80:2c:e1:ca:50: c8:20:a5:77:7f:c2:e9:96:43:20:28:cf:f8:3c:ea: 5c:17:e9:2d:0b:b1:1f:29:65:d9:f3:b2:bd:e1:9f: 0c:07:eb:fb:25:3e:26:42:0a:47:88:fe:7c:b6:04: 3b:8a:fa:ac:78:e4:3f:d7:9f:dd:15:79:1a:a1:59: c4:ce:bd:97:7a:bd:b7:fe:43:ff:6d:6d:77:c5:0c: 50:3a:0a:c2:c3:4e:d0:75:e9:26:ff:67:16:5e:ff: 2f:bd:c6:0b:91:81:9e:c2:d5:f4:19:5d:78:27:5e: 63:65:2a:32:23:30:b2:9f:f0:90:9b:09:4c:3b:9f: 7d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:E4:B0:BE:E8:55:7B:7C:CB:52:7F:12:48:D2:FE:D6:E0:0D:D1:BD X509v3 Authority Key Identifier: keyid:9B:F7:2C:8B:B7:CA:35:9B:E4:67:41:AB:CE:4E:B6:9F:05:6D:F0:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/21db6c9b-d8fc-4d8c-80cb-fd2241208dde/0/9BF72C8BB7CA359BE46741ABCE4EB69F056DF094.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:db:eb:cc:1e:d3:91:37:29:c3:fc:16:5a:af:23:c9:47:35: 61:2c:14:0b:3b:6c:b7:b5:07:34:94:59:8f:46:d9:32:ea:71: 69:21:32:c4:78:da:8b:32:2d:8c:ec:78:90:cd:bc:f0:85:42: fe:ff:bd:c4:11:3d:90:86:13:6a:70:56:4f:d9:20:80:80:b0: 97:85:c9:5c:e4:81:86:c0:8d:c2:12:0c:4c:d0:01:68:0f:70: 10:7f:b2:9b:ed:d4:a9:de:96:a1:a7:ab:62:ed:e9:6d:5d:5f: 6b:fd:38:8a:d2:5c:b6:c5:de:f4:4a:e2:2a:18:f3:e7:cc:6f: 83:27:c9:3d:72:02:14:9c:0f:28:56:21:4a:bc:4e:0f:95:fe: 75:67:65:00:15:1a:d1:2e:48:44:83:20:e9:86:ae:bd:57:70: bd:44:56:6f:ec:71:79:bd:3d:fb:38:9e:65:22:5b:d5:5d:7b: 45:00:53:7b:6d:43:11:04:ac:19:ef:86:e9:eb:c1:b8:42:9b: 2e:0c:75:c0:3f:37:5c:4e:08:f9:61:33:9e:ad:c8:7e:27:3c: cf:f4:4e:7a:19:1e:32:7e:cf:01:74:fc:87:25:df:b1:b1:71: 47:26:a2:71:dc:cf:8a:45:33:43:11:51:62:2e:8b:3f:46:02: 2b:8e:d2:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaiMs5L5SmIF9Rhqw9YDFqA1zbZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYw NTZERjA5NDAeFw0yNDA1MTgwNzI2MjlaFw0yNDA1MjExNjU3MjlaMDMxMTAvBgNV BAMTKDEzRTRCMEJFRTg1NTdCN0NDQjUyN0YxMjQ4RDJGRUQ2RTAwREQxQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVL9BhNJ7psfJ0ZlULtg/1/kay 2zGLQztmDRnEcgl/MXeHm5M3SsRxR5cGnW6VbIeknRlPuo/o63tW71cSMDCjTKjf 6waMKfEALEcbe6jWEqVD6db630tcV2HVB2B5l2Zfjj3qF12iOLTKOjhExJh52Lum hbCTFa1aolR/XJu12vOALOHKUMggpXd/wumWQyAoz/g86lwX6S0LsR8pZdnzsr3h nwwH6/slPiZCCkeI/ny2BDuK+qx45D/Xn90VeRqhWcTOvZd6vbf+Q/9tbXfFDFA6 CsLDTtB16Sb/ZxZe/y+9xguRgZ7C1fQZXXgnXmNlKjIjMLKf8JCbCUw7n30xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUE+SwvuhVe3zLUn8SSNL+1uAN0b0wHwYDVR0j BBgwFoAUm/csi7fKNZvkZ0Grzk62nwVt8JQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MWRiNmM5Yi1kOGZjLTRkOGMtODBjYi1mZDIyNDEyMDhkZGUvMC85QkY3MkM4QkI3 Q0EzNTlCRTQ2NzQxQUJDRTRFQjY5RjA1NkRGMDk0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2OUYwNTZE RjA5NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjFkYjZjOWItZDhmYy00ZDhjLTgw Y2ItZmQyMjQxMjA4ZGRlLzAvOUJGNzJDOEJCN0NBMzU5QkU0Njc0MUFCQ0U0RUI2 OUYwNTZERjA5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJHb68we05E3KcP8FlqvI8lHNWEsFAs7bLe1 BzSUWY9G2TLqcWkhMsR42osyLYzseJDNvPCFQv7/vcQRPZCGE2pwVk/ZIICAsJeF yVzkgYbAjcISDEzQAWgPcBB/spvt1KnelqGnq2Lt6W1dX2v9OIrSXLbF3vRK4ioY 8+fMb4MnyT1yAhScDyhWIUq8Tg+V/nVnZQAVGtEuSESDIOmGrr1XcL1EVm/scXm9 Pfs4nmUiW9Vde0UAU3ttQxEErBnvhunrwbhCmy4MdcA/N1xOCPlhM56tyH4nPM/0 TnoZHjJ+zwF0/Icl37GxcUcmonHcz4pFM0MRUWIuiz9GAiuO0os= -----END CERTIFICATE-----Generated at Sat May 18 08:05:07 2024 by rpki-client on console-fra.rpki-client.org