$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft File: 4AA76DED689FD4420809D0962087A03BCF018FEA.mft (raw, json) Hash identifier: 7lgfrz4lupVDPlE12l3gMoVqk5kgxuWTRYV4unux3Ps= Subject key identifier: 69:65:37:83:43:21:E7:6F:A3:87:DE:ED:4E:A3:9B:D6:0A:AA:F2:41 Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 6C4C08090EA87457B98011565469EA76B9A0038D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft Manifest number: 42 Signing time: Sun 24 Nov 2024 10:11:48 +0000 Manifest this update: Sun 24 Nov 2024 10:06:48 +0000 Manifest next update: Wed 27 Nov 2024 20:05:48 +0000 Files and hashes: 1: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (hash: fDg3pcJLO4nMKHIhIadc4UOWwJA6xSlIAC7zIOEu60s=) 2: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (hash: ONsSDNwNCKSQA0g6zXrNIJFeG1JttoPkAupg3mK+FJ4=) 3: 4AA76DED689FD4420809D0962087A03BCF018FEA.crl (hash: JTu2d94LjsZLH7dga4J/7WnBOTFeQFSotnXhcfUtYwY=) 4: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (hash: t1oPzu4VEOt7+PmdI8majMljNsaF8ctMOjhLL1SL0Go=) 5: 3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa (hash: O0N8YnmOgvwU8r8KKC4SJAWcGP/YV+Rw0wgGJ4ZOg7I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:4c:08:09:0e:a8:74:57:b9:80:11:56:54:69:ea:76:b9:a0:03:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Nov 24 10:06:48 2024 GMT Not After : Nov 27 20:05:48 2024 GMT Subject: CN=696537834321E76FA387DEED4EA39BD60AAAF241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d4:e0:d3:12:63:b6:1b:57:df:d6:7e:52:94: 5f:23:b1:15:28:dd:f3:f9:01:c0:11:48:d6:d1:b7: 37:8c:f5:23:cc:9f:99:e9:3b:0c:ba:7f:d6:8e:a2: 38:ba:a5:74:fe:51:82:40:6d:04:98:5d:81:f4:d4: 01:14:e3:fb:4f:6e:22:78:ea:bf:7a:e0:c0:8f:5a: 09:2e:86:e0:14:6b:db:94:21:46:b5:17:ff:07:b6: 03:bb:b2:0f:5d:27:7e:5a:45:cb:0a:48:5a:16:25: af:28:10:e5:7e:af:9f:7b:51:33:b1:f2:16:fe:9a: 22:db:61:51:f5:9f:95:93:ee:43:cc:ec:ff:58:fa: e1:12:b4:7b:7d:49:10:78:5d:a2:f0:51:56:f6:1e: 04:94:36:bd:2a:3f:6e:d9:07:57:47:41:ed:9a:f7: 2c:14:05:c3:e2:a6:98:59:4c:32:3f:ae:a8:e9:46: 38:af:2a:d5:11:b9:54:37:eb:d3:02:d4:10:0c:e3: 9f:4a:cd:c8:1c:0d:58:95:d9:30:20:c5:94:25:2c: 77:26:7e:a1:53:86:2d:0b:77:d3:e7:0a:31:9e:a2: 3f:af:93:e1:06:d3:e3:32:56:de:5d:19:ff:2f:0c: ad:d5:76:70:40:37:a3:58:96:1d:4b:7d:1a:00:ff: 00:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:65:37:83:43:21:E7:6F:A3:87:DE:ED:4E:A3:9B:D6:0A:AA:F2:41 X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c8:b6:f9:f4:90:09:0f:51:18:ec:66:49:98:99:9d:97:40:77: eb:1a:a7:cf:2d:0b:aa:bf:48:62:31:0b:e5:f6:46:6a:7e:58: 58:b9:66:22:80:48:ad:a8:33:13:7c:ad:31:24:92:7a:34:68: e4:e1:94:c6:00:91:05:28:22:15:52:7b:cb:76:a1:d4:ac:99: b4:84:4d:58:b0:2f:c8:b0:97:ee:47:9d:22:ad:91:c5:b5:d9: 1c:45:7f:13:cd:70:f8:65:b9:3a:e2:95:d5:30:27:c8:a6:9b: 69:0b:50:c8:e1:0a:2b:f1:4e:d2:29:15:e5:83:67:c6:5c:01: 94:c8:b5:ac:a2:a1:0e:c4:da:5d:d3:bf:0a:04:c8:d2:9d:f9: 28:27:5f:16:f2:ac:29:e1:c3:25:04:8f:d3:59:83:27:5a:4c: 97:80:f6:b1:c5:db:51:90:6c:39:22:ea:9b:e5:16:47:5b:d5: ae:9e:e5:5d:0f:a2:20:1a:64:f5:b1:80:5b:76:44:7f:cb:88: 58:b2:ae:5f:83:63:79:b2:77:bd:02:73:57:e0:e5:0e:28:2b: 23:16:8c:3e:9c:71:ab:b9:34:8c:5b:7d:17:59:e1:1a:2a:c6: e0:e9:0d:ce:73:b8:65:a8:27:6b:55:e1:5f:91:5f:17:a5:e4: 1b:fc:56:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbEwICQ6odFe5gBFWVGnqdrmgA40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNDExMjQxMDA2NDhaFw0yNDExMjcyMDA1NDhaMDMxMTAvBgNV BAMTKDY5NjUzNzgzNDMyMUU3NkZBMzg3REVFRDRFQTM5QkQ2MEFBQUYyNDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm1ODTEmO2G1ff1n5SlF8jsRUo 3fP5AcARSNbRtzeM9SPMn5npOwy6f9aOoji6pXT+UYJAbQSYXYH01AEU4/tPbiJ4 6r964MCPWgkuhuAUa9uUIUa1F/8HtgO7sg9dJ35aRcsKSFoWJa8oEOV+r597UTOx 8hb+miLbYVH1n5WT7kPM7P9Y+uEStHt9SRB4XaLwUVb2HgSUNr0qP27ZB1dHQe2a 9ywUBcPipphZTDI/rqjpRjivKtURuVQ369MC1BAM459KzcgcDViV2TAgxZQlLHcm fqFThi0Ld9PnCjGeoj+vk+EG0+MyVt5dGf8vDK3VdnBAN6NYlh1LfRoA/wARAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaWU3g0Mh52+jh97tTqOb1gqq8kEwHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMyODBhZjMtYWExZC00MjcxLThj MDYtYTNmYTI4ODk4NDI2LzAvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0Ew M0JDRjAxOEZFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMi2+fSQCQ9RGOxmSZiZnZdAd+sap88tC6q/ SGIxC+X2Rmp+WFi5ZiKASK2oMxN8rTEkkno0aOThlMYAkQUoIhVSe8t2odSsmbSE TViwL8iwl+5HnSKtkcW12RxFfxPNcPhluTrildUwJ8imm2kLUMjhCivxTtIpFeWD Z8ZcAZTItayioQ7E2l3TvwoEyNKd+SgnXxbyrCnhwyUEj9NZgydaTJeA9rHF21GQ bDki6pvlFkdb1a6e5V0PoiAaZPWxgFt2RH/LiFiyrl+DY3myd70Cc1fg5Q4oKyMW jD6ccau5NIxbfRdZ4RoqxuDpDc5zuGWoJ2tV4V+RXxel5Bv8Vno= -----END CERTIFICATE-----Generated at Sun Nov 24 11:34:09 2024 by rpki-client on console-fra.rpki-client.org