$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft File: 26425B70294F98035D38788E597A4A6CEB9C9CE5.mft (raw, json) Hash identifier: MkQdlTBxclexeK7dN0t6NFZ/NtKT1dYOMgi2gwTzV1c= Subject key identifier: 82:BA:8C:C1:0E:2F:0D:F3:AA:31:54:51:79:C4:F8:8F:58:93:19:C8 Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Certificate serial: 29481C8422228752BFEA7DC4C6B06AECE1D991BF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft Manifest number: 042E Signing time: Sun 19 May 2024 05:00:01 +0000 Manifest this update: Sun 19 May 2024 04:55:01 +0000 Manifest next update: Wed 22 May 2024 15:41:01 +0000 Files and hashes: 1: 35382e3134352e3137312e302f32342d3234203d3e203436303534.roa (hash: s17FqbTdUV5BFrAQQeM/NFQPFJ7Kud5vbbB3yscKWEk=) 2: 26425B70294F98035D38788E597A4A6CEB9C9CE5.crl (hash: Kvb1OLUpa8jHOCjaz2tqSONgVkQGjfigv7fZ9vuVVVE=) 3: 35382e3134352e3136382e302f32342d3234203d3e203436303534.roa (hash: ETjmr0vbZqDmotb4XLq8niPrpEIZf7M1nN0Vj8GjET0=) 4: 35382e3134352e3137352e302f32342d3234203d3e203436303534.roa (hash: lVweKKB8QUhf2svNiIxc3+TeTyTKmNyCT1S5G0Yns6g=) 5: 35382e3134352e3137322e302f32342d3234203d3e203436303534.roa (hash: bEwC4T9KmyxTluKSIzWZspUKuCA65r7exWiBeDH3hx4=) 6: 35382e3134352e3137342e302f32342d3234203d3e203436303534.roa (hash: jFtpdvTv9RSavdXkb+6/2bNsUyWtEQPQyaoxsueD6uI=) 7: 35382e3134352e3137332e302f32342d3234203d3e203436303534.roa (hash: twmxECkN+7skyAQREQtMlObojHv490Tr0WaFXloU4XM=) 8: 35382e3134352e3136392e302f32342d3234203d3e203436303534.roa (hash: cfMfEejyBhXTskaO4FNt/Ea6aluNxfAadJMX+fw0U0s=) 9: 35382e3134352e3137302e302f32342d3234203d3e203436303534.roa (hash: Bum4HCBdrT9Gdqclg2qtPRlP+0cDgpgXVoHamcf0r/A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 03:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:48:1c:84:22:22:87:52:bf:ea:7d:c4:c6:b0:6a:ec:e1:d9:91:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Validity Not Before: May 19 04:55:01 2024 GMT Not After : May 22 15:41:01 2024 GMT Subject: CN=82BA8CC10E2F0DF3AA31545179C4F88F589319C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:5e:cf:9b:96:ac:e6:fd:ce:8d:61:17:96:34: 63:5a:41:df:a0:90:00:3c:4e:1b:53:4e:8e:c1:b4: 8d:50:7f:a5:ea:91:25:39:64:5d:67:bc:f9:14:5b: 72:94:4f:8d:e5:1e:31:6a:6d:39:61:0e:64:77:8f: 86:c3:f4:17:e3:c0:b7:4b:03:f7:8a:23:a3:1c:ba: 35:3f:d6:32:88:94:54:30:2e:ab:80:ae:c6:da:6f: 08:ba:5e:3d:42:38:03:9b:00:9e:03:da:6c:65:82: a7:ff:eb:0f:3a:9a:61:4e:ea:c6:10:3e:42:5a:31: 6a:49:16:78:f2:13:9b:b5:ea:11:76:55:f8:b3:af: 09:c2:0a:e4:13:58:51:27:97:19:5f:9b:8b:18:c3: 05:44:e7:78:76:03:7e:7c:fa:68:34:64:fd:e6:21: 05:f2:91:23:a8:79:71:01:2f:2b:0f:cc:68:59:0f: 7d:e7:61:7c:74:f0:80:81:04:39:bb:62:c1:d7:7b: 8f:d0:17:ac:60:6d:c9:6e:f4:f6:6b:6d:02:00:7f: f1:4c:be:b1:03:ec:34:1a:82:71:b3:24:d7:d8:4f: 1a:7a:77:51:5e:63:3a:22:51:3c:ef:99:80:c0:73: 52:8f:81:ec:01:ef:b6:c2:86:03:0b:b0:69:15:16: 19:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:BA:8C:C1:0E:2F:0D:F3:AA:31:54:51:79:C4:F8:8F:58:93:19:C8 X509v3 Authority Key Identifier: keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:34:30:9e:a7:e1:c1:fe:20:4a:d3:02:08:29:6d:8f:d4:16: 41:2f:c2:e5:47:ec:d2:79:da:b1:e7:5b:7a:52:28:9c:ae:4a: b8:29:fe:0f:5f:76:6a:6f:24:7e:b5:d1:1d:74:89:8c:d7:7c: ec:dd:39:f6:f2:74:9f:42:f9:ed:63:fd:8e:17:d2:e2:ac:f9: 91:17:f0:e0:98:89:9f:a2:b6:48:f5:55:2c:f0:27:35:64:3d: b6:5b:2b:78:b5:63:dc:ed:e0:f4:8a:a6:f0:15:80:5c:91:e6: a2:9f:25:de:5b:ec:ef:1b:66:84:35:ca:7a:a9:ff:ce:ca:0c: 4b:f4:ce:3d:8c:32:2e:7c:f1:59:1a:f5:60:d5:4c:97:2a:67: b5:9a:0c:9b:d9:ca:11:3a:0a:47:99:f1:df:07:49:e3:25:57: b6:a2:26:bc:f2:93:ae:69:f9:55:d7:e4:e8:5e:ce:55:ee:8d: 94:36:dc:a2:fc:5e:09:8d:3a:fe:be:3c:56:ce:03:50:74:01: a1:2f:8c:45:15:c1:d4:fe:96:45:a7:4d:4e:03:ae:c7:f0:b3: c2:1d:f8:57:e3:5a:8e:6f:7e:a7:af:69:27:85:c4:e8:7e:7c: ad:d3:9d:7f:20:7a:57:00:88:26:f9:7f:22:4f:64:45:d6:d8: 75:48:e7:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKUgchCIih1K/6n3ExrBq7OHZkb8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNF QjlDOUNFNTAeFw0yNDA1MTkwNDU1MDFaFw0yNDA1MjIxNTQxMDFaMDMxMTAvBgNV BAMTKDgyQkE4Q0MxMEUyRjBERjNBQTMxNTQ1MTc5QzRGODhGNTg5MzE5QzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtXs+blqzm/c6NYReWNGNaQd+g kAA8ThtTTo7BtI1Qf6XqkSU5ZF1nvPkUW3KUT43lHjFqbTlhDmR3j4bD9BfjwLdL A/eKI6McujU/1jKIlFQwLquArsbabwi6Xj1COAObAJ4D2mxlgqf/6w86mmFO6sYQ PkJaMWpJFnjyE5u16hF2VfizrwnCCuQTWFEnlxlfm4sYwwVE53h2A358+mg0ZP3m IQXykSOoeXEBLysPzGhZD33nYXx08ICBBDm7YsHXe4/QF6xgbclu9PZrbQIAf/FM vrED7DQagnGzJNfYTxp6d1FeYzoiUTzvmYDAc1KPgewB77bChgMLsGkVFhlfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgrqMwQ4vDfOqMVRRecT4j1iTGcgwHwYDVR0j BBgwFoAUJkJbcClPmANdOHiOWXpKbOucnOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YzMDkzNi1jNzUwLTQzM2ItOWMyYS04ZmY1ZjM4ZTYzZDQvMC8yNjQyNUI3MDI5 NEY5ODAzNUQzODc4OEU1OTdBNEE2Q0VCOUM5Q0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNFQjlD OUNFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NmMzA5MzYtYzc1MC00MzNiLTlj MmEtOGZmNWYzOGU2M2Q0LzAvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRB NkNFQjlDOUNFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEI0MJ6n4cH+IErTAggpbY/UFkEvwuVH7NJ5 2rHnW3pSKJyuSrgp/g9fdmpvJH610R10iYzXfOzdOfbydJ9C+e1j/Y4X0uKs+ZEX 8OCYiZ+itkj1VSzwJzVkPbZbK3i1Y9zt4PSKpvAVgFyR5qKfJd5b7O8bZoQ1ynqp /87KDEv0zj2MMi588Vka9WDVTJcqZ7WaDJvZyhE6CkeZ8d8HSeMlV7aiJrzyk65p +VXX5OhezlXujZQ23KL8XgmNOv6+PFbOA1B0AaEvjEUVwdT+lkWnTU4Drsfws8Id +FfjWo5vfqevaSeFxOh+fK3TnX8gelcAiCb5fyJPZEXW2HVI5w8= -----END CERTIFICATE-----Generated at Sun May 19 05:48:28 2024 by rpki-client on console-fra.rpki-client.org