$ rpki-client -vvf repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft File: 26425B70294F98035D38788E597A4A6CEB9C9CE5.mft (raw, json) Hash identifier: PMiz/lmLKdirSd5hrfFh++8N/SINcDXDzQRFNJUpHvo= Subject key identifier: D0:FB:F0:67:44:1E:17:63:83:7D:45:4F:C6:A0:DB:13:B0:2E:1C:C6 Authority key identifier: 26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 Certificate issuer: /CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Certificate serial: 22BDE6AE9E8CD59E931E817D96DC61504EA29F3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft Manifest number: 0482 Signing time: Wed 20 Nov 2024 14:10:01 +0000 Manifest this update: Wed 20 Nov 2024 14:05:01 +0000 Manifest next update: Sat 23 Nov 2024 20:51:01 +0000 Files and hashes: 1: 35382e3134352e3137302e302f32342d3234203d3e203436303534.roa (hash: U6ziSuUpUkVdqXRSHe0CewbD/X71rI71q8SILZolHDo=) 2: 35382e3134352e3136382e302f32342d3234203d3e203436303534.roa (hash: poWV1SmxZOV82NJAx11/DVCuVnOVWtTUoFxKct51ClQ=) 3: 35382e3134352e3137312e302f32342d3234203d3e203436303534.roa (hash: x6HUjSxF1Hesr3n3pxIOWyMuhd/gV3tPQ4S5VvjGCt4=) 4: 35382e3134352e3136382e302f32312d3231203d3e203436303534.roa (hash: m+q7ZgpD2GbDgHvxK3Mi9rcFamM0AOK41baaZkFJd+o=) 5: 35382e3134352e3137352e302f32342d3234203d3e203436303534.roa (hash: Rlel+43pEirvrfeffHgQ7cuDwzepsYOgj+qpnAyZmJg=) 6: 35382e3134352e3137342e302f32342d3234203d3e203436303534.roa (hash: jiBUWbPw0O2a3brcntkLSXcufEsvlRQsB7AoiBmO/Ec=) 7: 35382e3134352e3137322e302f32342d3234203d3e203436303534.roa (hash: loxHv0+F3ZLNQEYmkghwWbkz+YGFFT2QGW5V6emi7YY=) 8: 35382e3134352e3137332e302f32342d3234203d3e203436303534.roa (hash: nL0LSsh/K4F6n/0vBenQ8E/fDc1hwgkktfBtKNqqfSs=) 9: 26425B70294F98035D38788E597A4A6CEB9C9CE5.crl (hash: 54XM2aS6Wvk3JvbWGbk0hXS5RkI5ZD4PWXrwenp95JI=) 10: 35382e3134352e3136392e302f32342d3234203d3e203436303534.roa (hash: 9/RRwI5l/NtYziLvL1Tovl6lPdp6toGo7gvjHA/JNLU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:bd:e6:ae:9e:8c:d5:9e:93:1e:81:7d:96:dc:61:50:4e:a2:9f:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=26425B70294F98035D38788E597A4A6CEB9C9CE5 Validity Not Before: Nov 20 14:05:01 2024 GMT Not After : Nov 23 20:51:01 2024 GMT Subject: CN=D0FBF067441E1763837D454FC6A0DB13B02E1CC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:53:b7:44:a6:d0:e0:5a:47:71:0b:24:58:86: ca:0d:8d:e0:d7:58:c6:15:39:86:2f:bd:1e:98:f4: e2:34:5d:0e:c2:47:e9:46:b6:ce:89:fe:7c:a4:80: 15:1e:3e:55:47:13:ed:5e:0a:70:12:be:ab:7b:13: 7d:11:26:fd:70:e5:ea:cc:20:91:49:d2:28:31:8d: 3a:ce:ee:e2:81:d1:40:f3:78:cb:21:f6:8a:7c:d6: 27:8e:13:2b:fa:48:33:c0:fc:2f:fa:b9:ab:b0:8c: d7:8c:d2:f4:2b:1a:dc:37:6f:34:bf:26:09:49:ff: 06:b8:4c:86:0b:e4:c5:11:0c:01:f5:5f:70:87:5d: 8b:d9:19:35:86:2e:36:48:2c:2a:9a:b9:7a:3d:61: 55:f0:fc:16:bd:d6:71:27:e9:35:05:c9:82:8b:ea: 65:22:16:bd:5d:7f:c7:eb:cd:7b:dd:d0:eb:47:7f: 20:74:de:1a:4c:60:db:af:c7:aa:ba:03:14:fc:90: 36:9c:23:93:48:29:52:2e:68:a6:c7:db:d0:c4:8a: 49:63:e1:3c:98:8e:7d:f5:fe:ca:52:9f:66:18:78: eb:cb:af:b4:23:cb:df:9d:f6:3c:f6:7b:f0:46:3a: 8f:70:5f:f0:5e:a6:28:9f:af:08:42:84:9a:9e:8b: f3:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FB:F0:67:44:1E:17:63:83:7D:45:4F:C6:A0:DB:13:B0:2E:1C:C6 X509v3 Authority Key Identifier: keyid:26:42:5B:70:29:4F:98:03:5D:38:78:8E:59:7A:4A:6C:EB:9C:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/26425B70294F98035D38788E597A4A6CEB9C9CE5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3cf30936-c750-433b-9c2a-8ff5f38e63d4/0/26425B70294F98035D38788E597A4A6CEB9C9CE5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:91:8e:b4:62:b7:5f:13:0b:22:3e:7b:6f:b1:90:6b:32:96: dd:a7:f8:aa:9f:3b:c6:ab:e3:36:71:db:a0:43:02:56:a1:9f: 7e:33:2d:ff:0c:84:4b:74:89:f7:5a:3d:26:e2:b6:d0:ff:5a: 41:4c:e0:04:1c:f6:54:51:ec:dd:bf:00:05:5b:a5:28:df:a1: 19:6c:c7:7b:83:05:cb:26:ea:31:96:ab:80:df:0e:c1:32:31: 00:a1:6a:fb:9f:39:ca:d6:98:d3:6b:bd:59:3d:d5:f6:2d:95: 4b:7c:82:c3:02:cc:8b:62:9e:10:4b:b3:a6:c9:62:4a:fb:7f: 23:fa:b9:14:5f:15:e9:2f:cf:71:13:9f:d4:69:19:1d:58:03: e7:1c:3f:9d:d2:9e:66:c8:1e:d7:a9:8e:97:8b:5a:9a:f0:05: c1:2a:b7:18:23:5c:42:88:01:6a:91:f7:a3:4e:f5:dc:f0:21: 57:ef:a2:15:92:20:ef:65:ab:dd:f1:3c:fd:94:42:4f:85:61: e9:e6:96:49:12:16:da:63:98:8c:73:e6:5e:89:d0:8d:b3:29: ba:b4:b1:f3:4b:a2:73:f2:55:41:0c:77:bf:ed:aa:cc:99:5f: 81:33:e1:3f:d8:c1:33:3e:00:ac:89:b6:b9:56:1a:4b:24:cb: a6:be:dc:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIr3mrp6M1Z6THoF9ltxhUE6inzwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNF QjlDOUNFNTAeFw0yNDExMjAxNDA1MDFaFw0yNDExMjMyMDUxMDFaMDMxMTAvBgNV BAMTKEQwRkJGMDY3NDQxRTE3NjM4MzdENDU0RkM2QTBEQjEzQjAyRTFDQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXU7dEptDgWkdxCyRYhsoNjeDX WMYVOYYvvR6Y9OI0XQ7CR+lGts6J/nykgBUePlVHE+1eCnASvqt7E30RJv1w5erM IJFJ0igxjTrO7uKB0UDzeMsh9op81ieOEyv6SDPA/C/6uauwjNeM0vQrGtw3bzS/ JglJ/wa4TIYL5MURDAH1X3CHXYvZGTWGLjZILCqauXo9YVXw/Ba91nEn6TUFyYKL 6mUiFr1df8frzXvd0OtHfyB03hpMYNuvx6q6AxT8kDacI5NIKVIuaKbH29DEiklj 4TyYjn31/spSn2YYeOvLr7Qjy9+d9jz2e/BGOo9wX/BepiifrwhChJqei/MRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0PvwZ0QeF2ODfUVPxqDbE7AuHMYwHwYDVR0j BBgwFoAUJkJbcClPmANdOHiOWXpKbOucnOUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z Y2YzMDkzNi1jNzUwLTQzM2ItOWMyYS04ZmY1ZjM4ZTYzZDQvMC8yNjQyNUI3MDI5 NEY5ODAzNUQzODc4OEU1OTdBNEE2Q0VCOUM5Q0U1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRBNkNFQjlD OUNFNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2NmMzA5MzYtYzc1MC00MzNiLTlj MmEtOGZmNWYzOGU2M2Q0LzAvMjY0MjVCNzAyOTRGOTgwMzVEMzg3ODhFNTk3QTRB NkNFQjlDOUNFNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALyRjrRit18TCyI+e2+xkGsylt2n+KqfO8ar 4zZx26BDAlahn34zLf8MhEt0ifdaPSbittD/WkFM4AQc9lRR7N2/AAVbpSjfoRls x3uDBcsm6jGWq4DfDsEyMQChavufOcrWmNNrvVk91fYtlUt8gsMCzItinhBLs6bJ Ykr7fyP6uRRfFekvz3ETn9RpGR1YA+ccP53SnmbIHtepjpeLWprwBcEqtxgjXEKI AWqR96NO9dzwIVfvohWSIO9lq93xPP2UQk+FYenmlkkSFtpjmIxz5l6J0I2zKbq0 sfNLonPyVUEMd7/tqsyZX4Ez4T/YwTM+AKyJtrlWGksky6a+3F0= -----END CERTIFICATE-----Generated at Wed Nov 20 16:08:08 2024 by rpki-client on console-fra.rpki-client.org