$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: mnOs/iyzxJg9XMyoK3UdocrpXdvUI6+j6AxkoyKCkIU= Subject key identifier: 65:87:C7:15:26:F4:05:07:31:90:9A:4F:8E:17:35:EB:84:B3:F4:17 Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 20D0AAED7AD6924A30C274F3046FA5DBE610EB14 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 048B Signing time: Sun 24 Nov 2024 04:21:24 +0000 Manifest this update: Sun 24 Nov 2024 04:16:24 +0000 Manifest next update: Wed 27 Nov 2024 15:16:24 +0000 Files and hashes: 1: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: /TQ9lPnPYqONrVYXhhohcl7UP563J9mX/0O81vxmXto=) 2: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: ieDbNQGTjD5l8RUcqhDpiBfu0mQNdvLPTu7m7xwEu7k=) 3: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: vPGDL5Uz+m1Ri6z0hdVmq01za5aH2UUg8pKyvgRNgpw=) 4: 323430363a366434303a3131373a3a2f34382d3438203d3e20313431303536.roa (hash: v92EWX5PrX2ocfEiVVqNZStsTUP7VHqvGQh9Jsm+CN4=) 5: 323430363a366434303a656165613a3a2f34382d3438203d3e20313431303536.roa (hash: pbhhW/T4QYFpANmSbko4Pn15Hrxc5CLsjrjH+moakkM=) 6: 323430363a366434303a3131363a3a2f34382d3438203d3e20313431303536.roa (hash: 7PxedSipsNTZyiV9fxG1frgwTkAEJ+zZ1V+jTL4oKzQ=) 7: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: fLXVT7lGT6QWujn3tIusyMzrLDKrWbnN+mifeaCOu/U=) 8: 323430363a366434303a313431303a3a2f34382d3438203d3e20313431303536.roa (hash: BlERiRMKFqkgyqTsj7YKl6ODg1kHmptUNWRLGRCZ1OE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:d0:aa:ed:7a:d6:92:4a:30:c2:74:f3:04:6f:a5:db:e6:10:eb:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: Nov 24 04:16:24 2024 GMT Not After : Nov 27 15:16:24 2024 GMT Subject: CN=6587C71526F4050731909A4F8E1735EB84B3F417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e4:a9:9f:5e:01:87:d5:07:ce:f0:51:62:9f: 4c:0d:38:77:1d:bf:5b:8e:d6:cc:03:71:91:0e:c2: 66:1c:d5:e8:94:2e:b2:62:a7:ec:9c:88:9f:44:9d: 6b:2f:a4:dc:76:76:5e:ff:fa:3f:d3:95:8e:5d:7b: 69:5f:1f:bb:05:b4:ba:ab:4f:e5:29:7e:bc:7a:ba: cb:9a:ef:bd:1b:f4:d6:52:fe:e7:ef:81:84:de:00: 61:94:d7:2b:d1:89:0e:50:94:9f:8a:59:03:3b:2d: 2a:c7:5a:12:cc:a4:2f:3f:59:bf:30:91:3f:5e:44: 36:c3:0a:27:33:d9:7b:ee:22:5b:e8:e7:4c:c2:ff: 2c:1f:50:67:73:85:66:16:4a:49:28:57:71:dc:0a: 4b:f1:58:55:29:1b:79:4c:f5:b4:7f:9f:5f:b9:dc: 31:d4:20:8c:7e:0f:89:3e:83:a5:e5:66:b1:8f:35: 0d:26:2b:14:bf:10:d6:93:3e:59:36:83:36:03:27: a3:d4:08:bf:7b:55:ee:9f:cb:f5:2e:6d:bc:9f:70: 46:ab:d6:d9:14:ae:b7:57:0f:c2:8d:2e:9c:65:87: ef:47:13:fc:04:71:6c:6b:3a:a7:e9:26:62:8d:d2: 02:c4:35:ad:6d:7b:59:92:41:39:9a:e7:a7:d7:03: a8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:87:C7:15:26:F4:05:07:31:90:9A:4F:8E:17:35:EB:84:B3:F4:17 X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:5a:e1:36:10:a8:e7:ab:c2:f7:28:e3:fb:f5:8a:a1:c5:8a: 7e:c1:06:59:b0:60:0a:98:b3:a5:5f:29:ca:ba:58:f2:b3:00: 92:4f:34:3a:f8:78:47:b2:96:1b:d6:bb:68:74:5b:7a:f5:86: fe:a5:f3:46:b8:df:48:61:98:61:64:98:93:f0:e6:9f:06:d5: 0b:83:d2:4f:a0:3d:99:dc:d3:27:c3:58:18:eb:81:d1:00:06: 03:5e:a6:73:e7:81:9e:c5:33:5c:b1:28:82:6e:a9:72:a5:2b: e7:98:ad:a7:a1:65:e8:19:7a:ba:28:6c:05:d4:e5:97:4e:6a: 3b:0d:bc:d0:b4:fe:9f:21:6a:9b:cc:57:c0:90:8a:ac:02:6d: 28:c7:b6:1d:55:9a:8b:b3:ab:1b:2b:e4:28:f3:40:a4:a8:e5: b5:6a:cb:98:8a:da:d6:03:0c:65:e0:cc:82:d4:3b:5e:3a:2b: 4c:2c:c1:23:2d:b5:1a:f6:d6:dc:e7:46:80:7b:3d:5d:a7:19: 48:82:3e:84:5c:01:16:54:19:21:01:0a:34:1a:9d:57:02:7b: f3:53:5e:c6:dd:ed:1b:fd:bb:86:e8:c0:4b:7c:22:cf:3c:30: 6e:6a:d7:e8:96:5d:97:06:57:7a:61:19:2d:12:d6:ac:ed:cd: 8b:da:72:cf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUINCq7XrWkkowwnTzBG+l2+YQ6xQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNDExMjQwNDE2MjRaFw0yNDExMjcxNTE2MjRaMDMxMTAvBgNV BAMTKDY1ODdDNzE1MjZGNDA1MDczMTkwOUE0RjhFMTczNUVCODRCM0Y0MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85KmfXgGH1QfO8FFin0wNOHcd v1uO1swDcZEOwmYc1eiULrJip+yciJ9EnWsvpNx2dl7/+j/TlY5de2lfH7sFtLqr T+Upfrx6usua770b9NZS/ufvgYTeAGGU1yvRiQ5QlJ+KWQM7LSrHWhLMpC8/Wb8w kT9eRDbDCicz2XvuIlvo50zC/ywfUGdzhWYWSkkoV3HcCkvxWFUpG3lM9bR/n1+5 3DHUIIx+D4k+g6XlZrGPNQ0mKxS/ENaTPlk2gzYDJ6PUCL97Ve6fy/UubbyfcEar 1tkUrrdXD8KNLpxlh+9HE/wEcWxrOqfpJmKN0gLENa1te1mSQTma56fXA6i1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZYfHFSb0BQcxkJpPjhc164Sz9BcwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEta4TYQqOerwvco4/v1iqHFin7BBlmwYAqY s6VfKcq6WPKzAJJPNDr4eEeylhvWu2h0W3r1hv6l80a430hhmGFkmJPw5p8G1QuD 0k+gPZnc0yfDWBjrgdEABgNepnPngZ7FM1yxKIJuqXKlK+eYraehZegZeroobAXU 5ZdOajsNvNC0/p8hapvMV8CQiqwCbSjHth1Vmouzqxsr5CjzQKSo5bVqy5iK2tYD DGXgzILUO146K0wswSMttRr21tznRoB7PV2nGUiCPoRcARZUGSEBCjQanVcCe/NT Xsbd7Rv9u4bowEt8Is88MG5q1+iWXZcGV3phGS0S1qztzYvacs8= -----END CERTIFICATE-----Generated at Sun Nov 24 06:43:22 2024 by rpki-client on console-fra.rpki-client.org