$ rpki-client -vvf repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft File: BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft (raw, json) Hash identifier: dhtQBLMthN1bhZfPBB/dDIvbEapK+lp6RuA/j3kiCfI= Subject key identifier: 93:1C:70:0E:01:3B:6A:A2:4E:07:D2:D2:35:89:B9:28:9C:FE:12:9C Authority key identifier: BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 Certificate issuer: /CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Certificate serial: 254602407131406DB046BA0AF2EA43A89DF996E4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft Manifest number: 0435 Signing time: Fri 24 May 2024 16:51:12 +0000 Manifest this update: Fri 24 May 2024 16:46:12 +0000 Manifest next update: Mon 27 May 2024 23:07:12 +0000 Files and hashes: 1: BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl (hash: 6ihNg9HeIUEu/LTfAaULx+lFXNqdmsTX5UvPdTnyFVc=) 2: 323430363a366434303a3a2f33322d3332203d3e20313431303536.roa (hash: i2kiD3mM+MjiHTnZyeF2nS2QLKGMFwRM8UsT3KxQLSA=) 3: 3130332e3135352e3131362e302f32342d3234203d3e20313431303536.roa (hash: zuK6tSBVOcL0DoRiCvl574IutmMM3i+15NF8Mt7HjNY=) 4: 3130332e3135352e3131372e302f32342d3234203d3e20313431303536.roa (hash: MyyHAf7985s2kxyxSU9s4YJu7rUlw3VFFCZcdksfFgo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 22:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:46:02:40:71:31:40:6d:b0:46:ba:0a:f2:ea:43:a8:9d:f9:96:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA31953B92C5FC452EDA87B90CBD98E207FA337 Validity Not Before: May 24 16:46:12 2024 GMT Not After : May 27 23:07:12 2024 GMT Subject: CN=931C700E013B6AA24E07D2D23589B9289CFE129C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:62:1f:d2:79:58:86:3c:9d:b6:0d:71:3f:7c: 32:8b:db:21:f2:9c:61:6b:51:65:e5:5d:4f:47:09: 7c:a7:27:91:cd:46:23:3e:4d:fc:99:b0:68:2a:98: 0e:f2:a9:47:26:72:ea:c1:20:76:31:06:53:94:58: e7:cc:22:48:9a:55:5e:09:55:c8:f6:af:01:83:55: 0e:48:67:f2:76:d4:77:af:19:5a:d2:41:e9:fc:8d: 06:f8:75:3e:b9:81:5c:8b:fc:2b:ee:fa:53:2f:80: b0:a3:64:96:67:33:86:02:b0:d6:1e:63:e9:63:71: be:8e:f1:ac:7f:3e:94:7d:d7:8e:e0:76:bc:bf:4d: c8:08:3a:1a:1c:37:89:d1:c6:25:b0:97:8f:63:f6: 5a:34:8f:71:e9:fb:b1:87:be:e0:1c:0a:0b:93:0e: d8:56:f0:bd:10:60:6d:e0:59:e0:ad:c9:f7:b5:88: ea:6d:e7:38:8e:29:9a:76:54:51:36:50:77:4c:f1: 51:9e:3e:26:81:13:d6:d4:6d:4c:9e:5d:cc:0c:5b: fc:1c:75:39:78:bb:07:da:ab:b0:53:fa:2f:1b:5a: c2:70:52:91:72:53:d0:d0:e2:87:ba:cf:19:c7:b1: 76:46:bf:f1:88:13:45:b9:13:ef:f0:92:f3:2c:c3: da:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:1C:70:0E:01:3B:6A:A2:4E:07:D2:D2:35:89:B9:28:9C:FE:12:9C X509v3 Authority Key Identifier: keyid:BC:A3:19:53:B9:2C:5F:C4:52:ED:A8:7B:90:CB:D9:8E:20:7F:A3:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCA31953B92C5FC452EDA87B90CBD98E207FA337.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e2c4815-b2da-4c20-bc31-503adf49b490/0/BCA31953B92C5FC452EDA87B90CBD98E207FA337.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:4d:63:67:56:02:97:68:6e:45:b0:50:21:80:9f:e1:77:2e: 76:59:07:d7:79:a8:a6:8a:d6:e5:0a:49:be:1f:6b:c9:62:9a: 27:5e:ac:60:31:06:c2:99:c1:32:83:de:1d:60:25:93:96:5d: e2:a0:1f:3a:3d:ee:f2:3b:15:7a:de:9b:12:c9:43:92:b0:1d: 58:d0:7c:dc:ea:12:39:4a:62:8b:4a:08:c0:0b:b6:6a:42:62: c1:a7:58:d6:9e:e2:83:cf:fe:bd:4f:91:ab:bb:c6:5a:35:85: d3:0c:34:e7:aa:22:55:62:bb:ad:c8:6a:13:1c:2d:70:86:e4: 7e:67:31:b7:f8:7f:7b:18:96:e4:f4:ef:0d:6f:33:50:00:43: 80:10:2e:4c:b2:d8:1a:43:01:4a:1b:06:44:e1:86:ed:34:25: 7f:19:9d:6a:ca:8f:cd:96:97:ff:27:5f:43:b2:84:41:b3:74: 56:fe:0b:5a:45:1a:80:70:e8:e2:c8:31:96:71:54:2b:6e:ab: 79:b5:55:17:77:5b:e9:0b:1a:a1:b4:0c:9a:b9:74:7c:10:27: cf:5a:86:12:ee:58:1f:23:32:d4:50:df:f5:4e:56:8f:6c:f0: 6c:4c:4f:1c:db:f9:9e:cf:e7:5c:9a:a9:5a:b9:44:7e:da:d5: 01:fb:25:0e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJUYCQHExQG2wRroK8upDqJ35luQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUy MDdGQTMzNzAeFw0yNDA1MjQxNjQ2MTJaFw0yNDA1MjcyMzA3MTJaMDMxMTAvBgNV BAMTKDkzMUM3MDBFMDEzQjZBQTI0RTA3RDJEMjM1ODlCOTI4OUNGRTEyOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPYh/SeViGPJ22DXE/fDKL2yHy nGFrUWXlXU9HCXynJ5HNRiM+TfyZsGgqmA7yqUcmcurBIHYxBlOUWOfMIkiaVV4J Vcj2rwGDVQ5IZ/J21HevGVrSQen8jQb4dT65gVyL/Cvu+lMvgLCjZJZnM4YCsNYe Y+ljcb6O8ax/PpR9147gdry/TcgIOhocN4nRxiWwl49j9lo0j3Hp+7GHvuAcCguT DthW8L0QYG3gWeCtyfe1iOpt5ziOKZp2VFE2UHdM8VGePiaBE9bUbUyeXcwMW/wc dTl4uwfaq7BT+i8bWsJwUpFyU9DQ4oe6zxnHsXZGv/GIE0W5E+/wkvMsw9ozAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkxxwDgE7aqJOB9LSNYm5KJz+EpwwHwYDVR0j BBgwFoAUvKMZU7ksX8RS7ah7kMvZjiB/ozcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTJjNDgxNS1iMmRhLTRjMjAtYmMzMS01MDNhZGY0OWI0OTAvMC9CQ0EzMTk1M0I5 MkM1RkM0NTJFREE4N0I5MENCRDk4RTIwN0ZBMzM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5OEUyMDdG QTMzNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UyYzQ4MTUtYjJkYS00YzIwLWJj MzEtNTAzYWRmNDliNDkwLzAvQkNBMzE5NTNCOTJDNUZDNDUyRURBODdCOTBDQkQ5 OEUyMDdGQTMzNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIlNY2dWApdobkWwUCGAn+F3LnZZB9d5qKaK 1uUKSb4fa8limiderGAxBsKZwTKD3h1gJZOWXeKgHzo97vI7FXremxLJQ5KwHVjQ fNzqEjlKYotKCMALtmpCYsGnWNae4oPP/r1Pkau7xlo1hdMMNOeqIlViu63IahMc LXCG5H5nMbf4f3sYluT07w1vM1AAQ4AQLkyy2BpDAUobBkThhu00JX8ZnWrKj82W l/8nX0OyhEGzdFb+C1pFGoBw6OLIMZZxVCtuq3m1VRd3W+kLGqG0DJq5dHwQJ89a hhLuWB8jMtRQ3/VOVo9s8GxMTxzb+Z7P51yaqVq5RH7a1QH7JQ4= -----END CERTIFICATE-----Generated at Fri May 24 17:55:20 2024 by rpki-client on console-fra.rpki-client.org