$ rpki-client -vvf repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft File: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft (raw, json) Hash identifier: rAStZZxR3TJedn7LL1NdUXyGr6JqjBGVZcP4coDs/Ys= Subject key identifier: 59:C3:70:10:03:7B:92:0A:AD:15:29:68:84:04:B3:20:AA:56:54:CE Authority key identifier: CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C Certificate issuer: /CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Certificate serial: 47890A2FAE5ADCE1D1768368C8B4784C143C7140 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft Manifest number: 02A5 Signing time: Mon 20 May 2024 01:01:56 +0000 Manifest this update: Mon 20 May 2024 00:56:56 +0000 Manifest next update: Thu 23 May 2024 04:36:56 +0000 Files and hashes: 1: 3132332e3235332e3234342e302f32322d3234203d3e20313339333939.roa (hash: J0yFIU8yPJPvRf3j8RKfhubQW1HtIykVJHVnsQp+Y88=) 2: 3130332e39312e32382e302f32322d3234203d3e203338343936.roa (hash: ZrInKy3rN8CQHG74U5DNNhQz02tlUukWAziTX5F6+yM=) 3: 323030313a6466303a663730303a3a2f34382d3438203d3e20313339333939.roa (hash: LOwdnWZOOvEGhAPaPduzvBbaatscJYtBkw5/Uew9GoM=) 4: CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl (hash: zOWzSgseeFYBEgRyP+HL+IwmSP20qM1BcX9s66Vb8Vc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 19:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:89:0a:2f:ae:5a:dc:e1:d1:76:83:68:c8:b4:78:4c:14:3c:71:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C Validity Not Before: May 20 00:56:56 2024 GMT Not After : May 23 04:36:56 2024 GMT Subject: CN=59C37010037B920AAD1529688404B320AA5654CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bd:9d:03:32:d1:a8:a8:a7:ef:76:52:fe:94: f3:21:a7:5a:d7:90:36:35:38:ed:6a:a8:0b:45:50: 0a:ad:a0:ed:07:e4:34:75:0a:9c:63:64:46:12:ff: 88:8f:4d:bd:80:6d:ed:0d:80:7c:2d:73:3a:85:af: 21:66:33:02:e9:55:5b:73:83:f3:1b:2e:3b:4d:c2: 1e:36:95:75:3e:ea:3c:ec:00:18:98:eb:ce:2b:18: 53:19:2d:a7:80:f1:04:75:61:91:0d:96:38:66:2d: 2a:1c:95:12:93:ca:66:3c:54:5d:4b:b5:35:44:f7: 06:b4:f4:9f:42:af:15:23:7c:e0:3a:41:5b:ab:b4: a1:0f:bd:03:da:5e:e3:01:ba:ed:34:f7:f3:1f:b1: 68:62:f4:c0:29:c2:f4:43:02:db:0a:0e:f6:5e:d9: 2b:2d:04:84:41:46:1e:d6:ce:83:e5:3d:21:bd:17: da:ba:1c:72:7f:db:d1:4c:8d:57:55:46:f9:cd:52: 41:05:08:50:e1:09:40:50:73:4e:a4:05:78:97:70: 6c:af:af:07:c0:8d:c1:da:44:4a:0a:f1:8f:a2:ee: 3d:2a:28:e9:85:a4:08:2a:9b:4c:39:94:9a:65:d7: 5d:e8:0c:a4:90:26:a2:f9:07:08:4f:b2:e3:db:39: fa:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C3:70:10:03:7B:92:0A:AD:15:29:68:84:04:B3:20:AA:56:54:CE X509v3 Authority Key Identifier: keyid:CA:70:4F:78:5E:A5:8B:3F:65:9E:6E:3C:8F:71:E2:D4:CF:D7:E2:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4421985b-a0e6-4e05-bef6-fe6f5a6e2f43/0/CA704F785EA58B3F659E6E3C8F71E2D4CFD7E26C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:55:d7:b8:1c:d4:3e:2c:2e:f3:b7:1b:5e:c0:cd:da:58:c9: de:d5:1a:ba:65:35:90:8e:1d:3c:98:08:68:68:62:b9:eb:3b: e7:8e:0c:14:ba:5d:d3:83:0a:96:0a:bd:51:13:3e:44:2f:b6: e3:55:5d:3f:cc:c4:fb:e7:87:29:10:32:0a:66:41:6e:26:29: b6:42:85:f4:bf:1f:00:fc:2d:90:ce:ee:53:bb:d2:85:e7:63: ba:36:a3:67:3a:72:e1:ea:17:10:ae:45:72:d3:82:8c:80:a5: 93:36:92:23:af:03:c4:2a:05:82:96:81:ee:76:bb:37:81:77: 61:9e:e9:95:17:95:c0:69:1c:3f:ef:75:0a:e0:e7:f8:40:ae: a1:99:a3:ef:db:5d:fc:a5:c7:48:a1:9d:cb:f7:f0:e7:b4:d4: 20:54:6f:0a:97:f4:5c:f0:c0:80:1e:f9:9f:13:54:ef:c0:80: 56:77:b1:43:96:83:07:ce:18:e0:03:4f:9a:f6:3a:1b:e6:be: 89:df:65:f7:16:62:19:25:74:45:ad:d2:a6:9f:dc:b0:dc:51: a5:1c:fa:17:92:88:ea:6c:6a:5d:9e:89:fa:d8:cb:6c:b5:80: 87:46:21:b7:23:8e:e5:05:ca:43:3c:81:96:19:30:5c:8f:6c: 3a:76:ea:eb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUR4kKL65a3OHRdoNoyLR4TBQ8cUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRD RkQ3RTI2QzAeFw0yNDA1MjAwMDU2NTZaFw0yNDA1MjMwNDM2NTZaMDMxMTAvBgNV BAMTKDU5QzM3MDEwMDM3QjkyMEFBRDE1Mjk2ODg0MDRCMzIwQUE1NjU0Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSvZ0DMtGoqKfvdlL+lPMhp1rX kDY1OO1qqAtFUAqtoO0H5DR1CpxjZEYS/4iPTb2Abe0NgHwtczqFryFmMwLpVVtz g/MbLjtNwh42lXU+6jzsABiY684rGFMZLaeA8QR1YZENljhmLSoclRKTymY8VF1L tTVE9wa09J9CrxUjfOA6QVurtKEPvQPaXuMBuu009/MfsWhi9MApwvRDAtsKDvZe 2SstBIRBRh7WzoPlPSG9F9q6HHJ/29FMjVdVRvnNUkEFCFDhCUBQc06kBXiXcGyv rwfAjcHaREoK8Y+i7j0qKOmFpAgqm0w5lJpl113oDKSQJqL5BwhPsuPbOfqVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWcNwEAN7kgqtFSlohASzIKpWVM4wHwYDVR0j BBgwFoAUynBPeF6liz9lnm48j3Hi1M/X4mwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NDIxOTg1Yi1hMGU2LTRlMDUtYmVmNi1mZTZmNWE2ZTJmNDMvMC9DQTcwNEY3ODVF QTU4QjNGNjU5RTZFM0M4RjcxRTJENENGRDdFMjZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUyRDRDRkQ3 RTI2Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDQyMTk4NWItYTBlNi00ZTA1LWJl ZjYtZmU2ZjVhNmUyZjQzLzAvQ0E3MDRGNzg1RUE1OEIzRjY1OUU2RTNDOEY3MUUy RDRDRkQ3RTI2Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACVV17gc1D4sLvO3G17AzdpYyd7VGrplNZCO HTyYCGhoYrnrO+eODBS6XdODCpYKvVETPkQvtuNVXT/MxPvnhykQMgpmQW4mKbZC hfS/HwD8LZDO7lO70oXnY7o2o2c6cuHqFxCuRXLTgoyApZM2kiOvA8QqBYKWge52 uzeBd2Ge6ZUXlcBpHD/vdQrg5/hArqGZo+/bXfylx0ihncv38Oe01CBUbwqX9Fzw wIAe+Z8TVO/AgFZ3sUOWgwfOGOADT5r2OhvmvonfZfcWYhkldEWt0qaf3LDcUaUc +heSiOpsal2eifrYy2y1gIdGIbcjjuUFykM8gZYZMFyPbDp26us= -----END CERTIFICATE-----Generated at Mon May 20 01:38:24 2024 by rpki-client on console-ams.rpki-client.org