$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: VNW6xdfsteP/LNH/O3K+DjMZfRoAJfLOaQX4AN9rDdM= Subject key identifier: 15:DD:24:B3:88:7D:59:B6:E5:C9:A7:8C:D3:56:B8:C8:92:C0:10:C1 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 5BCFE91EE28B3B02CD9EB54AE24E8AB59CB6D226 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 048C Signing time: Fri 22 Nov 2024 19:02:11 +0000 Manifest this update: Fri 22 Nov 2024 18:57:11 +0000 Manifest next update: Tue 26 Nov 2024 03:10:11 +0000 Files and hashes: 1: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: Zzj+e6MCizUd3QAPQIbUBApujq4s680bRV+Ij58u8Tk=) 2: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: MVU1WBH4Bf5DRpQvoLi6KqhCgXU126whT3cse5/TdSk=) 3: 3130332e3135352e3230312e302f32342d3234203d3e20313431303733.roa (hash: 0Fbx7+O+Rv0b4NqNU0B2KV0w3IM8zu8pQa22iIJf9wo=) 4: 3130332e3135352e3230302e302f32342d3234203d3e20313431303733.roa (hash: 8OFb1YqFfLvVOmD9iCOmQ7wZPC6oC3tNwJjYHrbkdvQ=) 5: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: QlzJ/xeVRrTJPumT32aGQMH+v6gP8YnAasN6CoqTH+4=) 6: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: HyMWadhCrBlbrvw7eV4dA67xhQ9znG8zfhfFTeZs2rs=) 7: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: l2KKFvMs4PGNVc6V+YKEJtslmClhnJabxdZqH5PNd8g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:cf:e9:1e:e2:8b:3b:02:cd:9e:b5:4a:e2:4e:8a:b5:9c:b6:d2:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Nov 22 18:57:11 2024 GMT Not After : Nov 26 03:10:11 2024 GMT Subject: CN=15DD24B3887D59B6E5C9A78CD356B8C892C010C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:0b:40:cb:c1:a4:4a:54:81:3f:d6:4d:b7:35: db:6f:39:2f:df:ea:1a:7d:cf:d7:5a:9a:c4:28:55: 0e:97:86:98:bc:94:b2:cc:79:71:d1:94:72:e9:46: 14:57:9f:32:40:dc:5d:ac:00:c9:32:1b:15:1c:ab: 1d:8c:8b:5f:1a:49:33:33:a8:7e:17:83:46:23:0b: e4:e7:8e:4d:bd:ca:1b:8d:14:43:30:66:c1:2c:86: f3:15:42:4c:a4:c0:99:42:f7:ca:ce:39:77:a7:9d: 2d:a7:16:d6:74:53:7d:0e:b4:0f:10:56:10:b6:d8: ef:05:23:bc:5a:12:18:ea:b9:22:9c:01:53:e1:36: 9d:c7:d9:c2:b9:4b:5c:91:d9:24:ea:85:cf:4f:ef: 2f:84:66:3e:e1:0c:f7:0d:63:70:78:31:d4:2b:47: 61:a9:14:82:fe:eb:65:14:2f:d6:89:f0:36:81:87: 77:9b:15:0a:a7:60:53:08:05:4f:81:1c:ed:0c:7f: 98:58:89:1e:63:74:f9:3a:eb:ed:ab:bb:4b:8a:f0: 1a:45:83:91:18:a2:ae:53:b5:80:23:12:5a:0c:2c: 52:a2:e3:0e:de:26:b6:44:cd:55:35:d0:95:5f:7e: 09:10:92:2f:77:e3:4c:40:69:92:ce:86:f4:ca:5d: d8:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DD:24:B3:88:7D:59:B6:E5:C9:A7:8C:D3:56:B8:C8:92:C0:10:C1 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:c0:77:bd:b4:09:5b:5b:ff:03:30:79:cc:59:64:b7:50:57: 00:ca:1d:35:c5:1e:53:b3:ce:47:30:87:38:4c:60:52:2e:5a: 3f:ce:2a:72:3c:d7:4c:4c:b1:a0:99:21:57:e0:5a:ce:0a:c1: 6a:c4:d3:24:f6:c6:ed:5d:f6:67:d2:d4:3e:af:e8:7f:23:e6: 34:2e:b9:02:fa:0b:bb:fe:0b:0a:c4:5e:6e:5e:fd:c5:b1:0a: b6:3a:eb:41:9c:5f:3e:98:67:4e:df:a4:8a:13:08:2c:6c:42: 57:47:d4:13:d6:2d:ac:eb:59:74:e8:27:e5:82:22:90:45:ee: 41:e0:ec:b3:ac:b2:6f:b9:fe:6c:e4:23:42:21:23:12:b7:2d: 8e:7d:b2:ac:d2:f9:ab:11:a1:01:4a:e6:4c:cc:f7:90:af:19: 21:01:78:9b:f1:13:d3:cd:5b:af:07:ef:c2:68:51:c2:18:23: 14:67:ee:d3:45:4b:cd:cb:fe:4a:6a:27:d0:51:7a:01:10:04: d2:d3:ee:87:d2:6c:20:3b:79:70:35:24:3f:5b:40:c0:25:b5: 5c:b4:7b:30:2d:90:d4:cf:64:6a:cf:32:cc:0b:23:eb:5e:48: 36:74:c5:dd:32:a1:91:cc:be:d7:32:c8:c4:88:48:9c:c5:72: ac:04:de:40 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUW8/pHuKLOwLNnrVK4k6KtZy20iYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNDExMjIxODU3MTFaFw0yNDExMjYwMzEwMTFaMDMxMTAvBgNV BAMTKDE1REQyNEIzODg3RDU5QjZFNUM5QTc4Q0QzNTZCOEM4OTJDMDEwQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4C0DLwaRKVIE/1k23NdtvOS/f 6hp9z9damsQoVQ6Xhpi8lLLMeXHRlHLpRhRXnzJA3F2sAMkyGxUcqx2Mi18aSTMz qH4Xg0YjC+Tnjk29yhuNFEMwZsEshvMVQkykwJlC98rOOXennS2nFtZ0U30OtA8Q VhC22O8FI7xaEhjquSKcAVPhNp3H2cK5S1yR2STqhc9P7y+EZj7hDPcNY3B4MdQr R2GpFIL+62UUL9aJ8DaBh3ebFQqnYFMIBU+BHO0Mf5hYiR5jdPk66+2ru0uK8BpF g5EYoq5TtYAjEloMLFKi4w7eJrZEzVU10JVffgkQki9340xAaZLOhvTKXdi3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFd0ks4h9WbblyaeM01a4yJLAEMEwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIvAd720CVtb/wMwecxZZLdQVwDKHTXFHlOz zkcwhzhMYFIuWj/OKnI810xMsaCZIVfgWs4KwWrE0yT2xu1d9mfS1D6v6H8j5jQu uQL6C7v+CwrEXm5e/cWxCrY660GcXz6YZ07fpIoTCCxsQldH1BPWLazrWXToJ+WC IpBF7kHg7LOssm+5/mzkI0IhIxK3LY59sqzS+asRoQFK5kzM95CvGSEBeJvxE9PN W68H78JoUcIYIxRn7tNFS83L/kpqJ9BRegEQBNLT7ofSbCA7eXA1JD9bQMAltVy0 ezAtkNTPZGrPMswLI+teSDZ0xd0yoZHMvtcyyMSISJzFcqwE3kA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:41:54 2024 by rpki-client on console-fra.rpki-client.org