$ rpki-client -vvf repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft (raw, json) Hash identifier: mkQEBzRn6kpeUuvjQOP6aR6TNjm1wRF7nw+QWT/8aTo= Subject key identifier: 0D:7F:74:8C:61:D3:A9:AB:F9:82:7D:FF:BD:20:AF:42:A0:5C:E6:92 Authority key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Certificate issuer: /CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Certificate serial: 5AFEAEE5119E7F09FE88C208076413EAE20FF7B1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft Manifest number: 0264 Signing time: Sun 24 Nov 2024 17:40:54 +0000 Manifest this update: Sun 24 Nov 2024 17:35:54 +0000 Manifest next update: Thu 28 Nov 2024 03:16:54 +0000 Files and hashes: 1: 3130332e38342e3131362e302f32342d3234203d3e20313336303730.roa (hash: ejo3/L+3kmLyjnvdSLMOsbUtjtQhrjGsr2lCCkclPu4=) 2: 323030313a6466303a313730303a3a2f34382d3438203d3e20313336303730.roa (hash: +t40M702VFWJpOgJRkFuplSndiJmUCoSc6okBYwiNSY=) 3: 3130332e3135372e35352e302f32342d3234203d3e20333936393832.roa (hash: YAl9IH945cB6nzFZ+Qtu95xtcvqOant2/UNUilOSLzk=) 4: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl (hash: Rm0TZZILqnFumpzyCYbeDtAZpB+kUTD0EaNEU8K9SzE=) 5: 3130332e3135372e35352e302f32342d3234203d3e20313336303730.roa (hash: Sr5rxwxyX//B5EAQxEl5R5AYvEEW7vDFWvwM/NlIUq4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:fe:ae:e5:11:9e:7f:09:fe:88:c2:08:07:64:13:ea:e2:0f:f7:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Validity Not Before: Nov 24 17:35:54 2024 GMT Not After : Nov 28 03:16:54 2024 GMT Subject: CN=0D7F748C61D3A9ABF9827DFFBD20AF42A05CE692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:88:15:c0:20:c8:d8:a6:65:1d:35:d0:cf:bb: 9b:73:a5:eb:44:16:a0:50:3e:b6:89:73:10:9a:7a: e8:d1:09:12:e1:50:54:5e:36:08:1e:3d:3f:63:5b: e1:d6:78:25:2e:c8:d9:2c:fb:38:e2:94:07:1d:e2: 0d:22:a9:48:03:2a:57:f8:6f:8e:7b:f2:0d:cf:6e: fc:f3:ca:18:38:60:e3:64:27:d8:a3:23:ae:57:d2: 80:01:8b:4f:a6:97:d4:0a:6c:7c:ab:15:9f:9f:bd: f3:3d:02:b4:b7:fe:f5:a0:77:c3:94:b3:5c:61:bc: b1:fe:dc:27:59:ec:a3:04:0b:51:e4:d2:5e:94:fa: 56:26:0e:e9:b7:06:ca:fa:9d:f2:83:68:fb:79:f5: 19:30:f7:32:ee:3b:01:e6:10:e1:b0:fb:2c:c6:6b: 40:7f:b0:e2:de:7f:22:cc:0d:a0:0e:3b:a7:4c:dd: 90:a6:3b:db:df:e2:bc:63:49:4e:82:bf:14:55:fc: f7:36:b4:5e:94:3b:03:68:29:f5:35:5b:0c:8f:5b: d3:06:e5:fc:80:7c:8f:95:21:0a:04:ad:f5:60:52: a0:2a:2e:39:44:88:93:50:39:af:9d:ea:fc:6e:8a: 8a:2b:e1:cd:b8:71:ac:1f:18:7c:ef:7c:83:b3:15: 9e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:7F:74:8C:61:D3:A9:AB:F9:82:7D:FF:BD:20:AF:42:A0:5C:E6:92 X509v3 Authority Key Identifier: keyid:A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8a:1e:e5:3e:3d:4c:f1:65:40:c6:18:d3:d9:d5:64:d4:1b:77: 94:2e:a3:88:1f:43:b6:d1:17:85:7a:dd:2d:bb:88:1f:c7:8b: 14:39:b9:d4:64:a5:8e:d1:c3:8d:26:1a:f7:3b:0e:24:71:b5: 1f:e4:88:c6:dc:52:16:aa:f6:a5:1e:84:b5:f6:16:c1:b5:98: 2f:4b:bf:da:33:e3:f3:f7:6a:15:71:18:e2:16:b5:28:91:59: c6:60:af:d7:98:10:af:5c:a0:ad:db:54:4b:58:50:6a:23:4d: db:66:f3:f8:1c:a3:f3:93:62:17:d4:78:f6:0d:cb:18:72:21: 36:ef:1d:7a:7e:c9:77:aa:07:68:1c:86:01:fc:aa:07:90:fb: 70:cf:51:2b:58:16:4e:c9:d9:bd:0a:17:1a:a1:2f:64:f2:0b: 43:55:84:57:97:c9:7e:e6:52:91:7a:5f:86:5f:62:a8:61:10: 4c:06:5a:3b:65:a3:f9:a1:01:3f:81:78:1f:47:03:06:0f:60: 86:1a:86:e7:dd:48:b0:10:bf:0f:86:06:de:6a:31:32:62:96: ac:ad:25:48:56:49:45:c6:e2:c2:fe:bf:44:a9:25:9a:c4:51: 8c:71:34:d3:0e:b7:ad:c6:2f:97:08:18:57:99:cd:22:66:c0: 18:a5:89:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWv6u5RGefwn+iMIIB2QT6uIP97EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2 RjNGRTBCMzAeFw0yNDExMjQxNzM1NTRaFw0yNDExMjgwMzE2NTRaMDMxMTAvBgNV BAMTKDBEN0Y3NDhDNjFEM0E5QUJGOTgyN0RGRkJEMjBBRjQyQTA1Q0U2OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCniBXAIMjYpmUdNdDPu5tzpetE FqBQPraJcxCaeujRCRLhUFReNggePT9jW+HWeCUuyNks+zjilAcd4g0iqUgDKlf4 b4578g3Pbvzzyhg4YONkJ9ijI65X0oABi0+ml9QKbHyrFZ+fvfM9ArS3/vWgd8OU s1xhvLH+3CdZ7KMEC1Hk0l6U+lYmDum3Bsr6nfKDaPt59Rkw9zLuOwHmEOGw+yzG a0B/sOLefyLMDaAOO6dM3ZCmO9vf4rxjSU6CvxRV/Pc2tF6UOwNoKfU1WwyPW9MG 5fyAfI+VIQoErfVgUqAqLjlEiJNQOa+d6vxuioor4c24cawfGHzvfIOzFZ5jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDX90jGHTqav5gn3/vSCvQqBc5pIwHwYDVR0j BBgwFoAUoKKlyowgp89toTJcm9XDN28/4LMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMC9BMEEyQTVDQThD MjBBN0NGNkRBMTMyNUM5QkQ1QzMzNzZGM0ZFMEIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMzMzc2RjNG RTBCMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGYzNzc3MTEtMWUzZC00ZTVhLWE0 YWMtMDVhMWM1MDJhZDI4LzAvQTBBMkE1Q0E4QzIwQTdDRjZEQTEzMjVDOUJENUMz Mzc2RjNGRTBCMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIoe5T49TPFlQMYY09nVZNQbd5Quo4gfQ7bR F4V63S27iB/HixQ5udRkpY7Rw40mGvc7DiRxtR/kiMbcUhaq9qUehLX2FsG1mC9L v9oz4/P3ahVxGOIWtSiRWcZgr9eYEK9coK3bVEtYUGojTdtm8/gco/OTYhfUePYN yxhyITbvHXp+yXeqB2gchgH8qgeQ+3DPUStYFk7J2b0KFxqhL2TyC0NVhFeXyX7m UpF6X4ZfYqhhEEwGWjtlo/mhAT+BeB9HAwYPYIYahufdSLAQvw+GBt5qMTJilqyt JUhWSUXG4sL+v0SpJZrEUYxxNNMOt63GL5cIGFeZzSJmwBilic4= -----END CERTIFICATE-----Generated at Sun Nov 24 18:33:16 2024 by rpki-client on console-fra.rpki-client.org