$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: pz2vYZLOepXSyu0sw1ZEg8Kecze74f1uL1MR36gf96Q= Subject key identifier: 34:75:07:EF:23:04:DE:AF:A6:DC:CE:1C:81:2A:F9:7C:76:FE:A9:9B Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 6583E433E1799FAD9D97873D90422B5FC6839135 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 01B3 Signing time: Thu 21 Nov 2024 18:02:06 +0000 Manifest this update: Thu 21 Nov 2024 17:57:06 +0000 Manifest next update: Sun 24 Nov 2024 19:25:06 +0000 Files and hashes: 1: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: iNu1NslxfsdpVcJk9+DmVV//tSjljddPEwSdL9yhgKY=) 2: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: o4MSjMa5d9GDiKlBXKifxX/bwpEutGiuQB9fWy7LmpE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:83:e4:33:e1:79:9f:ad:9d:97:87:3d:90:42:2b:5f:c6:83:91:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Nov 21 17:57:06 2024 GMT Not After : Nov 24 19:25:06 2024 GMT Subject: CN=347507EF2304DEAFA6DCCE1C812AF97C76FEA99B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:84:e4:58:b2:d2:74:8a:b9:dc:39:64:85:74: 14:b5:df:92:05:9c:ea:a8:9a:9c:dd:93:ae:9f:0b: c7:95:a1:85:1b:1f:43:93:1a:db:41:3f:a1:35:41: 85:1e:94:8d:c2:c6:fe:09:58:12:1e:61:04:15:3f: dc:26:7b:e4:41:8e:a9:6a:b6:97:48:6b:ee:ba:2f: 71:3c:a6:d1:26:29:6a:ef:00:9f:b3:c2:52:e0:6c: fc:35:28:c3:cc:f5:65:16:f7:d1:fe:79:d0:37:8f: 51:b8:d6:f8:61:dc:91:c4:84:aa:6d:59:c7:72:c5: 86:03:f7:2a:2e:db:8d:51:5a:c0:e2:fd:f9:87:90: b1:c4:bc:9a:5a:56:fb:ab:cc:8c:4f:f2:5a:23:a1: e9:75:ac:e2:a2:ff:32:fa:de:eb:de:99:4f:a4:e5: 1c:25:21:e3:1f:d5:6f:66:db:4b:ca:d2:09:8e:bb: 48:8e:2e:b7:e5:f2:7a:84:fb:0e:42:4f:2f:6b:9e: f8:d2:b7:ab:5b:fb:8a:61:e4:ac:a8:c1:49:9e:ed: 4e:d0:88:25:d2:a8:a5:6c:05:90:31:c4:d1:47:2b: 4c:3f:18:7c:5e:49:32:8d:46:04:82:33:80:8d:43: 8d:9e:3c:a2:aa:4b:13:9b:7d:85:2d:e0:0a:6b:a0: 5c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:75:07:EF:23:04:DE:AF:A6:DC:CE:1C:81:2A:F9:7C:76:FE:A9:9B X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:84:98:b5:ce:0c:ee:af:fd:f2:0f:92:17:c2:ca:ce:e4:87: bf:27:99:3e:62:03:98:a1:1f:d5:7e:54:3d:e1:1e:61:6b:e8: f6:9e:15:de:3a:a3:f1:86:4b:24:ce:26:9a:44:7f:14:1a:8b: 88:7b:7b:a5:77:0a:7c:85:88:c0:b2:b5:50:79:59:6e:1f:39: ec:c3:3e:13:57:e7:c1:b1:6e:25:12:97:bd:b7:30:ff:40:06: 1d:dd:4f:82:ed:a6:21:c5:a9:49:85:b7:88:59:54:a4:69:54: ba:0a:4c:73:f0:9a:bb:78:83:d2:e4:8d:d4:ca:18:09:a2:b9: 10:bc:7d:8e:7c:60:a8:1a:c8:4f:d0:95:6d:3f:5d:bd:b0:c3: e7:75:67:44:bb:20:f4:b9:b5:3c:8e:f2:37:1f:31:5b:a8:d1: f6:f6:87:e9:5c:a3:3f:6c:49:d0:ed:2a:76:f2:8b:54:d6:4f: 27:04:61:9c:12:87:a8:73:22:3d:94:c9:ff:71:80:0f:5a:a4: 6b:cd:96:47:6a:9e:d7:e4:4d:d2:2f:a5:58:f8:06:38:44:89: eb:35:99:30:81:f9:fc:4c:ac:27:3a:c4:68:bc:71:b8:85:ab: 65:50:87:2b:25:1d:74:b6:32:ac:cf:ea:7b:96:fd:15:c4:75: 2b:79:16:49 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZYPkM+F5n62dl4c9kEIrX8aDkTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNDExMjExNzU3MDZaFw0yNDExMjQxOTI1MDZaMDMxMTAvBgNV BAMTKDM0NzUwN0VGMjMwNERFQUZBNkRDQ0UxQzgxMkFGOTdDNzZGRUE5OUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCohORYstJ0irncOWSFdBS135IF nOqompzdk66fC8eVoYUbH0OTGttBP6E1QYUelI3Cxv4JWBIeYQQVP9wme+RBjqlq tpdIa+66L3E8ptEmKWrvAJ+zwlLgbPw1KMPM9WUW99H+edA3j1G41vhh3JHEhKpt WcdyxYYD9you241RWsDi/fmHkLHEvJpaVvurzIxP8lojoel1rOKi/zL63uvemU+k 5RwlIeMf1W9m20vK0gmOu0iOLrfl8nqE+w5CTy9rnvjSt6tb+4ph5KyowUme7U7Q iCXSqKVsBZAxxNFHK0w/GHxeSTKNRgSCM4CNQ42ePKKqSxObfYUt4AproFzTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNHUH7yME3q+m3M4cgSr5fHb+qZswHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF6EmLXODO6v/fIPkhfCys7kh78nmT5iA5ih H9V+VD3hHmFr6PaeFd46o/GGSyTOJppEfxQai4h7e6V3CnyFiMCytVB5WW4fOezD PhNX58GxbiUSl723MP9ABh3dT4LtpiHFqUmFt4hZVKRpVLoKTHPwmrt4g9LkjdTK GAmiuRC8fY58YKgayE/QlW0/Xb2ww+d1Z0S7IPS5tTyO8jcfMVuo0fb2h+lcoz9s SdDtKnbyi1TWTycEYZwSh6hzIj2Uyf9xgA9apGvNlkdqntfkTdIvpVj4BjhEies1 mTCB+fxMrCc6xGi8cbiFq2VQhyslHXS2MqzP6nuW/RXEdSt5Fkk= -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org