$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: pJAKeiUQqk/CpJZ8HAs0UEr8VVMPCuvy5CCFH8INcVE= Subject key identifier: 77:69:6D:28:8A:F5:73:C6:92:5C:82:89:CE:6C:35:02:C0:A1:6D:BA Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 152847E47079CFC3D344600A3975A218D922566E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 0257 Signing time: Fri 22 Nov 2024 04:31:16 +0000 Manifest this update: Fri 22 Nov 2024 04:26:16 +0000 Manifest next update: Mon 25 Nov 2024 09:24:16 +0000 Files and hashes: 1: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: ZI9bMbzWd+/kVwgvj277LreSnIXRjKKAs+7/q2ITxSs=) 2: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: 8m5M/QJ2yVVXmA7O3NNT2n9j+JOQK4d7VoqkmuOCwi4=) 3: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: udDy9xuIHg6GMrCMbrAFLK47NV5CCyxTtN2YWqMRMwI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:28:47:e4:70:79:cf:c3:d3:44:60:0a:39:75:a2:18:d9:22:56:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: Nov 22 04:26:16 2024 GMT Not After : Nov 25 09:24:16 2024 GMT Subject: CN=77696D288AF573C6925C8289CE6C3502C0A16DBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:58:95:a7:b9:bf:ca:c7:27:de:60:a9:54:dd: b2:28:8e:29:d1:24:57:ab:8e:9b:5e:70:bc:f7:ff: 74:cb:bc:ed:62:16:15:18:6a:f4:9e:52:d6:1e:c4: 05:a5:a2:be:17:81:7f:08:27:2c:25:bb:80:9f:ce: d8:df:72:46:22:c2:a8:78:12:e5:4a:ca:24:c0:9c: 66:d3:ac:87:58:de:d0:6b:14:e6:6b:9d:ca:88:b8: 15:38:bc:ec:a4:29:17:9a:72:f8:4b:e9:16:d7:21: a9:db:42:5a:0f:3a:4b:05:16:18:07:0b:91:e9:ea: 6d:94:d3:18:9f:75:56:55:b6:88:fc:6f:b9:70:d3: a8:50:f8:b4:c4:71:c1:a8:47:cd:97:2f:fd:99:b3: a1:f5:89:6d:aa:30:1e:7a:82:6a:35:c0:7b:59:78: 23:4f:02:a3:7f:44:de:ca:b7:d0:15:09:fb:a6:b9: a4:70:41:2a:7c:3e:9b:69:f0:0a:cd:b5:69:4c:f1: 01:65:90:d2:2a:40:95:49:a3:3c:0c:a4:2b:02:ef: f1:c9:28:12:5c:7c:82:8b:5d:e4:60:b0:26:e3:64: 43:79:84:dc:c6:78:6f:84:2a:bc:6b:16:a8:8c:e3: c7:93:67:98:e1:9e:68:66:85:4e:81:19:80:ea:60: ec:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:69:6D:28:8A:F5:73:C6:92:5C:82:89:CE:6C:35:02:C0:A1:6D:BA X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:09:ab:4d:fb:0e:15:5c:31:d1:92:5e:5b:d2:2b:8a:5f:0f: dc:31:95:75:86:f3:af:14:99:46:28:2b:20:0c:9e:cc:f5:09: 17:f7:a6:57:e7:cf:5a:a4:9c:7a:ab:8b:e9:d1:a6:e9:4d:4e: 11:fd:77:73:bd:f6:d0:38:68:c4:5d:74:a0:b0:28:3c:c0:22: 5b:4d:fa:b3:c0:3b:23:04:7c:49:8e:5f:06:67:68:07:d0:47: 3b:17:47:ed:93:5e:09:86:05:e1:9f:6d:57:14:8b:fe:ff:bc: 4d:fd:08:d4:52:90:71:11:d7:af:58:a1:6c:4d:91:c1:ec:0b: 8d:1e:ca:b7:a8:7c:5a:79:19:87:1d:85:71:91:da:45:3d:72: cb:1f:41:3e:bf:c0:99:81:bf:4f:e2:ca:31:cb:fd:a0:65:0b: a0:2e:d6:8c:5e:34:28:52:66:8c:1d:b6:b3:06:43:16:4a:11: 1e:6a:6c:6e:6c:ea:41:e1:58:d8:e9:1d:f4:5d:bd:c2:b0:9e: 72:87:8a:2c:1d:9b:1b:e9:f9:1d:9e:06:28:3f:8b:c4:bf:80: 2b:61:ba:64:5d:66:68:22:3b:6d:76:66:77:87:61:2c:b0:e1: be:9f:3c:07:ce:58:27:bc:da:b4:7c:f7:af:40:51:0d:f3:07: 86:7e:dc:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFShH5HB5z8PTRGAKOXWiGNkiVm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNDExMjIwNDI2MTZaFw0yNDExMjUwOTI0MTZaMDMxMTAvBgNV BAMTKDc3Njk2RDI4OEFGNTczQzY5MjVDODI4OUNFNkMzNTAyQzBBMTZEQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqWJWnub/KxyfeYKlU3bIojinR JFerjptecLz3/3TLvO1iFhUYavSeUtYexAWlor4XgX8IJywlu4CfztjfckYiwqh4 EuVKyiTAnGbTrIdY3tBrFOZrncqIuBU4vOykKReacvhL6RbXIanbQloPOksFFhgH C5Hp6m2U0xifdVZVtoj8b7lw06hQ+LTEccGoR82XL/2Zs6H1iW2qMB56gmo1wHtZ eCNPAqN/RN7Kt9AVCfumuaRwQSp8Pptp8ArNtWlM8QFlkNIqQJVJozwMpCsC7/HJ KBJcfIKLXeRgsCbjZEN5hNzGeG+EKrxrFqiM48eTZ5jhnmhmhU6BGYDqYOxnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUd2ltKIr1c8aSXIKJzmw1AsChbbowHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALgJq037DhVcMdGSXlvSK4pfD9wxlXWG868U mUYoKyAMnsz1CRf3plfnz1qknHqri+nRpulNThH9d3O99tA4aMRddKCwKDzAIltN +rPAOyMEfEmOXwZnaAfQRzsXR+2TXgmGBeGfbVcUi/7/vE39CNRSkHER169YoWxN kcHsC40eyreofFp5GYcdhXGR2kU9cssfQT6/wJmBv0/iyjHL/aBlC6Au1oxeNChS ZowdtrMGQxZKER5qbG5s6kHhWNjpHfRdvcKwnnKHiiwdmxvp+R2eBig/i8S/gCth umRdZmgiO212ZneHYSyw4b6fPAfOWCe82rR8969AUQ3zB4Z+3OA= -----END CERTIFICATE-----Generated at Fri Nov 22 06:33:23 2024 by rpki-client on console-ams.rpki-client.org