$ rpki-client -vvf repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft File: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft (raw, json) Hash identifier: eHfl0Y9yvVdHEckY7YI19t/GEYo1cGVGdchQkCbpVJ0= Subject key identifier: 5C:26:8C:6F:A7:1A:54:E0:3E:1E:B2:F2:84:23:7D:3B:6E:82:1E:EC Authority key identifier: 43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 Certificate issuer: /CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Certificate serial: 7581EC96399472E5CD79B75E99EC3C8E655E002C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft Manifest number: 0204 Signing time: Sun 19 May 2024 08:01:02 +0000 Manifest this update: Sun 19 May 2024 07:56:02 +0000 Manifest next update: Wed 22 May 2024 14:53:02 +0000 Files and hashes: 1: 3130332e3137362e39362e302f32342d3234203d3e20313437313331.roa (hash: 8m5M/QJ2yVVXmA7O3NNT2n9j+JOQK4d7VoqkmuOCwi4=) 2: 4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl (hash: ivYxLeuiOtM+yztvb4SE/CbZCjK2+0qn3K5P3frkrzI=) 3: 3130332e3137362e39372e302f32342d3234203d3e20313437313331.roa (hash: ZI9bMbzWd+/kVwgvj277LreSnIXRjKKAs+7/q2ITxSs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 03:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:81:ec:96:39:94:72:e5:cd:79:b7:5e:99:ec:3c:8e:65:5e:00:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657 Validity Not Before: May 19 07:56:02 2024 GMT Not After : May 22 14:53:02 2024 GMT Subject: CN=5C268C6FA71A54E03E1EB2F284237D3B6E821EEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b0:d6:54:b5:4f:a4:dc:91:d1:da:ea:79:be: b4:c9:56:b3:e7:f9:78:09:cd:95:52:77:af:d1:f2: 40:c3:d8:b9:37:5e:d2:5f:69:b7:5e:0b:a1:22:e7: 2a:37:0b:a7:b1:eb:0d:09:65:93:6f:c7:8e:46:54: 81:16:47:34:5f:79:74:83:8d:1c:37:47:3e:ac:a1: e4:44:62:c0:aa:c5:a3:5a:9a:6e:00:38:e1:77:0b: 08:e3:38:1a:cb:93:0b:4f:8e:6e:0f:ef:62:91:6e: 3e:dd:3b:68:2f:97:25:08:97:f0:4c:87:19:46:01: 26:8b:b9:e3:18:97:03:f8:ad:c8:b7:22:e2:9a:47: e8:92:24:46:a5:0a:cc:95:f4:aa:e9:5e:4b:d2:71: 2f:94:b7:9f:f5:8a:96:9e:4f:e2:b8:f1:d3:48:9c: 99:01:f1:96:31:fb:fe:91:59:87:e6:64:5e:8f:45: 09:ac:cb:3c:30:e7:74:46:cf:1d:85:ca:b8:df:d7: 6d:71:fe:4b:02:d5:3a:c4:48:3a:d4:0d:da:16:94: fd:24:39:a3:a6:2c:a8:09:0f:e2:f9:d2:f8:30:c1: b2:09:a2:f0:4f:28:42:b5:48:f0:9f:82:8c:10:07: 23:61:9e:86:37:e4:16:0a:36:be:1d:da:d2:13:74: 89:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:26:8C:6F:A7:1A:54:E0:3E:1E:B2:F2:84:23:7D:3B:6E:82:1E:EC X509v3 Authority Key Identifier: keyid:43:37:E9:FF:91:A0:CB:65:CE:1E:B8:FA:EB:61:08:F5:E3:7B:B6:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c34dc3f-308f-4de1-a365-701bd9cf1004/0/4337E9FF91A0CB65CE1EB8FAEB6108F5E37BB657.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:3d:08:da:70:d3:10:22:49:30:c8:46:bf:1c:7e:97:e4:f2: 50:9e:fa:17:d2:ec:87:bf:81:b9:3e:cc:9a:3b:3c:41:68:0d: 08:c5:5d:be:cc:68:95:4a:05:d1:db:b3:71:b5:f3:a3:47:e6: 28:5e:0e:bd:7c:de:a1:e0:48:1a:c2:7b:a9:a2:42:3f:49:4a: 46:ef:10:0b:1c:f0:df:cd:56:44:7f:23:24:f1:63:26:73:cf: e8:23:1a:23:87:a5:4b:f4:14:0a:e2:80:3d:08:d9:49:c5:bd: 3d:66:5d:93:5c:a8:29:2c:0a:b5:9f:68:81:f7:d9:6e:80:b8: 03:80:12:3a:18:2c:f7:02:2d:bd:8f:d1:c6:d2:b9:25:f5:c0: c2:35:11:0d:12:54:53:ff:36:44:61:40:41:75:02:b9:ff:ff: a5:1e:6f:01:60:99:ab:79:03:c9:82:82:70:49:66:d5:0c:28: 4f:7f:69:4f:5e:72:73:04:12:6b:87:3b:10:4d:5b:b2:64:53: 3a:fd:7f:af:06:88:3b:7f:79:14:9e:4a:2a:e7:d9:45:09:6f: da:98:26:a5:71:08:bb:86:a5:9b:38:9e:50:c5:a5:2c:82:31: df:ef:43:80:ab:20:36:0f:1e:ea:77:f9:f5:6b:29:aa:c3:22: 53:42:70:26 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdYHsljmUcuXNebdemew8jmVeACwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVF MzdCQjY1NzAeFw0yNDA1MTkwNzU2MDJaFw0yNDA1MjIxNDUzMDJaMDMxMTAvBgNV BAMTKDVDMjY4QzZGQTcxQTU0RTAzRTFFQjJGMjg0MjM3RDNCNkU4MjFFRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfsNZUtU+k3JHR2up5vrTJVrPn +XgJzZVSd6/R8kDD2Lk3XtJfabdeC6Ei5yo3C6ex6w0JZZNvx45GVIEWRzRfeXSD jRw3Rz6soeREYsCqxaNamm4AOOF3CwjjOBrLkwtPjm4P72KRbj7dO2gvlyUIl/BM hxlGASaLueMYlwP4rci3IuKaR+iSJEalCsyV9KrpXkvScS+Ut5/1ipaeT+K48dNI nJkB8ZYx+/6RWYfmZF6PRQmsyzww53RGzx2Fyrjf121x/ksC1TrESDrUDdoWlP0k OaOmLKgJD+L50vgwwbIJovBPKEK1SPCfgowQByNhnoY35BYKNr4d2tITdImXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXCaMb6caVOA+HrLyhCN9O26CHuwwHwYDVR0j BBgwFoAUQzfp/5Ggy2XOHrj662EI9eN7tlcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzM0ZGMzZi0zMDhmLTRkZTEtYTM2NS03MDFiZDljZjEwMDQvMC80MzM3RTlGRjkx QTBDQjY1Q0UxRUI4RkFFQjYxMDhGNUUzN0JCNjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4RjVFMzdC QjY1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWMzNGRjM2YtMzA4Zi00ZGUxLWEz NjUtNzAxYmQ5Y2YxMDA0LzAvNDMzN0U5RkY5MUEwQ0I2NUNFMUVCOEZBRUI2MTA4 RjVFMzdCQjY1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEo9CNpw0xAiSTDIRr8cfpfk8lCe+hfS7Ie/ gbk+zJo7PEFoDQjFXb7MaJVKBdHbs3G186NH5iheDr183qHgSBrCe6miQj9JSkbv EAsc8N/NVkR/IyTxYyZzz+gjGiOHpUv0FArigD0I2UnFvT1mXZNcqCksCrWfaIH3 2W6AuAOAEjoYLPcCLb2P0cbSuSX1wMI1EQ0SVFP/NkRhQEF1Arn//6UebwFgmat5 A8mCgnBJZtUMKE9/aU9ecnMEEmuHOxBNW7JkUzr9f68GiDt/eRSeSirn2UUJb9qY JqVxCLuGpZs4nlDFpSyCMd/vQ4CrIDYPHup3+fVrKarDIlNCcCY= -----END CERTIFICATE-----Generated at Sun May 19 08:26:21 2024 by rpki-client on console-fra.rpki-client.org