$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: i+g+chI74Lnpx+KreSFTsjM4wbTo0oIFsUWgerS/3YA= Subject key identifier: 95:C9:81:1A:3C:F5:F6:80:05:46:B1:67:C8:60:FC:0F:1D:49:21:24 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 711462917509610DFD600D7B04C1DF37250DC7A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 0452 Signing time: Wed 20 Nov 2024 12:02:01 +0000 Manifest this update: Wed 20 Nov 2024 11:57:01 +0000 Manifest next update: Sat 23 Nov 2024 17:39:01 +0000 Files and hashes: 1: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: O0gUDSUfyEHIWTjQrJsEi2Aj4Bt79u0dnrNXT3q7ako=) 2: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: x34IAlvfKm1zsQMhasEfbeQYKKvCf7zpZUDVTJObTdM=) 3: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: bDH+RypaUq14jL90Jkyj76XN0FbcCOLQ3ffO661yNsQ=) 4: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: RuzRTqDSLUn9HBI13QCG52rsR1ACbmby5EEBQ9WXa9I=) 5: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: oYxCGMbqXgR8AQNdiL8ihq35M5ctD4QdRyR88XpWqWE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 17:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:14:62:91:75:09:61:0d:fd:60:0d:7b:04:c1:df:37:25:0d:c7:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Nov 20 11:57:01 2024 GMT Not After : Nov 23 17:39:01 2024 GMT Subject: CN=95C9811A3CF5F6800546B167C860FC0F1D492124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:49:ed:a3:99:bd:49:bb:28:0b:82:c5:16: 21:b2:e2:4a:0c:7e:85:c9:97:82:de:f4:57:97:4b: b7:68:18:58:6f:53:da:b4:27:46:6b:91:31:20:5e: f1:0d:20:cd:4d:f7:3a:a8:0a:d0:14:a0:61:ae:a1: a9:fe:0f:f6:3d:79:83:50:30:2c:79:a5:c1:0d:37: 27:0f:2e:d0:68:b6:e6:69:6a:dd:aa:ed:7e:ee:f7: 71:2f:58:65:0a:07:d1:de:57:24:e1:42:37:bb:a9: 52:15:49:04:60:87:7e:51:31:ab:77:0d:46:66:b7: 76:9c:78:26:6b:d1:b1:bd:c8:9f:db:6e:6f:9b:4e: 67:98:93:06:fc:7a:27:98:7d:3e:a1:d1:ef:cb:d7: e7:b4:d9:bc:02:ee:e3:20:08:2c:95:33:fe:21:56: b9:a6:8b:5f:aa:e6:c8:06:41:56:af:c7:4a:58:3f: 06:8a:29:7d:ea:49:40:f2:17:fc:ca:5b:fe:45:9a: 54:f6:1a:25:48:a3:fb:20:da:c1:b8:96:bd:58:ee: cb:1c:5e:e4:d3:71:32:d2:c8:e1:8e:7b:1d:0f:d9: b1:b7:2a:a4:1b:9e:e5:e8:42:db:c4:43:7c:51:f1: 5c:e5:3a:d5:a7:e4:2c:b6:6a:da:a8:04:3e:5e:fe: d8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:C9:81:1A:3C:F5:F6:80:05:46:B1:67:C8:60:FC:0F:1D:49:21:24 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:aa:35:0b:b2:67:bf:87:dc:2a:a1:d9:de:3d:db:2b:ca:1d: 9b:fa:8e:69:cd:a8:5d:77:35:24:f1:9d:51:b4:58:8e:b2:79: 86:79:a5:3d:bf:99:64:55:62:fa:70:b8:89:5f:f6:5d:f1:98: 82:fd:21:0f:6f:64:36:f8:df:6b:b3:7c:40:d6:6c:99:05:83: f2:58:56:42:d9:7b:71:40:e5:ee:53:34:3e:bf:34:66:44:8f: 45:cb:2b:0c:d7:d4:4c:2b:18:9d:b1:1f:74:3e:d5:91:3d:69: 7c:11:48:b9:69:28:44:93:96:b8:37:f9:7c:88:eb:e2:f8:68: e5:4c:c8:21:ef:a5:9a:75:74:fd:6c:6f:88:68:bc:b0:d8:27: d4:59:58:88:52:a1:a5:30:c7:3c:75:38:d0:8f:54:0c:7d:ec: 47:46:9e:3a:b5:f0:42:2f:40:9a:32:01:5c:ca:8f:3f:ca:7b: 21:8c:2d:7b:61:ce:e3:f3:63:e8:57:7a:2b:60:57:df:a4:0e: 8f:ff:2a:78:65:3a:12:54:0e:c1:66:7a:d7:a4:1c:94:a1:97: 74:48:74:b0:2e:9a:8a:73:b7:79:5f:bd:7b:18:a0:ba:dc:88: a9:4e:89:e5:20:f7:b1:b1:29:9c:1a:14:2a:8b:16:de:34:3b: 2d:4f:7d:41 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcRRikXUJYQ39YA17BMHfNyUNx6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNDExMjAxMTU3MDFaFw0yNDExMjMxNzM5MDFaMDMxMTAvBgNV BAMTKDk1Qzk4MTFBM0NGNUY2ODAwNTQ2QjE2N0M4NjBGQzBGMUQ0OTIxMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCAEnto5m9SbsoC4LFFiGy4koM foXJl4Le9FeXS7doGFhvU9q0J0ZrkTEgXvENIM1N9zqoCtAUoGGuoan+D/Y9eYNQ MCx5pcENNycPLtBotuZpat2q7X7u93EvWGUKB9HeVyThQje7qVIVSQRgh35RMat3 DUZmt3aceCZr0bG9yJ/bbm+bTmeYkwb8eieYfT6h0e/L1+e02bwC7uMgCCyVM/4h Vrmmi1+q5sgGQVavx0pYPwaKKX3qSUDyF/zKW/5FmlT2GiVIo/sg2sG4lr1Y7ssc XuTTcTLSyOGOex0P2bG3KqQbnuXoQtvEQ3xR8VzlOtWn5Cy2atqoBD5e/tjvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlcmBGjz19oAFRrFnyGD8Dx1JISQwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF+qNQuyZ7+H3Cqh2d492yvKHZv6jmnNqF13 NSTxnVG0WI6yeYZ5pT2/mWRVYvpwuIlf9l3xmIL9IQ9vZDb432uzfEDWbJkFg/JY VkLZe3FA5e5TND6/NGZEj0XLKwzX1EwrGJ2xH3Q+1ZE9aXwRSLlpKESTlrg3+XyI 6+L4aOVMyCHvpZp1dP1sb4hovLDYJ9RZWIhSoaUwxzx1ONCPVAx97EdGnjq18EIv QJoyAVzKjz/KeyGMLXthzuPzY+hXeitgV9+kDo//KnhlOhJUDsFmetekHJShl3RI dLAumopzt3lfvXsYoLrciKlOieUg97GxKZwaFCqLFt40Oy1PfUE= -----END CERTIFICATE-----Generated at Wed Nov 20 14:21:27 2024 by rpki-client on console-fra.rpki-client.org