$ rpki-client -vvf repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft File: 871B4235DFC56C482416E7BBA192562092FFE055.mft (raw, json) Hash identifier: Od9Do5TzqwKLluMC0ghuFhNoTEmqeZD++V5rvBB5btE= Subject key identifier: A3:5A:B0:4F:EC:27:F9:0B:D7:EF:63:01:0A:3D:02:6E:83:DF:3B:85 Authority key identifier: 87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 Certificate issuer: /CN=871B4235DFC56C482416E7BBA192562092FFE055 Certificate serial: 40BC70358A1240EA1242894942927BC2B06AFC10 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject info access: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft Manifest number: 6F Signing time: Wed 20 Nov 2024 18:12:20 +0000 Manifest this update: Wed 20 Nov 2024 18:07:20 +0000 Manifest next update: Sun 24 Nov 2024 04:11:20 +0000 Files and hashes: 1: 871B4235DFC56C482416E7BBA192562092FFE055.crl (hash: g2JYkV8hmvixni+ebnQW1Bde1gCzpqLsRNwLuNw3IIw=) 2: 3135372e32302e39322e302f32332d3234203d3e20313532343037.roa (hash: MU3QX9wOyN5MJ5+2Sse/wz/eRIZjpwZUwSSKtJec7ic=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:bc:70:35:8a:12:40:ea:12:42:89:49:42:92:7b:c2:b0:6a:fc:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=871B4235DFC56C482416E7BBA192562092FFE055 Validity Not Before: Nov 20 18:07:20 2024 GMT Not After : Nov 24 04:11:20 2024 GMT Subject: CN=A35AB04FEC27F90BD7EF63010A3D026E83DF3B85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1f:78:32:37:23:1f:c5:54:7c:fb:81:94:83: 86:8f:c6:50:ff:4a:d7:da:e1:de:7c:e0:a6:0b:c7: 0e:92:a6:61:b2:43:21:8a:6c:b2:df:d9:76:97:56: cf:2c:5a:f2:d5:40:10:fd:43:7f:33:6e:88:7f:66: 31:95:78:7d:2c:64:c7:43:0d:51:20:61:f9:c2:34: 44:7d:45:b6:7b:27:d4:8c:3c:ed:0a:33:cd:18:57: d9:a0:82:cd:94:82:40:1b:f7:44:e4:7e:bf:e4:81: 12:56:8d:89:04:48:fb:49:ef:c8:57:86:60:46:30: 8a:c4:60:9d:91:91:95:60:b5:06:d5:5c:d7:e2:aa: 87:c0:7d:93:dd:c1:88:51:6a:3d:e6:33:36:85:72: b3:ac:c6:38:e3:9b:7a:39:a5:eb:d1:f3:7c:10:8a: 93:ab:a9:65:29:a0:17:e5:c0:f5:7c:47:83:4d:b9: ce:c3:65:1a:99:0e:87:0b:f2:df:19:4c:b1:b7:fa: 63:c1:bb:e9:c7:f7:6e:30:50:b1:6d:23:c6:3a:dd: 69:e3:b8:72:a3:01:1b:3e:1f:46:38:46:99:79:f5: 48:5e:81:71:ad:f4:0a:7d:b6:9a:5f:81:f0:5c:b0: 32:a8:f1:09:a5:fb:76:06:2e:61:96:1a:e9:7c:78: 45:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:5A:B0:4F:EC:27:F9:0B:D7:EF:63:01:0A:3D:02:6E:83:DF:3B:85 X509v3 Authority Key Identifier: keyid:87:1B:42:35:DF:C5:6C:48:24:16:E7:BB:A1:92:56:20:92:FF:E0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/871B4235DFC56C482416E7BBA192562092FFE055.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6a896fdc-5638-41d2-8a99-68ce816bd3cf/0/871B4235DFC56C482416E7BBA192562092FFE055.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption f9:c3:66:1a:39:47:a6:b9:34:fb:77:1b:f1:00:2a:a6:b4:cb: 8c:fc:5e:bd:98:8e:89:8a:fd:8f:e5:f4:47:81:1e:02:94:e8: 18:c5:61:b4:42:e0:90:ad:aa:aa:0b:27:79:bb:33:a6:b9:31: 98:a6:38:67:e6:55:db:c1:a6:10:05:7b:6c:20:9f:5d:08:b8: eb:c6:48:7b:f3:8d:37:0c:b0:69:ac:8b:1a:96:6f:be:c8:cc: 9c:7a:0a:d5:47:71:b1:4a:a8:27:ae:4f:ea:3f:96:4d:8f:f9: b8:bc:bd:ed:f6:14:5c:eb:91:60:cf:60:ff:d3:9d:3f:88:f1: ea:0c:49:7d:66:88:1a:3d:0b:c8:d4:1b:bf:96:e4:b4:40:d8: b6:aa:40:09:1f:19:59:5a:7e:e1:4a:b4:95:fd:ab:24:a6:e2: 31:67:84:de:91:ee:51:c7:19:ec:45:c1:cf:3d:43:58:3f:4d: 63:fd:d5:aa:f8:54:f0:6f:d9:04:01:97:55:6a:90:73:d2:50: 22:4f:f1:b0:96:fb:2f:7f:bd:ff:ae:3e:ee:22:39:f0:bf:e5: 14:02:c8:c6:83:6d:3d:f3:4e:8d:03:e4:cd:94:6c:cd:1c:72: d4:95:47:e1:71:c4:ef:6e:a6:e6:f2:ef:d1:d1:ad:d9:2c:21: 59:01:80:6f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQLxwNYoSQOoSQolJQpJ7wrBq/BAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5 MkZGRTA1NTAeFw0yNDExMjAxODA3MjBaFw0yNDExMjQwNDExMjBaMDMxMTAvBgNV BAMTKEEzNUFCMDRGRUMyN0Y5MEJEN0VGNjMwMTBBM0QwMjZFODNERjNCODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJH3gyNyMfxVR8+4GUg4aPxlD/ Stfa4d584KYLxw6SpmGyQyGKbLLf2XaXVs8sWvLVQBD9Q38zboh/ZjGVeH0sZMdD DVEgYfnCNER9RbZ7J9SMPO0KM80YV9mggs2UgkAb90Tkfr/kgRJWjYkESPtJ78hX hmBGMIrEYJ2RkZVgtQbVXNfiqofAfZPdwYhRaj3mMzaFcrOsxjjjm3o5pevR83wQ ipOrqWUpoBflwPV8R4NNuc7DZRqZDocL8t8ZTLG3+mPBu+nH924wULFtI8Y63Wnj uHKjARs+H0Y4Rpl59UhegXGt9Ap9tppfgfBcsDKo8Qml+3YGLmGWGul8eEW/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo1qwT+wn+QvX72MBCj0CboPfO4UwHwYDVR0j BBgwFoAUhxtCNd/FbEgkFue7oZJWIJL/4FUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 YTg5NmZkYy01NjM4LTQxZDItOGE5OS02OGNlODE2YmQzY2YvMC84NzFCNDIzNURG QzU2QzQ4MjQxNkU3QkJBMTkyNTYyMDkyRkZFMDU1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2MjA5MkZG RTA1NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmE4OTZmZGMtNTYzOC00MWQyLThh OTktNjhjZTgxNmJkM2NmLzAvODcxQjQyMzVERkM1NkM0ODI0MTZFN0JCQTE5MjU2 MjA5MkZGRTA1NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAPnDZho5R6a5NPt3G/EAKqa0y4z8Xr2YjomK /Y/l9EeBHgKU6BjFYbRC4JCtqqoLJ3m7M6a5MZimOGfmVdvBphAFe2wgn10IuOvG SHvzjTcMsGmsixqWb77IzJx6CtVHcbFKqCeuT+o/lk2P+bi8ve32FFzrkWDPYP/T nT+I8eoMSX1miBo9C8jUG7+W5LRA2LaqQAkfGVlafuFKtJX9qySm4jFnhN6R7lHH GexFwc89Q1g/TWP91ar4VPBv2QQBl1VqkHPSUCJP8bCW+y9/vf+uPu4iOfC/5RQC yMaDbT3zTo0D5M2UbM0cctSVR+FxxO9upuby79HRrdksIVkBgG8= -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:25 2024 by rpki-client on console-ams.rpki-client.org