$ rpki-client -vvf repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft File: BCDF6D8F5670257F852914E87D552983AA37A3A3.mft (raw, json) Hash identifier: VY8KS10/ASHIx64X2/qhOtXF9VRZaUj193NbLczVUAo= Subject key identifier: D5:9B:6A:DC:F9:F0:4B:23:23:5E:A0:1E:46:17:86:11:B7:AE:5F:C9 Authority key identifier: BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 Certificate issuer: /CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Certificate serial: 4F14017741BCB696FDEB9B7B13F6345F2756E514 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft Manifest number: 038E Signing time: Thu 30 May 2024 02:00:52 +0000 Manifest this update: Thu 30 May 2024 01:55:52 +0000 Manifest next update: Sun 02 Jun 2024 09:23:52 +0000 Files and hashes: 1: 3130332e3134372e37362e302f32332d3233203d3e20313339393532.roa (hash: xrypO9bCdSj4pEbK125x1yNZguPlt/mFZyiWyskAHDg=) 2: 3130332e3134372e37372e302f32342d3234203d3e20313339393532.roa (hash: M0+dpqMVH/AhdXBusvMBEAeDeV1kbyWftufl+NAPJrA=) 3: BCDF6D8F5670257F852914E87D552983AA37A3A3.crl (hash: eRG6L787FubU8ivROxIV686rEDj2XRehXRw4nR+0NgA=) 4: 3130332e3134372e37362e302f32342d3234203d3e20313339393532.roa (hash: FeyX758B7dQJvzrWvtuO39CAQ6mrQfxDRXhFeX6TkfY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 01:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:14:01:77:41:bc:b6:96:fd:eb:9b:7b:13:f6:34:5f:27:56:e5:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCDF6D8F5670257F852914E87D552983AA37A3A3 Validity Not Before: May 30 01:55:52 2024 GMT Not After : Jun 2 09:23:52 2024 GMT Subject: CN=D59B6ADCF9F04B23235EA01E46178611B7AE5FC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:21:bb:b1:6d:6f:a9:61:34:6f:36:7c:43:fb: 10:d4:19:77:55:44:da:51:fc:ed:b3:77:ac:28:8a: 05:53:c2:52:58:e8:4e:4d:da:e4:7d:56:32:40:24: 17:60:fc:3e:dd:c4:ce:c3:df:cf:79:6f:80:78:c7: 3a:33:23:d0:87:96:d2:7a:4a:6e:f5:a9:5c:07:a7: 0b:34:e8:f2:64:71:f0:67:94:8f:5e:65:59:c8:ef: 79:64:71:4e:ee:03:81:d9:ae:24:a5:07:4e:df:cf: 2f:d5:03:6e:98:cc:84:c8:14:b5:16:67:6f:ad:72: 26:45:2a:9e:81:fb:15:4f:49:1e:b2:51:3a:dc:f3: 9f:18:8c:27:4e:47:ad:fc:d2:86:50:7b:f9:0c:2a: 8e:ba:9a:b7:d9:04:13:a9:c3:51:d3:ea:45:99:98: 2a:ef:5d:74:9d:3a:cb:ee:3a:af:a1:d7:a5:a1:34: 84:74:02:85:df:b8:d7:55:80:19:43:96:06:a3:21: d5:aa:d3:6c:bb:8c:22:81:be:ad:a9:e0:02:5f:c3: 06:50:59:76:9d:d7:56:e8:13:95:2a:84:c6:bd:ce: 07:e7:06:0c:9d:80:45:9d:ff:11:0c:53:22:0b:d0: f9:f7:a6:a9:1f:4f:e3:4e:d6:f9:47:24:58:37:eb: 73:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9B:6A:DC:F9:F0:4B:23:23:5E:A0:1E:46:17:86:11:B7:AE:5F:C9 X509v3 Authority Key Identifier: keyid:BC:DF:6D:8F:56:70:25:7F:85:29:14:E8:7D:55:29:83:AA:37:A3:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BCDF6D8F5670257F852914E87D552983AA37A3A3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/877b01cf-b1c9-450f-8551-4dcb4cbd4262/0/BCDF6D8F5670257F852914E87D552983AA37A3A3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:52:6f:3c:ee:c4:b2:ac:a4:44:f5:69:80:4c:56:1c:6a:ea: d3:13:fd:79:37:11:48:b7:ee:ba:90:58:8d:19:d8:6b:68:7d: 0a:33:5f:c8:f8:09:2b:6f:3c:46:b8:e9:9a:17:f6:03:e4:47: 13:94:d3:3f:f3:63:a5:27:b5:da:5d:a7:0b:f3:4c:3d:62:9b: bf:76:8e:d7:29:11:ea:38:94:6b:44:84:13:44:09:1e:00:d2: 8c:fc:a0:aa:55:f5:b8:2d:d8:d1:24:43:3d:a6:60:9e:22:b6: 69:81:8d:c7:c3:b2:96:a5:c3:1a:a5:74:6b:1d:34:c3:87:2d: a6:c0:6c:ff:4a:80:d5:a4:8c:58:dc:a5:9c:53:30:42:de:16: 81:c4:85:0a:c0:ed:cc:95:9a:40:4b:85:5b:06:0c:a6:36:cd: fa:80:ef:f2:74:9c:dc:7e:ec:c6:49:58:bf:ed:52:11:13:89: 99:d7:cd:78:53:ce:a2:37:60:18:c0:fc:e6:74:31:31:3e:d8: 23:82:0e:d0:bc:53:e1:7f:c2:75:8e:90:ba:81:d8:cc:38:23: 07:7e:ab:01:b2:80:c7:96:71:8b:fb:b2:22:49:8b:7b:af:35: e6:69:51:d8:9a:b6:8d:ab:10:a4:58:eb:e8:14:27:a9:4d:f7: 00:de:b6:7f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTxQBd0G8tpb965t7E/Y0XydW5RQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNB QTM3QTNBMzAeFw0yNDA1MzAwMTU1NTJaFw0yNDA2MDIwOTIzNTJaMDMxMTAvBgNV BAMTKEQ1OUI2QURDRjlGMDRCMjMyMzVFQTAxRTQ2MTc4NjExQjdBRTVGQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKIbuxbW+pYTRvNnxD+xDUGXdV RNpR/O2zd6woigVTwlJY6E5N2uR9VjJAJBdg/D7dxM7D3895b4B4xzozI9CHltJ6 Sm71qVwHpws06PJkcfBnlI9eZVnI73lkcU7uA4HZriSlB07fzy/VA26YzITIFLUW Z2+tciZFKp6B+xVPSR6yUTrc858YjCdOR6380oZQe/kMKo66mrfZBBOpw1HT6kWZ mCrvXXSdOsvuOq+h16WhNIR0AoXfuNdVgBlDlgajIdWq02y7jCKBvq2p4AJfwwZQ WXad11boE5UqhMa9zgfnBgydgEWd/xEMUyIL0Pn3pqkfT+NO1vlHJFg363MnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU1Ztq3PnwSyMjXqAeRheGEbeuX8kwHwYDVR0j BBgwFoAUvN9tj1ZwJX+FKRTofVUpg6o3o6MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NzdiMDFjZi1iMWM5LTQ1MGYtODU1MS00ZGNiNGNiZDQyNjIvMC9CQ0RGNkQ4RjU2 NzAyNTdGODUyOTE0RTg3RDU1Mjk4M0FBMzdBM0EzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5ODNBQTM3 QTNBMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODc3YjAxY2YtYjFjOS00NTBmLTg1 NTEtNGRjYjRjYmQ0MjYyLzAvQkNERjZEOEY1NjcwMjU3Rjg1MjkxNEU4N0Q1NTI5 ODNBQTM3QTNBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHNSbzzuxLKspET1aYBMVhxq6tMT/Xk3EUi3 7rqQWI0Z2GtofQozX8j4CStvPEa46ZoX9gPkRxOU0z/zY6UntdpdpwvzTD1im792 jtcpEeo4lGtEhBNECR4A0oz8oKpV9bgt2NEkQz2mYJ4itmmBjcfDspalwxqldGsd NMOHLabAbP9KgNWkjFjcpZxTMELeFoHEhQrA7cyVmkBLhVsGDKY2zfqA7/J0nNx+ 7MZJWL/tUhETiZnXzXhTzqI3YBjA/OZ0MTE+2COCDtC8U+F/wnWOkLqB2Mw4Iwd+ qwGygMeWcYv7siJJi3uvNeZpUdiato2rEKRY6+gUJ6lN9wDetn8= -----END CERTIFICATE-----Generated at Thu May 30 03:37:49 2024 by rpki-client on console-ams.rpki-client.org