$ rpki-client -vvf repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft File: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft (raw, json) Hash identifier: MqWryzCBcm6ljeFtuHz4AmCVr7xbXaijWlwiuuCv7UM= Subject key identifier: 91:52:E1:07:87:25:5B:FE:CE:05:31:15:9D:D9:EF:84:CC:82:90:33 Authority key identifier: 40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA Certificate issuer: /CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Certificate serial: 3DA00D1D4CB067EC3BA107DCD12D0AE58C4246BC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft Manifest number: 4F Signing time: Sat 23 Nov 2024 14:32:06 +0000 Manifest this update: Sat 23 Nov 2024 14:27:06 +0000 Manifest next update: Tue 26 Nov 2024 23:20:06 +0000 Files and hashes: 1: 40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl (hash: jpXQHq/r5RYIIwbwyykV/GFcEgo7cT98MQy0001kZnM=) 2: 3135372e36362e302e302f32332d3234203d3e20313430343737.roa (hash: y71ZhCBj0ZFKWRv/ArGsOF0ogDJDqOvjhhVCZLjfrqA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:a0:0d:1d:4c:b0:67:ec:3b:a1:07:dc:d1:2d:0a:e5:8c:42:46:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40949C7C9DD0D3F899681FF2EB53E49C8F852BAA Validity Not Before: Nov 23 14:27:06 2024 GMT Not After : Nov 26 23:20:06 2024 GMT Subject: CN=9152E10787255BFECE0531159DD9EF84CC829033 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:76:d5:57:f6:b6:4c:02:95:18:ca:bc:fa:85: e4:92:7a:23:99:b4:54:10:48:4b:89:98:84:74:a5: 02:b3:41:6b:ae:ab:7d:28:71:c8:46:34:b0:aa:f8: 1f:60:82:50:f9:51:5d:2b:b4:82:1d:f4:98:07:f8: 2d:4a:7c:1e:5a:c2:6d:1a:af:fc:f1:bd:70:56:38: 0c:c2:da:9b:d2:a0:12:af:84:84:1f:0e:b6:58:18: b5:2c:7a:f9:8e:8c:44:9a:15:79:42:76:d4:0f:a9: 30:e3:83:0b:72:74:af:42:89:bd:72:62:61:02:60: 21:8a:a5:75:1d:51:ed:03:6c:1e:98:b0:bd:6c:d3: 4c:b8:66:71:c5:e0:6e:29:38:0c:85:e7:26:ec:16: e0:d2:9c:b3:3e:ae:81:30:0b:34:7e:00:6d:45:11: 8a:e5:29:6a:1b:a0:c6:a6:49:a6:d5:d2:37:b2:44: c8:18:3a:c5:af:d3:61:f3:38:be:bc:ae:8b:36:4b: b4:6e:d9:cd:9a:3f:35:6a:23:9d:33:8d:6d:75:e4: 54:f6:19:5d:6a:2e:46:ec:76:0c:35:f9:b4:cf:ea: 52:15:f4:70:8e:e7:12:fe:9a:85:aa:62:44:e7:31: 11:bd:34:15:c7:d4:48:11:b0:58:50:a7:14:0a:90: db:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:52:E1:07:87:25:5B:FE:CE:05:31:15:9D:D9:EF:84:CC:82:90:33 X509v3 Authority Key Identifier: keyid:40:94:9C:7C:9D:D0:D3:F8:99:68:1F:F2:EB:53:E4:9C:8F:85:2B:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/89dae97f-1ad1-4b34-8fe9-1bc65b0908f3/0/40949C7C9DD0D3F899681FF2EB53E49C8F852BAA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:e3:74:57:65:3d:3d:fe:0e:9d:72:b5:e4:8d:12:3c:5b:e9: e0:e9:3e:11:5b:5d:41:74:b8:22:3a:25:4a:2d:d1:85:ca:d9: 58:29:a8:3d:82:fa:89:67:5a:9a:27:69:66:8e:64:3e:f0:94: cb:b1:b5:4c:1e:63:b5:f3:d6:66:7e:e8:d0:27:8c:b5:e4:10: 76:34:42:0a:f3:2a:7b:34:25:09:ec:fb:d3:55:f2:b7:70:bd: e7:19:04:50:af:82:ce:1e:76:e0:c9:35:4d:a1:3f:35:fb:af: 7f:ac:94:53:64:9a:5b:c5:a8:fe:ae:06:8f:3b:63:ad:fe:78: a5:a3:dc:3a:53:66:48:40:4c:8c:68:6f:14:ef:7d:16:6d:86: 57:12:17:8a:fc:82:80:8d:35:f5:19:50:d4:24:59:82:cc:9a: 7c:d7:88:6b:5d:99:8c:d2:19:7b:18:6d:47:27:20:ea:68:29: a0:1f:2e:c4:8b:6e:a8:26:62:59:51:b2:17:b6:69:f1:d9:4e: df:52:d0:72:ad:f3:16:e8:7f:5d:61:18:8a:7d:c6:a2:b7:51: 56:da:e3:f2:e3:19:e8:77:47:a8:1c:08:ba:48:98:ea:18:cb: 2b:09:b0:d7:5d:68:32:d0:e3:6e:d6:b6:02:b8:d2:d4:45:d6: 10:d7:ca:18 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPaANHUywZ+w7oQfc0S0K5YxCRrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4 Rjg1MkJBQTAeFw0yNDExMjMxNDI3MDZaFw0yNDExMjYyMzIwMDZaMDMxMTAvBgNV BAMTKDkxNTJFMTA3ODcyNTVCRkVDRTA1MzExNTlERDlFRjg0Q0M4MjkwMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDidtVX9rZMApUYyrz6heSSeiOZ tFQQSEuJmIR0pQKzQWuuq30occhGNLCq+B9gglD5UV0rtIId9JgH+C1KfB5awm0a r/zxvXBWOAzC2pvSoBKvhIQfDrZYGLUsevmOjESaFXlCdtQPqTDjgwtydK9Cib1y YmECYCGKpXUdUe0DbB6YsL1s00y4ZnHF4G4pOAyF5ybsFuDSnLM+roEwCzR+AG1F EYrlKWoboMamSabV0jeyRMgYOsWv02HzOL68ros2S7Ru2c2aPzVqI50zjW115FT2 GV1qLkbsdgw1+bTP6lIV9HCO5xL+moWqYkTnMRG9NBXH1EgRsFhQpxQKkNszAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkVLhB4clW/7OBTEVndnvhMyCkDMwHwYDVR0j BBgwFoAUQJScfJ3Q0/iZaB/y61PknI+FK6owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OWRhZTk3Zi0xYWQxLTRiMzQtOGZlOS0xYmM2NWIwOTA4ZjMvMC80MDk0OUM3QzlE RDBEM0Y4OTk2ODFGRjJFQjUzRTQ5QzhGODUyQkFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0OUM4Rjg1 MkJBQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODlkYWU5N2YtMWFkMS00YjM0LThm ZTktMWJjNjViMDkwOGYzLzAvNDA5NDlDN0M5REQwRDNGODk5NjgxRkYyRUI1M0U0 OUM4Rjg1MkJBQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGnjdFdlPT3+Dp1yteSNEjxb6eDpPhFbXUF0 uCI6JUot0YXK2VgpqD2C+olnWponaWaOZD7wlMuxtUweY7Xz1mZ+6NAnjLXkEHY0 QgrzKns0JQns+9NV8rdwvecZBFCvgs4eduDJNU2hPzX7r3+slFNkmlvFqP6uBo87 Y63+eKWj3DpTZkhATIxobxTvfRZthlcSF4r8goCNNfUZUNQkWYLMmnzXiGtdmYzS GXsYbUcnIOpoKaAfLsSLbqgmYllRshe2afHZTt9S0HKt8xbof11hGIp9xqK3UVba 4/LjGeh3R6gcCLpImOoYyysJsNddaDLQ427WtgK40tRF1hDXyhg= -----END CERTIFICATE-----Generated at Sat Nov 23 16:20:59 2024 by rpki-client on console-ams.rpki-client.org