$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft File: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft (raw, json) Hash identifier: R9jldEi7C7NiPoi5IP0Er8nmzzaFqZYgvds7lM3pFHU= Subject key identifier: CE:6A:45:8B:BB:59:E4:B8:88:AC:C3:6B:40:58:64:3C:14:63:68:46 Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 39FC905C819DF95E306ACE5011CAAD8F23CB2BB7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft Manifest number: 0430 Signing time: Fri 17 May 2024 09:11:52 +0000 Manifest this update: Fri 17 May 2024 09:06:52 +0000 Manifest next update: Mon 20 May 2024 20:37:52 +0000 Files and hashes: 1: 3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa (hash: meK9UPSwIRMuipjtbgcuzGV+cj84sTnXn/vqXnCE+eM=) 2: 3131392e3233352e31362e302f32302d3234203d3e203234353332.roa (hash: XcBjcZy0p8TxBZrS2TlS6e6MAgHjo+EAz20bGzRADcU=) 3: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl (hash: i6MDnSHvDoaQcN2CZP0UPS6gA0PLAXt9OvADCy3jIrk=) 4: 34332e3232392e3230342e302f32322d3234203d3e203234353332.roa (hash: EE/0v4WfFcBEGSUNLrjNAiGzdpFIqVIrqfTwOoiNBAE=) 5: 32372e3131312e33342e302f32342d3234203d3e203538343737.roa (hash: Pa4d5DRT+Z2qzEntNYDFq6d4yDn9TS5byEHJUUm5uYc=) 6: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (hash: JyDjX/EBqIVGtmzdCihVWXBFxFGBLzAjkX6WYDsSnlU=) 7: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (hash: kqAp6pv1eHKNb8P40keUlm1IVxrErqUL8wb5wmptx+E=) 8: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (hash: +3guWGbL0kTWZxMoWABBSF3mVK/ffFvwFajJmSYEEcA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 14:23:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:fc:90:5c:81:9d:f9:5e:30:6a:ce:50:11:ca:ad:8f:23:cb:2b:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: May 17 09:06:52 2024 GMT Not After : May 20 20:37:52 2024 GMT Subject: CN=CE6A458BBB59E4B888ACC36B4058643C14636846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0d:f1:f8:8b:97:b4:e2:79:fe:9c:4f:fb:46: ef:22:21:71:74:cf:5c:90:26:78:8b:65:df:9a:16: 22:a4:e5:46:2d:fc:60:b0:e3:db:2e:c6:b1:a2:89: 1b:ab:f6:6c:8b:9a:c2:df:f0:07:3c:37:92:5f:82: 01:f4:0b:8c:17:75:ef:e4:5f:34:50:ba:f6:0c:43: e6:63:11:49:a3:7e:5b:6a:1c:61:5d:76:c7:64:6f: c9:e5:b0:05:d7:fc:55:79:77:67:e9:d4:6d:3f:0e: 6d:d2:5c:47:1c:29:af:a3:ab:e9:67:3e:07:49:3d: 4d:69:55:ec:fa:55:4d:50:cb:94:0e:88:c4:86:98: 68:ce:40:7b:46:df:65:17:ac:4e:9d:5e:eb:cc:71: 6b:fe:44:c2:f1:49:b9:32:3a:e2:89:09:b9:de:7c: cd:4b:a1:54:46:23:17:f5:e4:b9:a6:6a:b5:0b:b6: 14:4a:a1:84:26:59:e1:b8:7d:3f:39:75:94:8d:69: 35:32:56:da:72:75:70:ab:d2:69:3e:d7:a9:0c:a9: 37:b2:dd:db:c7:92:94:69:2b:6f:66:13:a8:b8:7e: 5d:a8:94:dc:d3:7e:e9:b8:85:f3:8a:6b:18:c5:75: 04:96:a2:ad:5d:ba:ca:6c:dd:47:7e:ed:48:cd:45: ab:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6A:45:8B:BB:59:E4:B8:88:AC:C3:6B:40:58:64:3C:14:63:68:46 X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:45:df:7d:9f:b1:9b:a5:f8:0a:70:c0:d8:d1:45:07:ca:e1: 9b:30:5f:e4:47:75:b0:53:2e:3a:1c:e1:e2:72:dd:f3:c2:13: 33:b2:09:26:6a:92:3b:4c:e2:e0:d2:d0:80:20:09:98:c8:77: ce:f9:be:a6:c0:6e:c8:56:3c:fa:6b:42:01:e8:9d:06:a7:00: e8:f2:9c:b0:f8:9f:f7:71:ef:0a:6c:5f:5a:64:8d:4e:94:e5: 6c:8d:24:ee:ec:fb:54:a8:d4:db:2e:08:3c:30:74:35:87:34: c8:d4:9e:67:d0:b1:de:3e:cc:5a:ef:26:d9:c6:e5:83:83:dc: 93:31:f2:20:ea:ef:65:16:76:86:c2:c2:62:0b:fa:fe:ce:e7: fb:b6:1e:14:be:f4:7c:d2:ab:ab:2d:da:52:57:1a:1f:7c:3f: 8d:0f:f4:ad:01:0b:51:85:33:ec:5a:a9:c8:9d:95:5f:82:ae: 6a:a2:f7:4e:68:57:3b:e1:8f:28:1e:a8:39:b7:7e:13:a7:91: e9:dc:37:37:26:4c:a0:67:49:9b:d8:4f:01:84:3d:1b:55:50: b8:68:ec:52:d9:14:00:50:70:65:e4:b7:76:75:a6:e9:44:ad: 03:2c:df:38:7c:10:b2:a3:f4:61:6c:6d:c0:02:55:91:cd:08: 49:d4:c7:8e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOfyQXIGd+V4was5QEcqtjyPLK7cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNDA1MTcwOTA2NTJaFw0yNDA1MjAyMDM3NTJaMDMxMTAvBgNV BAMTKENFNkE0NThCQkI1OUU0Qjg4OEFDQzM2QjQwNTg2NDNDMTQ2MzY4NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQDfH4i5e04nn+nE/7Ru8iIXF0 z1yQJniLZd+aFiKk5UYt/GCw49suxrGiiRur9myLmsLf8Ac8N5JfggH0C4wXde/k XzRQuvYMQ+ZjEUmjfltqHGFddsdkb8nlsAXX/FV5d2fp1G0/Dm3SXEccKa+jq+ln PgdJPU1pVez6VU1Qy5QOiMSGmGjOQHtG32UXrE6dXuvMcWv+RMLxSbkyOuKJCbne fM1LoVRGIxf15LmmarULthRKoYQmWeG4fT85dZSNaTUyVtpydXCr0mk+16kMqTey 3dvHkpRpK29mE6i4fl2olNzTfum4hfOKaxjFdQSWoq1dusps3Ud+7UjNRasBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzmpFi7tZ5LiIrMNrQFhkPBRjaEYwHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTQzZTJlNjctYTE3MS00ZDllLWE5 MzUtNDA2OTAyYjFlMTNiLzAvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVG MEFFQ0M3RkU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAxF332fsZul+ApwwNjRRQfK4ZswX+RHdbBT Ljoc4eJy3fPCEzOyCSZqkjtM4uDS0IAgCZjId875vqbAbshWPPprQgHonQanAOjy nLD4n/dx7wpsX1pkjU6U5WyNJO7s+1So1NsuCDwwdDWHNMjUnmfQsd4+zFrvJtnG 5YOD3JMx8iDq72UWdobCwmIL+v7O5/u2HhS+9HzSq6st2lJXGh98P40P9K0BC1GF M+xaqcidlV+Crmqi905oVzvhjygeqDm3fhOnkencNzcmTKBnSZvYTwGEPRtVULho 7FLZFABQcGXkt3Z1pulErQMs3zh8ELKj9GFsbcACVZHNCEnUx44= -----END CERTIFICATE-----Generated at Fri May 17 10:09:22 2024 by rpki-client on console-fra.rpki-client.org