$ rpki-client -vvf repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft File: AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft (raw, json) Hash identifier: fir8w/42kpWEPTWUs4TU+P+rUILs3Z7z9sGQG960Xms= Subject key identifier: D7:88:3C:8A:CA:E4:39:AE:BE:50:66:CF:7B:93:55:64:4C:EC:8A:47 Authority key identifier: AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 Certificate issuer: /CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Certificate serial: 09473D7A36EE3E14DE1D8C0039D7F9EECACAA76F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject info access: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft Manifest number: 30 Signing time: Mon 25 Nov 2024 08:11:49 +0000 Manifest this update: Mon 25 Nov 2024 08:06:49 +0000 Manifest next update: Thu 28 Nov 2024 11:53:49 +0000 Files and hashes: 1: 3136302e32352e3135322e302f32342d3234203d3e20313533313031.roa (hash: cxXcs5+F77Lg7/Ojwbw2WUqjYrzsnoyA2M5AF3WeU8k=) 2: AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl (hash: RvpdkZiJ9fDSn+UWJqrC+likOscf9yU1KEzB5PviaMY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 08:43:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:47:3d:7a:36:ee:3e:14:de:1d:8c:00:39:d7:f9:ee:ca:ca:a7:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA3D7F503C99C0AB630D54C528383C3402D6AF21 Validity Not Before: Nov 25 08:06:49 2024 GMT Not After : Nov 28 11:53:49 2024 GMT Subject: CN=D7883C8ACAE439AEBE5066CF7B9355644CEC8A47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c2:27:3b:d7:35:5a:f1:c0:12:78:cc:b9:32: fc:99:10:77:77:84:f0:51:36:e6:b6:a7:a3:6d:95: cd:1c:35:57:35:28:2f:8a:26:4c:91:1d:b6:f6:b6: ad:71:8e:d4:14:80:bb:b6:a8:8c:38:cb:c9:54:3e: 5c:4f:5b:71:2e:20:dd:69:f0:1d:12:e6:e3:f7:01: 0a:c3:3d:1e:ae:59:f5:e0:1a:48:f1:df:2e:f2:6e: ca:5b:cd:af:62:98:0a:cc:b8:77:15:a3:11:df:17: 2d:49:00:46:bc:a2:56:9f:89:e7:01:ff:82:de:b6: 0c:d2:17:51:d6:09:3e:5f:fa:60:b7:df:f2:dc:1f: 4d:14:5d:6f:a0:60:51:2b:8b:41:0f:cd:95:a3:b7: db:6b:4c:33:e0:90:81:98:4e:7c:28:08:23:36:60: 68:7f:2e:5e:b0:6b:73:fc:b7:9b:6d:76:1a:df:69: 39:d7:ad:d7:4e:06:75:fc:2a:ca:5c:5a:c8:03:12: 9e:a4:f7:31:87:62:91:13:74:dd:1c:4d:1d:99:04: d6:0c:6a:bf:c0:1c:79:40:6d:10:65:f9:d3:2b:1e: 59:99:71:07:fd:ce:58:1c:ee:90:f4:f0:65:68:f4: 02:9b:83:4d:e0:1a:29:76:60:a4:90:a9:e7:e3:13: bd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:88:3C:8A:CA:E4:39:AE:BE:50:66:CF:7B:93:55:64:4C:EC:8A:47 X509v3 Authority Key Identifier: keyid:AA:3D:7F:50:3C:99:C0:AB:63:0D:54:C5:28:38:3C:34:02:D6:AF:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA3D7F503C99C0AB630D54C528383C3402D6AF21.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/96cd0325-31af-4ffe-8beb-e77997e6c3e1/0/AA3D7F503C99C0AB630D54C528383C3402D6AF21.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:60:04:d4:b6:af:2d:44:5c:23:9e:c6:49:f9:bc:b6:8b:a9: 5d:ff:b8:7d:28:2b:96:ae:a0:02:04:ea:3c:1f:c3:4b:cd:2d: 1f:64:96:27:0c:68:e1:40:74:f4:6e:8e:7f:b3:61:77:4c:7e: 7d:1a:22:2d:d1:29:0e:f3:64:55:a5:c1:3b:3c:81:6a:bf:89: eb:5b:c3:de:de:cd:05:29:bc:1c:b6:28:5e:af:60:c2:09:43: 7a:15:2b:38:8f:02:7a:fd:e9:41:7f:a0:28:d5:f5:ff:30:14: 98:e5:8d:67:41:e1:b2:97:b6:76:cb:e3:7d:99:db:c7:60:33: 5f:08:c9:b8:a9:f0:70:51:c8:8e:80:2a:d1:31:e6:60:50:c0: b3:e2:7d:67:76:25:b3:9a:c3:1f:33:81:83:9a:39:bc:fb:82: e1:1b:cb:7c:75:d2:b4:e4:49:3b:51:21:43:50:bd:38:b7:f6: a9:05:95:b4:7d:12:70:da:1c:4c:f5:6e:27:35:d3:a7:8f:43: 0b:ea:00:50:9f:ed:41:80:41:e7:f9:04:b7:61:9d:a7:ab:01: 0d:67:50:df:51:9a:06:b7:af:df:b9:15:ec:ce:c7:2c:54:3c: 8e:c4:30:83:79:e8:f6:ed:27:29:da:3a:5c:e6:d6:c6:c0:12: 0f:49:91:c6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCUc9ejbuPhTeHYwAOdf57srKp28wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQw MkQ2QUYyMTAeFw0yNDExMjUwODA2NDlaFw0yNDExMjgxMTUzNDlaMDMxMTAvBgNV BAMTKEQ3ODgzQzhBQ0FFNDM5QUVCRTUwNjZDRjdCOTM1NTY0NENFQzhBNDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2wic71zVa8cASeMy5MvyZEHd3 hPBRNua2p6Ntlc0cNVc1KC+KJkyRHbb2tq1xjtQUgLu2qIw4y8lUPlxPW3EuIN1p 8B0S5uP3AQrDPR6uWfXgGkjx3y7ybspbza9imArMuHcVoxHfFy1JAEa8olafiecB /4LetgzSF1HWCT5f+mC33/LcH00UXW+gYFEri0EPzZWjt9trTDPgkIGYTnwoCCM2 YGh/Ll6wa3P8t5ttdhrfaTnXrddOBnX8KspcWsgDEp6k9zGHYpETdN0cTR2ZBNYM ar/AHHlAbRBl+dMrHlmZcQf9zlgc7pD08GVo9AKbg03gGil2YKSQqefjE70BAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU14g8isrkOa6+UGbPe5NVZEzsikcwHwYDVR0j BBgwFoAUqj1/UDyZwKtjDVTFKDg8NALWryEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NmNkMDMyNS0zMWFmLTRmZmUtOGJlYi1lNzc5OTdlNmMzZTEvMC9BQTNEN0Y1MDND OTlDMEFCNjMwRDU0QzUyODM4M0MzNDAyRDZBRjIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODNDMzQwMkQ2 QUYyMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTZjZDAzMjUtMzFhZi00ZmZlLThi ZWItZTc3OTk3ZTZjM2UxLzAvQUEzRDdGNTAzQzk5QzBBQjYzMEQ1NEM1MjgzODND MzQwMkQ2QUYyMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABRgBNS2ry1EXCOexkn5vLaLqV3/uH0oK5au oAIE6jwfw0vNLR9klicMaOFAdPRujn+zYXdMfn0aIi3RKQ7zZFWlwTs8gWq/ietb w97ezQUpvBy2KF6vYMIJQ3oVKziPAnr96UF/oCjV9f8wFJjljWdB4bKXtnbL432Z 28dgM18Iybip8HBRyI6AKtEx5mBQwLPifWd2JbOawx8zgYOaObz7guEby3x10rTk STtRIUNQvTi39qkFlbR9EnDaHEz1bic106ePQwvqAFCf7UGAQef5BLdhnaerAQ1n UN9Rmga3r9+5FezOxyxUPI7EMIN56PbtJynaOlzm1sbAEg9JkcY= -----END CERTIFICATE-----Generated at Mon Nov 25 09:01:50 2024 by rpki-client on console-ams.rpki-client.org