$ rpki-client -vvf repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft File: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft (raw, json) Hash identifier: SwJ6Xna/Uc7MFrQfpApZRWnyk44AbyN0wrNkr3Tavl4= Subject key identifier: 5A:72:F0:80:00:FA:6B:D1:32:E5:07:1A:5F:8A:C6:93:A5:76:0B:C1 Authority key identifier: C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 Certificate issuer: /CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Certificate serial: 15899994D360668FAB74DAD78F4760E99645D90B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft Manifest number: 0281 Signing time: Thu 30 May 2024 16:12:05 +0000 Manifest this update: Thu 30 May 2024 16:07:05 +0000 Manifest next update: Sun 02 Jun 2024 22:10:05 +0000 Files and hashes: 1: C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl (hash: 39J1Q8vf+WnlVionOmZvEyQlJCyuCsAPHmD56jwiBAg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 22:10:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:89:99:94:d3:60:66:8f:ab:74:da:d7:8f:47:60:e9:96:45:d9:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4 Validity Not Before: May 30 16:07:05 2024 GMT Not After : Jun 2 22:10:05 2024 GMT Subject: CN=5A72F08000FA6BD132E5071A5F8AC693A5760BC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4d:3e:cb:20:e2:f7:b1:c1:37:25:8e:c2:cb: 32:d1:41:46:bd:3d:ba:25:63:6f:54:d1:3d:80:64: 46:10:95:d1:23:18:4a:0d:7c:8c:8a:0f:f7:ce:21: 0a:ef:8b:e9:5b:34:ff:04:a5:64:c2:03:53:21:4f: 4f:71:89:fb:05:09:06:d8:5b:58:30:ff:cc:70:e5: e8:40:17:36:d2:73:e5:fb:d3:b2:58:ea:7e:8e:70: 80:b4:0e:d2:34:ea:81:c7:26:6f:27:3b:92:58:4f: 11:82:11:be:43:4f:14:9b:50:93:75:44:28:52:1c: 3d:c4:b4:8c:8c:ed:ba:c1:7b:6a:db:41:1e:1c:c3: c9:cc:0a:81:c2:66:c0:a6:05:86:73:55:50:47:99: 44:d3:18:b4:b5:84:eb:37:84:b4:5d:3b:17:da:da: a4:02:58:f5:9c:ca:8e:44:71:90:d6:f8:bb:3a:c9: 68:83:a2:53:38:8c:fb:57:6f:93:e9:82:f1:17:c3: 94:4f:3a:f2:5c:59:c1:52:08:55:97:7c:93:bb:25: bb:ca:d8:29:1b:61:9d:42:8e:8d:89:7b:c6:43:c5: 1b:f4:e3:eb:2b:1b:db:d2:52:f5:fb:10:fd:ee:ad: d7:8a:28:5a:7b:f7:f2:ff:b6:00:58:17:dd:0d:c5: 34:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:72:F0:80:00:FA:6B:D1:32:E5:07:1A:5F:8A:C6:93:A5:76:0B:C1 X509v3 Authority Key Identifier: keyid:C2:0D:D3:7A:F0:EF:3C:A0:55:DF:DF:8F:3F:5D:18:F0:81:81:96:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9ebe7ad8-e15c-4014-bfb3-be69b7d5de88/0/C20DD37AF0EF3CA055DFDF8F3F5D18F0818196F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:d6:07:14:2d:dc:2e:6f:34:09:fb:90:1d:03:e0:44:03:9e: 29:5d:ad:d1:8d:bb:de:b4:2c:78:b2:38:f6:a5:f1:fd:ad:d4: 43:af:09:10:7e:ce:72:8c:22:0a:34:9c:96:c7:b6:76:d3:8e: 94:05:15:e6:db:15:1f:d5:01:27:c6:7a:2c:a0:d9:e5:8f:d6: c4:97:33:36:db:4d:76:f4:ad:cc:13:6a:68:4c:f6:82:04:ae: 8a:3b:42:8b:04:04:19:1d:57:18:0d:d2:b6:2c:62:9e:89:07: f4:5a:30:a3:ae:59:a2:be:70:ee:77:bc:09:0f:d4:cf:15:01: d7:92:98:aa:c2:3c:e6:72:0f:4e:a2:66:a1:c6:3c:44:cd:81: a7:60:9f:47:5c:2e:ef:48:4f:fd:c3:66:42:66:e9:f6:6f:06: 8d:b4:a6:02:a4:77:33:1a:bd:cd:b3:5a:df:a5:25:10:de:db: c7:51:63:94:73:29:ca:e1:63:3f:a2:8c:a1:60:b0:de:9b:d1: f7:92:38:90:07:6d:5a:5c:4a:e8:8f:66:b7:81:31:b0:d9:8c: ea:a7:2f:0d:1c:a5:fc:16:d1:32:9e:76:82:37:42:73:bc:5e: 8e:d5:00:23:8f:80:8e:59:5f:23:74:6c:b0:cd:7e:68:ba:19: 88:81:05:05 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFYmZlNNgZo+rdNrXj0dg6ZZF2QswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4 MTgxOTZGNDAeFw0yNDA1MzAxNjA3MDVaFw0yNDA2MDIyMjEwMDVaMDMxMTAvBgNV BAMTKDVBNzJGMDgwMDBGQTZCRDEzMkU1MDcxQTVGOEFDNjkzQTU3NjBCQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgTT7LIOL3scE3JY7CyzLRQUa9 PbolY29U0T2AZEYQldEjGEoNfIyKD/fOIQrvi+lbNP8EpWTCA1MhT09xifsFCQbY W1gw/8xw5ehAFzbSc+X707JY6n6OcIC0DtI06oHHJm8nO5JYTxGCEb5DTxSbUJN1 RChSHD3EtIyM7brBe2rbQR4cw8nMCoHCZsCmBYZzVVBHmUTTGLS1hOs3hLRdOxfa 2qQCWPWcyo5EcZDW+Ls6yWiDolM4jPtXb5PpgvEXw5RPOvJcWcFSCFWXfJO7JbvK 2CkbYZ1Cjo2Je8ZDxRv04+srG9vSUvX7EP3urdeKKFp79/L/tgBYF90NxTQhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWnLwgAD6a9Ey5QcaX4rGk6V2C8EwHwYDVR0j BBgwFoAUwg3TevDvPKBV39+PP10Y8IGBlvQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZWJlN2FkOC1lMTVjLTQwMTQtYmZiMy1iZTY5YjdkNWRlODgvMC9DMjBERDM3QUYw RUYzQ0EwNTVERkRGOEYzRjVEMThGMDgxODE5NkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4RjA4MTgx OTZGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWViZTdhZDgtZTE1Yy00MDE0LWJm YjMtYmU2OWI3ZDVkZTg4LzAvQzIwREQzN0FGMEVGM0NBMDU1REZERjhGM0Y1RDE4 RjA4MTgxOTZGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHLWBxQt3C5vNAn7kB0D4EQDnildrdGNu960 LHiyOPal8f2t1EOvCRB+znKMIgo0nJbHtnbTjpQFFebbFR/VASfGeiyg2eWP1sSX MzbbTXb0rcwTamhM9oIEroo7QosEBBkdVxgN0rYsYp6JB/RaMKOuWaK+cO53vAkP 1M8VAdeSmKrCPOZyD06iZqHGPETNgadgn0dcLu9IT/3DZkJm6fZvBo20pgKkdzMa vc2zWt+lJRDe28dRY5RzKcrhYz+ijKFgsN6b0feSOJAHbVpcSuiPZreBMbDZjOqn Lw0cpfwW0TKedoI3QnO8Xo7VACOPgI5ZXyN0bLDNfmi6GYiBBQU= -----END CERTIFICATE-----Generated at Thu May 30 18:32:10 2024 by rpki-client on console-fra.rpki-client.org