$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json) Hash identifier: 4USe+CooKS7BqGUML+PfgKrnEuxl44pxPTuyQw1YqRo= Subject key identifier: 5C:85:5F:DC:78:6D:F4:4A:B4:3B:CE:4F:F8:62:5F:0E:A0:01:25:FC Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Certificate issuer: /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Certificate serial: 27D24A8F7EFDD7E61CE5FD62D6F086725435741A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft Manifest number: 6C Signing time: Wed 20 Nov 2024 15:52:25 +0000 Manifest this update: Wed 20 Nov 2024 15:47:25 +0000 Manifest next update: Sat 23 Nov 2024 22:18:25 +0000 Files and hashes: 1: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: GL8AMlujo4AkVOx8qStsJ350J7+imQl7NqV6QHZ7vWQ=) 2: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: Nt5L6Ke/AzV2vdShL18IRgKi9ciQugK32nMruwdFrHw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:d2:4a:8f:7e:fd:d7:e6:1c:e5:fd:62:d6:f0:86:72:54:35:74:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Validity Not Before: Nov 20 15:47:25 2024 GMT Not After : Nov 23 22:18:25 2024 GMT Subject: CN=5C855FDC786DF44AB43BCE4FF8625F0EA00125FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:49:bd:29:79:37:6d:c3:a9:65:a2:39:10:6c: 11:50:4a:ca:2c:c1:e0:03:a1:37:8f:9a:55:19:17: dc:8c:66:9c:0d:fe:b9:93:7e:f2:43:45:a7:07:89: 5a:0a:10:15:cb:db:01:87:b3:69:89:e6:ac:1e:af: d0:4b:b0:1c:cb:f1:9a:ca:9f:08:34:66:83:b1:ed: 45:1e:a6:78:d0:a0:bc:c9:d6:b6:82:51:38:b2:1a: 4a:4d:1f:06:2d:78:4e:95:20:2e:ac:7f:d7:44:a3: 3e:67:46:59:e6:a6:5c:48:a9:e2:c0:5c:9d:f6:cb: a5:0f:bc:11:68:bc:75:64:08:07:d9:4f:e9:eb:a2: d5:40:94:7b:75:77:21:51:af:9a:f3:a4:e7:dd:5a: 3c:7b:0c:03:79:0e:6d:f4:0c:42:7a:bd:0d:45:67: 51:fe:a5:8e:5d:72:3a:dd:05:1f:96:fb:76:a3:24: 44:1f:d3:0d:72:b7:40:f9:41:0f:76:e9:0a:c1:1c: 50:9b:fe:28:8a:84:14:8e:42:a0:cb:89:d8:8b:bd: 30:be:eb:41:33:a1:fc:75:d4:d3:35:f7:ec:af:05: 3d:69:8b:84:e7:c8:18:14:2e:bd:7a:7e:e7:96:c2: bf:e8:9b:b6:f4:fb:1d:a0:10:d1:d3:dc:70:a1:35: bd:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:85:5F:DC:78:6D:F4:4A:B4:3B:CE:4F:F8:62:5F:0E:A0:01:25:FC X509v3 Authority Key Identifier: keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:86:fb:e0:39:43:ee:27:f5:61:4f:16:79:68:42:cb:72:70: 50:84:f0:25:e2:5e:17:74:69:90:fd:43:0c:3e:c1:b2:df:26: 7d:70:4a:d7:8a:1d:0b:0e:1e:d6:47:16:3e:18:be:1c:eb:5c: 82:0f:23:b9:e2:ae:d2:fd:28:3d:41:82:72:45:90:f0:f4:80: e8:cc:e6:1c:48:07:5d:d2:64:65:cc:d6:c5:2d:27:ee:a6:7c: 1d:0c:ef:8d:65:43:f0:fe:75:a6:b1:30:e1:9d:d8:6d:15:89: 90:60:1b:25:38:09:f6:16:4d:ae:85:0e:83:c1:33:fc:15:8b: 6c:89:14:ae:87:53:e2:00:ab:7c:2f:12:b9:59:d4:b6:1d:6b: cc:42:c2:f0:93:b5:5f:12:47:72:c6:ac:d4:cd:c9:ee:47:8d: 0b:c2:a4:07:14:d3:db:93:ca:b5:e7:6e:d4:a3:ea:17:a6:4a: a8:91:ca:4e:3c:76:b8:8e:cf:01:ed:7c:b5:04:00:ad:9b:cb: 88:69:55:53:e6:41:64:dc:6c:34:25:bd:25:ff:db:9b:38:55: 92:20:40:a1:53:d3:f1:30:24:e6:25:1e:7f:ed:71:6d:52:1e: 05:ed:79:2f:81:47:74:d4:e7:42:2b:c0:f0:2e:99:4a:7e:1e: 52:7d:4e:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ9JKj3791+Yc5f1i1vCGclQ1dBowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1 RUEyRTYyMzAeFw0yNDExMjAxNTQ3MjVaFw0yNDExMjMyMjE4MjVaMDMxMTAvBgNV BAMTKDVDODU1RkRDNzg2REY0NEFCNDNCQ0U0RkY4NjI1RjBFQTAwMTI1RkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Sb0peTdtw6llojkQbBFQSsos weADoTePmlUZF9yMZpwN/rmTfvJDRacHiVoKEBXL2wGHs2mJ5qwer9BLsBzL8ZrK nwg0ZoOx7UUepnjQoLzJ1raCUTiyGkpNHwYteE6VIC6sf9dEoz5nRlnmplxIqeLA XJ32y6UPvBFovHVkCAfZT+nrotVAlHt1dyFRr5rzpOfdWjx7DAN5Dm30DEJ6vQ1F Z1H+pY5dcjrdBR+W+3ajJEQf0w1yt0D5QQ926QrBHFCb/iiKhBSOQqDLidiLvTC+ 60Ezofx11NM19+yvBT1pi4TnyBgULr16fueWwr/om7b0+x2gENHT3HChNb1xAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXIVf3Hht9Eq0O85P+GJfDqABJfwwHwYDVR0j BBgwFoAU/XxaRKPKr3zRQM/RxhYiul6i5iMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMC9GRDdDNUE0NEEz Q0FBRjdDRDE0MENGRDFDNjE2MjJCQTVFQTJFNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1RUEy RTYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTBmNzhiZDQtYzE5Yi00ZDQwLWFh NTQtZWQ4ZDdiYzc3MmNhLzAvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIy QkE1RUEyRTYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACyG++A5Q+4n9WFPFnloQstycFCE8CXiXhd0 aZD9Qww+wbLfJn1wSteKHQsOHtZHFj4YvhzrXIIPI7nirtL9KD1BgnJFkPD0gOjM 5hxIB13SZGXM1sUtJ+6mfB0M741lQ/D+daaxMOGd2G0ViZBgGyU4CfYWTa6FDoPB M/wVi2yJFK6HU+IAq3wvErlZ1LYda8xCwvCTtV8SR3LGrNTNye5HjQvCpAcU09uT yrXnbtSj6hemSqiRyk48driOzwHtfLUEAK2by4hpVVPmQWTcbDQlvSX/25s4VZIg QKFT0/EwJOYlHn/tcW1SHgXteS+BR3TU50IrwPAumUp+HlJ9Tsg= -----END CERTIFICATE-----Generated at Wed Nov 20 18:59:44 2024 by rpki-client on console-ams.rpki-client.org