$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json) Hash identifier: isLlzngwDmcoAyeqgtpys/d6odYq7LukVtvNLa3XJq0= Subject key identifier: 6F:D3:1B:5B:40:2D:74:1F:94:69:C6:42:26:29:F9:03:AA:8F:CF:09 Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Certificate issuer: /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Certificate serial: 7BF006D37CFF08F19DD3AF0040B17A69C22C5E77 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft Manifest number: 25 Signing time: Sat 15 Jun 2024 17:22:01 +0000 Manifest this update: Sat 15 Jun 2024 17:17:01 +0000 Manifest next update: Wed 19 Jun 2024 03:11:01 +0000 Files and hashes: 1: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: XZ4EAQdNgfMeLFR1q40zi5jjbFJeT7Xwbr/vddSig54=) 2: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: GL8AMlujo4AkVOx8qStsJ350J7+imQl7NqV6QHZ7vWQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Jun 2024 16:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:f0:06:d3:7c:ff:08:f1:9d:d3:af:00:40:b1:7a:69:c2:2c:5e:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Validity Not Before: Jun 15 17:17:01 2024 GMT Not After : Jun 19 03:11:01 2024 GMT Subject: CN=6FD31B5B402D741F9469C6422629F903AA8FCF09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:52:53:d5:48:95:d4:e0:73:20:ec:06:51:41: 92:29:8b:f9:db:89:41:03:f7:68:24:67:60:5a:d5: 94:fb:98:a3:37:81:d5:70:41:eb:81:56:fd:f6:e2: b9:7d:90:e5:2f:24:28:a5:b5:a2:f8:ea:00:df:97: f8:f0:34:0f:75:e5:d0:43:b4:6f:26:7f:0a:6f:cf: f5:64:84:24:c0:24:0f:6f:cd:5f:a8:62:ac:eb:4a: 6e:4c:3b:64:34:2f:75:ed:58:5c:76:77:61:79:06: 84:af:b8:0e:41:f0:65:a1:3c:6f:61:56:82:ca:99: f8:42:9c:77:17:ff:36:2c:d5:16:fe:a2:79:97:75: 6f:2a:51:f8:57:a3:47:8f:74:5f:ac:43:9b:bd:35: 4f:57:22:2e:8e:99:92:7d:92:78:76:b7:c7:c9:51: 44:e0:d8:e7:eb:43:b7:f2:10:4d:8a:29:d4:28:96: d5:54:48:9e:21:96:a4:fa:b8:8a:f8:e8:19:f2:7a: 24:01:f1:68:16:d3:2f:12:cd:fa:cd:00:6d:6d:4e: 64:ca:4c:4a:e5:c6:44:ac:2d:71:1e:13:50:a4:e3: d6:e4:c3:d8:0d:2f:54:0f:68:2e:fe:69:c0:19:75: 3c:93:ca:b3:64:15:65:e1:f5:c8:bc:e2:fb:9f:fe: 4e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D3:1B:5B:40:2D:74:1F:94:69:C6:42:26:29:F9:03:AA:8F:CF:09 X509v3 Authority Key Identifier: keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:1f:bf:4e:7c:87:f6:9c:32:02:97:c8:31:e3:86:dd:af:25: fa:05:38:0f:e4:5f:bf:22:c4:88:22:89:16:5a:9c:c5:42:c6: 06:20:18:5d:9a:d5:56:0c:2e:5b:27:e5:80:a2:e8:78:eb:2e: 88:19:11:fe:02:d2:b3:86:1b:cd:c9:b0:9c:40:ac:86:aa:f8: 68:9b:03:e9:74:19:f3:40:d4:57:a5:8d:2d:3c:4e:d1:34:5d: 07:5a:51:26:8b:b8:91:5f:92:64:64:48:a2:dd:0e:f1:99:57: 16:15:be:6c:bf:3f:50:39:fe:3e:75:9a:c2:f6:ee:a7:c8:6e: 0f:0a:43:5d:62:c3:97:d5:3e:d8:61:6f:7b:72:61:42:01:a5: ba:b2:52:cf:ec:f3:bd:19:97:00:39:4a:74:bc:1e:35:42:96: 0f:94:5d:01:9d:ea:5b:64:44:a1:10:64:c0:fc:9f:5b:c8:e7: cc:99:a2:24:2e:be:e6:dc:16:17:4d:7d:aa:cb:dc:1b:fa:d9: cf:70:16:6c:44:d6:b6:92:61:87:e6:7f:48:33:e5:0f:6b:71: 40:c8:4e:02:d0:36:4a:28:f6:50:d7:51:f3:83:52:95:98:b4: d5:7b:bf:c5:bb:9f:c4:7f:43:2b:ee:2f:ca:c1:87:0d:53:d6: a6:00:6c:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUe/AG03z/CPGd068AQLF6acIsXncwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1 RUEyRTYyMzAeFw0yNDA2MTUxNzE3MDFaFw0yNDA2MTkwMzExMDFaMDMxMTAvBgNV BAMTKDZGRDMxQjVCNDAyRDc0MUY5NDY5QzY0MjI2MjlGOTAzQUE4RkNGMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNUlPVSJXU4HMg7AZRQZIpi/nb iUED92gkZ2Ba1ZT7mKM3gdVwQeuBVv324rl9kOUvJCiltaL46gDfl/jwNA915dBD tG8mfwpvz/VkhCTAJA9vzV+oYqzrSm5MO2Q0L3XtWFx2d2F5BoSvuA5B8GWhPG9h VoLKmfhCnHcX/zYs1Rb+onmXdW8qUfhXo0ePdF+sQ5u9NU9XIi6OmZJ9knh2t8fJ UUTg2OfrQ7fyEE2KKdQoltVUSJ4hlqT6uIr46BnyeiQB8WgW0y8SzfrNAG1tTmTK TErlxkSsLXEeE1Ck49bkw9gNL1QPaC7+acAZdTyTyrNkFWXh9ci84vuf/k4dAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUb9MbW0AtdB+UacZCJin5A6qPzwkwHwYDVR0j BBgwFoAU/XxaRKPKr3zRQM/RxhYiul6i5iMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMC9GRDdDNUE0NEEz Q0FBRjdDRDE0MENGRDFDNjE2MjJCQTVFQTJFNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1RUEy RTYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTBmNzhiZDQtYzE5Yi00ZDQwLWFh NTQtZWQ4ZDdiYzc3MmNhLzAvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIy QkE1RUEyRTYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIgfv058h/acMgKXyDHjht2vJfoFOA/kX78i xIgiiRZanMVCxgYgGF2a1VYMLlsn5YCi6HjrLogZEf4C0rOGG83JsJxArIaq+Gib A+l0GfNA1FeljS08TtE0XQdaUSaLuJFfkmRkSKLdDvGZVxYVvmy/P1A5/j51msL2 7qfIbg8KQ11iw5fVPthhb3tyYUIBpbqyUs/s870ZlwA5SnS8HjVClg+UXQGd6ltk RKEQZMD8n1vI58yZoiQuvubcFhdNfarL3Bv62c9wFmxE1raSYYfmf0gz5Q9rcUDI TgLQNkoo9lDXUfODUpWYtNV7v8W7n8R/QyvuL8rBhw1T1qYAbCk= -----END CERTIFICATE-----Generated at Sat Jun 15 18:19:20 2024 by rpki-client on console-fra.rpki-client.org