$ rpki-client -vvf repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft File: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft (raw, json) Hash identifier: wM6nr+RiBZ74mGBmRgypZAegAmrQ4TXhs4MBJUHLhe4= Subject key identifier: 74:20:BF:1F:DE:1F:F2:89:BC:39:07:B8:1E:1E:58:6C:F8:36:16:D2 Authority key identifier: FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 Certificate issuer: /CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Certificate serial: 37EEAD6356F6A305A1D6B96BF08BD7FAE20BE806 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft Manifest number: 29 Signing time: Tue 25 Jun 2024 01:42:05 +0000 Manifest this update: Tue 25 Jun 2024 01:37:05 +0000 Manifest next update: Fri 28 Jun 2024 03:31:05 +0000 Files and hashes: 1: 3135372e32302e3132362e302f32332d3234203d3e20313532343130.roa (hash: GL8AMlujo4AkVOx8qStsJ350J7+imQl7NqV6QHZ7vWQ=) 2: FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl (hash: EtCKDhimPTyEK0A8v3PTLSI0zUnDpWm6Aynbsp+Qipo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Jun 2024 17:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:ee:ad:63:56:f6:a3:05:a1:d6:b9:6b:f0:8b:d7:fa:e2:0b:e8:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623 Validity Not Before: Jun 25 01:37:05 2024 GMT Not After : Jun 28 03:31:05 2024 GMT Subject: CN=7420BF1FDE1FF289BC3907B81E1E586CF83616D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b8:2b:c7:b6:34:48:c3:38:b1:b9:08:ac:74: 98:f1:85:8d:74:5e:7d:24:dd:a3:e0:3a:98:c5:f5: aa:49:16:51:90:80:e4:55:d3:06:8b:fe:00:fc:e1: 70:3c:3b:47:e0:d3:d7:fb:eb:c4:40:01:81:ea:c8: db:9b:03:cd:3f:fc:a1:27:62:11:1f:fa:68:d5:e0: df:99:de:68:b5:03:34:89:86:89:c4:6e:0c:56:ac: f9:76:63:82:cc:c3:f2:bb:d7:a0:a9:64:39:3a:b2: a4:dd:72:ec:14:8c:ff:69:35:71:3d:ef:81:57:d8: e4:8c:6e:b4:64:db:46:cf:e2:e0:45:51:e2:f5:ea: ad:97:17:70:41:1c:47:7f:d8:2d:ed:ae:69:c3:a9: 5c:e3:74:44:f3:f7:1c:32:dc:25:16:46:f6:bf:ec: 7c:71:64:0e:d2:4b:c6:c4:d1:f1:57:22:4c:0d:d0: a4:75:ac:f5:0d:0c:f0:11:5a:0c:0e:c3:68:99:68: 50:af:f1:be:f5:da:fb:cb:e3:b8:e3:01:c7:cd:bc: 49:6c:24:84:1f:6d:f0:bd:4b:62:81:1d:1b:e0:1f: cb:0b:c2:25:19:34:14:1f:f1:a7:d9:2c:c1:13:1d: ba:e3:6a:13:49:1c:63:4c:93:9e:35:a3:41:70:64: a4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:20:BF:1F:DE:1F:F2:89:BC:39:07:B8:1E:1E:58:6C:F8:36:16:D2 X509v3 Authority Key Identifier: keyid:FD:7C:5A:44:A3:CA:AF:7C:D1:40:CF:D1:C6:16:22:BA:5E:A2:E6:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a0f78bd4-c19b-4d40-aa54-ed8d7bc772ca/0/FD7C5A44A3CAAF7CD140CFD1C61622BA5EA2E623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:9b:d0:b5:bd:69:fb:38:5b:ce:d9:d8:9e:4b:22:c7:c3:89: 45:77:64:5f:1d:83:b2:78:ba:db:e7:74:0d:e9:72:6d:23:8e: 70:78:f2:c8:aa:0a:97:68:e7:f3:66:e8:06:73:04:94:7b:bf: a9:0e:3a:9b:7e:bb:59:5c:b3:6f:f0:e0:c3:b4:87:66:b4:14: fb:0d:bf:3c:0a:72:f3:a9:fc:0f:65:ca:e1:fe:f8:c1:f4:07: 18:6f:e1:1e:20:cc:a4:67:18:33:d5:7f:52:e8:dc:8e:75:20: 01:fa:02:86:9a:82:97:8b:98:e5:0f:6f:6f:b8:0b:48:01:33: d3:60:d4:6f:a3:a7:c3:3e:6a:66:08:ed:9b:20:4f:90:4b:1e: 99:4d:28:44:7e:b9:4b:5a:49:51:bf:c8:5b:13:81:1f:3c:7e: 9d:9a:0b:8a:3a:ec:e3:13:12:c4:5b:bc:9e:f8:ad:b9:64:19: 58:42:14:c5:e3:0f:28:63:35:67:c7:c3:30:9e:05:62:12:9a: 83:f3:9b:22:63:97:d1:de:20:36:45:fe:b1:e3:4a:81:f5:87: c7:ab:01:a4:ac:76:f4:57:02:a1:00:4d:43:45:75:d0:1b:fa: 79:55:76:6a:15:74:f9:8f:27:05:92:9e:53:a0:4b:59:e8:cc: 28:72:d9:53 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN+6tY1b2owWh1rlr8IvX+uIL6AYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1 RUEyRTYyMzAeFw0yNDA2MjUwMTM3MDVaFw0yNDA2MjgwMzMxMDVaMDMxMTAvBgNV BAMTKDc0MjBCRjFGREUxRkYyODlCQzM5MDdCODFFMUU1ODZDRjgzNjE2RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGuCvHtjRIwzixuQisdJjxhY10 Xn0k3aPgOpjF9apJFlGQgORV0waL/gD84XA8O0fg09f768RAAYHqyNubA80//KEn YhEf+mjV4N+Z3mi1AzSJhonEbgxWrPl2Y4LMw/K716CpZDk6sqTdcuwUjP9pNXE9 74FX2OSMbrRk20bP4uBFUeL16q2XF3BBHEd/2C3trmnDqVzjdETz9xwy3CUWRva/ 7HxxZA7SS8bE0fFXIkwN0KR1rPUNDPARWgwOw2iZaFCv8b712vvL47jjAcfNvEls JIQfbfC9S2KBHRvgH8sLwiUZNBQf8afZLMETHbrjahNJHGNMk541o0FwZKSJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUdCC/H94f8om8OQe4Hh5YbPg2FtIwHwYDVR0j BBgwFoAU/XxaRKPKr3zRQM/RxhYiul6i5iMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MGY3OGJkNC1jMTliLTRkNDAtYWE1NC1lZDhkN2JjNzcyY2EvMC9GRDdDNUE0NEEz Q0FBRjdDRDE0MENGRDFDNjE2MjJCQTVFQTJFNjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIyQkE1RUEy RTYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTBmNzhiZDQtYzE5Yi00ZDQwLWFh NTQtZWQ4ZDdiYzc3MmNhLzAvRkQ3QzVBNDRBM0NBQUY3Q0QxNDBDRkQxQzYxNjIy QkE1RUEyRTYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJSb0LW9afs4W87Z2J5LIsfDiUV3ZF8dg7J4 utvndA3pcm0jjnB48siqCpdo5/Nm6AZzBJR7v6kOOpt+u1lcs2/w4MO0h2a0FPsN vzwKcvOp/A9lyuH++MH0Bxhv4R4gzKRnGDPVf1Lo3I51IAH6AoaagpeLmOUPb2+4 C0gBM9Ng1G+jp8M+amYI7ZsgT5BLHplNKER+uUtaSVG/yFsTgR88fp2aC4o67OMT EsRbvJ74rblkGVhCFMXjDyhjNWfHwzCeBWISmoPzmyJjl9HeIDZF/rHjSoH1h8er AaSsdvRXAqEATUNFddAb+nlVdmoVdPmPJwWSnlOgS1nozChy2VM= -----END CERTIFICATE-----Generated at Tue Jun 25 02:49:59 2024 by rpki-client on console-fra.rpki-client.org