$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: oadcU+5YcDaFdWF1XaSF7u83REmTV5qlXirC49Rkbnk= Subject key identifier: 00:DD:24:31:AF:47:68:93:6B:C9:73:AE:48:A5:84:F9:04:28:BD:3D Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 143A57C184F7869EEBE9BA023F04259E94916050 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 0489 Signing time: Fri 22 Nov 2024 15:50:40 +0000 Manifest this update: Fri 22 Nov 2024 15:45:40 +0000 Manifest next update: Mon 25 Nov 2024 17:27:40 +0000 Files and hashes: 1: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: Fi6QeWQWTVNQrR8F3SMVtq61KLWUL/POLAR9Vmau5UU=) 2: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: q57omgnlmY1l+aM3r310Job8V2O7MzTRAzkBt8MNU6A=) 3: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: NoI2hxLozc+zAYu2UCPaDjAcF21N5OCkedkngEdg1Jc=) 4: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: 6ejxm/D7fWLYd/jA5kGnDm4Adf1D2VKSxCwudEm22iA=) 5: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: CKZqBz5RzUJDxeDRQjwvwDjhTydwwJ4qsh8D2GYetBs=) 6: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: AGLiUoWAlNJIAtchHSJ4lguvgiblVxmk8bMAMIntFqw=) 7: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: zzTNZ4xzQEOmQw8ycNtJFjGo6ll3tDYLpBJW9o97EtU=) 8: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: 8Pihm82g70d0YD39AiI0nfOrZFr+2CjjXY243qvfoMg=) 9: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: 4cr+QZXigIFKCl/E01HmbmzHPYbUe8iFmoKY3eWNtV8=) 10: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: gM3z/op2YFXyT7g7JtYZFudpoLz5+Bi5Ub/M9drayg4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:27:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:3a:57:c1:84:f7:86:9e:eb:e9:ba:02:3f:04:25:9e:94:91:60:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Nov 22 15:45:40 2024 GMT Not After : Nov 25 17:27:40 2024 GMT Subject: CN=00DD2431AF4768936BC973AE48A584F90428BD3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:da:c1:91:db:9e:da:5d:7d:b6:31:16:9d:24: 64:ca:76:6f:e3:11:0c:e8:70:c6:c6:06:f6:95:39: 34:2c:6b:77:23:94:d3:2c:aa:b4:93:90:2c:a5:10: 75:5c:53:86:ca:e4:eb:20:12:e7:29:13:3a:12:3d: 40:94:b6:d6:0b:43:81:99:92:eb:29:99:72:86:c7: 93:f8:c1:55:68:65:59:93:19:d7:02:3f:e6:43:32: f9:57:34:4f:fd:f4:39:b2:25:43:16:93:67:65:16: 44:ff:27:5f:69:6a:d5:6b:31:e9:76:1a:1c:5a:4b: 28:8f:94:ad:50:18:92:2b:05:d1:d4:b9:01:d6:25: 1f:e5:7c:62:ad:b0:a9:19:35:9a:0f:70:37:b3:10: d4:80:78:a5:40:b6:56:c5:61:8b:ef:90:1e:9d:65: 7b:34:0a:f8:26:9c:8d:0f:2e:ba:66:50:80:b7:7a: ef:f7:97:0a:a2:da:91:9f:15:c0:8d:64:fa:99:de: 97:80:d3:25:ef:cc:dc:38:44:44:d4:a3:c2:80:8d: 48:99:7c:cd:72:fe:5a:d4:99:27:f9:24:e3:6a:aa: df:24:36:53:a6:96:9e:cf:30:91:71:d4:0f:20:6a: dd:05:fa:24:7e:7a:9e:4a:cc:bf:54:d2:fc:a1:22: 13:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:DD:24:31:AF:47:68:93:6B:C9:73:AE:48:A5:84:F9:04:28:BD:3D X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:ab:be:17:a6:fe:a3:7b:ac:1f:70:f2:ee:58:a1:e3:9a:be: 2a:84:68:ae:0d:28:1f:a1:2f:37:4e:b5:bd:31:61:be:5d:f2: e5:aa:75:9d:0b:bb:2b:13:11:ce:5a:04:7b:7f:f7:e2:a8:68: ed:c6:43:50:a6:cd:dc:c0:a0:62:ed:49:55:b6:fb:78:b2:a8: ca:59:eb:c5:01:a5:db:9c:47:35:7c:30:14:0f:3c:5a:6b:37: 71:51:c9:30:86:fb:c2:50:98:27:08:ca:54:47:e6:e1:43:c6: 6f:46:ce:a3:6f:b5:3b:a5:78:42:fb:a9:4d:7a:a3:88:70:39: b1:e0:50:63:bc:24:76:10:13:93:6b:7c:b9:6a:10:5e:74:40: d3:83:ee:d1:05:29:76:dc:3a:a1:56:3e:d0:e4:d0:07:d9:7f: ab:28:d5:2e:73:a5:a0:47:2e:0e:bf:5e:4f:f3:07:f0:95:e7: 7c:79:43:b0:b8:5b:1a:f0:cc:50:ee:38:ca:00:47:ce:96:34: de:77:f6:7a:56:79:8d:00:18:b9:aa:e7:a9:81:23:0f:a9:56: af:f7:da:53:51:e0:e9:41:51:bc:33:02:82:7b:1c:d7:98:3a: c0:23:86:a3:ac:d4:7d:43:13:6b:47:39:8f:b9:68:38:e2:78: 84:40:57:b1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFDpXwYT3hp7r6boCPwQlnpSRYFAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNDExMjIxNTQ1NDBaFw0yNDExMjUxNzI3NDBaMDMxMTAvBgNV BAMTKDAwREQyNDMxQUY0NzY4OTM2QkM5NzNBRTQ4QTU4NEY5MDQyOEJEM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCe2sGR257aXX22MRadJGTKdm/j EQzocMbGBvaVOTQsa3cjlNMsqrSTkCylEHVcU4bK5OsgEucpEzoSPUCUttYLQ4GZ kuspmXKGx5P4wVVoZVmTGdcCP+ZDMvlXNE/99DmyJUMWk2dlFkT/J19patVrMel2 GhxaSyiPlK1QGJIrBdHUuQHWJR/lfGKtsKkZNZoPcDezENSAeKVAtlbFYYvvkB6d ZXs0CvgmnI0PLrpmUIC3eu/3lwqi2pGfFcCNZPqZ3peA0yXvzNw4RETUo8KAjUiZ fM1y/lrUmSf5JONqqt8kNlOmlp7PMJFx1A8gat0F+iR+ep5KzL9U0vyhIhONAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAN0kMa9HaJNryXOuSKWE+QQovT0wHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ+rvhem/qN7rB9w8u5YoeOaviqEaK4NKB+h LzdOtb0xYb5d8uWqdZ0LuysTEc5aBHt/9+KoaO3GQ1CmzdzAoGLtSVW2+3iyqMpZ 68UBpducRzV8MBQPPFprN3FRyTCG+8JQmCcIylRH5uFDxm9GzqNvtTuleEL7qU16 o4hwObHgUGO8JHYQE5NrfLlqEF50QNOD7tEFKXbcOqFWPtDk0AfZf6so1S5zpaBH Lg6/Xk/zB/CV53x5Q7C4WxrwzFDuOMoAR86WNN539npWeY0AGLmq56mBIw+pVq/3 2lNR4OlBUbwzAoJ7HNeYOsAjhqOs1H1DE2tHOY+5aDjieIRAV7E= -----END CERTIFICATE-----Generated at Fri Nov 22 17:50:10 2024 by rpki-client on console-fra.rpki-client.org