$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: GXRyECqyKNW9l0jDhcMzw6uLie8QIfDRa0rpiloRuPs= Subject key identifier: 82:8F:18:8F:13:CE:45:B7:38:13:A2:2E:9E:84:B1:B1:77:62:B3:93 Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 587F730BD7DBF30B610D300BAD14D651F48281E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 043A Signing time: Wed 29 May 2024 17:50:36 +0000 Manifest this update: Wed 29 May 2024 17:45:36 +0000 Manifest next update: Sun 02 Jun 2024 02:08:36 +0000 Files and hashes: 1: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: XC7yNKfsnOBCYZg8fNaUt+MbvacDuHP8DSgeFOFe8Rk=) 2: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: vZm3NWRzwyzo3z+zAWP4h4lHPE/U4LVNvDYSS2K5aoI=) 3: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: iiV39b4zGfd/FfVIBx3iGtG9jUqrW2Fn3rb5sHdNatA=) 4: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: xR4A9sZB+TcNk4+A70alpJ8SkoSqR7eK3tdu5bOkUrc=) 5: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: Y1vxfNpBEkDUu759owztLKdhxj1gYyNzrkNzIZ6OPcA=) 6: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: TqAaJSXTeepR0ncZUZPgI9FHSgBXciaZzpuvJVZEEJs=) 7: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: PQyUCOKeV8GaNhFn3qGKZ89Sa664IqyavOG5j9X8+bM=) 8: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: laYi/Ioje0Un95aRqiZvDytrIdl62SvdSpCkVBVXSbY=) 9: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: xbDBcz7h5MQ8p7Ub6USn4BOYLaC1Dw7K29tSjpxMTaY=) 10: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: k93YW28dMd2jroitmKJ3K4fELuXPQtuH9YG94V51fCs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 20:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:7f:73:0b:d7:db:f3:0b:61:0d:30:0b:ad:14:d6:51:f4:82:81:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: May 29 17:45:36 2024 GMT Not After : Jun 2 02:08:36 2024 GMT Subject: CN=828F188F13CE45B73813A22E9E84B1B17762B393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c8:19:f3:41:f8:c3:f4:6d:dd:f0:a9:32:d5: ed:f1:97:78:95:25:73:3c:81:ae:f5:f7:7f:ce:0c: ed:70:ea:e1:10:02:31:8d:31:c4:21:b5:c0:60:cc: 89:16:f2:6e:41:e5:0d:27:f6:44:a9:5d:97:d3:77: 4a:d4:25:7b:39:8a:c7:ed:74:5b:d4:4e:01:17:5d: 76:a2:15:3a:c9:29:8d:79:8e:3e:38:c8:4e:aa:fa: fe:0c:61:4e:59:40:40:a4:8e:bf:10:a5:39:96:9a: a0:64:4a:78:26:c9:ff:46:12:12:4f:f6:67:e6:cb: 05:b5:12:a9:fd:58:f0:65:5f:3d:8b:40:70:9b:02: 80:a5:d3:0b:9e:07:b9:32:5d:72:11:cb:cb:eb:9c: da:34:0a:e4:6e:4d:31:23:98:56:7a:7b:43:38:71: b2:23:8c:a9:1f:97:fe:09:83:67:b4:ce:f2:6c:fc: f3:dd:53:5f:10:89:39:9f:12:df:28:9d:07:8c:92: 4b:c5:11:44:a7:9c:70:50:8d:ba:aa:08:e5:e4:81: 21:05:fd:a1:dc:92:d7:93:72:d5:02:1e:71:44:39: fa:d1:60:42:af:a8:56:c8:14:06:a9:e8:ce:29:1c: 4e:dd:1d:1b:49:d0:5e:85:39:46:d8:28:56:8c:30: e8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:8F:18:8F:13:CE:45:B7:38:13:A2:2E:9E:84:B1:B1:77:62:B3:93 X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:6b:6c:f7:e4:05:64:e7:88:92:a2:70:ec:e0:41:69:a7:87: 2d:bd:06:17:29:a0:cf:0d:c7:9a:15:2e:25:49:23:6a:9b:5f: 92:23:4f:26:38:33:66:24:31:c3:b6:1e:13:ff:2f:c4:f8:a1: b5:38:bd:65:ad:28:77:9c:3a:40:70:43:77:fe:2f:7c:39:a8: 5e:28:b8:55:83:83:20:4e:03:86:3c:15:6e:bb:07:0a:77:02: 11:21:31:7e:4a:da:09:ef:16:bf:c1:9a:74:dc:fa:4c:d8:9e: d8:cd:82:ef:36:91:58:c0:42:f7:c9:14:31:49:1d:7a:d3:cd: 21:8d:d2:f8:f9:3e:57:00:04:6d:d4:8a:dd:51:8f:8f:e8:f2: 6f:67:22:81:bc:3a:17:12:ab:f4:fe:fc:ea:87:66:fc:76:df: fa:8d:62:35:ef:02:78:08:7a:a9:ce:08:20:8e:2c:a5:d8:f2: 70:89:ff:de:c3:60:9c:a2:7b:4f:08:c3:12:fc:4c:91:5f:93: bc:8b:f5:39:ea:80:89:b9:d6:e2:f8:0b:d8:51:b9:10:26:1d: 98:12:43:06:e0:6f:97:fa:20:83:a2:bf:1e:97:d6:63:45:d9: 4d:22:12:ea:a6:42:b3:b7:d2:c2:c2:3d:8d:eb:55:9e:3f:4f: ee:12:f5:68 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWH9zC9fb8wthDTALrRTWUfSCgeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNDA1MjkxNzQ1MzZaFw0yNDA2MDIwMjA4MzZaMDMxMTAvBgNV BAMTKDgyOEYxODhGMTNDRTQ1QjczODEzQTIyRTlFODRCMUIxNzc2MkIzOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTyBnzQfjD9G3d8Kky1e3xl3iV JXM8ga7193/ODO1w6uEQAjGNMcQhtcBgzIkW8m5B5Q0n9kSpXZfTd0rUJXs5isft dFvUTgEXXXaiFTrJKY15jj44yE6q+v4MYU5ZQECkjr8QpTmWmqBkSngmyf9GEhJP 9mfmywW1Eqn9WPBlXz2LQHCbAoCl0wueB7kyXXIRy8vrnNo0CuRuTTEjmFZ6e0M4 cbIjjKkfl/4Jg2e0zvJs/PPdU18QiTmfEt8onQeMkkvFEUSnnHBQjbqqCOXkgSEF /aHckteTctUCHnFEOfrRYEKvqFbIFAap6M4pHE7dHRtJ0F6FOUbYKFaMMOj7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgo8YjxPORbc4E6IunoSxsXdis5MwHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA1rbPfkBWTniJKicOzgQWmnhy29BhcpoM8N x5oVLiVJI2qbX5IjTyY4M2YkMcO2HhP/L8T4obU4vWWtKHecOkBwQ3f+L3w5qF4o uFWDgyBOA4Y8FW67Bwp3AhEhMX5K2gnvFr/BmnTc+kzYntjNgu82kVjAQvfJFDFJ HXrTzSGN0vj5PlcABG3Uit1Rj4/o8m9nIoG8OhcSq/T+/OqHZvx23/qNYjXvAngI eqnOCCCOLKXY8nCJ/97DYJyie08IwxL8TJFfk7yL9TnqgIm51uL4C9hRuRAmHZgS Qwbgb5f6IIOivx6X1mNF2U0iEuqmQrO30sLCPY3rVZ4/T+4S9Wg= -----END CERTIFICATE-----Generated at Wed May 29 18:31:51 2024 by rpki-client on console-fra.rpki-client.org