$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: uNOk+M7nqbOlY54Rr0L2Tdotl+xZAb/uKKVESVEfbss= Subject key identifier: CE:7C:10:98:E0:17:C2:CF:C5:92:00:3F:18:AC:00:C5:52:A3:A4:8E Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 081C4BB965668A15BFD47A1997EA58AA60DA87CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 0138 Signing time: Sun 24 Nov 2024 16:11:24 +0000 Manifest this update: Sun 24 Nov 2024 16:06:24 +0000 Manifest next update: Wed 27 Nov 2024 20:36:24 +0000 Files and hashes: 1: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: SOoKQJ41q/6K0CxrhzheN7xzcQWcjHricMMa5scV0vg=) 2: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 1GaxlmyMBH5Av+K+s7DcySXoa/4RweD6yLZx8aQoKzc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 21:27:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:1c:4b:b9:65:66:8a:15:bf:d4:7a:19:97:ea:58:aa:60:da:87:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Nov 24 16:06:24 2024 GMT Not After : Nov 27 20:36:24 2024 GMT Subject: CN=CE7C1098E017C2CFC592003F18AC00C552A3A48E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b6:49:e4:65:f3:c9:8a:d9:3f:f0:45:21:2d: 64:3f:06:e0:8c:ab:03:7b:a9:b7:8d:c0:da:ee:17: a8:98:b2:33:11:ef:91:ec:71:6b:c3:58:a7:69:81: 10:a7:07:52:4a:73:1b:5f:16:04:5c:a3:11:d3:64: c9:dc:ca:24:ba:06:84:98:b2:5c:4c:b9:ae:95:6d: 3c:32:c7:7a:78:7c:2f:9d:cf:f2:84:1c:55:d0:7d: 69:94:f2:8f:22:82:6e:18:aa:79:bd:e8:42:fb:de: c0:e3:03:f1:09:0c:fe:9b:6c:d0:1e:42:4e:5c:0b: ba:7c:03:99:79:16:87:28:76:f8:e0:c9:3a:bd:f0: 67:22:8c:ba:af:a2:2e:68:b8:44:59:98:31:56:5e: 93:cb:25:65:b2:a4:8c:df:19:64:8b:1a:aa:6c:bc: b2:93:f9:ed:8e:24:5c:84:8b:33:1a:91:a2:55:67: 07:2c:14:50:ff:c2:40:bf:e5:0b:54:31:eb:ca:6a: b2:44:6a:1e:ff:2c:71:0a:7e:3d:a5:ca:80:44:47: c4:80:85:dd:2a:0e:3c:c8:77:c2:6c:ec:63:1c:c3: 71:c3:ca:85:ae:11:57:e4:9f:ea:f1:4c:09:0b:70: d3:f7:4e:fc:64:73:1c:ee:0f:89:89:65:ca:86:20: 1f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:7C:10:98:E0:17:C2:CF:C5:92:00:3F:18:AC:00:C5:52:A3:A4:8E X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:dc:46:fb:08:46:a5:52:9f:49:0d:4f:0b:f3:62:2c:cd:94: 22:6e:99:83:43:9a:70:55:7a:bd:b5:88:a8:8a:09:3a:83:60: a0:15:60:20:38:3f:ce:7a:e1:81:6e:ce:7f:74:d4:4f:33:a8: 97:5b:62:52:1f:a6:4c:20:bd:5c:5c:21:d3:ea:f5:42:78:ec: 88:de:c2:75:31:14:2c:4b:d8:e0:24:5d:3b:42:47:3a:8a:6a: c0:cb:f3:c5:ac:6e:12:8a:00:f5:4a:8d:d2:40:84:5b:4d:f0: c7:67:02:77:fc:b0:fc:84:ed:7a:08:2a:7b:91:47:3a:de:cc: 57:a6:3a:0e:d6:e2:6a:30:34:4e:3a:70:b6:d7:37:cd:76:b1: d7:66:cd:47:ad:6a:0a:46:0d:cc:33:cf:3a:38:c4:1f:64:4c: 3f:89:f1:07:76:2a:ad:39:2d:64:0b:e5:46:9d:b0:78:bc:54: 7c:c1:4b:71:3d:a3:30:4c:68:44:39:d5:27:77:ee:27:ab:18: 97:60:10:e3:8b:63:8f:be:9d:a4:be:71:3a:90:e7:ea:a3:c5: dd:05:9f:a8:bc:c9:25:6c:9f:2f:63:b3:06:6e:7b:7e:5f:f5: 0d:17:0f:c4:a2:37:33:3e:e3:15:ae:e0:da:e1:82:f8:8b:d3: d3:1b:6d:1d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCBxLuWVmihW/1HoZl+pYqmDah8wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNDExMjQxNjA2MjRaFw0yNDExMjcyMDM2MjRaMDMxMTAvBgNV BAMTKENFN0MxMDk4RTAxN0MyQ0ZDNTkyMDAzRjE4QUMwMEM1NTJBM0E0OEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDtknkZfPJitk/8EUhLWQ/BuCM qwN7qbeNwNruF6iYsjMR75HscWvDWKdpgRCnB1JKcxtfFgRcoxHTZMncyiS6BoSY slxMua6VbTwyx3p4fC+dz/KEHFXQfWmU8o8igm4Yqnm96EL73sDjA/EJDP6bbNAe Qk5cC7p8A5l5FocodvjgyTq98GcijLqvoi5ouERZmDFWXpPLJWWypIzfGWSLGqps vLKT+e2OJFyEizMakaJVZwcsFFD/wkC/5QtUMevKarJEah7/LHEKfj2lyoBER8SA hd0qDjzId8Js7GMcw3HDyoWuEVfkn+rxTAkLcNP3TvxkcxzuD4mJZcqGIB8PAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUznwQmOAXws/FkgA/GKwAxVKjpI4wHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA3cRvsIRqVSn0kNTwvzYizNlCJumYNDmnBV er21iKiKCTqDYKAVYCA4P8564YFuzn901E8zqJdbYlIfpkwgvVxcIdPq9UJ47Ije wnUxFCxL2OAkXTtCRzqKasDL88WsbhKKAPVKjdJAhFtN8MdnAnf8sPyE7XoIKnuR RzrezFemOg7W4mowNE46cLbXN812sddmzUetagpGDcwzzzo4xB9kTD+J8Qd2Kq05 LWQL5UadsHi8VHzBS3E9ozBMaEQ51Sd37ierGJdgEOOLY4++naS+cTqQ5+qjxd0F n6i8ySVsny9jswZue35f9Q0XD8SiNzM+4xWu4NrhgviL09MbbR0= -----END CERTIFICATE-----Generated at Sun Nov 24 18:20:19 2024 by rpki-client on console-ams.rpki-client.org