$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: 47JH5+JVJG3MUPmyEqQSH/4Xg1PBGjMRd+ZSNwfZAlk= Subject key identifier: C4:04:7F:7B:7F:AE:22:C7:86:6E:98:62:E0:F2:34:5D:21:D3:FC:3D Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 2AFE9CB6E8309ACA1ED6FCC2C2D69A3545ECFB2B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: E2 Signing time: Fri 17 May 2024 08:21:12 +0000 Manifest this update: Fri 17 May 2024 08:16:12 +0000 Manifest next update: Mon 20 May 2024 08:42:12 +0000 Files and hashes: 1: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: u2YJCQXMVA3soG2DCTAcLWiy1SBiSs+Udvwxs0u1h6g=) 2: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 5qwmY9O185zbXjU6YOTm6J83xbXJWcL5L1q6TrzoTS8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 08:42:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:fe:9c:b6:e8:30:9a:ca:1e:d6:fc:c2:c2:d6:9a:35:45:ec:fb:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: May 17 08:16:12 2024 GMT Not After : May 20 08:42:12 2024 GMT Subject: CN=C4047F7B7FAE22C7866E9862E0F2345D21D3FC3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:06:b9:a9:de:31:b4:e2:6c:5a:47:09:36:b3: 38:69:e5:eb:fe:d6:10:79:9f:92:23:2a:53:3e:34: b4:cc:bc:3b:ab:27:42:47:71:b9:3e:30:24:bc:7b: 67:25:d9:cb:69:6d:d6:11:c0:db:1a:b9:04:a6:04: b8:8d:d0:f2:d3:f8:10:ae:2d:a6:14:c5:ef:f2:74: cc:7f:64:31:d4:dc:7c:26:6e:dd:8d:7a:6c:9d:16: d1:57:77:ed:0a:87:5d:4d:3c:fb:3a:fd:8e:3c:35: 41:23:cc:e5:c7:a7:2f:1c:ca:19:bf:c5:4b:bd:e0: 77:77:9d:92:cf:0d:0a:2b:0b:66:5b:a5:8b:c5:78: c6:ae:13:56:3d:a9:a0:5d:9b:37:9e:4e:70:a3:a9: 20:4e:a2:f9:4e:29:cd:f4:10:9b:88:75:01:75:a0: ad:0b:f8:bd:03:1a:07:31:e2:6d:bd:8d:97:52:6a: 53:9c:5a:86:40:ce:a6:5e:9e:80:32:a5:60:c2:b3: 9a:9c:f8:45:1c:ce:e2:2a:8b:ec:d3:c5:69:10:a1: 81:d8:ef:72:39:5e:96:d0:8f:08:fd:99:53:83:9c: 87:d5:b3:1e:12:4e:75:6a:b2:78:0b:0c:e0:21:d5: fa:23:e9:41:eb:68:0c:c0:e1:d8:31:c8:d3:40:ec: 79:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:04:7F:7B:7F:AE:22:C7:86:6E:98:62:E0:F2:34:5D:21:D3:FC:3D X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:83:5f:09:77:15:ab:88:bb:17:e5:bd:f4:c8:4f:5a:d3:18: 12:0c:93:1d:5e:f0:f1:eb:ee:7c:77:6f:3c:00:b2:6f:66:26: db:66:58:e5:90:47:3c:83:33:ff:a2:e2:94:6e:fd:ce:c0:b9: 39:f2:b8:7c:24:69:f4:e5:ec:84:99:45:e7:91:c5:f8:4a:7d: e7:d7:3e:81:12:91:47:ce:67:6e:7e:6c:70:fa:1c:d6:f5:f2: 65:9e:6c:50:aa:99:eb:5e:eb:21:04:20:7a:22:62:32:bc:d8: f5:b5:5b:eb:17:fc:ce:ea:15:49:79:c1:92:b1:3d:ac:73:2f: c6:fb:bf:35:aa:a7:a8:80:e5:57:a4:cb:dd:e8:84:58:28:fa: e5:64:08:f9:b9:fa:cc:b3:70:12:b2:c0:be:f9:32:4c:fa:c1: 15:d9:f3:59:4e:39:5f:da:3b:9a:3e:6f:71:b2:9b:5b:44:e1: 77:ab:46:d1:f1:81:95:61:7f:de:f1:54:3e:26:23:af:88:53: 13:6a:a0:24:5b:9e:d1:41:34:bd:b8:c5:8f:3c:25:ac:86:d4: 5d:05:55:d7:58:85:bd:8b:4b:99:0a:a8:fa:bb:6f:a1:25:eb: d3:29:f3:92:a8:34:33:ee:be:8d:72:3b:62:3c:99:59:88:3a: 58:8a:74:52 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKv6ctugwmsoe1vzCwtaaNUXs+yswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNDA1MTcwODE2MTJaFw0yNDA1MjAwODQyMTJaMDMxMTAvBgNV BAMTKEM0MDQ3RjdCN0ZBRTIyQzc4NjZFOTg2MkUwRjIzNDVEMjFEM0ZDM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9Brmp3jG04mxaRwk2szhp5ev+ 1hB5n5IjKlM+NLTMvDurJ0JHcbk+MCS8e2cl2ctpbdYRwNsauQSmBLiN0PLT+BCu LaYUxe/ydMx/ZDHU3Hwmbt2NemydFtFXd+0Kh11NPPs6/Y48NUEjzOXHpy8cyhm/ xUu94Hd3nZLPDQorC2ZbpYvFeMauE1Y9qaBdmzeeTnCjqSBOovlOKc30EJuIdQF1 oK0L+L0DGgcx4m29jZdSalOcWoZAzqZenoAypWDCs5qc+EUczuIqi+zTxWkQoYHY 73I5XpbQjwj9mVODnIfVsx4STnVqsngLDOAh1foj6UHraAzA4dgxyNNA7HkvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxAR/e3+uIseGbphi4PI0XSHT/D0wHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMSDXwl3FauIuxflvfTIT1rTGBIMkx1e8PHr 7nx3bzwAsm9mJttmWOWQRzyDM/+i4pRu/c7AuTnyuHwkafTl7ISZReeRxfhKfefX PoESkUfOZ25+bHD6HNb18mWebFCqmete6yEEIHoiYjK82PW1W+sX/M7qFUl5wZKx PaxzL8b7vzWqp6iA5Veky93ohFgo+uVkCPm5+syzcBKywL75Mkz6wRXZ81lOOV/a O5o+b3Gym1tE4XerRtHxgZVhf97xVD4mI6+IUxNqoCRbntFBNL24xY88JayG1F0F VddYhb2LS5kKqPq7b6El69Mp85KoNDPuvo1yO2I8mVmIOliKdFI= -----END CERTIFICATE-----Generated at Fri May 17 08:51:01 2024 by rpki-client on console-ams.rpki-client.org