$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft File: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft (raw, json) Hash identifier: YCDDcuTtV9RJRldp7NfLUZgUC7SH0Yjcct3ZWiK7pDg= Subject key identifier: 82:30:08:05:63:A3:A3:EA:E0:8A:AB:80:A6:40:AD:EE:26:4D:0E:D8 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 13FAB0AC2E46CD560FDD1320EFAB1071FFB555D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft Manifest number: 51 Signing time: Thu 21 Nov 2024 23:21:11 +0000 Manifest this update: Thu 21 Nov 2024 23:16:11 +0000 Manifest next update: Mon 25 Nov 2024 03:01:11 +0000 Files and hashes: 1: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (hash: WQ3o4ScBRNrBdkrsNj1S2rAOurS9wRqMMCvcQilACbA=) 2: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (hash: k/SYZle1NkfnFNVvY93UJAk7vhv/223CGCuJXPKjR+M=) 3: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl (hash: l6zLSj6xvV2eYpPpG6bcmE9trYNkdyhtZSVioXrKs0U=) 4: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (hash: fPg3CNopGP6G+4XgqOe4b1fpuyhHkNvO3rM/vx+ZU+o=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:fa:b0:ac:2e:46:cd:56:0f:dd:13:20:ef:ab:10:71:ff:b5:55:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: Nov 21 23:16:11 2024 GMT Not After : Nov 25 03:01:11 2024 GMT Subject: CN=8230080563A3A3EAE08AAB80A640ADEE264D0ED8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:44:2d:4b:c1:5f:bf:46:44:bf:76:5e:05:e3: 4f:00:cb:b3:f9:2f:fd:70:7d:dd:ad:49:5c:13:97: 0a:c7:f9:7c:df:c7:46:9a:f0:e8:c0:ad:d6:9c:18: db:46:c4:11:81:c8:4d:dd:79:ad:10:3a:6d:96:d4: d9:41:42:b5:6c:d5:bd:dd:10:b9:5f:8b:74:ba:ae: 8d:68:3b:fa:2c:80:a3:54:40:fc:f5:82:f0:34:76: f8:da:c1:12:0b:53:f7:0c:bb:f4:6c:c4:41:26:29: ba:56:9d:55:6e:26:6c:40:00:66:c1:97:bd:cc:c0: 2d:0c:4f:d8:d5:55:a2:4a:a1:92:50:4b:04:49:49: 54:60:88:b6:ea:28:6d:92:1b:d5:9a:af:d0:76:1a: a6:f0:25:0b:00:f4:92:9c:68:9c:74:38:8b:08:e7: af:31:5a:c5:44:7e:6b:7d:3b:03:56:2f:a1:96:ab: b9:db:80:66:af:4d:e0:fd:e5:61:df:0b:53:d6:69: 26:c4:0d:17:67:4c:1a:97:36:0e:fe:9d:fb:f5:9d: ee:1b:e1:d1:64:91:b6:7b:05:f7:f4:21:5a:03:e1: 43:27:f3:08:7c:ac:54:1d:8f:0f:76:81:22:7c:b6: 23:76:aa:b3:e2:c7:73:dd:16:4e:78:5d:20:ae:2c: 77:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:30:08:05:63:A3:A3:EA:E0:8A:AB:80:A6:40:AD:EE:26:4D:0E:D8 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:9b:28:b2:a8:aa:b1:8d:ff:35:e6:de:8d:42:37:0c:af:f3: 12:9c:ac:57:f5:24:c7:56:6d:38:1b:ab:ec:f3:ea:2a:2a:ea: 6b:0e:ae:9e:33:63:09:37:8c:be:a0:aa:f1:b5:c2:6b:ff:88: da:f0:97:29:93:dd:da:79:42:f1:b3:f0:a6:90:e2:b5:71:12: 6c:11:4e:97:8d:84:5c:ba:2b:03:23:2d:e1:ea:c8:22:75:74: 06:8d:b3:66:95:b8:44:ca:e3:80:2c:90:69:42:ee:af:b7:1d: 8b:21:e0:f1:04:0a:15:7a:f1:ed:7c:87:e3:6f:a2:23:69:04: 03:9a:31:c6:e2:5d:5a:7f:f5:3f:2c:8f:20:24:af:d3:8f:d0: ff:3c:e7:e7:08:2e:f7:31:9d:d8:96:0d:4a:06:1b:92:a7:d4: a3:a3:f4:2d:e1:13:2b:f3:08:d4:ee:84:b2:9f:b8:ff:7a:ba: a8:ee:08:c1:d3:35:84:70:a5:0d:90:71:a9:bb:ce:66:fd:60: 49:44:47:4e:1f:80:46:ee:37:37:99:62:a6:40:2a:7a:ab:48: 7a:93:f8:57:45:80:f4:5d:70:61:31:67:04:1d:39:fb:ed:ee: 9b:b3:e6:70:04:af:4a:e8:4e:77:07:76:dc:41:de:97:ca:c8: f5:1c:d4:ae -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE/qwrC5GzVYP3RMg76sQcf+1VdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNDExMjEyMzE2MTFaFw0yNDExMjUwMzAxMTFaMDMxMTAvBgNV BAMTKDgyMzAwODA1NjNBM0EzRUFFMDhBQUI4MEE2NDBBREVFMjY0RDBFRDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYRC1LwV+/RkS/dl4F408Ay7P5 L/1wfd2tSVwTlwrH+Xzfx0aa8OjArdacGNtGxBGByE3dea0QOm2W1NlBQrVs1b3d ELlfi3S6ro1oO/osgKNUQPz1gvA0dvjawRILU/cMu/RsxEEmKbpWnVVuJmxAAGbB l73MwC0MT9jVVaJKoZJQSwRJSVRgiLbqKG2SG9War9B2GqbwJQsA9JKcaJx0OIsI 568xWsVEfmt9OwNWL6GWq7nbgGavTeD95WHfC1PWaSbEDRdnTBqXNg7+nfv1ne4b 4dFkkbZ7Bff0IVoD4UMn8wh8rFQdjw92gSJ8tiN2qrPix3PdFk54XSCuLHenAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgjAIBWOjo+rgiquApkCt7iZNDtgwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjM2MDY2ZTgtOGUxOS00ZGU3LTk0 N2ItOTRlZTNjZDA5Zjg1LzAvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdE OTYzNjE4MjMxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACqbKLKoqrGN/zXm3o1CNwyv8xKcrFf1JMdW bTgbq+zz6ioq6msOrp4zYwk3jL6gqvG1wmv/iNrwlymT3dp5QvGz8KaQ4rVxEmwR TpeNhFy6KwMjLeHqyCJ1dAaNs2aVuETK44AskGlC7q+3HYsh4PEEChV68e18h+Nv oiNpBAOaMcbiXVp/9T8sjyAkr9OP0P885+cILvcxndiWDUoGG5Kn1KOj9C3hEyvz CNTuhLKfuP96uqjuCMHTNYRwpQ2Qcam7zmb9YElER04fgEbuNzeZYqZAKnqrSHqT +FdFgPRdcGExZwQdOfvt7puz5nAEr0roTncHdtxB3pfKyPUc1K4= -----END CERTIFICATE-----Generated at Fri Nov 22 00:21:42 2024 by rpki-client on console-fra.rpki-client.org