$ rpki-client -vvf repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft File: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft (raw, json) Hash identifier: CBMGg8S0k0JHqVtjZmvGlcTgNUZtXOIAafs+rQfE05Q= Subject key identifier: E0:92:38:CD:9B:29:A0:D4:18:F0:1B:28:6D:1B:AD:40:5F:72:05:61 Authority key identifier: BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A Certificate issuer: /CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Certificate serial: 4E1D7FDFD8BBF95E957C0D229760542E022FAC34 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft Manifest number: 38 Signing time: Thu 26 Sep 2024 11:31:07 +0000 Manifest this update: Thu 26 Sep 2024 11:26:07 +0000 Manifest next update: Sun 29 Sep 2024 11:55:07 +0000 Files and hashes: 1: 3135372e32302e3137382e302f32342d3234203d3e20313532343138.roa (hash: fPg3CNopGP6G+4XgqOe4b1fpuyhHkNvO3rM/vx+ZU+o=) 2: 3135372e32302e3137392e302f32342d3234203d3e20313532343138.roa (hash: k/SYZle1NkfnFNVvY93UJAk7vhv/223CGCuJXPKjR+M=) 3: BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl (hash: eP4+arnqkttB/NKbrB1lXTgeJMHkq+VEPshS6eCcO7s=) 4: 3135372e32302e3137382e302f32332d3233203d3e20313532343138.roa (hash: WQ3o4ScBRNrBdkrsNj1S2rAOurS9wRqMMCvcQilACbA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 29 Sep 2024 11:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:1d:7f:df:d8:bb:f9:5e:95:7c:0d:22:97:60:54:2e:02:2f:ac:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD9B7A89C85E0DF6786F5BD51D4B7D963618231A Validity Not Before: Sep 26 11:26:07 2024 GMT Not After : Sep 29 11:55:07 2024 GMT Subject: CN=E09238CD9B29A0D418F01B286D1BAD405F720561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3a:98:8b:41:be:06:98:72:08:2f:9d:9d:32: 29:47:c5:4a:75:a5:da:68:35:60:86:f2:fa:c5:e0: 6f:a4:0c:24:3c:8b:85:9d:a9:df:d2:0a:76:51:57: 5e:f1:0c:21:2d:e0:56:d7:91:2e:16:e8:70:f0:34: e5:d2:44:b5:c3:59:4c:4a:48:8c:54:c6:88:88:94: 86:9e:9a:ff:0c:d3:dc:2e:8a:c1:35:04:d2:c7:4d: 81:29:1f:ac:e3:58:8a:6d:2b:5b:82:57:a3:92:0f: 19:6c:05:f0:d3:59:a8:bd:f1:a4:67:d6:9a:93:71: a8:c7:e6:b4:36:fe:34:f6:f4:69:e9:a6:ea:da:f1: 15:6b:43:34:37:7c:03:c4:52:bd:3e:33:f8:da:c7: 91:3b:15:69:b5:40:3d:1f:27:e4:0a:83:36:32:21: dc:f9:20:d9:ff:24:b2:07:80:b7:17:4a:3d:a9:d9: 0f:1f:84:4a:74:af:8e:3d:27:ac:d2:d2:86:19:05: 32:79:f5:b8:f2:ab:4a:80:70:eb:d3:56:ff:c9:17: 10:9e:01:b9:1e:0d:2e:b6:f9:91:58:f7:16:57:27: c9:d6:43:36:78:ea:d5:0b:82:1e:e2:58:8d:fc:b2: 78:53:68:a8:79:e9:9e:75:96:29:c9:02:41:05:40: 45:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:92:38:CD:9B:29:A0:D4:18:F0:1B:28:6D:1B:AD:40:5F:72:05:61 X509v3 Authority Key Identifier: keyid:BD:9B:7A:89:C8:5E:0D:F6:78:6F:5B:D5:1D:4B:7D:96:36:18:23:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b36066e8-8e19-4de7-947b-94ee3cd09f85/0/BD9B7A89C85E0DF6786F5BD51D4B7D963618231A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:4d:1e:95:e9:4f:3b:08:bd:18:3c:0a:65:ca:77:75:de:1b: 77:c9:e3:6a:17:31:4b:08:74:72:1d:ef:3b:04:a3:ac:85:69: 41:09:00:a0:95:c2:92:54:ee:a9:c3:e0:c6:06:4a:f3:b3:33: ef:cc:af:88:45:b9:c5:eb:26:b5:77:11:5a:7f:44:f9:e9:50: 08:8d:c1:e7:89:d6:cc:92:95:34:86:97:04:8c:b7:0c:1f:58: 73:ab:79:e3:f1:25:5b:b9:02:04:a5:a1:50:99:80:b9:e7:25: e7:89:66:30:b6:5d:ab:11:1f:52:3a:a2:51:96:9b:be:c2:e2: d4:cf:ce:67:0b:63:cf:9a:4d:0f:78:b0:b3:c8:d2:27:0c:f9: e3:e0:0f:a7:d4:0d:1f:da:80:50:8d:42:51:c0:93:ab:69:b6: 75:19:0d:cb:b7:45:e8:b9:20:ce:5d:da:6f:f5:b5:3c:b0:54: 90:c0:ac:b4:d8:f7:3a:a6:a0:20:de:fe:65:f1:a7:c0:df:5b: 48:ac:54:6b:e7:0f:62:9b:af:87:b1:8f:c6:f3:ae:d8:ae:6e: 68:da:89:64:af:12:85:fe:48:66:ac:a5:35:1b:40:13:e0:d0: ba:7a:cf:49:be:c1:da:05:98:04:85:07:b4:c7:8f:6a:4e:1d: cd:9d:8f:e9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTh1/39i7+V6VfA0il2BULgIvrDQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYz NjE4MjMxQTAeFw0yNDA5MjYxMTI2MDdaFw0yNDA5MjkxMTU1MDdaMDMxMTAvBgNV BAMTKEUwOTIzOENEOUIyOUEwRDQxOEYwMUIyODZEMUJBRDQwNUY3MjA1NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3OpiLQb4GmHIIL52dMilHxUp1 pdpoNWCG8vrF4G+kDCQ8i4Wdqd/SCnZRV17xDCEt4FbXkS4W6HDwNOXSRLXDWUxK SIxUxoiIlIaemv8M09wuisE1BNLHTYEpH6zjWIptK1uCV6OSDxlsBfDTWai98aRn 1pqTcajH5rQ2/jT29Gnppura8RVrQzQ3fAPEUr0+M/jax5E7FWm1QD0fJ+QKgzYy Idz5INn/JLIHgLcXSj2p2Q8fhEp0r449J6zS0oYZBTJ59bjyq0qAcOvTVv/JFxCe AbkeDS62+ZFY9xZXJ8nWQzZ46tULgh7iWI38snhTaKh56Z51linJAkEFQEULAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4JI4zZspoNQY8BsobRutQF9yBWEwHwYDVR0j BBgwFoAUvZt6icheDfZ4b1vVHUt9ljYYIxowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzYwNjZlOC04ZTE5LTRkZTctOTQ3Yi05NGVlM2NkMDlmODUvMC9CRDlCN0E4OUM4 NUUwREY2Nzg2RjVCRDUxRDRCN0Q5NjM2MTgyMzFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdEOTYzNjE4 MjMxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjM2MDY2ZTgtOGUxOS00ZGU3LTk0 N2ItOTRlZTNjZDA5Zjg1LzAvQkQ5QjdBODlDODVFMERGNjc4NkY1QkQ1MUQ0QjdE OTYzNjE4MjMxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAVNHpXpTzsIvRg8CmXKd3XeG3fJ42oXMUsI dHId7zsEo6yFaUEJAKCVwpJU7qnD4MYGSvOzM+/Mr4hFucXrJrV3EVp/RPnpUAiN weeJ1sySlTSGlwSMtwwfWHOreePxJVu5AgSloVCZgLnnJeeJZjC2XasRH1I6olGW m77C4tTPzmcLY8+aTQ94sLPI0icM+ePgD6fUDR/agFCNQlHAk6tptnUZDcu3Rei5 IM5d2m/1tTywVJDArLTY9zqmoCDe/mXxp8DfW0isVGvnD2Kbr4exj8bzrtiubmja iWSvEoX+SGaspTUbQBPg0Lp6z0m+wdoFmASFB7THj2pOHc2dj+k= -----END CERTIFICATE-----Generated at Thu Sep 26 12:22:09 2024 by rpki-client on console-ams.rpki-client.org