$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: aif2YZKHZcTTJkx3FeMwpiHxx/zpFSqwF6/EItYOlOw= Subject key identifier: E8:E7:1D:16:C9:E4:CF:1A:99:62:A3:23:21:F5:81:7C:2C:B3:58:3A Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 58AAB91746DF4FF093A103D1A55A0454628ACA6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 03BF Signing time: Wed 29 May 2024 09:42:00 +0000 Manifest this update: Wed 29 May 2024 09:37:00 +0000 Manifest next update: Sat 01 Jun 2024 17:48:00 +0000 Files and hashes: 1: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: 0RlVEEk/QuWPLiGayhM03w8fn+s2XrX8+b6H4KBZclI=) 2: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: /JTMGBM3vR90raLd0Rf595/vMGiVllUYQlsf3J+eejM=) 3: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 2arRb4ZTcHOGipos5P4V5O81PiaL1ylzalK5nKzauB0=) 4: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: 9TBm5xjgyPSqcp8lIelLrI2hAuVouAn8nQhc4O05cl0=) 5: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: CHYf2JSQlxAKhZsoYS09L5kHs40mHuKn7bdPxmhC2Ag=) 6: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: y3LdrWkCX4Kk2BloeVmfDuSl8x9zwZvZnSCQHIbaknQ=) 7: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: l+4Yjk5LK9d+PgaU7CZZCKshPmGTD5igJqoLvf1pEpY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 14:27:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:aa:b9:17:46:df:4f:f0:93:a1:03:d1:a5:5a:04:54:62:8a:ca:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: May 29 09:37:00 2024 GMT Not After : Jun 1 17:48:00 2024 GMT Subject: CN=E8E71D16C9E4CF1A9962A32321F5817C2CB3583A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3d:ca:2a:fd:60:78:56:65:cd:dc:ba:5b:fc: a4:48:8f:01:f3:d5:85:2e:f1:2f:03:a5:09:38:1c: d9:f8:da:33:53:f3:93:56:77:c2:9c:8a:16:68:6d: e0:14:31:01:52:ed:7b:46:26:08:39:eb:2d:d3:6a: 12:66:f7:c2:e7:84:85:b9:12:b9:63:4a:0e:3d:38: b3:cc:85:8d:0f:0b:bd:bd:f3:2a:62:ee:a6:9c:f7: 35:59:1a:9d:6b:6f:47:ce:b7:f1:41:18:7e:aa:ae: c3:a3:20:0e:7d:5c:ef:b2:c9:86:55:e4:dd:69:3a: 9f:b3:8c:59:2a:5c:c4:b5:57:6c:4c:86:e7:24:88: f0:55:35:fd:0e:f9:fd:21:68:0b:72:40:73:99:e4: bf:0a:1d:bb:27:36:3c:ad:58:05:ba:60:89:41:4f: 65:e3:3c:24:85:2a:0b:13:b0:1c:c9:0e:81:9e:13: f1:4d:c3:01:49:4b:df:41:8f:dc:33:7a:d4:f9:7a: 68:a8:c1:41:1a:a5:04:9e:2d:88:ef:81:c1:f7:d1: 73:b9:b4:66:d3:25:a3:ea:05:3c:40:af:0a:c8:a5: 62:ec:b0:30:2c:30:50:87:f5:2f:76:3b:0c:ec:db: a1:bd:29:e0:70:47:4f:9b:57:d8:ad:44:ee:45:68: ec:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E7:1D:16:C9:E4:CF:1A:99:62:A3:23:21:F5:81:7C:2C:B3:58:3A X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:1a:da:c0:15:73:9f:a5:45:eb:3f:24:b3:fa:bc:a7:8f:b7: 87:9f:ca:69:2f:fe:d8:3b:5e:2a:cf:fa:09:92:5c:de:b7:7d: 69:be:f0:03:f6:4c:a2:5d:76:f9:9d:55:05:40:43:9a:a6:c2: 12:f3:d5:0f:03:95:3d:9d:35:78:02:fe:68:a4:e5:c9:b4:47: 96:78:25:85:82:f1:93:79:ee:3a:04:0b:fa:ee:50:ed:2d:2d: 8d:9c:8c:4b:d4:c5:1c:01:24:07:ee:4f:df:7b:11:75:ef:21: a0:83:bb:63:ca:3c:2a:69:18:88:16:e8:a2:d8:b5:6e:d1:3f: 2d:13:f8:04:74:16:1e:b3:00:7c:3b:50:57:2a:67:51:2c:9c: 3c:ca:8b:fa:06:ce:18:d1:40:ba:75:70:da:80:94:54:bf:b9: e4:1d:b3:d6:30:bf:d2:78:0d:0a:39:f5:9c:f2:27:0f:3f:74: 46:f2:cc:68:36:13:4c:a6:a0:70:4c:0e:37:ac:0f:1e:5b:ec: c6:20:00:d3:a1:9c:97:03:e2:4e:2a:aa:3c:79:41:4a:2f:43: d6:4a:be:15:f2:48:44:92:64:92:9f:d9:90:8d:4c:7d:d6:85: df:7e:5b:3b:5d:1d:99:b5:73:c9:bc:a5:b3:59:8b:89:04:b0: 21:9f:03:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWKq5F0bfT/CToQPRpVoEVGKKym0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNDA1MjkwOTM3MDBaFw0yNDA2MDExNzQ4MDBaMDMxMTAvBgNV BAMTKEU4RTcxRDE2QzlFNENGMUE5OTYyQTMyMzIxRjU4MTdDMkNCMzU4M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUPcoq/WB4VmXN3Lpb/KRIjwHz 1YUu8S8DpQk4HNn42jNT85NWd8KcihZobeAUMQFS7XtGJgg56y3TahJm98LnhIW5 ErljSg49OLPMhY0PC7298ypi7qac9zVZGp1rb0fOt/FBGH6qrsOjIA59XO+yyYZV 5N1pOp+zjFkqXMS1V2xMhuckiPBVNf0O+f0haAtyQHOZ5L8KHbsnNjytWAW6YIlB T2XjPCSFKgsTsBzJDoGeE/FNwwFJS99Bj9wzetT5emiowUEapQSeLYjvgcH30XO5 tGbTJaPqBTxArwrIpWLssDAsMFCH9S92Owzs26G9KeBwR0+bV9itRO5FaOwBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6OcdFsnkzxqZYqMjIfWBfCyzWDowHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF4a2sAVc5+lRes/JLP6vKePt4efymkv/tg7 XirP+gmSXN63fWm+8AP2TKJddvmdVQVAQ5qmwhLz1Q8DlT2dNXgC/mik5cm0R5Z4 JYWC8ZN57joEC/ruUO0tLY2cjEvUxRwBJAfuT997EXXvIaCDu2PKPCppGIgW6KLY tW7RPy0T+AR0Fh6zAHw7UFcqZ1EsnDzKi/oGzhjRQLp1cNqAlFS/ueQds9Ywv9J4 DQo59ZzyJw8/dEbyzGg2E0ymoHBMDjesDx5b7MYgANOhnJcD4k4qqjx5QUovQ9ZK vhXySESSZJKf2ZCNTH3Whd9+WztdHZm1c8m8pbNZi4kEsCGfA0s= -----END CERTIFICATE-----Generated at Wed May 29 11:17:24 2024 by rpki-client on console-fra.rpki-client.org