$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: /L3VVG3bQYtUIqYKZfPUvPUuiiX/F4ra+RMQ/BjGNyI= Subject key identifier: 24:1A:12:32:84:E7:12:F0:AB:39:BF:C4:7A:97:79:3A:60:07:86:91 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 7B3389D97B67B6143B36FE7E6B6831A562219D47 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 0411 Signing time: Mon 25 Nov 2024 05:52:22 +0000 Manifest this update: Mon 25 Nov 2024 05:47:22 +0000 Manifest next update: Thu 28 Nov 2024 11:15:22 +0000 Files and hashes: 1: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: WgrIRzdaFJ0g4e27LMgAxhh+yicucERWndK+pSX36cg=) 2: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 0GSE1PDB0X1nNRLhLL+YFIj25TLvzXb3P+1q7y2DYeY=) 3: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: TItz42PFD+0+FqFvqkRFMxu9ebwx4T3BVf9/aCX2IJY=) 4: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: yg0Ga2BI5N+zhlTssMp6B5+VROj1HXmBfDxoTWvqgpA=) 5: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: qMdSXe2z67bVJOmODSeb4BQMQ40LX9lF9FYmIAv+p7A=) 6: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: Y2PTe5fMMDYclXsLhLsiwjVncBgzuq5ROa1U1eOC/Wc=) 7: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: bPWP0OQUIp2Y9GGXuX0UNuWcLsy7WT1L06MXLwlNCSg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 11:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:33:89:d9:7b:67:b6:14:3b:36:fe:7e:6b:68:31:a5:62:21:9d:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Nov 25 05:47:22 2024 GMT Not After : Nov 28 11:15:22 2024 GMT Subject: CN=241A123284E712F0AB39BFC47A97793A60078691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:99:58:7d:5c:36:fe:e9:c9:45:d3:26:6e:eb: ee:f9:59:9c:17:88:23:1f:0f:29:34:df:81:d1:a9: 8e:f7:7a:2d:5d:2e:2b:bc:46:aa:b4:1c:e1:cc:e9: 8b:6e:ef:b0:39:5a:00:20:9a:93:8a:3f:5a:c0:5c: f1:ea:e9:bf:f3:a8:f5:a4:a6:75:7a:2c:aa:5a:b5: 14:a9:e6:1e:72:cf:75:66:e1:cf:84:18:78:67:81: d2:89:20:e8:46:a7:7e:28:f9:b0:a0:2f:26:a3:6a: 00:c8:b2:f5:90:8c:04:2b:43:65:86:7e:6e:cc:95: bd:53:37:82:19:52:42:d7:44:d8:c6:90:22:b3:42: 7d:29:4e:c7:f6:d6:57:b3:45:90:fe:8b:58:70:28: 2c:d0:d7:a1:38:93:db:ca:cb:77:9d:df:d9:a6:a4: d9:3d:8c:1e:73:4f:95:b7:91:08:3e:3a:98:66:7b: 3f:c5:5a:ca:aa:65:c1:3f:bf:43:c5:3f:55:b3:f6: 17:c2:1e:d0:e2:7c:ba:22:9e:a2:a6:7a:84:dc:af: ed:4e:c0:5d:28:a9:66:84:9d:2b:38:c6:9f:01:43: 9e:64:ab:9e:b1:3f:2c:26:11:e1:82:26:68:2c:3d: 2b:be:d5:80:f1:1f:d4:68:7e:cc:72:1c:c7:b8:a2: 92:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:1A:12:32:84:E7:12:F0:AB:39:BF:C4:7A:97:79:3A:60:07:86:91 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:dd:3a:6b:e3:dc:4b:77:38:19:d2:e9:f1:0d:f7:14:76:0d: 9d:ff:19:e8:c4:8b:96:a9:a0:48:80:4a:08:1a:5c:23:52:31: 86:23:f0:cc:a7:13:d0:3b:4f:5a:2e:75:c4:cb:32:73:d8:fb: 82:a2:48:a9:54:3c:74:ae:02:80:bf:0b:d9:f1:b9:c7:a6:ea: e3:a7:e4:89:ee:bc:89:ef:c7:c2:f6:b4:13:24:f1:5e:a6:b8: bd:0a:e8:44:20:bf:19:a0:d0:52:4e:24:1a:89:1d:fa:56:41: f7:00:34:76:ed:03:36:93:fd:40:d0:42:a0:ee:df:18:f1:cd: 83:2f:3a:9b:4a:c5:40:ed:af:c2:e7:cd:50:23:60:76:d9:cd: 3c:9f:2a:f1:f4:a7:4c:13:4c:ab:69:cb:40:90:ba:d4:6f:c2: 14:6a:b2:87:df:7f:18:8d:72:ce:a4:7d:d3:0e:ad:3d:0e:2b: 2e:56:28:72:b9:14:e0:8b:21:4e:c1:07:20:7c:d7:d6:23:cb: 14:71:3e:0a:58:ef:e9:12:86:ce:a1:c7:3e:0c:01:1c:b5:92: ac:ef:ac:da:82:5f:1f:82:16:f6:d6:df:91:a1:21:8e:5c:66: 05:78:ff:53:de:08:56:a5:32:2e:a7:fc:dd:0b:e3:ed:6a:29: 74:b6:0a:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUezOJ2XtnthQ7Nv5+a2gxpWIhnUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNDExMjUwNTQ3MjJaFw0yNDExMjgxMTE1MjJaMDMxMTAvBgNV BAMTKDI0MUExMjMyODRFNzEyRjBBQjM5QkZDNDdBOTc3OTNBNjAwNzg2OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3mVh9XDb+6clF0yZu6+75WZwX iCMfDyk034HRqY73ei1dLiu8Rqq0HOHM6Ytu77A5WgAgmpOKP1rAXPHq6b/zqPWk pnV6LKpatRSp5h5yz3Vm4c+EGHhngdKJIOhGp34o+bCgLyajagDIsvWQjAQrQ2WG fm7Mlb1TN4IZUkLXRNjGkCKzQn0pTsf21lezRZD+i1hwKCzQ16E4k9vKy3ed39mm pNk9jB5zT5W3kQg+Ophmez/FWsqqZcE/v0PFP1Wz9hfCHtDifLoinqKmeoTcr+1O wF0oqWaEnSs4xp8BQ55kq56xPywmEeGCJmgsPSu+1YDxH9RofsxyHMe4opIZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJBoSMoTnEvCrOb/Eepd5OmAHhpEwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAHdOmvj3Et3OBnS6fEN9xR2DZ3/GejEi5ap oEiASggaXCNSMYYj8MynE9A7T1oudcTLMnPY+4KiSKlUPHSuAoC/C9nxucem6uOn 5InuvInvx8L2tBMk8V6muL0K6EQgvxmg0FJOJBqJHfpWQfcANHbtAzaT/UDQQqDu 3xjxzYMvOptKxUDtr8LnzVAjYHbZzTyfKvH0p0wTTKtpy0CQutRvwhRqsofffxiN cs6kfdMOrT0OKy5WKHK5FOCLIU7BByB819YjyxRxPgpY7+kShs6hxz4MARy1kqzv rNqCXx+CFvbW35GhIY5cZgV4/1PeCFalMi6n/N0L4+1qKXS2Ctc= -----END CERTIFICATE-----Generated at Mon Nov 25 07:18:32 2024 by rpki-client on console-ams.rpki-client.org