$ rpki-client -vvf repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft File: 4B35C20AD3085CF1B9FAEA049AD742539E090205.mft (raw, json) Hash identifier: HOi9dLeXSalsZk7ScPvazLYSysv2L1EU2eqJaoDh5ps= Subject key identifier: ED:54:B8:82:91:DC:64:87:01:AB:BA:E4:54:FB:1E:61:4B:3C:89:0A Authority key identifier: 4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 Certificate issuer: /CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Certificate serial: 3D16E700EE218EDBDAB6A66BADF8DEBC76F474F7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft Manifest number: 01E4 Signing time: Thu 21 Nov 2024 23:21:12 +0000 Manifest this update: Thu 21 Nov 2024 23:16:12 +0000 Manifest next update: Mon 25 Nov 2024 03:46:12 +0000 Files and hashes: 1: 3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa (hash: iVLgXl+/FcmdnWNOo5g53M4iCLOtqiEhcer+olz9fkY=) 2: 4B35C20AD3085CF1B9FAEA049AD742539E090205.crl (hash: RCaMAFZRa5zfh+KV1UBw8SWMqtbgdqPPmFf3Y9En/bk=) 3: 3130332e3137392e36352e302f32342d3234203d3e20313439333335.roa (hash: 8XaOmqzkgvNPsq8mFl1LnDNSOw7VaF7UDTMiKP8qjGo=) 4: 3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa (hash: 8owtr9klezf40NK03ApAgJRvLwcDMSzdndMBQ1kedfg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 01:21:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:16:e7:00:ee:21:8e:db:da:b6:a6:6b:ad:f8:de:bc:76:f4:74:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Validity Not Before: Nov 21 23:16:12 2024 GMT Not After : Nov 25 03:46:12 2024 GMT Subject: CN=ED54B88291DC648701ABBAE454FB1E614B3C890A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d4:e5:e9:35:23:0e:05:49:15:1d:69:5c:37: d0:4a:01:69:aa:d8:87:62:b8:9f:c3:f3:5d:f0:ad: 7c:02:5a:03:8a:5f:0e:cd:9c:f2:f1:5e:3e:9e:c4: 4a:73:81:ea:80:46:d5:a5:e8:ef:d8:7f:20:ee:a3: 88:f9:27:aa:f3:82:17:b9:1d:8b:54:f1:20:eb:98: 8e:53:a0:ed:7f:99:dc:74:ec:c5:24:c0:61:61:e7: 46:68:8d:2d:57:29:02:18:e3:25:81:a0:05:75:1d: 95:0c:18:c3:e8:bd:38:16:35:86:2a:71:f7:d2:6e: ba:5f:f3:1a:98:51:05:b1:8a:55:36:8a:3c:6c:f9: fc:17:36:8b:1e:e6:81:05:36:f0:04:92:a7:db:95: 2b:41:25:c9:26:b9:58:71:84:68:93:fe:3b:64:cf: 1a:63:cf:56:e6:f9:93:12:1f:de:96:5c:11:4c:fc: a6:99:ba:37:0c:aa:d3:1e:44:5e:b0:c0:c0:32:31: 8e:5d:02:c9:02:9a:3d:01:57:e7:db:c6:13:75:8c: 0f:a3:3d:90:33:5f:72:ee:49:b4:34:8e:cd:a5:4a: 18:1d:4f:68:a3:f0:67:71:cd:1d:b9:24:80:c4:01: 69:66:48:c6:05:db:0d:28:8a:78:25:57:ef:13:01: 74:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:54:B8:82:91:DC:64:87:01:AB:BA:E4:54:FB:1E:61:4B:3C:89:0A X509v3 Authority Key Identifier: keyid:4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:8e:d5:98:c5:a6:b4:d4:5e:19:e6:a8:5e:00:db:99:80:bc: 07:70:32:37:09:62:c7:4c:a6:0c:7a:69:da:17:45:0d:b4:fe: 35:8f:34:36:11:e8:3e:01:57:38:92:8f:22:fe:d2:34:a2:d0: 5b:1c:3e:e1:68:7c:18:a5:ce:72:b6:bd:b9:50:51:45:47:45: 46:f0:d8:9f:f9:af:11:ac:0d:80:87:0d:2b:d9:4d:cf:ab:27: ef:d7:0b:68:61:35:84:0f:e1:3d:f4:47:0c:ab:e1:45:7e:f9: 3a:43:62:c3:4f:e9:14:9e:11:6e:7c:1c:62:01:da:9f:1a:c5: 2f:26:43:b9:89:10:24:aa:e5:eb:1d:9c:24:d5:53:68:52:21: c5:e5:c9:8c:89:bc:60:5b:ee:ac:28:5a:a9:8f:14:90:36:24: 16:7e:51:8e:2d:c1:a1:0c:dc:26:63:35:e3:28:c0:86:d6:3a: d5:e8:cd:2d:4a:d2:e3:16:4a:0d:cb:35:ca:3e:10:eb:07:59: 51:2f:f1:69:e4:4f:93:c3:9c:a9:7e:c9:06:f8:78:92:02:71: e2:5c:a8:ca:ce:e4:a4:36:e5:c4:27:95:34:30:49:71:b8:89: 2a:cc:b2:8e:8e:21:7e:a4:d2:c0:a7:9b:b4:9a:54:91:4a:d2: e6:bc:15:ab -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPRbnAO4hjtvatqZrrfjevHb0dPcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5 RTA5MDIwNTAeFw0yNDExMjEyMzE2MTJaFw0yNDExMjUwMzQ2MTJaMDMxMTAvBgNV BAMTKEVENTRCODgyOTFEQzY0ODcwMUFCQkFFNDU0RkIxRTYxNEIzQzg5MEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd1OXpNSMOBUkVHWlcN9BKAWmq 2IdiuJ/D813wrXwCWgOKXw7NnPLxXj6exEpzgeqARtWl6O/YfyDuo4j5J6rzghe5 HYtU8SDrmI5ToO1/mdx07MUkwGFh50ZojS1XKQIY4yWBoAV1HZUMGMPovTgWNYYq cffSbrpf8xqYUQWxilU2ijxs+fwXNose5oEFNvAEkqfblStBJckmuVhxhGiT/jtk zxpjz1bm+ZMSH96WXBFM/KaZujcMqtMeRF6wwMAyMY5dAskCmj0BV+fbxhN1jA+j PZAzX3LuSbQ0js2lShgdT2ij8GdxzR25JIDEAWlmSMYF2w0oinglV+8TAXS3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU7VS4gpHcZIcBq7rkVPseYUs8iQowHwYDVR0j BBgwFoAUSzXCCtMIXPG5+uoEmtdCU54JAgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzdkZTAxMy05YjU2LTQ5ZmYtOGI3OS0zNjY3YTM0NWNiOGQvMC80QjM1QzIwQUQz MDg1Q0YxQjlGQUVBMDQ5QUQ3NDI1MzlFMDkwMjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5RTA5 MDIwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzc3ZGUwMTMtOWI1Ni00OWZmLThi NzktMzY2N2EzNDVjYjhkLzAvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQy NTM5RTA5MDIwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAiO1ZjFprTUXhnmqF4A25mAvAdwMjcJYsdM pgx6adoXRQ20/jWPNDYR6D4BVziSjyL+0jSi0FscPuFofBilznK2vblQUUVHRUbw 2J/5rxGsDYCHDSvZTc+rJ+/XC2hhNYQP4T30Rwyr4UV++TpDYsNP6RSeEW58HGIB 2p8axS8mQ7mJECSq5esdnCTVU2hSIcXlyYyJvGBb7qwoWqmPFJA2JBZ+UY4twaEM 3CZjNeMowIbWOtXozS1K0uMWSg3LNco+EOsHWVEv8WnkT5PDnKl+yQb4eJICceJc qMrO5KQ25cQnlTQwSXG4iSrMso6OIX6k0sCnm7SaVJFK0ua8Fas= -----END CERTIFICATE-----Generated at Fri Nov 22 01:32:01 2024 by rpki-client on console-ams.rpki-client.org