$ rpki-client -vvf repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft File: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft (raw, json) Hash identifier: 9miG3A65kpOD0BjlT8JA+Fa1HUzITA3xp3inDP1BCUk= Subject key identifier: B5:8D:40:05:5D:4B:D1:E3:1A:63:95:4A:40:E3:21:A5:3B:CE:F5:6C Authority key identifier: AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 Certificate issuer: /CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Certificate serial: 4DB43AC661E8F6EE2EC9F512FE2FB078B8F20D57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft Manifest number: 0206 Signing time: Thu 21 Nov 2024 07:52:12 +0000 Manifest this update: Thu 21 Nov 2024 07:47:12 +0000 Manifest next update: Sun 24 Nov 2024 17:11:12 +0000 Files and hashes: 1: AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl (hash: hV/rCP5SbQMcDIr5t9gZ/dxEKamlw3Glc2IxWmy2HWg=) 2: 3130332e3137322e32332e302f32342d3234203d3e20313437313237.roa (hash: 8PoVgFfgdv0P+Y4Af6XkrWx9EOtSeERWvAdTwZHIcYM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b4:3a:c6:61:e8:f6:ee:2e:c9:f5:12:fe:2f:b0:78:b8:f2:0d:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6 Validity Not Before: Nov 21 07:47:12 2024 GMT Not After : Nov 24 17:11:12 2024 GMT Subject: CN=B58D40055D4BD1E31A63954A40E321A53BCEF56C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8b:3c:c8:66:35:a8:d3:02:a2:05:4c:2d:6c: a1:c8:13:6d:ca:e3:d2:26:36:7e:0b:a8:60:42:22: 8b:c4:ee:3f:c3:e9:3a:39:f2:31:ae:5e:4b:fe:62: 1e:be:76:9a:e2:b7:af:ce:54:8b:d1:03:5e:db:b3: 7e:fb:33:35:10:da:fe:4b:05:42:dd:dc:8d:76:0b: 49:48:f9:91:47:98:c7:b7:c8:3e:be:1b:09:07:3e: 7e:9e:fa:2b:22:28:f5:83:b3:9c:5f:b8:4c:08:e4: 4a:85:72:b7:89:bf:de:51:4d:27:c4:57:e7:90:8b: 53:cc:db:78:c7:4e:ad:ca:72:c0:b8:64:5a:75:dd: c6:25:07:f5:46:99:3a:ac:68:82:25:bb:68:05:05: da:10:d2:5e:87:2c:b3:8e:c5:be:bd:ef:c0:dd:7f: 53:8e:8a:18:35:9d:75:89:ca:8e:da:f5:f1:60:ba: 78:ef:8e:74:e5:67:b7:dd:37:e9:29:7f:b2:e9:27: 29:1f:b6:b8:2e:b5:0b:c7:76:3a:74:00:6f:00:93: ba:b1:d5:9c:db:07:9b:e0:a1:ab:e2:2b:b7:3b:c7: aa:60:4f:e8:e0:31:70:77:21:91:60:c6:50:16:81: 8f:75:f1:4a:a0:06:ef:ce:a6:8d:ac:ec:db:86:79: 00:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:8D:40:05:5D:4B:D1:E3:1A:63:95:4A:40:E3:21:A5:3B:CE:F5:6C X509v3 Authority Key Identifier: keyid:AF:95:8D:E0:EC:E8:30:B2:C0:7C:1A:58:CE:91:5F:DB:82:C3:C2:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c9de0c39-84d5-4405-954d-4d3d712693ce/0/AF958DE0ECE830B2C07C1A58CE915FDB82C3C2F6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:e5:62:cf:8d:80:c6:e8:9d:72:f3:ab:41:71:95:20:9e:94: 9e:37:a9:39:1b:41:18:73:a7:4c:8a:66:3f:78:af:20:fd:cc: 13:ce:25:3c:aa:54:a1:43:50:2f:47:fd:e7:ed:4c:77:70:c3: 76:0a:6c:cd:87:19:3a:3d:fb:15:73:4d:e9:d4:9a:fe:3f:7e: 87:10:c1:b3:56:d5:60:22:c0:4a:73:8d:35:98:07:79:c3:ed: 93:4e:e9:e9:90:21:14:76:13:9c:6c:a7:fa:1c:04:e0:c5:3d: 49:7d:8c:36:80:a7:1e:44:13:3d:1a:05:40:ab:2c:15:86:19: a4:67:0c:cc:19:4e:31:ae:ad:ca:97:05:88:e7:ca:cd:14:69: 9c:40:1a:93:2a:8c:72:15:94:82:72:49:df:6d:63:3f:f8:a1: 37:68:53:e5:77:a8:e9:d8:60:7e:63:aa:8b:ba:a9:df:5b:3f: 74:44:f9:fb:9f:33:d5:0f:55:78:74:7f:d9:be:35:05:e6:23: a4:d6:c7:fd:2c:eb:83:fb:b7:6a:07:fb:86:c8:08:41:1e:be: dd:74:c4:34:ff:1c:75:20:86:a3:eb:74:03:e5:78:87:cd:65: d3:a4:be:f0:eb:35:6d:4e:fb:76:b3:14:c1:fc:78:f7:f1:c4: d0:25:6f:94 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTbQ6xmHo9u4uyfUS/i+weLjyDVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4 MkMzQzJGNjAeFw0yNDExMjEwNzQ3MTJaFw0yNDExMjQxNzExMTJaMDMxMTAvBgNV BAMTKEI1OEQ0MDA1NUQ0QkQxRTMxQTYzOTU0QTQwRTMyMUE1M0JDRUY1NkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsizzIZjWo0wKiBUwtbKHIE23K 49ImNn4LqGBCIovE7j/D6To58jGuXkv+Yh6+dprit6/OVIvRA17bs377MzUQ2v5L BULd3I12C0lI+ZFHmMe3yD6+GwkHPn6e+isiKPWDs5xfuEwI5EqFcreJv95RTSfE V+eQi1PM23jHTq3KcsC4ZFp13cYlB/VGmTqsaIIlu2gFBdoQ0l6HLLOOxb6978Dd f1OOihg1nXWJyo7a9fFgunjvjnTlZ7fdN+kpf7LpJykftrgutQvHdjp0AG8Ak7qx 1ZzbB5vgoaviK7c7x6pgT+jgMXB3IZFgxlAWgY918UqgBu/Opo2s7NuGeQBXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtY1ABV1L0eMaY5VKQOMhpTvO9WwwHwYDVR0j BBgwFoAUr5WN4OzoMLLAfBpYzpFf24LDwvYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OWRlMGMzOS04NGQ1LTQ0MDUtOTU0ZC00ZDNkNzEyNjkzY2UvMC9BRjk1OERFMEVD RTgzMEIyQzA3QzFBNThDRTkxNUZEQjgyQzNDMkY2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVGREI4MkMz QzJGNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzlkZTBjMzktODRkNS00NDA1LTk1 NGQtNGQzZDcxMjY5M2NlLzAvQUY5NThERTBFQ0U4MzBCMkMwN0MxQTU4Q0U5MTVG REI4MkMzQzJGNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA7lYs+NgMbonXLzq0FxlSCelJ43qTkbQRhz p0yKZj94ryD9zBPOJTyqVKFDUC9H/eftTHdww3YKbM2HGTo9+xVzTenUmv4/focQ wbNW1WAiwEpzjTWYB3nD7ZNO6emQIRR2E5xsp/ocBODFPUl9jDaApx5EEz0aBUCr LBWGGaRnDMwZTjGurcqXBYjnys0UaZxAGpMqjHIVlIJySd9tYz/4oTdoU+V3qOnY YH5jqou6qd9bP3RE+fufM9UPVXh0f9m+NQXmI6TWx/0s64P7t2oH+4bICEEevt10 xDT/HHUghqPrdAPleIfNZdOkvvDrNW1O+3azFMH8ePfxxNAlb5Q= -----END CERTIFICATE-----Generated at Thu Nov 21 09:17:39 2024 by rpki-client on console-fra.rpki-client.org