$ rpki-client -vvf repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft File: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft (raw, json) Hash identifier: VaSKs1thvOvzvv7sT8bFOSiiSFNGcu80gz3L9g9C2ps= Subject key identifier: E7:D9:1A:A1:D6:F5:5D:DF:6C:D4:CB:3D:9C:3A:04:E0:BB:26:B0:8D Authority key identifier: 44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 Certificate issuer: /CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Certificate serial: 061531AE2B6BF60F4984E3BE74D28E431105E91E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft Manifest number: 26 Signing time: Wed 20 Nov 2024 18:22:02 +0000 Manifest this update: Wed 20 Nov 2024 18:17:02 +0000 Manifest next update: Sun 24 Nov 2024 04:25:02 +0000 Files and hashes: 1: 4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl (hash: 8vTwwrVGwRMmQ2vMx/LjKZPtVri0Ofx+2rzHZzgO56I=) 2: 3130332e3134332e3233322e302f32332d3233203d3e20313339343038.roa (hash: ABcl7hjRsw3Xa0yDPigEjdLuUfujbY1jm15mYQSG+s4=) 3: 3130332e3134332e3233322e302f32342d3234203d3e20313339343038.roa (hash: TD2xB1HLXamIjjFpw2dotgVlnTzLq7PRhXP0sb7oneE=) 4: 3130332e3134332e3233332e302f32342d3234203d3e20313339343038.roa (hash: xB/XqJ5dJTYe2nf2B7toQua0M24fdekoYi8o2PugdP4=) 5: 323430353a356534303a3a2f33322d3332203d3e20313339343038.roa (hash: iiMZJOJE0I/AUErV1vyRCE+uPLpfCmgdzT+r6epJErs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 18:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:15:31:ae:2b:6b:f6:0f:49:84:e3:be:74:d2:8e:43:11:05:e9:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4443E43239D3F5B9674F2F5B5A37711434C48AF2 Validity Not Before: Nov 20 18:17:02 2024 GMT Not After : Nov 24 04:25:02 2024 GMT Subject: CN=E7D91AA1D6F55DDF6CD4CB3D9C3A04E0BB26B08D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c9:e2:a0:f7:b3:9d:d5:bb:88:44:73:fe:4a: d8:21:81:4c:b9:fe:e8:4d:fe:fe:e7:90:5b:24:00: 03:b3:02:3b:30:59:ea:9f:95:9c:75:96:2d:a8:02: ca:93:f1:29:ff:ce:32:1e:23:1f:cc:6c:72:6e:9e: 45:ca:f5:90:75:ca:19:4b:27:bc:a9:b2:1e:28:b8: 13:fd:ff:05:95:45:d9:aa:40:35:7c:ae:c2:6a:54: 93:1e:43:73:c9:14:93:e5:dc:5b:95:2e:32:77:75: 64:a7:35:74:af:6c:07:64:12:0f:0b:cf:3d:72:1c: 63:14:39:94:2f:e3:87:02:dc:87:51:3e:c1:5a:2b: 5b:9f:e1:b8:17:f0:d5:be:5a:0e:96:b6:18:73:2d: c1:b6:2c:2d:91:2c:d9:93:9e:78:12:b8:c2:36:76: 77:66:68:37:e0:0b:54:38:ec:a5:43:fc:d4:71:93: ed:f4:11:5e:7a:53:75:bc:78:fe:68:21:d2:56:de: ea:48:53:cc:bd:c4:37:2c:e3:b2:7e:7d:65:0c:c6: c4:90:63:12:d9:06:76:6a:e0:b1:6e:81:83:9b:7a: 19:f3:aa:cc:a6:03:ae:a1:e9:ac:4a:f5:51:dd:34: 61:de:92:bd:f6:e7:dc:c1:10:cb:3b:96:ce:f2:e1: e2:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:D9:1A:A1:D6:F5:5D:DF:6C:D4:CB:3D:9C:3A:04:E0:BB:26:B0:8D X509v3 Authority Key Identifier: keyid:44:43:E4:32:39:D3:F5:B9:67:4F:2F:5B:5A:37:71:14:34:C4:8A:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4443E43239D3F5B9674F2F5B5A37711434C48AF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d6c8b3a9-4eff-460d-b01d-6ba5d99dadb9/0/4443E43239D3F5B9674F2F5B5A37711434C48AF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:17:51:98:4d:1f:30:12:38:d2:68:32:83:71:78:53:ad:6f: cc:1b:91:50:30:c6:d3:05:40:02:84:c8:d5:12:d4:b2:2c:51: c3:ab:81:6a:85:ac:ec:68:98:81:89:36:2c:2a:7c:ce:b3:26: 5a:b6:cd:dc:cb:86:cf:f1:39:88:70:24:b0:f0:d5:5c:44:6e: 9e:10:76:7b:dc:2e:b1:a4:d3:bf:dd:c0:4f:d4:b7:31:f2:3e: 02:21:85:c0:62:70:6b:1e:41:c2:2d:d9:36:b1:70:44:59:ba: 8b:4a:22:30:7c:80:1c:8b:b7:5b:4a:3b:a5:6f:c4:be:18:0a: 7c:cc:1f:ed:99:66:33:bb:4d:43:2c:28:d6:a2:68:bf:e1:a0: 0e:09:b1:5c:da:15:7d:42:31:02:04:e5:e7:64:de:fa:f5:21: 81:73:cb:84:32:a0:aa:77:b6:24:08:21:cc:75:4b:48:d6:1f: 4a:40:f6:1e:38:cc:b1:1a:c0:f7:30:1c:c5:7b:5f:f8:9c:fa: 84:18:f8:60:ea:cb:48:e3:a7:79:40:1c:4d:96:e4:ca:98:d5: b6:f1:63:8c:f9:d1:8b:ac:eb:51:16:63:0a:e6:fa:f6:f6:03: 93:ce:a9:06:eb:2d:38:ba:6b:52:4a:78:65:a4:2b:33:a6:a8: 3d:65:51:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBhUxritr9g9JhOO+dNKOQxEF6R4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQz NEM0OEFGMjAeFw0yNDExMjAxODE3MDJaFw0yNDExMjQwNDI1MDJaMDMxMTAvBgNV BAMTKEU3RDkxQUExRDZGNTVEREY2Q0Q0Q0IzRDlDM0EwNEUwQkIyNkIwOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPyeKg97Od1buIRHP+StghgUy5 /uhN/v7nkFskAAOzAjswWeqflZx1li2oAsqT8Sn/zjIeIx/MbHJunkXK9ZB1yhlL J7ypsh4ouBP9/wWVRdmqQDV8rsJqVJMeQ3PJFJPl3FuVLjJ3dWSnNXSvbAdkEg8L zz1yHGMUOZQv44cC3IdRPsFaK1uf4bgX8NW+Wg6WthhzLcG2LC2RLNmTnngSuMI2 dndmaDfgC1Q47KVD/NRxk+30EV56U3W8eP5oIdJW3upIU8y9xDcs47J+fWUMxsSQ YxLZBnZq4LFugYObehnzqsymA66h6axK9VHdNGHekr3259zBEMs7ls7y4eKxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU59kaodb1Xd9s1Ms9nDoE4LsmsI0wHwYDVR0j BBgwFoAUREPkMjnT9blnTy9bWjdxFDTEivIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NmM4YjNhOS00ZWZmLTQ2MGQtYjAxZC02YmE1ZDk5ZGFkYjkvMC80NDQzRTQzMjM5 RDNGNUI5Njc0RjJGNUI1QTM3NzExNDM0QzQ4QUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcxMTQzNEM0 OEFGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDZjOGIzYTktNGVmZi00NjBkLWIw MWQtNmJhNWQ5OWRhZGI5LzAvNDQ0M0U0MzIzOUQzRjVCOTY3NEYyRjVCNUEzNzcx MTQzNEM0OEFGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKsXUZhNHzASONJoMoNxeFOtb8wbkVAwxtMF QAKEyNUS1LIsUcOrgWqFrOxomIGJNiwqfM6zJlq2zdzLhs/xOYhwJLDw1VxEbp4Q dnvcLrGk07/dwE/UtzHyPgIhhcBicGseQcIt2TaxcERZuotKIjB8gByLt1tKO6Vv xL4YCnzMH+2ZZjO7TUMsKNaiaL/hoA4JsVzaFX1CMQIE5edk3vr1IYFzy4QyoKp3 tiQIIcx1S0jWH0pA9h44zLEawPcwHMV7X/ic+oQY+GDqy0jjp3lAHE2W5MqY1bbx Y4z50Yus61EWYwrm+vb2A5POqQbrLTi6a1JKeGWkKzOmqD1lUXo= -----END CERTIFICATE-----Generated at Wed Nov 20 21:31:15 2024 by rpki-client on console-ams.rpki-client.org