$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: KKgAaQlmo+bfpN6Qxsp678NeflbO1NRELPjf0u5PrgU= Subject key identifier: 7F:79:93:30:F3:03:2A:C6:96:30:1F:00:4E:CB:F8:91:FE:F3:14:F7 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 52E46F93610E5E7F1DDF121A20FB13F57A40C3C3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: 4D Signing time: Thu 21 Nov 2024 10:20:51 +0000 Manifest this update: Thu 21 Nov 2024 10:15:51 +0000 Manifest next update: Sun 24 Nov 2024 14:40:51 +0000 Files and hashes: 1: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: qz9gkkaT5gjEW5IKUp/t4G7tipALQOBC2f4F6gPlyJ0=) 2: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: r+NcYn+t5rMmjNx2JWkC72GwMhJHESlVZs6P4b6ukaU=) 3: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: nh6U1jEVnaTW0Gifl3oPSDnWmB1QgYNcYbxopiQrM4I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:e4:6f:93:61:0e:5e:7f:1d:df:12:1a:20:fb:13:f5:7a:40:c3:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Nov 21 10:15:51 2024 GMT Not After : Nov 24 14:40:51 2024 GMT Subject: CN=7F799330F3032AC696301F004ECBF891FEF314F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:2b:13:0e:2b:22:34:e9:07:b5:83:6d:f7: ef:fd:dd:61:9e:53:4d:26:86:b4:1f:70:55:8d:e7: 85:e3:a2:84:1a:c2:79:d3:70:45:c1:6a:fc:3f:a2: d1:25:c5:b3:1d:75:5e:29:29:d7:3b:a9:0b:e8:54: 2b:d2:7b:e8:c0:49:d1:0f:41:d8:67:51:f3:24:75: 31:42:7f:05:33:46:48:83:54:a8:bd:87:dd:e9:1e: d5:77:c6:d1:77:49:55:66:7d:22:9e:f4:0c:a7:c6: af:63:2e:e9:d1:e6:8e:f6:60:2f:09:5e:94:66:c0: 0e:89:c8:ab:39:13:d5:92:76:c6:70:47:f1:1d:64: 63:17:a8:a2:30:7b:fc:ee:b0:ac:30:fa:11:5b:b6: b9:cf:dd:5d:a1:49:77:03:28:f4:68:5d:44:40:b2: 36:26:ff:d8:0b:91:a0:f0:a6:b7:64:33:4e:df:f9: 8c:82:ce:4a:dc:f5:7b:ae:ea:1c:6a:43:e2:d9:14: 61:5e:2c:41:39:dc:81:ba:92:f4:72:61:f8:53:f0: 49:3e:20:46:8d:70:9a:58:1e:ff:a6:d1:4a:39:c6: a7:53:7c:c5:e7:ca:a5:5c:ef:26:c0:4d:c9:d1:74: 24:90:50:7e:e7:cf:54:60:ac:92:59:46:0a:e8:6d: 8b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:79:93:30:F3:03:2A:C6:96:30:1F:00:4E:CB:F8:91:FE:F3:14:F7 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c7:62:b1:2e:0a:89:4c:2f:89:da:e0:98:4c:b5:4d:36:ce: fb:67:eb:bc:f1:e0:1f:ee:a0:2e:a5:a6:f4:56:bc:90:d9:50: 92:40:19:48:94:8f:d7:8e:b7:1b:75:9e:1f:b7:e1:c6:7b:e4: 91:b1:0b:fe:be:dd:7a:ff:c8:46:01:f9:18:de:2a:0e:bd:75: f7:b7:ea:64:b4:58:86:22:a7:a9:a2:ae:b7:34:b2:7e:b6:12: b8:56:c5:ba:7b:47:b9:bf:60:5e:0d:ec:e4:d1:76:cc:66:7e: 55:88:ae:7e:01:76:22:37:4b:1d:6c:b4:9c:81:d6:db:79:98: d5:a4:1b:46:d0:55:7b:df:c8:68:d7:c8:32:7d:2d:70:db:df: 1e:d0:ea:c3:c0:b5:e9:3c:e5:71:55:ac:ff:f8:04:79:d3:c8: 6a:5b:6e:51:4d:c0:ed:e9:51:6d:e9:40:a5:7e:b9:c7:9f:8a: 2d:80:3f:80:3c:bd:c9:2f:c5:5d:34:a1:4e:bf:6a:d0:ae:87: 5b:24:fc:e4:b5:ce:9d:f0:80:d0:a9:82:82:65:a0:6a:c1:af: 6d:d3:03:1b:70:a2:d8:a8:88:b3:28:9f:c9:7b:0e:cd:f6:01: 16:3d:62:b3:55:ec:cd:04:18:45:7a:09:b8:86:ac:7b:de:7b: b6:da:d5:b5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUuRvk2EOXn8d3xIaIPsT9XpAw8MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNDExMjExMDE1NTFaFw0yNDExMjQxNDQwNTFaMDMxMTAvBgNV BAMTKDdGNzk5MzMwRjMwMzJBQzY5NjMwMUYwMDRFQ0JGODkxRkVGMzE0RjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCroCsTDisiNOkHtYNt9+/93WGe U00mhrQfcFWN54XjooQawnnTcEXBavw/otElxbMddV4pKdc7qQvoVCvSe+jASdEP QdhnUfMkdTFCfwUzRkiDVKi9h93pHtV3xtF3SVVmfSKe9Aynxq9jLunR5o72YC8J XpRmwA6JyKs5E9WSdsZwR/EdZGMXqKIwe/zusKww+hFbtrnP3V2hSXcDKPRoXURA sjYm/9gLkaDwprdkM07f+YyCzkrc9Xuu6hxqQ+LZFGFeLEE53IG6kvRyYfhT8Ek+ IEaNcJpYHv+m0Uo5xqdTfMXnyqVc7ybATcnRdCSQUH7nz1RgrJJZRgrobYs/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUf3mTMPMDKsaWMB8ATsv4kf7zFPcwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFrHYrEuColML4na4JhMtU02zvtn67zx4B/u oC6lpvRWvJDZUJJAGUiUj9eOtxt1nh+34cZ75JGxC/6+3Xr/yEYB+RjeKg69dfe3 6mS0WIYip6mirrc0sn62ErhWxbp7R7m/YF4N7OTRdsxmflWIrn4BdiI3Sx1stJyB 1tt5mNWkG0bQVXvfyGjXyDJ9LXDb3x7Q6sPAtek85XFVrP/4BHnTyGpbblFNwO3p UW3pQKV+ucefii2AP4A8vckvxV00oU6/atCuh1sk/OS1zp3wgNCpgoJloGrBr23T AxtwotioiLMon8l7Ds32ARY9YrNV7M0EGEV6CbiGrHvee7ba1bU= -----END CERTIFICATE-----Generated at Thu Nov 21 11:03:06 2024 by rpki-client on console-fra.rpki-client.org