$ rpki-client -vvf repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft File: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft (raw, json) Hash identifier: dUSEpLzZwVLWSSRTLUmumRj/4Va0Ur5GFV3gsobrqmw= Subject key identifier: 86:FC:5C:EF:98:1F:15:05:C2:7F:B9:38:BA:3C:6F:00:AF:16:F7:52 Authority key identifier: BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 Certificate issuer: /CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Certificate serial: 5D369FE306A6E82A7D74C948D5C920B764392ABF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft Manifest number: 0C Signing time: Wed 26 Jun 2024 09:40:45 +0000 Manifest this update: Wed 26 Jun 2024 09:35:45 +0000 Manifest next update: Sat 29 Jun 2024 16:10:45 +0000 Files and hashes: 1: 3136302e32302e33382e302f32342d3234203d3e20313532373637.roa (hash: qz9gkkaT5gjEW5IKUp/t4G7tipALQOBC2f4F6gPlyJ0=) 2: BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl (hash: ZX5vN6jD52WiRfuMXrenRfyIrxbPyZwu5zxEFhmsMyk=) 3: 3136302e32302e33392e302f32342d3234203d3e20313532373637.roa (hash: r+NcYn+t5rMmjNx2JWkC72GwMhJHESlVZs6P4b6ukaU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Jun 2024 22:26:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:36:9f:e3:06:a6:e8:2a:7d:74:c9:48:d5:c9:20:b7:64:39:2a:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244 Validity Not Before: Jun 26 09:35:45 2024 GMT Not After : Jun 29 16:10:45 2024 GMT Subject: CN=86FC5CEF981F1505C27FB938BA3C6F00AF16F752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:55:69:09:8b:65:d2:ed:7b:23:27:94:c6:db: 5f:56:16:1e:ed:a7:c5:8c:25:37:6e:db:c3:bb:da: 80:1b:9d:e1:82:bf:e2:15:d9:87:e1:63:78:ba:62: 51:e3:2d:b7:a3:45:81:d9:69:6a:67:b0:14:f4:54: bd:11:da:5b:b8:29:6f:90:db:ad:ed:a7:ef:ad:16: 5f:88:41:8f:8a:21:7f:e6:16:e0:fc:d0:84:83:75: c7:a3:26:e3:3e:6e:f7:b6:ff:0d:92:89:80:d9:1d: c0:3f:0c:59:c6:fc:42:42:f6:bd:52:3e:8c:db:1f: 65:4b:11:fd:7e:c8:32:47:6e:16:01:c2:05:4b:ef: b2:9f:35:7e:cd:31:18:60:2e:0d:fc:05:72:1d:ed: 64:f6:6c:32:18:b4:94:b5:e1:0c:7f:cb:8e:55:17: 92:a1:a4:ed:fa:47:99:5d:da:7a:58:f1:ff:52:de: a7:0e:f4:14:c9:13:6f:e1:68:71:7e:50:54:03:8d: 51:97:cb:71:6f:90:e6:96:bf:e2:a4:b9:dc:6b:81: c1:be:24:6b:3a:fe:c8:6d:61:58:a5:9a:23:e2:5f: 6b:14:43:17:6e:ca:d3:56:20:da:83:99:89:42:9f: b5:10:81:48:a1:4f:1f:c3:69:4b:d0:a9:87:f7:ab: cb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:FC:5C:EF:98:1F:15:05:C2:7F:B9:38:BA:3C:6F:00:AF:16:F7:52 X509v3 Authority Key Identifier: keyid:BC:A0:C1:EF:5A:4A:B3:AE:F4:25:E1:5A:B8:9A:19:CD:E5:68:82:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dfe7dacc-2b45-4141-9775-f1bb9f052396/0/BCA0C1EF5A4AB3AEF425E15AB89A19CDE5688244.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:d7:81:12:14:8d:31:41:c6:5e:11:cf:3d:e2:a4:55:37:48: 06:4d:9e:fb:ae:c1:8c:20:71:51:18:8f:d0:0f:1d:a2:07:78: b4:5d:28:d6:86:26:1a:be:0e:cd:67:26:d0:b5:10:3d:ea:f2: aa:85:be:75:50:03:b7:6f:fb:2b:02:1c:4c:51:19:15:1c:34: 18:db:f7:c7:d9:38:c0:d7:00:d5:60:cd:f5:9e:1e:da:b7:79: 94:15:4f:2d:c9:fe:19:5b:3b:b0:af:3f:94:1a:af:5c:8b:8a: 74:4b:44:5c:d8:a0:49:65:72:b3:ba:a8:b8:50:2b:39:97:9c: 2a:dc:b9:e7:34:ee:0e:be:1b:9d:c1:ca:ff:6d:01:50:61:16: 54:3f:38:2c:f4:1e:3f:4b:71:1c:18:07:e8:6e:13:e7:6c:9e: 38:20:95:df:b6:23:df:69:10:18:a7:9f:de:54:f0:51:de:ac: a7:20:d1:38:2b:7f:7a:fb:e0:70:76:41:70:58:d6:a6:08:a7: e0:7d:c8:2c:dc:4a:c1:fd:9f:af:06:d8:9f:ad:b8:7c:1a:b0: 01:57:62:c3:f5:c7:b5:21:0c:e8:4a:cd:f6:bf:c7:10:0e:4b: a3:bc:c3:56:bb:2b:b3:25:d4:8b:a3:55:8c:a8:f3:9e:69:8c: ee:a0:7f:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXTaf4wam6Cp9dMlI1ckgt2Q5Kr8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RF NTY4ODI0NDAeFw0yNDA2MjYwOTM1NDVaFw0yNDA2MjkxNjEwNDVaMDMxMTAvBgNV BAMTKDg2RkM1Q0VGOTgxRjE1MDVDMjdGQjkzOEJBM0M2RjAwQUYxNkY3NTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgVWkJi2XS7XsjJ5TG219WFh7t p8WMJTdu28O72oAbneGCv+IV2YfhY3i6YlHjLbejRYHZaWpnsBT0VL0R2lu4KW+Q 263tp++tFl+IQY+KIX/mFuD80ISDdcejJuM+bve2/w2SiYDZHcA/DFnG/EJC9r1S PozbH2VLEf1+yDJHbhYBwgVL77KfNX7NMRhgLg38BXId7WT2bDIYtJS14Qx/y45V F5KhpO36R5ld2npY8f9S3qcO9BTJE2/haHF+UFQDjVGXy3FvkOaWv+KkudxrgcG+ JGs6/shtYVilmiPiX2sUQxduytNWINqDmYlCn7UQgUihTx/DaUvQqYf3q8uBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhvxc75gfFQXCf7k4ujxvAK8W91IwHwYDVR0j BBgwFoAUvKDB71pKs670JeFauJoZzeVogkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZmU3ZGFjYy0yYjQ1LTQxNDEtOTc3NS1mMWJiOWYwNTIzOTYvMC9CQ0EwQzFFRjVB NEFCM0FFRjQyNUUxNUFCODlBMTlDREU1Njg4MjQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5Q0RFNTY4 ODI0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGZlN2RhY2MtMmI0NS00MTQxLTk3 NzUtZjFiYjlmMDUyMzk2LzAvQkNBMEMxRUY1QTRBQjNBRUY0MjVFMTVBQjg5QTE5 Q0RFNTY4ODI0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGbXgRIUjTFBxl4Rzz3ipFU3SAZNnvuuwYwg cVEYj9APHaIHeLRdKNaGJhq+Ds1nJtC1ED3q8qqFvnVQA7dv+ysCHExRGRUcNBjb 98fZOMDXANVgzfWeHtq3eZQVTy3J/hlbO7CvP5Qar1yLinRLRFzYoEllcrO6qLhQ KzmXnCrcuec07g6+G53Byv9tAVBhFlQ/OCz0Hj9LcRwYB+huE+dsnjggld+2I99p EBinn95U8FHerKcg0Tgrf3r74HB2QXBY1qYIp+B9yCzcSsH9n68G2J+tuHwasAFX YsP1x7UhDOhKzfa/xxAOS6O8w1a7K7Ml1IujVYyo855pjO6gf/0= -----END CERTIFICATE-----Generated at Wed Jun 26 12:54:36 2024 by rpki-client on console-fra.rpki-client.org