$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: RuhCPHDSlveHHV0Le9K4U/ktvl1FuRYDopdFDaCleuI= Subject key identifier: 9E:B7:11:95:4F:4C:76:36:41:CE:BC:B9:FB:5C:7A:05:BB:5B:CB:5C Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 4C624BF920101991722B40AEE2DE22925CA63248 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 3C Signing time: Tue 21 May 2024 01:11:41 +0000 Manifest this update: Tue 21 May 2024 01:06:41 +0000 Manifest next update: Fri 24 May 2024 10:00:41 +0000 Files and hashes: 1: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: JvWayg5dc2xDP/4DFHc9KwfldN6lyp17KnD2mXZm0oQ=) 2: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: 7Xb3YtPEQrFHu6FSkZ58Lf4ak1B+XM9fMcYgSpP3R6g=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 07:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:62:4b:f9:20:10:19:91:72:2b:40:ae:e2:de:22:92:5c:a6:32:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: May 21 01:06:41 2024 GMT Not After : May 24 10:00:41 2024 GMT Subject: CN=9EB711954F4C763641CEBCB9FB5C7A05BB5BCB5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b2:1f:5d:22:96:cf:2b:1e:55:f2:cc:cc:82: 25:62:01:ec:7e:8b:26:4a:10:c7:d7:3f:9f:6a:f2: 24:67:b5:b2:89:d4:8b:23:6c:d2:9f:35:0f:38:b5: 7c:13:ed:56:81:f1:c0:68:dc:3b:95:79:e7:02:76: 17:b9:b3:89:b3:ea:23:97:48:10:5d:d4:61:7d:c7: 4e:81:27:4d:4a:6a:8c:4d:44:9b:ba:2e:cd:9b:f5: 84:94:9d:88:75:4c:40:98:ad:3b:ce:47:8e:6a:3b: 23:36:7b:05:b9:c2:cf:3b:cc:2f:a0:d1:40:43:ff: e2:83:9a:e1:af:63:fb:48:fc:6c:64:70:f2:eb:59: 28:9b:eb:49:4c:19:53:58:47:00:85:9f:d1:32:78: d7:d1:7f:dd:33:c3:52:5a:85:70:27:f3:5d:22:63: cb:81:0e:c9:4f:db:f2:64:47:6c:c6:bf:a6:a5:f5: aa:9c:be:46:94:47:f9:a5:18:e8:5d:4e:4c:9a:53: d0:02:a8:2d:5c:95:a9:1a:30:1a:6b:08:de:bc:e8: b6:88:22:ba:8b:9b:3b:88:bd:2c:26:f6:28:09:b4: 17:58:0a:f7:50:09:89:25:61:47:43:bd:7b:e4:01: e0:02:53:f5:bf:62:ce:88:42:18:a9:bf:7e:05:1e: aa:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B7:11:95:4F:4C:76:36:41:CE:BC:B9:FB:5C:7A:05:BB:5B:CB:5C X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:fb:90:9d:55:c6:74:cb:89:ca:a0:9b:56:39:c7:4c:5e:5d: dd:d2:91:5e:09:cf:e1:85:9f:0a:1d:5c:f0:0b:66:30:c1:b6: 64:83:24:2a:7b:76:5e:2e:f2:15:e7:b8:1a:92:2a:67:ac:17: bd:99:0b:53:bc:89:d1:15:a7:dc:b5:56:b4:2b:df:9b:76:23: f2:aa:9c:ad:5b:11:1e:cb:f9:4a:bb:5b:33:6b:bc:53:4b:57: bc:81:a1:2a:11:15:78:88:a4:b9:44:22:81:d6:81:36:50:4c: f1:09:46:b0:ef:42:20:51:14:03:a6:c8:8a:9a:c4:ad:33:a0: a7:27:f0:d3:a0:7d:20:0a:4f:66:99:85:cf:cd:ed:5f:3e:53: 20:c7:2d:21:1e:64:eb:84:48:e1:2d:2b:de:bf:c0:73:1b:8f: 00:df:cf:64:99:c8:a8:e7:a8:09:e2:ab:2a:fb:63:75:4b:d3: 02:bb:ab:05:0f:db:46:d5:29:f6:d8:9a:d1:df:4a:a9:fe:45: 52:68:fc:5e:7f:d2:55:a5:ea:f1:b8:55:de:42:5a:01:bb:13: 2f:1e:20:32:e6:9a:b1:78:30:cc:45:f6:d7:05:49:af:82:93: cf:24:60:fd:6d:44:70:ff:cd:12:87:24:ba:51:d3:fa:37:89: db:15:b2:81 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTGJL+SAQGZFyK0Cu4t4iklymMkgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNDA1MjEwMTA2NDFaFw0yNDA1MjQxMDAwNDFaMDMxMTAvBgNV BAMTKDlFQjcxMTk1NEY0Qzc2MzY0MUNFQkNCOUZCNUM3QTA1QkI1QkNCNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6sh9dIpbPKx5V8szMgiViAex+ iyZKEMfXP59q8iRntbKJ1IsjbNKfNQ84tXwT7VaB8cBo3DuVeecCdhe5s4mz6iOX SBBd1GF9x06BJ01KaoxNRJu6Ls2b9YSUnYh1TECYrTvOR45qOyM2ewW5ws87zC+g 0UBD/+KDmuGvY/tI/GxkcPLrWSib60lMGVNYRwCFn9EyeNfRf90zw1JahXAn810i Y8uBDslP2/JkR2zGv6al9aqcvkaUR/mlGOhdTkyaU9ACqC1clakaMBprCN686LaI IrqLmzuIvSwm9igJtBdYCvdQCYklYUdDvXvkAeACU/W/Ys6IQhipv34FHqpBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnrcRlU9MdjZBzry5+1x6Bbtby1wwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL37kJ1VxnTLicqgm1Y5x0xeXd3SkV4Jz+GF nwodXPALZjDBtmSDJCp7dl4u8hXnuBqSKmesF72ZC1O8idEVp9y1VrQr35t2I/Kq nK1bER7L+Uq7WzNrvFNLV7yBoSoRFXiIpLlEIoHWgTZQTPEJRrDvQiBRFAOmyIqa xK0zoKcn8NOgfSAKT2aZhc/N7V8+UyDHLSEeZOuESOEtK96/wHMbjwDfz2SZyKjn qAniqyr7Y3VL0wK7qwUP20bVKfbYmtHfSqn+RVJo/F5/0lWl6vG4Vd5CWgG7Ey8e IDLmmrF4MMxF9tcFSa+Ck88kYP1tRHD/zRKHJLpR0/o3idsVsoE= -----END CERTIFICATE-----Generated at Tue May 21 01:48:08 2024 by rpki-client on console-ams.rpki-client.org