$ rpki-client -vvf repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft File: 432AE9E2B00941EF8925409E82CA40508A4688B1.mft (raw, json) Hash identifier: 9dvgLZ3QUqzHuQYF3HVljAearGNUAFKHdE5nYvqKbXM= Subject key identifier: 09:EF:88:E1:1F:5A:67:12:19:0B:62:27:47:6A:DA:9C:17:BD:F3:FC Authority key identifier: 43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 Certificate issuer: /CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Certificate serial: 3A1CA53BE0DD2A3085079CA122A2DF6D0CE0D945 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft Manifest number: 8F Signing time: Fri 22 Nov 2024 08:41:57 +0000 Manifest this update: Fri 22 Nov 2024 08:36:57 +0000 Manifest next update: Mon 25 Nov 2024 17:33:57 +0000 Files and hashes: 1: 432AE9E2B00941EF8925409E82CA40508A4688B1.crl (hash: IQiTPbFFnin43wq9dz4PfEYgTSNHAVwNdSuz2OyzfiU=) 2: 3135372e31302e3136302e302f32332d3234203d3e20313336303532.roa (hash: JvWayg5dc2xDP/4DFHc9KwfldN6lyp17KnD2mXZm0oQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 14:24:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:1c:a5:3b:e0:dd:2a:30:85:07:9c:a1:22:a2:df:6d:0c:e0:d9:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432AE9E2B00941EF8925409E82CA40508A4688B1 Validity Not Before: Nov 22 08:36:57 2024 GMT Not After : Nov 25 17:33:57 2024 GMT Subject: CN=09EF88E11F5A6712190B6227476ADA9C17BDF3FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fa:6c:f4:1c:8e:92:37:25:15:99:8e:62:f2: 81:ea:d2:ec:a0:19:05:8d:82:54:a7:a9:d7:47:e7: 5d:50:1a:18:fc:07:d6:18:ea:5c:78:a8:eb:f5:38: 51:73:5c:2f:e2:4b:12:31:5f:a5:9e:b5:11:68:7b: 12:92:d8:fb:d7:b3:d7:c9:b5:76:ea:98:c2:90:c4: d5:77:aa:8b:64:d2:f2:99:2b:f1:d6:b7:c0:22:12: 63:85:20:80:8b:24:43:39:0f:fa:ef:32:80:ba:0b: d6:d0:6f:d8:4e:85:6c:6a:22:49:43:e1:45:8e:11: 1d:3d:95:ae:df:18:92:74:53:1d:42:a5:03:35:6b: 24:67:d2:e7:be:f8:1e:15:32:f4:47:8c:6f:27:43: 9c:74:1c:2f:c4:63:a1:80:68:11:76:27:3c:18:46: fb:90:78:c9:f8:d2:d0:58:90:db:0a:4f:9e:ab:f2: 1c:c2:cd:b9:40:0f:c1:15:f6:d1:24:f0:95:18:06: 88:f4:81:fe:87:30:36:8a:31:bb:0b:45:c0:05:c1: 98:0f:cb:6d:66:7b:20:c3:7b:c1:36:13:7c:0e:93: 96:5e:95:78:31:62:2a:a4:19:9f:2a:30:3e:68:b0: 8e:8c:38:39:00:89:5a:a3:33:57:1a:64:27:18:5e: aa:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:EF:88:E1:1F:5A:67:12:19:0B:62:27:47:6A:DA:9C:17:BD:F3:FC X509v3 Authority Key Identifier: keyid:43:2A:E9:E2:B0:09:41:EF:89:25:40:9E:82:CA:40:50:8A:46:88:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/432AE9E2B00941EF8925409E82CA40508A4688B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ec2fc1d4-37a6-4943-b4c6-6d8e9b4e5591/0/432AE9E2B00941EF8925409E82CA40508A4688B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:6f:cb:69:a5:6f:88:9f:be:35:2d:b7:0a:7f:d1:f9:9f:97: 80:49:65:db:b2:5a:83:ce:67:ab:6e:9d:bd:ff:1f:20:3f:fb: 49:0a:0b:b8:bf:be:bd:03:9f:58:6d:bd:6c:20:b5:6d:9a:db: f4:24:58:c9:2e:c7:6b:e0:26:dd:fb:05:04:0c:bb:4d:7e:6a: 03:7a:bd:d9:60:ae:5f:94:1d:a8:a8:4e:ee:d9:aa:2a:0b:b1: 6f:ac:7a:69:39:7c:3b:cb:6c:67:34:b7:e6:0d:85:ef:17:6c: 47:c9:ff:d6:fa:41:93:42:8b:7f:96:d9:76:7b:40:5b:9d:04: c5:da:0a:80:fd:db:2f:d0:e7:d5:64:7d:99:41:f9:c0:e0:2f: f1:92:81:19:13:67:f4:b4:f0:71:c3:5e:d9:d1:1f:a9:25:62: 24:5f:af:2c:db:33:05:15:da:7f:43:d8:3c:e8:4d:d3:75:0f: d2:5b:4b:4d:8b:db:9e:31:ed:6e:6b:5d:07:c2:7b:73:41:d1: 37:c8:d9:f1:9d:11:86:c2:ac:70:cb:4c:3f:65:ca:46:65:7d: 98:42:82:01:23:2e:0c:16:3e:eb:ab:62:44:7c:60:08:f8:00: 25:72:b5:5a:55:23:33:29:4f:f1:55:b3:c9:a6:f4:96:89:30: 06:57:be:9e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOhylO+DdKjCFB5yhIqLfbQzg2UUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4 QTQ2ODhCMTAeFw0yNDExMjIwODM2NTdaFw0yNDExMjUxNzMzNTdaMDMxMTAvBgNV BAMTKDA5RUY4OEUxMUY1QTY3MTIxOTBCNjIyNzQ3NkFEQTlDMTdCREYzRkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2+mz0HI6SNyUVmY5i8oHq0uyg GQWNglSnqddH511QGhj8B9YY6lx4qOv1OFFzXC/iSxIxX6WetRFoexKS2PvXs9fJ tXbqmMKQxNV3qotk0vKZK/HWt8AiEmOFIICLJEM5D/rvMoC6C9bQb9hOhWxqIklD 4UWOER09la7fGJJ0Ux1CpQM1ayRn0ue++B4VMvRHjG8nQ5x0HC/EY6GAaBF2JzwY RvuQeMn40tBYkNsKT56r8hzCzblAD8EV9tEk8JUYBoj0gf6HMDaKMbsLRcAFwZgP y21meyDDe8E2E3wOk5ZelXgxYiqkGZ8qMD5osI6MODkAiVqjM1caZCcYXqpXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUCe+I4R9aZxIZC2InR2ranBe98/wwHwYDVR0j BBgwFoAUQyrp4rAJQe+JJUCegspAUIpGiLEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YzJmYzFkNC0zN2E2LTQ5NDMtYjRjNi02ZDhlOWI0ZTU1OTEvMC80MzJBRTlFMkIw MDk0MUVGODkyNTQwOUU4MkNBNDA1MDhBNDY4OEIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQwNTA4QTQ2 ODhCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWMyZmMxZDQtMzdhNi00OTQzLWI0 YzYtNmQ4ZTliNGU1NTkxLzAvNDMyQUU5RTJCMDA5NDFFRjg5MjU0MDlFODJDQTQw NTA4QTQ2ODhCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADZvy2mlb4ifvjUttwp/0fmfl4BJZduyWoPO Z6tunb3/HyA/+0kKC7i/vr0Dn1htvWwgtW2a2/QkWMkux2vgJt37BQQMu01+agN6 vdlgrl+UHaioTu7ZqioLsW+semk5fDvLbGc0t+YNhe8XbEfJ/9b6QZNCi3+W2XZ7 QFudBMXaCoD92y/Q59VkfZlB+cDgL/GSgRkTZ/S08HHDXtnRH6klYiRfryzbMwUV 2n9D2DzoTdN1D9JbS02L254x7W5rXQfCe3NB0TfI2fGdEYbCrHDLTD9lykZlfZhC ggEjLgwWPuurYkR8YAj4ACVytVpVIzMpT/FVs8mm9JaJMAZXvp4= -----END CERTIFICATE-----Generated at Fri Nov 22 09:30:03 2024 by rpki-client on console-fra.rpki-client.org