$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: lJR7u4680iE0L2SaQnBZriaPp5uoLC1DlaeH8I8VrkU= Subject key identifier: C9:BA:1C:BD:A5:6C:C5:6D:C7:7E:BD:BD:0C:CB:55:CC:7B:55:2E:F4 Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 0B673ABA9CB573EC65EC38DFC795F8549EC93C57 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: 41 Signing time: Sat 23 Nov 2024 17:41:09 +0000 Manifest this update: Sat 23 Nov 2024 17:36:09 +0000 Manifest next update: Wed 27 Nov 2024 03:47:09 +0000 Files and hashes: 1: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: tqotyjAH3hPNKC4KMmbJRyOeRh1hAR0CNyyT9ndAu7k=) 2: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: 5TysUWdf//ijZZADQg/kyk1hPl8L9rMcShCWekWYvss=) 3: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: QfzmBGGU9jq2v9N6kKDHfKUBNV7vYYDBeCsyQUYBBmQ=) 4: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: Jit+uJIEyqjGrv7HRmDwiYsYuySfB8Lk478TOnlXVFM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:67:3a:ba:9c:b5:73:ec:65:ec:38:df:c7:95:f8:54:9e:c9:3c:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Nov 23 17:36:09 2024 GMT Not After : Nov 27 03:47:09 2024 GMT Subject: CN=C9BA1CBDA56CC56DC77EBDBD0CCB55CC7B552EF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9a:fd:2d:88:eb:ce:48:c4:ea:c7:9a:07:6a: aa:9f:fc:95:5d:07:3b:46:b2:9b:41:0d:c1:4c:70: f8:12:7e:3e:d6:0e:c5:1e:be:d4:9c:b1:8b:17:7d: 93:fd:10:af:e0:f7:1f:91:a3:3c:ce:38:07:d2:4d: ca:f3:36:94:6c:97:95:43:ee:65:76:d8:80:26:29: e3:5d:eb:62:a2:61:d7:1b:4b:0b:d8:25:f4:ec:03: eb:2b:46:ec:cd:43:7d:d5:d9:6e:db:f3:2b:c8:4e: fc:e5:8e:27:a0:1e:33:cf:42:28:69:da:2f:35:92: b7:3b:dd:61:05:80:75:8b:2a:ea:f5:fe:44:f7:2d: ac:44:3c:ef:c7:ea:e9:f3:fb:4f:e7:d5:13:e8:10: b4:56:f1:f4:5e:6d:60:7a:bf:aa:2f:52:c7:d6:69: 53:c4:86:d4:4d:64:9b:af:bf:2e:b6:7a:aa:51:14: 1f:d8:a1:ce:ff:a8:11:1f:db:8c:ef:2d:58:84:da: bb:34:d9:87:01:46:43:60:a6:02:05:46:39:35:72: 57:4a:be:eb:39:4e:87:73:0c:ee:6f:33:0a:04:fe: 52:d4:3d:de:72:7a:a1:ef:74:0d:fc:c9:af:1b:b8: 34:bf:de:09:54:d8:c4:db:e9:8a:ad:26:53:61:7f: 9e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BA:1C:BD:A5:6C:C5:6D:C7:7E:BD:BD:0C:CB:55:CC:7B:55:2E:F4 X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:72:7e:46:df:a1:98:36:7b:67:19:38:e2:bc:2c:ad:47:6d: 1a:eb:e7:e0:a8:b9:96:3d:83:d7:00:c3:01:3e:cb:2c:80:af: 21:30:2e:e1:3c:b9:c2:35:fd:ce:f9:78:14:ee:1d:23:af:6f: 61:5f:1f:d9:ff:ff:dd:c6:4a:b9:19:7b:25:f9:3f:6e:3d:ec: 9e:b0:49:bb:d2:32:26:3f:42:d5:27:c6:9b:b5:6e:15:95:a1: 8f:c1:9f:64:ea:bb:1c:f4:29:37:59:30:25:1c:e7:aa:86:20: 01:bd:48:85:9a:47:47:49:be:60:d5:fd:02:02:01:71:1e:f9: ef:ca:11:67:1d:a2:90:39:fd:98:31:b0:6c:c5:7f:6d:cc:81: b5:95:ba:e3:94:6a:a3:91:9b:4a:a1:92:93:d8:ba:cb:3d:e8: 23:9b:d6:b5:45:8f:cc:d8:bc:67:9c:25:32:f7:7b:66:43:ed: 98:07:4f:05:bc:d4:08:09:c0:d2:9d:3f:ed:54:f5:c2:e7:e7: be:02:7e:1b:39:e1:98:03:16:61:8c:81:55:fc:76:88:68:32: 7e:18:9b:36:38:6f:73:6c:02:63:cd:64:45:95:54:61:ea:cb: dd:b4:89:84:cf:8a:c5:69:b0:01:81:22:9b:e4:23:48:2b:29: c1:7e:5c:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC2c6upy1c+xl7Djfx5X4VJ7JPFcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNDExMjMxNzM2MDlaFw0yNDExMjcwMzQ3MDlaMDMxMTAvBgNV BAMTKEM5QkExQ0JEQTU2Q0M1NkRDNzdFQkRCRDBDQ0I1NUNDN0I1NTJFRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNmv0tiOvOSMTqx5oHaqqf/JVd BztGsptBDcFMcPgSfj7WDsUevtScsYsXfZP9EK/g9x+RozzOOAfSTcrzNpRsl5VD 7mV22IAmKeNd62KiYdcbSwvYJfTsA+srRuzNQ33V2W7b8yvITvzljiegHjPPQihp 2i81krc73WEFgHWLKur1/kT3LaxEPO/H6unz+0/n1RPoELRW8fRebWB6v6ovUsfW aVPEhtRNZJuvvy62eqpRFB/Yoc7/qBEf24zvLViE2rs02YcBRkNgpgIFRjk1cldK vus5TodzDO5vMwoE/lLUPd5yeqHvdA38ya8buDS/3glU2MTb6YqtJlNhf573AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUybocvaVsxW3Hfr29DMtVzHtVLvQwHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFNyfkbfoZg2e2cZOOK8LK1HbRrr5+CouZY9 g9cAwwE+yyyAryEwLuE8ucI1/c75eBTuHSOvb2FfH9n//93GSrkZeyX5P2497J6w SbvSMiY/QtUnxpu1bhWVoY/Bn2Tquxz0KTdZMCUc56qGIAG9SIWaR0dJvmDV/QIC AXEe+e/KEWcdopA5/ZgxsGzFf23MgbWVuuOUaqORm0qhkpPYuss96COb1rVFj8zY vGecJTL3e2ZD7ZgHTwW81AgJwNKdP+1U9cLn574Cfhs54ZgDFmGMgVX8dohoMn4Y mzY4b3NsAmPNZEWVVGHqy920iYTPisVpsAGBIpvkI0grKcF+XFs= -----END CERTIFICATE-----Generated at Sat Nov 23 18:47:52 2024 by rpki-client on console-fra.rpki-client.org