$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft File: UST7oeQBwD5boc13rp7jnP1jG_s.mft (raw, json) Hash identifier: cLUSmq4ALaMg4Uhin/GfjZ/b2CS7PqkiUYgfXUz5PU8= Subject key identifier: F1:6F:55:AF:56:02:82:ED:70:C9:34:21:D8:37:BE:AF:7A:F9:D0:B9 Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb Certificate serial: 018F78B19A58EAFCF0CADCB9FCE0BDEE7104 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft Manifest number: 0DC7 Signing time: Tue 14 May 2024 20:00:56 +0000 Manifest this update: Tue 14 May 2024 20:00:56 +0000 Manifest next update: Wed 15 May 2024 20:00:56 +0000 Files and hashes: 1: 3U98EK5dcuJOAUMbzNiuj1OZv1A.roa (hash: ZjdUXxrfDSapn+9bNDIuCl+ZwpNgSJYiN8qD5v0GjVc=) 2: 3kbuFjosr6hpduK7j1XJSiJp0oQ.roa (hash: qCSVhL/OpjpGVHjXQodW6GInqX1tTBK4qK53A9O8b70=) 3: 7pqmuZp7k4eQBkOtPCSsDmyuq5s.roa (hash: /2GBUp8XpAqFrzNNkoOuGLzggSnOFfeuYnrugUp54ac=) 4: A9_1rrjLJEngR5Zc08gWHnw_7QE.roa (hash: U9ffBB+hbE7Rfxj69YU1Bh85BgYuOMrwEEFGu9UWO9k=) 5: ElzTNMvuHLuwKh7_6ACoCPUbsd4.roa (hash: f1+i9gr2hfeCLjNxy8K76Ur5Y5NtWUBv1YjnV7841r0=) 6: F7s91KoIj1ZfYv6eslwPJ9GkTpY.roa (hash: 7CNsQFwOexBGk0I2UbSUn4SDfWly9O+9IWn189MkLJc=) 7: IJ8BThaPVYhBBrZWSVbcdFfXaLM.roa (hash: YY9IG/UJSxGe6isdhp6biAhSi45pVx6r3SkZC/MKZ4g=) 8: LejT6uDOYXSHFNfGHvicKAsiqh8.roa (hash: n1SvIoG7nk13Z2qJuqUtXr0qa3EZQMvbcnxDb67TWck=) 9: NmUD43JLSVioro4Eta_CpZrEBfE.roa (hash: EpEH6ZTyQo1i/d2HlgdEGpwjuT/FJ93PSVE34NFIb58=) 10: P4dmzUcfZjbktzVOjYfcEqJ4Zdg.roa (hash: 1TqykqnDJThghmS8IxN0rmaKfwS/ZBrLGHoxNLxSW1k=) 11: Tj5jdcQxealuznX1XpkOYJJGyqE.roa (hash: uRy8VX8J45WK1wg3ePh/rIPEGrTRoyTaJSqeOg1lj/I=) 12: UST7oeQBwD5boc13rp7jnP1jG_s.crl (hash: HsLrVzfsPXqqQT7MSCxnWI4PEHuasnNMq2IYOd7uw8s=) 13: W_HLIbZc4DH0C_69dNQRf38Nzak.roa (hash: FSjn5UKMZIMhU2fwwNXBbO1iB+e6k9y+nPKz2jB6Vnc=) 14: Y4dSWpJtPM-1Z1NNbNxYNjzOrlU.roa (hash: OvZ58vgQl9CVMwGZQZNO0KfbgAYUlMANlm/TM7ucEi4=) 15: ZcctDcY1DIMRZtSaDutpt6Gobqk.roa (hash: V1d7L6uE3rWeHZoFS9M2C569SmBPPoxJzhEwURXIeqI=) 16: eiIIyJDQIdahVmTl1jAqkJLtBG4.roa (hash: Uy6iLLjtYbrylH7hvcFjBZEQHB7nFz3wmxWaxT9hOSE=) 17: hO12Aq2tR7fGGf0sI-OlEzIMMuQ.roa (hash: kKYmMFEzsK7tPL46/3DCUOddXs5YQLWjZd/I7BTx/4A=) 18: iRgkVcJTF0YDWbFTOj07f-Jb0KU.roa (hash: NaMPJiEZ/1NQNduOeLq2m2KzSia3BbATa1riuBS4qjY=) 19: iTmXSF2wJVjlAuotaDYEWMx8YvM.roa (hash: rzh6ZFd+Zxgj9D/SBJfIJUUn5CdIcem6vGjUUKRTUQU=) 20: mUiOdnSfkO6ooXT96hXEw8DMtQ0.roa (hash: jCr5xDvWM+7xLHy5HYmCSZ7g/wSsH274Kuqt7jJw68w=) 21: nDKGQ3EtYAnkRGPpDip5ZwR942E.roa (hash: 6m7qLGhEU4pemxqSNwDdGlSZ8Xogv8QqReZpK2qTpr4=) 22: sANY63UAA9cF8BZIJupMl0mEk5w.roa (hash: YwtVCDPxIXihJpjQP/tRC3pBTcXtA31VLK3VfuXMU/A=) 23: smwiCcfPiZQxHzUiwBbVqoWakgs.roa (hash: VTpOWgcMg3rsLs8m+Qh76MQTe5SdrNraeUcUeWisbHs=) 24: tKudBUUKJeGwWKDgC6TrUEGOd2I.roa (hash: z4JGOI0j4C1v3V9osJXKSTZhBiUr9PO2q96UFabBK2A=) 25: yvk2SvL7P28o0pPT-rWJrD5b2ic.roa (hash: PKdVlx/Z827Nilbb25fPI8MqLTe6eoNMMsiO4ERVZOw=) 26: z-2M4kgQAaA-9-dU_4l_91IBNP4.roa (hash: AsNd9vB4SVKm7QjcwczwbbL9oziTi9RJWDBGvUXCAao=) 27: zjhp9sRJkZlGX9_ZmzTaUsYlwvo.roa (hash: pZJ0et6W/uUDm1S/JW4gqKCMOx1ZwGJ+wg9vz5XCbiI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 15 May 2024 13:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8f:78:b1:9a:58:ea:fc:f0:ca:dc:b9:fc:e0:bd:ee:71:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb Validity Not Before: May 14 20:00:56 2024 GMT Not After : May 15 20:00:56 2024 GMT Subject: CN=f16f55af560282ed70c93421d837beaf7af9d0b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a0:b8:e7:57:cf:c7:7c:58:91:83:7d:92:f1: 52:b7:64:74:3e:0f:30:03:c6:91:77:5e:f3:75:59: 7e:6d:a5:3f:cf:4f:ed:79:d2:50:57:9f:55:a1:f4: a9:6a:57:c2:36:7d:e7:cc:15:83:ba:a0:12:36:dd: ee:4c:82:3b:80:c0:e1:db:a3:d0:47:2a:07:bb:50: ac:bf:dc:44:8e:96:ac:b6:74:b0:41:0e:26:59:36: 5b:71:09:fe:d9:79:37:01:a5:b7:99:38:3b:6e:c9: e7:66:71:20:17:60:5f:6d:fc:70:59:60:d1:53:59: 6e:97:33:8b:fc:74:db:f3:88:ce:7e:a9:c5:ac:9a: 77:ba:e6:1c:95:d5:b6:b7:b5:36:36:25:f5:39:0c: 72:f2:f7:3f:5b:35:9f:98:20:4f:d4:bc:cf:a4:eb: bc:34:61:46:ad:9a:ee:c1:4c:7d:67:c6:b5:cc:48: f8:7b:a3:ab:66:09:01:1e:2e:77:da:7c:72:17:a8: 13:fc:aa:c7:68:36:90:7c:c8:d7:d3:17:b5:cc:e0: b2:8e:28:93:7d:cd:7a:c3:f1:dc:13:53:39:b3:f0: 17:cc:bc:48:2c:2c:30:56:24:22:b3:cf:fa:01:0e: bf:31:a5:7f:d9:8c:29:4e:fa:a4:50:5f:09:00:cc: 6e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6F:55:AF:56:02:82:ED:70:C9:34:21:D8:37:BE:AF:7A:F9:D0:B9 X509v3 Authority Key Identifier: keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:5a:d9:c4:40:6b:12:84:f5:39:60:76:a7:f4:48:fd:51:d9: 86:13:38:02:01:ed:66:05:ae:67:81:06:59:61:63:76:66:dd: eb:cc:2b:85:df:7b:f7:e4:ff:29:5f:27:55:f7:e8:ac:a2:35: a6:ee:cc:13:76:df:1f:52:2f:64:57:82:63:de:ad:01:16:c0: 99:1c:98:1a:04:53:1f:44:5a:5e:c6:f1:3e:25:9d:f6:95:a7: 28:a5:31:66:f6:73:ef:85:17:01:72:db:8f:dd:f6:9e:c5:78: a7:22:ef:ee:cb:e6:61:20:52:34:9b:26:24:3b:16:07:9f:7f: ad:5a:42:db:ee:6b:e8:fe:d8:8b:a2:9c:bd:0c:fd:25:92:18: 65:79:d6:5e:93:fa:cc:fa:99:e4:92:7e:67:8a:2c:c7:3f:80: 93:61:f9:dd:ce:fe:ed:7b:18:0f:10:62:85:fb:ac:4c:d7:a8: fd:e8:b2:93:43:ef:2a:f5:2a:d3:7a:ec:51:16:f1:1c:47:8a: 52:cc:e5:77:c0:06:98:1b:9e:34:ca:66:d3:62:8d:97:19:1e: 36:24:19:f8:a3:59:4c:ab:83:56:9b:97:f1:de:aa:f4:ae:42: 1d:f5:93:ac:eb:53:6d:57:51:fe:a1:92:1f:a9:af:b8:9f:78: 75:3e:e4:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAY94sZpY6vzwyty5/OC97nEEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUxMjRmYmExZTQwMWMwM2U1YmExY2Q3N2FlOWVlMzljZmQ2 MzFiZmIwHhcNMjQwNTE0MjAwMDU2WhcNMjQwNTE1MjAwMDU2WjAzMTEwLwYDVQQD EyhmMTZmNTVhZjU2MDI4MmVkNzBjOTM0MjFkODM3YmVhZjdhZjlkMGI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6C451fPx3xYkYN9kvFSt2R0Pg8w A8aRd17zdVl+baU/z0/tedJQV59VofSpalfCNn3nzBWDuqASNt3uTII7gMDh26PQ RyoHu1Csv9xEjpastnSwQQ4mWTZbcQn+2Xk3AaW3mTg7bsnnZnEgF2BfbfxwWWDR U1lulzOL/HTb84jOfqnFrJp3uuYcldW2t7U2NiX1OQxy8vc/WzWfmCBP1LzPpOu8 NGFGrZruwUx9Z8a1zEj4e6OrZgkBHi532nxyF6gT/KrHaDaQfMjX0xe1zOCyjiiT fc16w/HcE1M5s/AXzLxILCwwViQis8/6AQ6/MaV/2YwpTvqkUF8JAMxuNQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPFvVa9WAoLtcMk0Idg3vq96+dC5MB8GA1UdIwQY MBaAFFEk+6HkAcA+W6HNd66e45z9Yxv7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEt YWI4ZjFmMzM4N2VlLzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMy9iNzE0YWQtMWY3OC00YTEwLThlNjEtYWI4ZjFmMzM4N2Vl LzEvVVNUN29lUUJ3RDVib2MxM3JwN2puUDFqR19zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY1rZxEBr EoT1OWB2p/RI/VHZhhM4AgHtZgWuZ4EGWWFjdmbd68wrhd979+T/KV8nVfforKI1 pu7ME3bfH1IvZFeCY96tARbAmRyYGgRTH0RaXsbxPiWd9pWnKKUxZvZz74UXAXLb j932nsV4pyLv7svmYSBSNJsmJDsWB59/rVpC2+5r6P7Yi6KcvQz9JZIYZXnWXpP6 zPqZ5JJ+Z4osxz+Ak2H53c7+7XsYDxBihfusTNeo/eiyk0PvKvUq03rsURbxHEeK Uszld8AGmBueNMpm02KNlxkeNiQZ+KNZTKuDVpuX8d6q9K5CHfWTrOtTbVdR/qGS H6mvuJ94dT7kYQ== -----END CERTIFICATE-----Generated at Tue May 14 22:02:03 2024 by rpki-client on console-ams.rpki-client.org