$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: jZdePbQiXwLQnJ9v4y/25CpI7LZWU/p7+znWgkW0+gI= Subject key identifier: 54:C3:37:32:19:8A:5F:C2:70:72:A6:2F:F7:6E:14:35:1D:E4:32:44 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 488C0CBFCA06BDD00B60015887281249963CA84E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 013D Signing time: Fri 17 May 2024 07:57:04 +0000 Manifest this update: Fri 17 May 2024 07:52:04 +0000 Manifest next update: Sat 18 May 2024 11:43:04 +0000 Files and hashes: 1: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: psDfgVVVu3F/vsPke7izdCy7MB6kxmvFZX3Dm2pgz1Q=) 2: 34352e3134362e3136322e302f32342d3234203d3e20323136303437.roa (hash: y4AweJgdYeJE5gONKNUgbDMvt2QDGhgCcaml+IqOjGY=) 3: 34352e3134362e3136322e302f32332d3234203d3e20383334.roa (hash: jFkuvj+QhwiH0BMCs6Y/dlV+JGVxCpM6e5therYvnow=) 4: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: PwsVhLCj3BHPW98RIlJubHWzg+ULAjCvTVdg0Kca/r8=) 5: 34352e3134362e3136302e302f32342d3234203d3e20383334.roa (hash: dFMGjd1u+kklLc4AhoVk6PUVaxoPJZK9Vp7bF3gswY8=) 6: 34352e3134362e3136312e302f32342d3234203d3e20323036353035.roa (hash: Nc7tsx7vU+1DkdoYVDlfKHk02O+XCYA4rPoZnZvkrYc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 08:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:8c:0c:bf:ca:06:bd:d0:0b:60:01:58:87:28:12:49:96:3c:a8:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: May 17 07:52:04 2024 GMT Not After : May 18 11:43:04 2024 GMT Subject: CN=54C33732198A5FC27072A62FF76E14351DE43244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cf:04:4a:24:12:c7:35:8a:ec:54:d7:f3:d1: 74:8f:06:c5:cb:98:03:c8:1c:80:c5:0e:b7:5c:1e: 59:c5:ef:d9:c0:8b:cb:6f:2a:bf:f7:f7:66:5e:3d: 52:df:4e:94:0f:99:ce:c8:3e:f5:9e:25:b4:e0:36: 1c:dc:f3:7d:6b:ca:9a:11:7e:f4:74:42:f8:59:26: 73:f9:82:48:44:be:ba:25:76:e5:fa:a0:07:12:02: 88:0e:03:5f:c2:56:bb:d2:f3:4d:4c:93:c5:93:bc: eb:6a:4a:ea:d8:b4:2a:6b:e0:9f:04:08:2d:91:89: c8:c3:f5:64:c9:ba:ef:a3:33:ac:27:05:fd:8e:89: fd:9a:c7:37:a6:de:b5:00:6e:2c:75:bf:c6:11:92: e1:e7:9b:da:bc:30:c7:4e:8e:8c:a5:66:06:90:70: ef:a9:61:ea:b2:3e:42:4c:5b:4c:9c:6c:0e:6e:d2: 4e:ec:2f:d1:54:4f:23:05:4a:04:b3:74:12:9d:fa: a1:f2:3d:eb:3a:34:0d:ed:e2:db:23:8d:b9:19:a8: dd:e4:fa:be:80:03:cb:09:33:a4:f0:71:63:ed:19: 8c:3c:e1:e2:f0:db:71:26:09:57:44:96:ba:75:e1: be:ae:8f:6b:5c:97:27:a4:98:76:c1:7d:9b:45:60: 3f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C3:37:32:19:8A:5F:C2:70:72:A6:2F:F7:6E:14:35:1D:E4:32:44 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:e5:57:ae:43:89:b0:bc:0d:00:2c:19:86:e7:ab:73:d9:fc: 1b:58:76:99:25:92:1e:ea:5c:50:f8:35:5c:35:ec:a9:72:79: 75:13:77:70:84:df:65:0f:d9:3a:40:1e:a2:99:d0:ee:61:32: 14:2e:44:97:42:b3:84:7b:2b:26:60:a3:a7:d6:df:9a:4b:03: eb:83:75:08:f0:fb:6a:22:f3:02:f7:6c:be:69:7d:2f:8e:d9: 46:5e:c0:b1:a2:77:ab:22:3e:63:a5:21:a7:a1:b3:2a:72:13: f5:e6:ea:79:97:a5:1a:1a:d1:36:5c:ea:63:24:0f:83:d5:74: ab:88:12:bc:4d:08:52:98:7f:57:63:b6:44:93:8b:4d:90:d4: 02:1d:c0:a8:7a:06:04:d4:49:9a:24:c7:9d:b8:96:f2:ca:33: 18:54:a2:67:ef:1a:8f:a0:c0:93:26:0c:d9:05:08:9e:d9:ae: 5c:47:3f:eb:34:3e:13:0e:ff:d9:a5:a5:36:6b:5c:76:1c:de: e1:cb:4c:20:b4:70:a6:ac:10:f3:ba:7b:d6:04:32:75:fb:60: 70:34:ba:64:4b:90:60:46:7e:28:92:ee:37:fb:4b:80:a0:04: 2a:ef:85:19:af:8b:f7:a3:cd:56:4e:61:c7:e0:5b:98:8c:14: 9b:eb:8c:00 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUSIwMv8oGvdALYAFYhygSSZY8qE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNDA1MTcwNzUyMDRaFw0yNDA1MTgxMTQzMDRaMDMxMTAvBgNV BAMTKDU0QzMzNzMyMTk4QTVGQzI3MDcyQTYyRkY3NkUxNDM1MURFNDMyNDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwzwRKJBLHNYrsVNfz0XSPBsXL mAPIHIDFDrdcHlnF79nAi8tvKr/392ZePVLfTpQPmc7IPvWeJbTgNhzc831rypoR fvR0QvhZJnP5gkhEvrolduX6oAcSAogOA1/CVrvS801Mk8WTvOtqSurYtCpr4J8E CC2RicjD9WTJuu+jM6wnBf2Oif2axzem3rUAbix1v8YRkuHnm9q8MMdOjoylZgaQ cO+pYeqyPkJMW0ycbA5u0k7sL9FUTyMFSgSzdBKd+qHyPes6NA3t4tsjjbkZqN3k +r6AA8sJM6TwcWPtGYw84eLw23EmCVdElrp14b6uj2tclyekmHbBfZtFYD9zAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUVMM3MhmKX8JwcqYv924UNR3kMkQwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg+VXrkOJsLwNACwZhuer c9n8G1h2mSWSHupcUPg1XDXsqXJ5dRN3cITfZQ/ZOkAeopnQ7mEyFC5El0KzhHsr JmCjp9bfmksD64N1CPD7aiLzAvdsvml9L47ZRl7AsaJ3qyI+Y6Uhp6GzKnIT9ebq eZelGhrRNlzqYyQPg9V0q4gSvE0IUph/V2O2RJOLTZDUAh3AqHoGBNRJmiTHnbiW 8sozGFSiZ+8aj6DAkyYM2QUIntmuXEc/6zQ+Ew7/2aWlNmtcdhze4ctMILRwpqwQ 87p71gQydftgcDS6ZEuQYEZ+KJLuN/tLgKAEKu+FGa+L96PNVk5hx+BbmIwUm+uM AA== -----END CERTIFICATE-----Generated at Fri May 17 10:15:36 2024 by rpki-client on console-ams.rpki-client.org