$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft File: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft (raw, json) Hash identifier: 27jcRpRf2G0ijKPEFzcTjZkvhnW8hgaF6DLV+nt6gEg= Subject key identifier: F3:C1:EF:B5:2D:2A:A7:5D:1A:53:5D:C7:0B:15:34:D0:47:7D:BE:B4 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 14598F76CE911F6386B2C9293BBCEA2719E241DC Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft Manifest number: 68 Signing time: Wed 18 Sep 2024 22:06:36 +0000 Manifest this update: Wed 18 Sep 2024 22:01:36 +0000 Manifest next update: Fri 20 Sep 2024 00:38:36 +0000 Files and hashes: 1: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl (hash: IRICdJnjh0iaH6DDtkWftjUEp0qsTS6nheb9JLH9NTA=) 2: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (hash: i2iB6YVLT5JYbpw54S9VrpRYgnjxp0KAmu7VBiJDogE=) 3: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (hash: K9EknQecR357zyEbt4Ik18qSt5faBYxt5/KQfQFvBXQ=) 4: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (hash: ClVHvr7GojPar4zAMCD4eI2tBACybHPAaOLXDJDUg04=) 5: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (hash: JfPLPRAt2VAp3nl2F0n1tbo6w9Newb0Wr4PBuXgYvr8=) 6: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (hash: bGVhhAjrSr3hrPp0uo7loREHTNsf8cdWrceDPcnFXQ8=) 7: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (hash: peEWNd0YL6h2f+IuETNQmau2DbuDTFrugtWV/YFAw0I=) Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 19 Sep 2024 10:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:59:8f:76:ce:91:1f:63:86:b2:c9:29:3b:bc:ea:27:19:e2:41:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Sep 18 22:01:36 2024 GMT Not After : Sep 20 00:38:36 2024 GMT Subject: CN=F3C1EFB52D2AA75D1A535DC70B1534D0477DBEB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1b:4d:1c:43:e8:af:6e:cc:a1:be:b7:6a:b2: f7:d5:2a:76:31:5e:f8:64:b9:2d:16:bb:3e:ec:31: 4a:7f:f4:60:64:36:25:dc:9d:e3:11:2f:aa:7c:3e: 4c:c0:bb:da:d3:4e:fa:6c:24:c8:1b:55:02:86:cd: d1:61:30:b6:e6:1b:9e:a2:e4:b0:25:34:9e:1b:de: df:9e:b6:c8:a3:c8:de:66:23:2a:23:e2:ed:4c:aa: f8:36:ef:3a:66:88:5a:38:25:c4:1f:c4:ee:e2:3e: 26:90:0b:18:d6:c8:cc:17:01:23:f2:3e:70:53:e5: 79:c6:06:0f:4f:ac:b2:09:fa:06:3d:b6:0d:5f:95: 85:3e:86:02:50:5b:95:f5:7f:07:ad:ab:20:21:ca: 4e:7b:3d:65:53:c3:d0:f8:69:35:7a:3b:c8:80:cf: 40:60:ba:e5:fb:6a:a1:66:86:de:f5:af:f3:91:5d: 3e:67:63:6f:19:c1:a2:8f:5f:26:b5:aa:dd:0b:62: b3:b2:53:da:25:5e:0a:cd:77:01:71:69:a1:43:1f: c3:db:66:99:d6:f7:e7:e6:2b:db:1e:bf:d5:97:d3: 4f:ea:57:5f:80:09:9f:8d:da:be:64:23:8c:7d:bf: 90:02:e6:0f:88:c4:3d:fb:80:77:b5:24:ee:fb:b8: 76:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C1:EF:B5:2D:2A:A7:5D:1A:53:5D:C7:0B:15:34:D0:47:7D:BE:B4 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:84:9b:de:cd:ce:12:85:54:c8:90:2a:ba:db:fc:d2:2c:9e: 47:45:f1:c1:de:7f:77:0d:08:25:bb:50:8e:63:62:7a:3f:9e: 29:e5:be:eb:21:69:c1:1e:26:4f:3c:5f:ca:c3:7d:4a:c9:d6: fa:58:d6:0a:bc:b9:11:ed:2c:7d:ad:92:8d:c9:12:24:b9:ef: 80:e8:bb:17:33:de:46:fd:ab:50:51:ed:ea:c3:dc:6f:3e:64: c6:af:aa:01:1d:27:a3:5a:b6:10:24:a9:2f:83:5b:0c:16:38: 5c:21:5c:79:9a:d7:a2:10:14:38:10:dc:af:cb:c4:07:ce:b5: 69:24:ff:a4:40:b5:41:17:91:a8:28:c7:34:f2:8b:d8:ce:12: 08:34:76:46:b6:55:de:a4:c8:f0:cc:cc:ce:22:d1:e6:1b:c5: 28:a9:43:84:6d:c9:9a:fe:25:4b:90:d9:e2:87:9e:a6:0c:5e: 87:0c:47:01:72:70:37:f5:ad:82:a4:6b:e3:f9:8a:98:ea:5e: 1b:13:4f:f7:06:1c:57:03:c8:82:f5:93:89:27:e4:a9:0d:0a: 58:20:7c:26:f4:2e:1e:b7:84:7d:a3:53:e6:0b:05:3d:b5:a5: f1:fe:b7:0b:59:98:7c:1e:02:30:e8:5a:f9:6d:6b:cd:1e:cb: f6:19:3d:5c -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUFFmPds6RH2OGsskpO7zqJxniQdwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNDA5MTgyMjAxMzZaFw0yNDA5MjAwMDM4MzZaMDMxMTAvBgNV BAMTKEYzQzFFRkI1MkQyQUE3NUQxQTUzNURDNzBCMTUzNEQwNDc3REJFQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4G00cQ+ivbsyhvrdqsvfVKnYx XvhkuS0Wuz7sMUp/9GBkNiXcneMRL6p8PkzAu9rTTvpsJMgbVQKGzdFhMLbmG56i 5LAlNJ4b3t+etsijyN5mIyoj4u1Mqvg27zpmiFo4JcQfxO7iPiaQCxjWyMwXASPy PnBT5XnGBg9PrLIJ+gY9tg1flYU+hgJQW5X1fwetqyAhyk57PWVTw9D4aTV6O8iA z0BguuX7aqFmht71r/ORXT5nY28ZwaKPXya1qt0LYrOyU9olXgrNdwFxaaFDH8Pb ZpnW9+fmK9sev9WX00/qV1+ACZ+N2r5kI4x9v5AC5g+IxD37gHe1JO77uHYTAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQU88HvtS0qp10aU13HCxU00Ed9vrQwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBmgYIKwYBBQUHAQsEgY0wgYowgYcGCCsGAQUFBzALhnty c3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQvcmVwby9ycGtpX2NhXzI1NDA1 Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAvM0I4NkE0QTQ1MzgwQzZENDU1 Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBADqEm97NzhKFVMiQKrrb /NIsnkdF8cHef3cNCCW7UI5jYno/ninlvushacEeJk88X8rDfUrJ1vpY1gq8uRHt LH2tko3JEiS574Douxcz3kb9q1BR7erD3G8+ZMavqgEdJ6NathAkqS+DWwwWOFwh XHma16IQFDgQ3K/LxAfOtWkk/6RAtUEXkagoxzTyi9jOEgg0dka2Vd6kyPDMzM4i 0eYbxSipQ4RtyZr+JUuQ2eKHnqYMXocMRwFycDf1rYKka+P5ipjqXhsTT/cGHFcD yIL1k4kn5KkNClggfCb0Lh63hH2jU+YLBT21pfH+twtZmHweAjDoWvlta80ey/YZ PVw= -----END CERTIFICATE-----Generated at Wed Sep 18 23:33:26 2024 by rpki-client on console-fra.rpki-client.org