$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: 7eUX2zPF6rsYBhMRE0j28nDscAaCIImPaZ/jM83Cq0g= Subject key identifier: 38:DC:E6:11:BC:09:26:DE:1C:31:89:C4:79:86:96:CC:4B:F0:F0:79 Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019050FCEC122FFF3EC064CDC9079BE0CC50 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 10CA Signing time: Tue 25 Jun 2024 20:01:11 +0000 Manifest this update: Tue 25 Jun 2024 20:01:11 +0000 Manifest next update: Wed 26 Jun 2024 20:01:11 +0000 Files and hashes: 1: 1U8c3wVdka9_NVMGUq9javFwFDc.roa (hash: F3sF1oEiGnDR79n3ZR2g9fYUG+M9WPidPBtgHMfps7s=) 2: 3wUfppmdqHed4gyJxa3M8TYdXXQ.roa (hash: MenSSeONW33fCxqqHiqurtvNuAsA9QoJy5DOGP/rYoM=) 3: 6VU21stBMIMsFOnf6r_56y6PPVE.roa (hash: kv8XSS4xDkQkfJbyKhIEJBFOQD3SgYZH1tThhUU6egI=) 4: LFvuCS1TGpFTbHzBxyKB-ALYFWU.roa (hash: W9JEp1BAfkWx29T/wQIQUBQi2J+7HWHTfPyyQe8Xv3E=) 5: PT8vIYp1zxsliZ-zQOSiyIT2wzc.roa (hash: HvO05HZ5zaK80lUaGqcP54NiiSTpcH9/WUzcBb1cY5g=) 6: RLXPgvr_YfNoSre--anJfNFP5N4.roa (hash: eFrq7H+oaQe+8zD352NQ/SWweAppo1ZPIXpinYOLdeQ=) 7: SiBK_8bBhrFTdDh4s1Es7cUD5Es.roa (hash: okN1+0R1EzCQPEJL94EIUfDYOd8puQ6mm0GBn6PkTtI=) 8: ZIYEYfmwCmPTKSxU8KxuFfKNHcc.roa (hash: SWwBVrqyX42AGJSKUCm5EK6005wOOdR/exJCiFUq/Qc=) 9: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: +a8O1K1zeQ8LsadqWAJ95rxl8Wq6RK/7lJklMHTV8YU=) 10: dnFtIWyZHishTVrmuxtZ0o5SRGI.roa (hash: nIqwOUEzLesM+4n/97gHAL8eXNwYbZWYfhUa1eBN7xU=) 11: doWGqv4zsrVomkIyZjB0cCVyfdY.roa (hash: ky63Z79TI7CkIvrhWE28OuN151x/NtuuA+B+a01OCbc=) 12: ePuuLI6JOaOrltvDHLsTvzAdfhM.roa (hash: dEnIeQJt3oS+3oA7KifW7KV/zfNDSL4qpwRiWWvA5nY=) 13: jCIUj7qOQZfz0tf4FoHDNo5F3RA.roa (hash: Tr8mlyhhfvjwW2f2b1HksPaY0PJCrOkj6tHzWMy7bUg=) 14: k5I3CvRm0KoDTpGQsTs0bBVZ65w.roa (hash: GAj7HJSzcL9e6DvO+IDcgLTmgckV1gSZKJ8aNXpjZ+Q=) 15: nk6zo5pWUJfAnV1Z1f083e2m8p4.roa (hash: sRwCQKUSNeyHmNpWuNIhNzZzCGQZl079WXm0Wiemeog=) 16: v0d68TgJqzxGhEfNV_uaki6jEew.roa (hash: JVGw0/PjvZHtk13gyR6LPQyAYf0yCoiLIB2/LoRUYc0=) 17: wf5z3kh3kIAqkUiviXQcwsIt5-o.roa (hash: VVnOMVsXnWOrSoSQOEZDiI+wZEoYr7OxbjVhQ+6Srss=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 26 Jun 2024 14:33:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:90:50:fc:ec:12:2f:ff:3e:c0:64:cd:c9:07:9b:e0:cc:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Jun 25 20:01:11 2024 GMT Not After : Jun 26 20:01:11 2024 GMT Subject: CN=38dce611bc0926de1c3189c4798696cc4bf0f079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c0:e6:86:82:56:48:fb:ee:69:8e:0c:d6:15: e4:4e:21:9a:c0:19:f0:e7:6a:59:dc:9c:65:24:01: be:db:f2:63:f2:de:44:70:32:a5:11:70:81:61:9c: 38:3c:f0:07:f7:09:3e:73:a7:ff:c8:d7:d7:f5:86: db:b3:1f:ed:1c:78:54:81:71:98:50:b4:50:b4:0e: 36:2e:23:79:54:a6:a0:4a:6a:2f:ec:8f:3d:3b:5d: ae:b8:fd:f5:50:89:05:18:c9:78:6b:c9:1f:50:63: 11:93:3c:18:ed:1a:8d:26:ab:61:45:c4:51:9a:1f: 35:25:73:a6:9f:ae:75:e5:cd:24:1d:6f:0f:2d:35: c4:d6:4e:71:df:2d:b8:0a:17:02:c2:6c:48:90:93: 9b:38:46:73:82:cc:6d:05:b2:f1:1f:11:c0:6b:47: 0c:f0:d1:9a:82:6b:ec:66:11:a2:f7:ea:8f:a3:c3: d9:ba:ea:9f:96:22:a7:83:0f:b6:f4:a5:20:71:4e: ae:6e:9f:9d:0d:28:d8:b9:52:af:45:c0:c8:64:d8: 1d:dc:05:e6:8c:b7:c7:22:f9:da:80:04:46:8d:e5: 80:a2:c6:b6:7c:9e:2f:e2:0c:4d:74:94:40:c7:b3: 1a:8a:5d:ce:b3:9f:67:33:d5:8b:65:d2:41:93:82: d5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DC:E6:11:BC:09:26:DE:1C:31:89:C4:79:86:96:CC:4B:F0:F0:79 X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ed:22:20:97:e7:6f:8e:79:59:f3:3c:7d:36:1f:10:e7:0d: 2a:26:63:02:0b:c1:8b:db:dd:ee:46:ec:41:e4:25:01:28:0f: 6e:87:28:88:47:b7:83:ba:02:b8:82:74:6c:b9:f5:c8:63:6e: 83:a2:87:48:3f:50:bd:60:4a:fc:20:3f:9a:02:d9:8d:61:79: e8:5b:f3:d8:c9:2b:81:8b:07:4a:48:5a:38:e6:ca:6e:5f:e3: 8c:c1:1c:1e:45:c5:46:43:24:63:55:cc:80:12:72:d7:dd:80: 83:46:e7:71:f2:0f:ec:b4:df:cb:64:71:8b:67:f6:3d:2c:f6: 86:07:a7:52:06:61:f5:ba:ad:a1:a7:63:0c:57:49:32:9d:a8: 6d:44:55:d8:36:50:65:94:79:4a:3a:9e:99:cf:6d:68:e5:c3: 86:a4:a5:2d:08:74:d1:fe:85:33:47:54:85:ae:54:81:6d:ad: 94:f4:f7:15:0e:81:2b:54:ce:85:26:0b:78:4e:b9:af:42:d5: 64:ce:ec:b8:dc:0f:ca:55:93:dd:92:cd:2e:6a:7f:03:5d:ed: 5c:af:85:7b:2d:c4:7a:4e:2b:1b:ba:2a:5e:16:f4:59:51:5b: 7b:d4:f0:16:a7:9e:dd:7a:c0:00:81:80:4a:12:d9:5c:51:b6: 52:d3:7a:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZBQ/OwSL/8+wGTNyQeb4MxQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjQwNjI1MjAwMTExWhcNMjQwNjI2MjAwMTExWjAzMTEwLwYDVQQD EygzOGRjZTYxMWJjMDkyNmRlMWMzMTg5YzQ3OTg2OTZjYzRiZjBmMDc5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8DmhoJWSPvuaY4M1hXkTiGawBnw 52pZ3JxlJAG+2/Jj8t5EcDKlEXCBYZw4PPAH9wk+c6f/yNfX9Ybbsx/tHHhUgXGY ULRQtA42LiN5VKagSmov7I89O12uuP31UIkFGMl4a8kfUGMRkzwY7RqNJqthRcRR mh81JXOmn6515c0kHW8PLTXE1k5x3y24ChcCwmxIkJObOEZzgsxtBbLxHxHAa0cM 8NGagmvsZhGi9+qPo8PZuuqfliKngw+29KUgcU6ubp+dDSjYuVKvRcDIZNgd3AXm jLfHIvnagARGjeWAosa2fJ4v4gxNdJRAx7Mail3Os59nM9WLZdJBk4LVuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDjc5hG8CSbeHDGJxHmGlsxL8PB5MB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+0iIJfn b455WfM8fTYfEOcNKiZjAgvBi9vd7kbsQeQlASgPbocoiEe3g7oCuIJ0bLn1yGNu g6KHSD9QvWBK/CA/mgLZjWF56Fvz2MkrgYsHSkhaOObKbl/jjMEcHkXFRkMkY1XM gBJy192Ag0bncfIP7LTfy2Rxi2f2PSz2hgenUgZh9bqtoadjDFdJMp2obURV2DZQ ZZR5Sjqemc9taOXDhqSlLQh00f6FM0dUha5UgW2tlPT3FQ6BK1TOhSYLeE65r0LV ZM7suNwPylWT3ZLNLmp/A13tXK+Fey3Eek4rG7oqXhb0WVFbe9TwFqee3XrAAIGA ShLZXFG2UtN6Sg== -----END CERTIFICATE-----Generated at Tue Jun 25 23:34:10 2024 by rpki-client on console-fra.rpki-client.org