$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft File: bSDd05jayPYswSUmMl8YIftyT3U.mft (raw, json) Hash identifier: wDC1PxDuKxnisSxrq052aftDS370vxN5zIv1pjnThoU= Subject key identifier: 94:A8:C6:C7:8F:3C:D3:6C:6F:FB:72:51:B5:C5:C3:DF:3E:12:A2:CF Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Certificate serial: 019352751ACB93638C075E5DE0FDEA1042E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft Manifest number: 125F Signing time: Fri 22 Nov 2024 06:00:26 +0000 Manifest this update: Fri 22 Nov 2024 06:00:26 +0000 Manifest next update: Sat 23 Nov 2024 06:00:26 +0000 Files and hashes: 1: 6VU21stBMIMsFOnf6r_56y6PPVE.roa (hash: kv8XSS4xDkQkfJbyKhIEJBFOQD3SgYZH1tThhUU6egI=) 2: LFvuCS1TGpFTbHzBxyKB-ALYFWU.roa (hash: W9JEp1BAfkWx29T/wQIQUBQi2J+7HWHTfPyyQe8Xv3E=) 3: PT8vIYp1zxsliZ-zQOSiyIT2wzc.roa (hash: HvO05HZ5zaK80lUaGqcP54NiiSTpcH9/WUzcBb1cY5g=) 4: RLXPgvr_YfNoSre--anJfNFP5N4.roa (hash: eFrq7H+oaQe+8zD352NQ/SWweAppo1ZPIXpinYOLdeQ=) 5: XFk1rhupV8PJ1jw9d2dvu3QB_Y8.roa (hash: 6gQUsqrkcG335EMmc/sp0AzSEcBlHuapSmCO6mwcgSc=) 6: YLJmyDlPI9dPIoEBU1QiGi8xO7o.roa (hash: IOcOSoMec979u4xWqF0CkN8DySllTylNjqkDjvIraPc=) 7: bSDd05jayPYswSUmMl8YIftyT3U.crl (hash: tiwaWK06raThE3Mw7ztoc2wPLBPxI9jCtrNomtRORbw=) 8: dnFtIWyZHishTVrmuxtZ0o5SRGI.roa (hash: nIqwOUEzLesM+4n/97gHAL8eXNwYbZWYfhUa1eBN7xU=) 9: ePuuLI6JOaOrltvDHLsTvzAdfhM.roa (hash: dEnIeQJt3oS+3oA7KifW7KV/zfNDSL4qpwRiWWvA5nY=) 10: eassUqEiSfVlopCHPNrriq4ZWus.roa (hash: MFZatM0zwpZgWPYVkBLdWpTFlWmcQQfSlWJSB6yavpY=) 11: jCIUj7qOQZfz0tf4FoHDNo5F3RA.roa (hash: Tr8mlyhhfvjwW2f2b1HksPaY0PJCrOkj6tHzWMy7bUg=) 12: nk6zo5pWUJfAnV1Z1f083e2m8p4.roa (hash: sRwCQKUSNeyHmNpWuNIhNzZzCGQZl079WXm0Wiemeog=) 13: tp4VyzBFWKOp3dbyaUnUtpP2BPg.roa (hash: 1fQnV5K15+AysKSZVMgpEMcGO6Z6y1DXORpD2kPtk1Y=) 14: ugeg2omkHSYk6DxzsQoCieNI1mE.roa (hash: NvDAqbFeTVTr/XpMvrpBwwJctiDDkyO1KjGjKmzDMuQ=) 15: wf5z3kh3kIAqkUiviXQcwsIt5-o.roa (hash: VVnOMVsXnWOrSoSQOEZDiI+wZEoYr7OxbjVhQ+6Srss=) 16: zq_VdPV3dCMPnifXuIje5QxyCo0.roa (hash: hKO5B7ShkFYTNeO9scJneS5G8jnARgJjqiQe+QhYvuo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:52:75:1a:cb:93:63:8c:07:5e:5d:e0:fd:ea:10:42:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75 Validity Not Before: Nov 22 06:00:26 2024 GMT Not After : Nov 23 06:00:26 2024 GMT Subject: CN=94a8c6c78f3cd36c6ffb7251b5c5c3df3e12a2cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:c3:c6:f6:a7:65:82:0e:35:c7:aa:9c:13: 47:2f:30:f0:5a:b8:b5:9a:2b:44:db:5e:14:84:c0: 16:a3:81:80:c2:56:23:d3:d1:44:ce:69:0d:cf:c6: 01:1d:df:b1:36:c5:02:3e:a8:27:cc:90:f7:b1:d8: a2:1e:47:7b:e5:b1:c7:2b:48:f7:68:12:4e:5f:dd: e6:c5:37:87:ec:2c:b4:8e:6c:26:89:71:02:8b:d8: ba:0d:98:e2:4f:54:c4:53:32:1b:c4:09:1d:c8:bf: 6a:6e:1d:b9:a9:af:59:73:8f:b3:0d:15:c6:29:db: 33:d5:31:81:b2:f3:85:06:5d:73:8c:8a:ca:f0:e5: f9:8d:1b:b7:cf:a1:5e:72:1f:97:d2:79:ee:8a:e0: 65:fb:68:a9:e7:ee:4d:52:db:1a:c9:1f:41:52:ca: ea:89:3d:f1:2a:3b:e0:c5:b9:fd:24:33:42:aa:d7: 22:d1:23:b4:b3:46:71:38:37:1a:6c:51:8c:df:00: 1f:46:40:31:b6:49:40:44:94:80:0a:ec:3a:39:92: 6b:c0:b2:f0:9e:c9:28:fa:d3:df:d1:37:40:e3:8c: 99:84:70:e7:05:e4:c3:db:28:7f:06:0d:e8:d4:20: c2:67:55:3f:a6:90:85:da:41:06:48:45:82:4c:84: 11:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:A8:C6:C7:8F:3C:D3:6C:6F:FB:72:51:B5:C5:C3:DF:3E:12:A2:CF X509v3 Authority Key Identifier: keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:69:91:c3:9d:6c:cd:6b:ed:2b:6d:41:d1:26:a5:a8:00:a9: 0f:50:87:52:6c:6b:91:84:31:07:b5:9b:e0:25:7d:54:db:c1: dc:9a:ed:4d:cb:33:f3:bc:82:18:f2:5a:da:10:c0:51:50:cb: f5:4f:f7:71:f5:cb:08:12:fe:a7:db:de:4c:ce:55:ee:1c:46: 8a:ea:fb:7c:d0:26:70:82:7c:d3:13:99:6b:5c:7f:b1:f1:7a: db:36:f6:7a:e0:1a:50:ac:82:88:b4:01:14:d5:54:6f:cd:ad: 72:76:79:3a:1e:70:89:a8:16:e1:f8:42:3f:c2:69:d2:fb:44: 94:ce:2a:a4:19:50:6d:45:cb:26:e3:d1:bd:6c:f8:f0:7d:df: f8:fe:7c:45:8b:d2:c9:a1:7b:93:46:ee:e5:29:e2:9c:f7:e4: b0:08:b9:14:84:0a:d4:0c:39:7d:ce:75:b7:c9:8b:6c:22:2c: 4c:46:0f:6e:a3:09:42:08:83:10:f0:10:4b:5d:ea:82:1b:80: bc:f5:e8:33:70:97:c1:29:81:5e:6b:b0:28:3e:83:ff:85:1a: c0:4e:37:fe:b1:a4:7c:7a:d4:b9:d1:d0:8f:a5:87:ff:46:a0: db:cc:3c:a0:70:cb:50:fb:8d:87:27:29:65:72:a1:07:78:69: c3:be:6f:32 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNSdRrLk2OMB15d4P3qEELhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMjBkZGQzOThkYWM4ZjYyY2MxMjUyNjMyNWYxODIxZmI3 MjRmNzUwHhcNMjQxMTIyMDYwMDI2WhcNMjQxMTIzMDYwMDI2WjAzMTEwLwYDVQQD Eyg5NGE4YzZjNzhmM2NkMzZjNmZmYjcyNTFiNWM1YzNkZjNlMTJhMmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7vDxvanZYIONceqnBNHLzDwWri1 mitE214UhMAWo4GAwlYj09FEzmkNz8YBHd+xNsUCPqgnzJD3sdiiHkd75bHHK0j3 aBJOX93mxTeH7Cy0jmwmiXECi9i6DZjiT1TEUzIbxAkdyL9qbh25qa9Zc4+zDRXG Kdsz1TGBsvOFBl1zjIrK8OX5jRu3z6Fech+X0nnuiuBl+2ip5+5NUtsayR9BUsrq iT3xKjvgxbn9JDNCqtci0SO0s0ZxODcabFGM3wAfRkAxtklARJSACuw6OZJrwLLw nsko+tPf0TdA44yZhHDnBeTD2yh/Bg3o1CDCZ1U/ppCF2kEGSEWCTIQRnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJSoxsePPNNsb/tyUbXFw98+EqLPMB8GA1UdIwQY MBaAFG0g3dOY2sj2LMElJjJfGCH7ck91MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmIt MzZkZTY1NzIzMmJlLzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMS9hMWE4OGYtMWRmZi00ZWZmLTgyNmItMzZkZTY1NzIzMmJl LzEvYlNEZDA1amF5UFlzd1NVbU1sOFlJZnR5VDNVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKmmRw51s zWvtK21B0SalqACpD1CHUmxrkYQxB7Wb4CV9VNvB3JrtTcsz87yCGPJa2hDAUVDL 9U/3cfXLCBL+p9veTM5V7hxGiur7fNAmcIJ80xOZa1x/sfF62zb2euAaUKyCiLQB FNVUb82tcnZ5Oh5wiagW4fhCP8Jp0vtElM4qpBlQbUXLJuPRvWz48H3f+P58RYvS yaF7k0bu5SninPfksAi5FIQK1Aw5fc51t8mLbCIsTEYPbqMJQgiDEPAQS13qghuA vPXoM3CXwSmBXmuwKD6D/4UawE43/rGkfHrUudHQj6WH/0ag28w8oHDLUPuNhycp ZXKhB3hpw75vMg== -----END CERTIFICATE-----Generated at Fri Nov 22 09:42:36 2024 by rpki-client on console-ams.rpki-client.org