$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: 2oloSIhYTc1sqPRVnF6rior0TXIzYZyBdU3ktWLxp/s= Subject key identifier: 40:4A:65:99:40:95:E4:51:14:70:1A:8D:B1:59:07:29:3E:EB:21:5E Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 018F8749B6B14EAC1D0789D6F067C6F5CA66 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 11AD Signing time: Fri 17 May 2024 16:01:46 +0000 Manifest this update: Fri 17 May 2024 16:01:46 +0000 Manifest next update: Sat 18 May 2024 16:01:46 +0000 Files and hashes: 1: 36TgQbNXre6gnae3LaN0BcRia40.roa (hash: hcR7zeLxvKN+kyZAl/CaL9VDG9wUMwQIzVcwZ074ya0=) 2: 7Q9TIyaKjzGPcUUScbRdj4-VUBY.roa (hash: 85CBI3GSJW5gjWXpB/mYS54/WuLgzm5HJPhptvU/Bbo=) 3: 9E2zRJucUhm453t24HNHSGQloKs.roa (hash: CqXQT4QvmJc2TWqc6T+dah9tKYu/F/tcxh5Q/4KRfWg=) 4: BUgIbTnvrsZReujb6DPOShHR7FE.roa (hash: ECc79n1QjHlzsf9w/1WHSYtvScvgrIpY6oRYyi/0xak=) 5: Fnh9GVa_fvnoNRzF2991qb7jjwo.roa (hash: 3BjRnTcWutTShoyklANMFkV25gkqiaqxtmRqk9L6LMc=) 6: ImrvMVNsuZo8jj5c8LV5MMxM_Us.roa (hash: CdnUpPPz95XnHR2m8nN4Hovkd2Ax3zuI5YVBeNQ7igA=) 7: LIClP0IvyC1kmXelp0F1Bg23KYY.roa (hash: ovqCyj6QlKLPA9cXreoKGypgE5xe0ZQGnp0mbZYtlT8=) 8: O3ieVqOXKk_uu_Ckr0OWvLwLeu4.roa (hash: tkOzOhbctGRotA39AlzUxx6rWtVpzWwlrSGNKd2f72M=) 9: Rj4x-k2eypY_uH4zB6KLMXnbj4g.roa (hash: mwe/FBkwnRwI2NRtDLk5HUpUzsXhRrBHhLkIpEJW+pQ=) 10: Ul_UN98Moow6RAqQU52JLp5x7EI.roa (hash: JhQXknpJUCm55RbBkOa9m+Zrngj/gHBjENlnNCseH0E=) 11: X4V0Zv2xp9HF7MmEhDbI1WbQAlE.roa (hash: 3jh3GsvhZZIDHId39IgTU5btttok0JbtJrzZI5bnkf8=) 12: drnD6JYg0MZ7F_noA1sUAQTj8dg.roa (hash: EWM5nY/jBzS75r+5qFicx+/J7L6AD8xC3XcMdNq/+NU=) 13: eataSK8CK7l0e74zDhMEktiv298.roa (hash: 2wSnaBtVI2oQWyZU1mBSovWaCNS0PpJ9WDqe8cYeY7w=) 14: q63C4-F5cpElsxeScoQ7IMuoiLk.roa (hash: 4WSkozW5imcQdr8V2+qUWIK2jDaqCEwY8C/srLuRqdg=) 15: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: V5XPgHixsJuPapKZkClwg4UrnwZ+aRIbENTENp9oxKE=) 16: xFgx3oZiRSyuiOs9sPtPe6MLF9A.roa (hash: jFx8fQuesfKhyiqlc/5GY0J1vv2b3z/2252vKXOBSZM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 16:01:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8f:87:49:b6:b1:4e:ac:1d:07:89:d6:f0:67:c6:f5:ca:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: May 17 16:01:46 2024 GMT Not After : May 18 16:01:46 2024 GMT Subject: CN=404a65994095e45114701a8db15907293eeb215e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:1e:e8:a6:62:7f:65:00:d7:a3:81:96:c2:4d: 5a:7f:4a:0d:2e:05:76:c8:45:b0:08:06:ec:86:e6: fc:26:57:7c:7a:18:7a:63:9f:21:58:4c:24:a2:d0: 1c:da:34:30:eb:ba:86:e7:73:ba:ec:8c:b1:65:5e: 6f:2a:01:1c:38:b8:7d:0d:d6:fb:a4:00:a0:63:c7: 4b:7e:c8:87:e3:38:a4:52:09:1c:9d:1b:b8:58:4d: 8c:3b:ca:88:f5:45:57:1e:5d:ac:29:e5:c6:77:6d: bd:18:f5:7a:f4:12:ed:f7:e7:9b:cc:e2:c6:76:54: 8f:44:96:4e:68:8a:3e:67:32:d7:0d:3c:14:b1:33: 69:57:1a:57:da:65:0f:e4:cf:6b:73:0c:bf:eb:d9: 76:eb:e7:1b:e8:4a:f4:65:f4:bc:e5:c0:27:a5:8f: df:5e:bf:5e:c9:f7:b3:85:0a:e6:1b:f0:1f:d5:9c: d4:41:1d:ec:cb:98:ce:8e:0f:d2:7a:a9:a9:f5:c0: 80:6b:de:ca:ed:f2:ee:42:43:36:01:3c:c1:47:ad: bd:4e:75:e0:f3:c3:e2:04:11:eb:f4:83:29:11:35: 31:43:42:1d:3c:ee:d5:15:a0:bc:cd:f7:c5:50:84: 60:22:7e:a2:1e:41:5c:c2:64:a5:67:0d:01:09:0a: 03:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4A:65:99:40:95:E4:51:14:70:1A:8D:B1:59:07:29:3E:EB:21:5E X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:b3:bb:ba:a2:99:f5:7c:81:53:d3:78:58:96:5d:5d:05:05: 2a:47:53:2f:4c:0f:ba:02:ee:79:2b:d1:da:d2:7e:f9:07:63: bf:56:52:80:1b:75:3f:d9:19:b7:36:cd:d7:79:08:be:59:2d: 4a:0c:06:69:74:32:c7:25:ea:4e:22:13:a6:ba:77:33:15:8f: e8:25:f6:7a:6e:9b:65:c4:5e:f8:a6:98:1b:d8:2b:85:cf:7b: a6:bf:43:45:7e:ef:e8:7c:70:85:90:12:bc:f2:4f:a2:52:1c: a2:43:36:83:1d:b0:41:df:31:94:7a:ff:39:cc:92:09:f0:4c: fe:ad:78:ca:dd:e0:b7:4b:03:b7:d4:1c:3f:de:7e:71:bc:d3: 41:f4:98:fa:6e:d2:69:7c:3c:20:45:ed:ff:9b:84:82:28:89: 85:02:92:6b:ec:3c:ce:62:9b:ea:05:ed:c1:db:a0:c3:e9:02: 42:37:b1:ec:ea:1c:7a:cb:0c:61:c4:78:f4:fa:00:89:e2:53: 04:34:c0:5b:d2:ac:8b:27:70:40:78:27:c3:04:ff:8d:35:9a: 2e:be:7c:11:a0:67:94:66:b0:69:cf:f3:92:51:90:bb:41:d4: 20:be:7d:b2:69:00:03:99:01:28:44:83:99:f7:40:75:54:8b: 39:7e:eb:01 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAY+HSbaxTqwdB4nW8GfG9cpmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjQwNTE3MTYwMTQ2WhcNMjQwNTE4MTYwMTQ2WjAzMTEwLwYDVQQD Eyg0MDRhNjU5OTQwOTVlNDUxMTQ3MDFhOGRiMTU5MDcyOTNlZWIyMTVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlx7opmJ/ZQDXo4GWwk1af0oNLgV2 yEWwCAbshub8Jld8ehh6Y58hWEwkotAc2jQw67qG53O67IyxZV5vKgEcOLh9Ddb7 pACgY8dLfsiH4zikUgkcnRu4WE2MO8qI9UVXHl2sKeXGd229GPV69BLt9+ebzOLG dlSPRJZOaIo+ZzLXDTwUsTNpVxpX2mUP5M9rcwy/69l26+cb6Er0ZfS85cAnpY/f Xr9eyfezhQrmG/Af1ZzUQR3sy5jOjg/Seqmp9cCAa97K7fLuQkM2ATzBR629TnXg 88PiBBHr9IMpETUxQ0IdPO7VFaC8zffFUIRgIn6iHkFcwmSlZw0BCQoDBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEBKZZlAleRRFHAajbFZByk+6yFeMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATLO7uqKZ 9XyBU9N4WJZdXQUFKkdTL0wPugLueSvR2tJ++Qdjv1ZSgBt1P9kZtzbN13kIvlkt SgwGaXQyxyXqTiITprp3MxWP6CX2em6bZcRe+KaYG9grhc97pr9DRX7v6HxwhZAS vPJPolIcokM2gx2wQd8xlHr/OcySCfBM/q14yt3gt0sDt9QcP95+cbzTQfSY+m7S aXw8IEXt/5uEgiiJhQKSa+w8zmKb6gXtwdugw+kCQjex7OocessMYcR49PoAieJT BDTAW9KsiydwQHgnwwT/jTWaLr58EaBnlGawac/zklGQu0HUIL59smkAA5kBKESD mfdAdVSLOX7rAQ== -----END CERTIFICATE-----Generated at Fri May 17 23:41:33 2024 by rpki-client on console-ams.rpki-client.org