$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: vWqR0J0LEjyGhjmVH8h2THqub6ix2OSuGuHQfJTeLrI= Subject key identifier: 7D:FC:A6:65:0B:D3:24:3A:10:EC:1D:88:09:42:75:38:0A:B3:B2:0B Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 019352750344404FBFC3112A0DC84B271CA6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 0E58 Signing time: Fri 22 Nov 2024 06:00:20 +0000 Manifest this update: Fri 22 Nov 2024 06:00:20 +0000 Manifest next update: Sat 23 Nov 2024 06:00:20 +0000 Files and hashes: 1: 09AhODH8jdRGyrQvy4UzUTAdhIw.roa (hash: pTsVz8xf43TT4PCl1IIDfU5Yae9qyKpAV6qxYLjd6HA=) 2: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: ynfltCGu+ARMcTzw0dc3mT1QMUiNlE/+hbfxX3vCXH8=) 3: 5nKpvKctsxiZWaJlPM7CLuQemIg.roa (hash: WQOQ8q+7K9KBF6asc/rGQoUGKsRff8tH977Sl7YgfII=) 4: BucJvvExLyIclKkhm71pHqGl8fo.roa (hash: FcMmyZtFKwbiwMwGeay8edxIZMvjn2FGK/NXxtZJqEQ=) 5: G5Xr-fEFuw6qX_ZzJ1P0OIAHDXo.roa (hash: AA4CQqIDxZ/EAlmYRDfJ3Ue90OXWrWKy7S7JeI9HFB4=) 6: J3TAiUdQyiWvp61s291FFu92atw.roa (hash: FNLU6w56dtmdLb9aBlTYuVRT4qy0yk3ovXHv6d6Kbvo=) 7: L-bgN2aTA_J-hJlHr46VZmzOoJ4.roa (hash: NLdhQ+92KzguBkjKtiN+iNJiKDMF8PKEq4PBSfRADIs=) 8: LBHoAiHbD38HDCErpLH5TnVUluA.roa (hash: UnaYP2+vFQcO0nSMwf8RU40rSlFVlzWo8dB0ZeYuT7c=) 9: Rh3NEvNzW9CoE-_tnSyBdAUl_kc.roa (hash: XkvbmH8qcwmcXE5ADM4Bs6r17wZTloWZsMlTTsCrjks=) 10: S26GBAVB_SQCg7tEdc2n-dNXiXU.roa (hash: aACtqxh+2LSUI50GU3+k+vAn64Nn6HXTMAZMIJUeC7c=) 11: UeqWP9xa0Y4HrRCFRr_C16PN-Ck.roa (hash: iOlYd7tlDlIti73IokF16mS37kGo1nLViBSis48QGKg=) 12: YbdnsKKcLWXNt16ld8ZvdDfRwvI.roa (hash: xG7IHAySfija7pf7oM9P1hrZ7cvpaRte6EMf43t62U8=) 13: dyTxALLDXfL-9g21H1rZS3Hdmsg.roa (hash: mMxGo+0S/djDrz8vHpIGW0fsDDSQTJ8lNTsAocVpVOA=) 14: kXplFP6gUF52i6wVPMghV1C0EhU.roa (hash: sPcx3UnYKqpwUXyNwMIARKTwimyUf18TlzdlM0hj3C8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:52:75:03:44:40:4f:bf:c3:11:2a:0d:c8:4b:27:1c:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: Nov 22 06:00:20 2024 GMT Not After : Nov 23 06:00:20 2024 GMT Subject: CN=7dfca6650bd3243a10ec1d88094275380ab3b20b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7b:13:87:04:02:f5:e2:e0:41:2c:26:a4:dd: c8:29:48:a8:bc:4c:4b:f8:4a:41:49:87:7f:31:0c: c2:e6:56:45:8a:0d:ce:9c:5b:ab:18:f7:e9:a9:e3: b1:96:7a:f0:2d:3b:52:1a:13:e3:f7:b3:95:f1:69: fc:93:92:e7:40:09:be:ce:f8:a5:4a:0c:a2:9d:65: c1:60:ac:fa:06:87:c9:61:d2:2f:dd:a2:74:60:e7: 52:24:86:3e:c7:ea:ac:ce:35:1a:90:c6:c5:9e:98: 2c:f7:08:c9:14:97:97:d1:96:a9:67:a7:93:c8:76: 62:d6:dc:50:c8:72:1f:f9:46:52:72:d6:29:c7:f4: 8d:4f:71:c7:cb:64:d3:f0:97:9d:d5:ca:65:c7:55: 13:8d:16:49:1b:00:96:8c:48:6b:b0:42:e7:66:39: 7d:91:e4:cd:94:19:3d:f6:9e:0e:7e:ee:90:ff:16: 28:5d:b7:0b:43:de:c6:37:06:b6:6f:60:86:24:4f: de:8d:d3:9d:6f:28:81:0d:3e:a2:f5:38:9b:4b:60: b3:82:6b:7c:ff:81:07:41:7d:bc:94:cc:83:9b:cb: 7c:c5:1b:8c:e1:9a:42:ee:94:dd:f0:ba:2f:89:04: bb:5c:cf:a2:55:2a:7a:25:27:96:fe:96:62:dd:d8: e6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FC:A6:65:0B:D3:24:3A:10:EC:1D:88:09:42:75:38:0A:B3:B2:0B X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:1a:34:e2:b5:b6:6b:f8:83:18:60:49:18:ce:ee:dc:55:b4: 18:8e:d5:02:54:ed:e1:1c:b4:1c:b8:72:14:18:4d:19:14:be: 89:ed:2a:33:fa:ec:ad:76:fe:3a:2e:40:4e:24:13:65:d5:8c: 6c:ec:a9:73:62:37:74:2a:ee:5e:92:ed:51:3d:ce:60:2a:d4: 0a:0d:41:82:3a:99:b2:5e:f4:a6:c7:4c:1d:60:6d:c1:51:34: c8:56:87:4b:08:60:84:4e:a1:6f:0c:06:6d:4e:26:5b:46:01: 0b:06:72:dc:8a:39:b1:29:c4:73:9f:4f:44:c9:a0:5b:61:7f: fb:21:2e:ee:9f:b5:77:cd:b8:2b:8f:5e:c2:5c:d1:b5:e9:14: be:89:3c:17:2d:8c:4a:a5:21:79:14:76:5e:71:63:0b:c2:49: 33:b5:37:99:bb:b1:82:e8:1b:f2:9b:0c:02:a3:a6:08:f5:6c: 6f:88:eb:3f:c9:e6:30:e1:cf:95:9f:26:18:9c:d0:bc:b0:5e: 66:9e:aa:b1:5a:bf:b4:55:42:e3:b6:0a:93:99:3b:53:52:ca: 80:48:28:8a:99:14:00:ab:62:db:09:f5:2b:c7:64:ff:ae:cc: 7b:d3:a9:a0:85:8b:be:07:19:3b:35:de:f9:b7:17:76:cc:a0: c0:95:7b:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNSdQNEQE+/wxEqDchLJxymMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjQxMTIyMDYwMDIwWhcNMjQxMTIzMDYwMDIwWjAzMTEwLwYDVQQD Eyg3ZGZjYTY2NTBiZDMyNDNhMTBlYzFkODgwOTQyNzUzODBhYjNiMjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuHsThwQC9eLgQSwmpN3IKUiovExL +EpBSYd/MQzC5lZFig3OnFurGPfpqeOxlnrwLTtSGhPj97OV8Wn8k5LnQAm+zvil SgyinWXBYKz6BofJYdIv3aJ0YOdSJIY+x+qszjUakMbFnpgs9wjJFJeX0ZapZ6eT yHZi1txQyHIf+UZSctYpx/SNT3HHy2TT8Jed1cplx1UTjRZJGwCWjEhrsELnZjl9 keTNlBk99p4Ofu6Q/xYoXbcLQ97GNwa2b2CGJE/ejdOdbyiBDT6i9TibS2Czgmt8 /4EHQX28lMyDm8t8xRuM4ZpC7pTd8LoviQS7XM+iVSp6JSeW/pZi3djmJwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH38pmUL0yQ6EOwdiAlCdTgKs7ILMB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALxo04rW2 a/iDGGBJGM7u3FW0GI7VAlTt4Ry0HLhyFBhNGRS+ie0qM/rsrXb+Oi5ATiQTZdWM bOypc2I3dCruXpLtUT3OYCrUCg1BgjqZsl70psdMHWBtwVE0yFaHSwhghE6hbwwG bU4mW0YBCwZy3Io5sSnEc59PRMmgW2F/+yEu7p+1d824K49ewlzRtekUvok8Fy2M SqUheRR2XnFjC8JJM7U3mbuxgugb8psMAqOmCPVsb4jrP8nmMOHPlZ8mGJzQvLBe Zp6qsVq/tFVC47YKk5k7U1LKgEgoipkUAKti2wn1K8dk/67Me9OpoIWLvgcZOzXe +bcXdsygwJV71g== -----END CERTIFICATE-----Generated at Fri Nov 22 07:02:40 2024 by rpki-client on console-fra.rpki-client.org