$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft File: gho_IfsMKU1tSlKbLx29S9ERm9c.mft (raw, json) Hash identifier: +sA4eoCnbnH9up9h2/qr7T+Caj5evuKyk2YmbtXlL8g= Subject key identifier: A9:C3:45:F8:19:10:D7:3F:C4:5C:C0:7D:62:75:54:31:3A:29:85:1E Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Certificate serial: 0187385C86CC2293FD635FD893491C174617 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft Manifest Number: 0750 Signing time: Fri 31 Mar 2023 15:50:00 +0000 Manifest this update: Fri 31 Mar 2023 15:50:00 +0000 Manifest next update: Sat 01 Apr 2023 15:50:00 +0000 Files and hashes: 1: 2w-GjBnf44ojGKZ6ywpg9LDoGA8.roa (hash: b92WiKAhthA6flKaX1wJ+U0YHfWWhr5aaIy1cE7qWHw=) 2: 96c2nU_hu3HjQigUB4_Uj5IoXmk.roa (hash: 0JR0MpokKeojMPwWbWDsT++TOsk94RE4FdhPPS9fqz0=) 3: Detvo6TIHiDJwbu_atJOt9C1cUg.roa (hash: p5KxuRrWg1ngYqyDwG2Bkrz/iqvaIGrJnllMaQoRVR0=) 4: EPmzclW5x_y2_oCayGw8ctzbe9E.roa (hash: AUBSF6kvUsRIvvcE7TSjc2s47a86K5SJpzb9jd7tJJs=) 5: Kbr39OP8qKuCCxcXZKDNHLJDT0k.roa (hash: 2EPKc9JOZgktnt6KBrAe6w7pluOv5/jkr1vZ2/Alumw=) 6: QVkvmrBOHYXsGWHQBjARH3bSviw.roa (hash: RUvxtesxn411kZQ70ps45Atx88911IPwTgx3Zof0wYw=) 7: X3bVgJ3m3KOzCXPjJ5x5t_NFF30.roa (hash: 2wpmHIMxO6cw+zAhCesBM0WxM9v8sZ8X2K3l2Qd6kSw=) 8: dTDJJnDEgvFXnq8TQwe4RguVNT0.roa (hash: /2TW0LlACXny5Kq09x2SlLUxByEhqOjbA8346v1jONs=) 9: gho_IfsMKU1tSlKbLx29S9ERm9c.crl (hash: il0nQV9NgmgkXSV6o6twwZfu7PYUWWLqM5yihEC9rR8=) 10: jo4DyXtP3o31HwDFoPKwgAsFyvM.roa (hash: Z1j17T0SbNzMNDuqeWK6Q82TpIfdSub5bkI/T7pWjHE=) 11: kOOnYVPdCHHLfEozWicN9y4zWx4.roa (hash: A6NwlSXTYVqumCadGi1L286+0YOCRn8VoDj0DeWlSlk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 01 Apr 2023 14:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:87:38:5c:86:cc:22:93:fd:63:5f:d8:93:49:1c:17:46:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7 Validity Not Before: Mar 31 15:50:00 2023 GMT Not After : Apr 1 15:50:00 2023 GMT Subject: CN=a9c345f81910d73fc45cc07d627554313a29851e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:25:ca:72:ca:f1:8a:be:ba:45:f8:f5:4a:92: b8:d9:8b:45:ac:bb:04:af:c4:09:98:a6:35:5e:b5: 25:b9:41:8f:ae:cc:96:3f:4c:3b:7b:b1:a1:bd:df: 38:0f:a8:5c:76:7d:65:f2:fa:6b:32:93:55:c8:9f: 96:91:e1:90:0c:f4:49:f6:fb:bd:aa:ce:9c:71:6b: 0f:31:31:a6:32:fd:84:3b:e9:5b:db:99:0d:e7:e3: 43:24:12:c2:b5:2c:11:30:0e:91:ce:13:30:02:97: 1c:a9:47:19:72:36:bd:53:f3:75:3e:69:72:30:bf: 57:91:7c:73:6a:9e:b5:50:65:ec:33:a7:93:1e:3b: e7:5a:74:ed:d6:75:7c:5e:b0:c5:e7:cb:4d:78:9a: b3:b1:a8:9a:db:3d:e7:06:7b:53:da:5f:01:ef:98: 53:b5:fc:80:96:c9:a2:ca:c5:7b:ab:df:d7:9e:9d: 4c:62:33:4c:4f:5a:05:e6:09:7a:ed:37:5b:7b:96: 5c:a3:a5:df:8d:13:d3:8d:02:80:5e:6f:cb:c2:ab: 68:e2:e0:d4:68:7a:6e:25:91:55:a8:c8:8e:9f:ad: 54:bc:bc:f2:c4:92:fd:29:ea:9e:40:34:94:8f:34: 02:96:ab:33:b9:8e:0e:b2:5a:61:fa:95:fd:eb:b9: 3b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C3:45:F8:19:10:D7:3F:C4:5C:C0:7D:62:75:54:31:3A:29:85:1E X509v3 Authority Key Identifier: keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:c0:d7:14:84:36:68:4e:30:8f:31:c0:ee:d0:a4:89:03:34: 52:9b:21:5b:10:7f:6b:09:85:3c:b6:41:3e:16:94:4e:f4:aa: 92:2a:f0:2e:b0:a0:4f:07:73:69:c5:a6:cd:ab:46:02:e0:21: 49:1f:a2:59:d8:aa:1f:1b:c8:32:37:f7:3c:a4:ea:aa:42:f4: 49:32:65:be:6a:b8:05:e5:6f:01:6d:27:c4:ab:af:7b:55:d7: 6f:7d:01:9b:12:e5:ac:df:e4:bb:aa:fb:63:22:b9:0d:6b:f6: e6:28:34:97:73:3f:02:97:b4:79:74:ad:7a:80:f8:e7:92:ef: fb:78:31:85:3d:1b:29:9f:4d:2c:77:a9:a3:91:74:43:01:58: 30:a3:c5:5e:a6:54:af:88:4c:06:b8:88:5a:36:c0:be:51:16: f8:96:6c:12:49:05:84:d2:27:ed:6e:b1:4d:94:6a:eb:14:39: 22:79:df:00:10:4f:29:7a:b2:42:0b:5b:78:48:57:6d:a2:8d: 11:09:b1:13:7e:d0:98:ee:40:5c:90:07:65:a1:ad:44:06:c7: 42:7e:b8:c6:91:6f:1b:bf:cc:0d:ea:06:f4:da:52:c3:4b:3a: a6:dc:2e:4d:da:67:d5:65:42:07:0e:b4:d0:bd:28:59:c6:6c: 79:e8:c1:a9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAYc4XIbMIpP9Y1/Yk0kcF0YXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgyMWEzZjIxZmIwYzI5NGQ2ZDRhNTI5YjJmMWRiZDRiZDEx MTliZDcwHhcNMjMwMzMxMTU1MDAwWhcNMjMwNDAxMTU1MDAwWjAzMTEwLwYDVQQD EyhhOWMzNDVmODE5MTBkNzNmYzQ1Y2MwN2Q2Mjc1NTQzMTNhMjk4NTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkCXKcsrxir66Rfj1SpK42YtFrLsE r8QJmKY1XrUluUGPrsyWP0w7e7Ghvd84D6hcdn1l8vprMpNVyJ+WkeGQDPRJ9vu9 qs6ccWsPMTGmMv2EO+lb25kN5+NDJBLCtSwRMA6RzhMwApccqUcZcja9U/N1Pmly ML9XkXxzap61UGXsM6eTHjvnWnTt1nV8XrDF58tNeJqzsaia2z3nBntT2l8B75hT tfyAlsmiysV7q9/Xnp1MYjNMT1oF5gl67Tdbe5Zco6XfjRPTjQKAXm/Lwqto4uDU aHpuJZFVqMiOn61UvLzyxJL9KeqeQDSUjzQClqszuY4Oslph+pX967k7bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKnDRfgZENc/xFzAfWJ1VDE6KYUeMB8GA1UdIwQY MBaAFIIaPyH7DClNbUpSmy8dvUvREZvXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMt YjZmMmFjODZlZjI3LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi9lZGM4NTUtZjJiYy00ZTljLThjMGMtYjZmMmFjODZlZjI3 LzEvZ2hvX0lmc01LVTF0U2xLYkx4MjlTOUVSbTljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr8DXFIQ2 aE4wjzHA7tCkiQM0UpshWxB/awmFPLZBPhaUTvSqkirwLrCgTwdzacWmzatGAuAh SR+iWdiqHxvIMjf3PKTqqkL0STJlvmq4BeVvAW0nxKuve1XXb30BmxLlrN/ku6r7 YyK5DWv25ig0l3M/Ape0eXSteoD455Lv+3gxhT0bKZ9NLHepo5F0QwFYMKPFXqZU r4hMBriIWjbAvlEW+JZsEkkFhNIn7W6xTZRq6xQ5InnfABBPKXqyQgtbeEhXbaKN EQmxE37QmO5AXJAHZaGtRAbHQn64xpFvG7/MDeoG9NpSw0s6ptwuTdpn1WVCBw60 0L0oWcZseejBqQ== -----END CERTIFICATE-----Generated at Fri Mar 31 16:20:14 2023 by rpki-client on console-fra.rpki-client.org