$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: o3bMRzDhiGlhrAmfkoMdMWkpQm1x3pFjQiqgEeFwNeM= Subject key identifier: 67:76:1B:6A:D6:56:8B:5C:9C:8F:52:57:9D:3F:9A:47:D0:54:00:0F Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019352E2E50F3940E4D4D8D05DFF8A4AA653 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 0CB8 Signing time: Fri 22 Nov 2024 08:00:21 +0000 Manifest this update: Fri 22 Nov 2024 08:00:21 +0000 Manifest next update: Sat 23 Nov 2024 08:00:21 +0000 Files and hashes: 1: 06lBf6eCb_YiUokSZGBKGW6XyCU.roa (hash: dTUeSqK/nOA3qCd6y/9E7v2aujggQW+n6OCv4RhgGkM=) 2: 5pg_93qnaR-AYjTKJ9nzmq2APJw.roa (hash: PQACg8S509/7L2Da5K8T8zd9h+wkXSAplu6/AuHlw6g=) 3: EjoRTmXZPogeMLnq4ICj13QYj7A.roa (hash: OvD7i8Zl26+i9FUL4ZqZ/VO7EmmdT74UH3HZYnZTyGM=) 4: MU-UHSVfSKw4clHYxj3WpnYDerU.roa (hash: uQmB+Sixqr+N1Pr46JuJB6tokKy89aj4mjz9hA8XjIg=) 5: RGRQyycScMgIaEkVRTTYZcBbshE.roa (hash: R251uuvyYJsnRk6nXvAjAQeOdiywSG9AQKpl1Hd9UZs=) 6: Ri3uxWYZYfxicfO9aF0S4gl_wY4.roa (hash: +vpzqxaratqvMl0hXb+RS8Epie61aOAbkVqjp/vgRBo=) 7: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: f03bQwi0/IzWlOSX6JA8kFpXmMwD5xSAnwWPj5qhCP8=) 8: bTBH0Ey8mfNclPT8nJHOIGhxkZc.roa (hash: 75dIjuGrNJrGWF16H7RJVXVTUYqAHnsLxy0NJFria2Y=) 9: hETc_Noo1DXEAJOSc1FgCfY8aNQ.roa (hash: shMhgBKLTZH8Y1ZVurt3sV3vlLkOWcaP23XrlyZpHR4=) 10: keSNqW0HmxHuMl2TAvvSyKAOilE.roa (hash: 1aj0NjG3HFkz/OnLitnZdRIuNvi5Ol8QieHArNMGG1E=) 11: m5wxxPLcNH8N5y_KCLQOLIE612U.roa (hash: x9uefpJ6pz7v8ILgP3vcqpps/Am4lQakGs0woQqebS4=) 12: mmhUC8yDo3GA_xcX-H0dxAwTUv8.roa (hash: PVdCfJGBdzSz9vsVphkWbhS9nKzXeLf0DSm46BWLv7Y=) 13: nTvm7CMJvHXt3QLnX4gIxcKtVzE.roa (hash: 6geIl+0+4sleg/k2+XsFC1T4ArfuiUpA+bCiJ77RdLA=) 14: sKOGTGMrWrZPQX-J7l7m7b9mOww.roa (hash: aO0qjF80YILaufwJQlq93qBWxJYyVeumRnFNFYgwl10=) 15: vuH-ReNMpWLFWLMVfh-H6AFK4Vc.roa (hash: IX4Fwx2Gih0U6e78DS0UFJFIHLlwfsnhBvmIYvKwtbg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:52:e2:e5:0f:39:40:e4:d4:d8:d0:5d:ff:8a:4a:a6:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Nov 22 08:00:21 2024 GMT Not After : Nov 23 08:00:21 2024 GMT Subject: CN=67761b6ad6568b5c9c8f52579d3f9a47d054000f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:0a:2a:e0:d4:30:bd:27:34:3f:63:98:9f: 3c:b0:9f:98:c9:7c:0c:d2:44:c0:99:f6:fc:38:9e: ba:b2:02:2b:45:81:b0:ea:09:e7:38:d8:92:63:b3: 9e:46:31:e9:8e:4c:34:26:11:cc:6b:d5:f1:36:11: 70:9a:7e:dc:35:07:5c:ef:97:85:86:4b:84:04:e6: db:f2:23:0c:ad:c6:77:ff:e8:a4:0c:68:b4:05:7b: d6:3d:eb:57:62:f9:54:42:68:a5:48:41:0b:e2:90: 84:c4:6a:03:7f:37:0e:2c:19:1f:de:6c:41:c5:99: 3f:34:b6:35:f7:f2:ca:60:75:e7:f9:53:6e:51:83: 08:3f:39:f7:d0:bf:76:92:09:c1:fa:61:99:20:6d: 9c:77:97:13:34:a6:e8:5c:cb:e9:33:53:f9:4c:fe: f5:a8:55:9e:97:06:02:c7:36:3e:31:3f:f2:76:ef: 45:84:32:c6:c0:44:51:0c:4a:5c:27:0b:1a:1d:11: 79:8f:09:91:c0:38:79:5e:a6:e7:b4:50:02:20:55: cb:9b:84:80:b2:36:f1:27:d3:10:f5:ac:0a:0c:30: 5a:b7:6f:07:bd:29:e9:18:af:8b:83:ff:6c:11:33: 5b:57:2d:4b:ba:1f:89:c2:30:34:1a:11:03:2d:e9: 6e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:76:1B:6A:D6:56:8B:5C:9C:8F:52:57:9D:3F:9A:47:D0:54:00:0F X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:52:f5:96:f8:21:23:18:b7:e9:6f:63:08:f1:60:10:74:ea: 06:a7:14:58:66:75:cd:3d:11:3c:40:05:a3:01:4c:89:c4:99: bd:7b:ad:5e:57:f8:19:1d:82:34:f1:e3:ab:6f:96:cb:65:25: 02:64:75:c3:fc:2f:d7:ee:9f:04:00:c2:ca:ce:26:35:e3:e5: 52:3c:34:8a:ca:43:29:05:20:70:d9:e6:03:46:2d:b9:bc:fa: ad:30:5d:a3:9b:fa:c4:6a:75:6e:af:97:1b:a5:ae:c9:61:fb: 63:4f:5d:a5:20:60:c4:7f:58:fc:6f:e2:de:41:5a:b6:46:11: 1d:01:16:96:6d:40:f0:80:53:0d:0b:35:19:8b:a4:d7:3f:6b: d8:ea:c7:78:ac:c5:f3:44:42:c1:90:d9:6c:d8:e9:09:92:b8: 55:fd:30:f3:35:02:49:4e:f0:91:5a:a3:f3:bc:c0:4a:2c:bf: f9:9c:c9:fd:f3:c7:c2:e0:b6:52:10:bc:2e:aa:29:01:1e:df: c8:98:6b:8e:7c:e3:63:fd:41:e3:bb:b6:63:42:36:23:6d:dc: dc:87:8e:a0:85:c5:72:80:c1:17:50:28:f8:93:0a:ab:07:9a: 80:27:c5:8e:f3:ea:52:0d:15:d0:55:af:51:fc:54:63:ca:63: 9f:59:69:2a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNS4uUPOUDk1NjQXf+KSqZTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjQxMTIyMDgwMDIxWhcNMjQxMTIzMDgwMDIxWjAzMTEwLwYDVQQD Eyg2Nzc2MWI2YWQ2NTY4YjVjOWM4ZjUyNTc5ZDNmOWE0N2QwNTQwMDBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2w4KKuDUML0nND9jmJ88sJ+YyXwM 0kTAmfb8OJ66sgIrRYGw6gnnONiSY7OeRjHpjkw0JhHMa9XxNhFwmn7cNQdc75eF hkuEBObb8iMMrcZ3/+ikDGi0BXvWPetXYvlUQmilSEEL4pCExGoDfzcOLBkf3mxB xZk/NLY19/LKYHXn+VNuUYMIPzn30L92kgnB+mGZIG2cd5cTNKboXMvpM1P5TP71 qFWelwYCxzY+MT/ydu9FhDLGwERRDEpcJwsaHRF5jwmRwDh5XqbntFACIFXLm4SA sjbxJ9MQ9awKDDBat28HvSnpGK+Lg/9sETNbVy1Luh+JwjA0GhEDLelu4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGd2G2rWVotcnI9SV50/mkfQVAAPMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVVL1lvgh Ixi36W9jCPFgEHTqBqcUWGZ1zT0RPEAFowFMicSZvXutXlf4GR2CNPHjq2+Wy2Ul AmR1w/wv1+6fBADCys4mNePlUjw0ispDKQUgcNnmA0Ytubz6rTBdo5v6xGp1bq+X G6WuyWH7Y09dpSBgxH9Y/G/i3kFatkYRHQEWlm1A8IBTDQs1GYuk1z9r2OrHeKzF 80RCwZDZbNjpCZK4Vf0w8zUCSU7wkVqj87zASiy/+ZzJ/fPHwuC2UhC8LqopAR7f yJhrjnzjY/1B47u2Y0I2I23c3IeOoIXFcoDBF1Ao+JMKqweagCfFjvPqUg0V0FWv UfxUY8pjn1lpKg== -----END CERTIFICATE-----Generated at Fri Nov 22 09:35:09 2024 by rpki-client on console-fra.rpki-client.org