$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft File: iawKy_23onTvNsFvWGCtoqJHBpc.mft (raw, json) Hash identifier: Nu+crsduaomq0yHim15aphQKJ9Es8wVIxTS5CTfoqbc= Subject key identifier: 35:6B:D8:C4:BE:15:DE:96:E4:1C:45:5C:93:D8:FA:13:5B:EB:06:69 Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Certificate serial: 019351D055F0C67E5DF5434E4B6A98B95A37 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft Manifest number: 134C Signing time: Fri 22 Nov 2024 03:00:28 +0000 Manifest this update: Fri 22 Nov 2024 03:00:28 +0000 Manifest next update: Sat 23 Nov 2024 03:00:28 +0000 Files and hashes: 1: 6sDkXv4tpYKDCT8lAyXzSyVFclE.roa (hash: UGL1rDQDc0biYnNt05Gxt0b1jXnBmOwg1Im7Me3H+jM=) 2: DZjCx5tlGtxdBugrTXCCMMcZt9o.roa (hash: 91jc66rHRo6GzinXguT2Zoki9gP8c4Zep29Hz3ZCHZ8=) 3: FnipWAxgDIxSuQm5P5hzNP12-mY.roa (hash: t+OMJob96KlL3YU+qEwXFkP9QT72mU9XudVxOtFiKfM=) 4: G3bhTPBOcnzfDISXw7mqrSo_CTY.roa (hash: TjGRSifc0WjymM2IhBdocNgj7ij4cl3Elp2vX5kS7j4=) 5: Pbv756LHzPmGbhBkbATnvLIX2cg.roa (hash: ok9z2DgSAhdYKNFuQ76+ox+y/2Z1LOJoBK06Ciuki7M=) 6: _JMelac771YKyBzqn6lXZZoHtno.roa (hash: 8kTUBcTn+sttN3RkSV+Ej34jDIlAK9GRpRHlPEaQWvs=) 7: cOwBMiCO_xIK-B6paxrHVGj3YBw.roa (hash: FoxvSfJyrnolbEF9JMujTEGxhcgKr+7V2j8UOaAiWR8=) 8: emFBVx0phcG38zCcOLQAbSlKycU.roa (hash: yPTvCbQDmSLh9G/WE6Ya90/rIvI2A5k4xXacEyqoQ/Q=) 9: iawKy_23onTvNsFvWGCtoqJHBpc.crl (hash: WLH34rlCY4QNzSiKIr4jqyd0VTBi9YE5y/Oly/uQJvg=) 10: qxqLMEGsZJfWMBK8ECDgEEWSBHs.roa (hash: fqZJNlfuTvkplKzOeUxqabuGuq2Wpcp0pkQxwEFcRI4=) 11: u6SYRq8ZZm9A7EUApT211Sgu_4s.roa (hash: 4ThZqyqe1YLwA1+/bI2pzOepqRPY9P7IbyULJEbEh0M=) 12: xIc_lIqphfTTSkMcDwvwDFAETzg.roa (hash: VsGl7cuz4kZPo/RXRxKLpZMBXnOPYO4DxwovcZqyYik=) 13: yaLhtD9GDBdsMn4TLJE14-3OD1w.roa (hash: tbsz1q2vH63UPTmGP7606bsMSUng+s2d6t0J5+JyGkc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:51:d0:55:f0:c6:7e:5d:f5:43:4e:4b:6a:98:b9:5a:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697 Validity Not Before: Nov 22 03:00:28 2024 GMT Not After : Nov 23 03:00:28 2024 GMT Subject: CN=356bd8c4be15de96e41c455c93d8fa135beb0669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d5:1e:a1:cd:f2:1b:c4:d2:c8:2f:6d:9c:fb: 9a:ba:36:89:ca:cd:1d:21:5a:ce:d4:b2:ba:b7:33: c9:48:16:bc:d0:bf:84:99:7a:38:56:d3:98:59:56: c3:a9:94:b3:77:99:d2:d7:97:b0:5a:07:95:47:3c: 0b:6c:3e:72:bc:97:62:05:1b:b5:0a:f4:39:5a:5e: 1d:b5:ae:a9:41:9e:53:c3:4f:af:ed:48:d4:3c:e2: d5:fb:7f:2e:ad:d2:09:30:c9:46:f7:1f:69:d8:3d: 10:46:d7:36:b6:bc:f1:ab:81:7f:45:8c:26:44:c4: ad:67:b2:e0:f1:72:26:ac:7e:bd:01:d2:bf:69:eb: f0:81:13:69:25:93:78:93:80:62:cf:88:d9:68:02: b3:4d:e5:35:08:45:48:aa:60:93:15:93:1b:71:f1: 5c:37:97:72:ae:0a:b6:71:20:e3:85:61:fe:de:3d: bf:c5:2e:bf:f6:4c:5b:be:20:58:47:5c:ff:a2:1a: 5c:98:01:ce:19:bc:98:02:56:92:38:84:37:99:2e: e0:65:7e:d0:1f:8d:1e:db:ff:b7:57:58:92:94:d0: 29:cf:d2:7e:7c:c7:91:1b:da:ee:2e:44:c2:69:07: 22:50:6d:e0:bf:ce:74:59:75:f9:8b:38:d4:e3:3f: 10:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:6B:D8:C4:BE:15:DE:96:E4:1C:45:5C:93:D8:FA:13:5B:EB:06:69 X509v3 Authority Key Identifier: keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:38:9c:1a:2c:43:00:16:43:ae:82:c1:fe:c5:a8:69:84:77: f8:01:bd:52:38:27:68:54:0a:6e:99:67:51:8e:9b:af:26:f8: f3:b0:5d:a6:1f:3d:58:bd:6f:5e:8c:8c:a6:ef:45:28:f9:7d: e8:d5:bd:ac:cc:0f:b2:3a:b8:41:06:f4:9f:5e:e5:a8:60:c3: 1c:b3:f6:e4:e5:79:a7:9f:0a:ad:5e:b4:89:3e:a0:87:7f:03: d9:c2:dc:30:53:8e:cb:59:7c:11:f3:27:13:76:2b:6b:0d:84: d0:ab:41:17:ef:5f:de:c4:84:db:2d:ed:08:4d:03:21:e0:e1: 19:f3:b4:fc:90:90:c3:d9:96:2b:6c:5b:39:33:e0:da:8f:0c: cd:e1:da:01:72:a4:3b:91:a7:fd:bd:af:ac:1d:a4:89:75:cf: d2:57:d6:61:38:d0:92:62:08:be:7b:83:0a:13:63:00:5d:4c: fc:fe:5e:60:0b:49:60:e5:76:be:15:6c:6e:e7:da:04:19:87: b6:da:b2:2c:f2:b7:08:e4:e6:7e:5d:96:7c:62:c7:20:0f:79: 08:ef:f2:de:24:f0:54:3b:2c:8a:1c:fe:b0:77:3f:03:9a:66: 7a:f6:dc:71:7e:bd:f1:12:f4:e1:ad:f4:97:b6:66:7e:0c:e0: d2:1c:3b:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNR0FXwxn5d9UNOS2qYuVo3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5YWMwYWNiZmRiN2EyNzRlZjM2YzE2ZjU4NjBhZGEyYTI0 NzA2OTcwHhcNMjQxMTIyMDMwMDI4WhcNMjQxMTIzMDMwMDI4WjAzMTEwLwYDVQQD EygzNTZiZDhjNGJlMTVkZTk2ZTQxYzQ1NWM5M2Q4ZmExMzViZWIwNjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvNUeoc3yG8TSyC9tnPuaujaJys0d IVrO1LK6tzPJSBa80L+EmXo4VtOYWVbDqZSzd5nS15ewWgeVRzwLbD5yvJdiBRu1 CvQ5Wl4dta6pQZ5Tw0+v7UjUPOLV+38urdIJMMlG9x9p2D0QRtc2trzxq4F/RYwm RMStZ7Lg8XImrH69AdK/aevwgRNpJZN4k4Biz4jZaAKzTeU1CEVIqmCTFZMbcfFc N5dyrgq2cSDjhWH+3j2/xS6/9kxbviBYR1z/ohpcmAHOGbyYAlaSOIQ3mS7gZX7Q H40e2/+3V1iSlNApz9J+fMeRG9ruLkTCaQciUG3gv850WXX5izjU4z8QKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDVr2MS+Fd6W5BxFXJPY+hNb6wZpMB8GA1UdIwQY MBaAFImsCsv9t6J07zbBb1hgraKiRwaXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMt ZDRkYmY3MDY2ZmQzLzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS85M2E3NjgtMjY3Ny00OGQ2LTkxNGMtZDRkYmY3MDY2ZmQz LzEvaWF3S3lfMjNvblR2TnNGdldHQ3RvcUpIQnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbTicGixD ABZDroLB/sWoaYR3+AG9UjgnaFQKbplnUY6bryb487Bdph89WL1vXoyMpu9FKPl9 6NW9rMwPsjq4QQb0n17lqGDDHLP25OV5p58KrV60iT6gh38D2cLcMFOOy1l8EfMn E3Yraw2E0KtBF+9f3sSE2y3tCE0DIeDhGfO0/JCQw9mWK2xbOTPg2o8MzeHaAXKk O5Gn/b2vrB2kiXXP0lfWYTjQkmIIvnuDChNjAF1M/P5eYAtJYOV2vhVsbufaBBmH ttqyLPK3COTmfl2WfGLHIA95CO/y3iTwVDssihz+sHc/A5pmevbccX698RL04a30 l7Zmfgzg0hw7Yw== -----END CERTIFICATE-----Generated at Fri Nov 22 04:33:37 2024 by rpki-client on console-fra.rpki-client.org