$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft File: AK_2tO_-fDY-8gD28-WIi5FbpoE.mft (raw, json) Hash identifier: rpWrCtdfnIsQwgBMCbuUTShqpYMwaQkzwGGsfKvR5og= Subject key identifier: 95:F4:34:2C:CF:2F:8E:C5:C6:5B:29:1B:A7:8F:B8:26:FF:24:54:7B Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Certificate serial: 018EF55F21EE25C8F013D5404D47399DE609 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft Manifest number: 0C3E Signing time: Fri 19 Apr 2024 08:00:36 +0000 Manifest this update: Fri 19 Apr 2024 08:00:36 +0000 Manifest next update: Sat 20 Apr 2024 08:00:36 +0000 Files and hashes: 1: 8fOhyEA-UyuO0GMB7bEfNd5KDBM.roa (hash: dpRCdYuBU8qZNOlbDe8pNJAbH1/NMkPTZmEMmbNR5Tw=) 2: AK_2tO_-fDY-8gD28-WIi5FbpoE.crl (hash: r/XIhJN0pgTCTkYhbJkoRTFspubeWHj79pYUBwr8r28=) 3: CE410YHTiWjpclgoum6jlenan3w.roa (hash: X0KYcA07Prq2R9kOClIRDqCiv6ZocQY8cg9oSka7f9Y=) 4: M8dU0darXhx0iRhLHEw_a8YmlIg.roa (hash: 11FQ8j9jSlpmMVTXNukD4D/l4E8jd5W6+2eeVuOh86g=) 5: OuvDgU7CizNf_704nPi1apdGCY8.roa (hash: l324yjv2/fqRpWvF9+xbU9SZWZ7NSACe745SdwNgGyg=) 6: UcbiYnov5XIHnMbudgsCreaH_XM.roa (hash: okEodlXH/CHO6tU1ZN2zJdSKBoWy5eisS5rz3urt/WY=) 7: VOG9BAroC8F_yWJZbJ27M4Sza78.roa (hash: 89ddDhwuV/uXS7d6XnpCgkBlkiq3A47MQoYXxnyR0J4=) 8: ZTdbWE89UfdhaeKsQdQCCLeYtAw.roa (hash: Wd+FXVA3kRTjYGOB0F1mksAv7avqALgZrd59YrwnQhc=) 9: cZv1bqt_airwz_TJ2odHOzgvDjc.roa (hash: D8Rd9oNTUvrnALckle2sTh5eLCk+quYGDQTl94VXy94=) 10: fSzNTzE-6tgh7T8nTM6HsWBow-w.roa (hash: fwnJE0iO6vuxCpoCemQsfWUuz9O2f0QwZSSwlwfbKsA=) 11: gH-AnmUu2J0sSjm7MCMsyYQ9jik.roa (hash: uSkw+UyplBeItOTuy1YkdqtiSzfnh7uK0J/Fq9IderQ=) 12: oUf3XZYQKKuUMRhRUgiVSv9JyGQ.roa (hash: E10q5+iIOHFKWv80jp2miijHhuKprrYoOrowRq3V7/c=) 13: sz41sl944gA7nc3ftfEabEbKfzA.roa (hash: wEeQh2XWAPuKHpWujjLVJ6riJEtOHAoaBunxaQy6Zik=) 14: v2rwoS7yHsFbJ5cMnwXWzLwyhsY.roa (hash: 3EcXIUAH7WoExbmCLv7hnAwJquUxPlesN5bkpZ0X934=) 15: vrDbAJdP8mVX1BMd6HBUmMGwHZE.roa (hash: B6PLU5IsvyBpCwKQ7OOa5EKam/m+er7jApaI9hBf8u8=) 16: xVvDn0m0fXeWwpEduF8Zr5KQy28.roa (hash: B9DRRPtKbaexpxD65Wl+9gnEDLdZEAmYhn71t7uYyuo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Apr 2024 08:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8e:f5:5f:21:ee:25:c8:f0:13:d5:40:4d:47:39:9d:e6:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681 Validity Not Before: Apr 19 08:00:36 2024 GMT Not After : Apr 20 08:00:36 2024 GMT Subject: CN=95f4342ccf2f8ec5c65b291ba78fb826ff24547b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:be:a5:9b:44:5f:58:5b:5a:ee:c3:f8:6b:d5: 53:7d:04:61:f6:4c:5d:db:da:97:b3:fb:f1:b0:19: eb:ff:aa:85:d0:16:ca:92:00:ea:21:48:60:2f:68: 9d:ce:6e:79:ab:d7:b9:02:e5:0b:bb:e2:46:49:63: 3d:4c:31:15:48:06:b2:a2:13:f7:61:df:11:0f:01: f0:90:f4:3c:ab:f1:2c:68:3f:4b:a7:d6:dd:87:96: 25:82:6c:ab:ac:ee:52:41:cb:c0:91:82:cf:c4:71: 4b:62:0e:ed:08:43:40:6a:61:71:fe:d1:b6:c3:00: 01:f1:5d:61:74:6a:5c:d9:75:23:0a:c2:40:db:37: 04:a5:63:6e:d4:59:9e:31:56:8d:f7:44:75:2e:2a: 9f:59:25:93:d3:ae:51:51:f1:7c:b8:79:5b:2f:51: 26:66:f7:76:fb:f6:4c:09:a2:cc:bd:db:56:bd:bc: 5c:06:30:03:d9:ee:f8:7e:f7:4b:0a:4e:bd:28:97: 5a:38:41:62:01:85:ad:62:d3:bf:97:26:73:0b:11: 9b:08:94:25:07:c1:28:37:52:4f:fa:a3:84:4f:5c: c5:f7:98:9a:54:79:a3:b2:5c:97:ec:d2:13:17:ec: 17:26:7e:c9:7b:b9:37:49:08:9e:be:9d:d5:05:2c: e0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F4:34:2C:CF:2F:8E:C5:C6:5B:29:1B:A7:8F:B8:26:FF:24:54:7B X509v3 Authority Key Identifier: keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:8a:88:c9:6b:48:28:a8:7e:d8:f4:dc:79:46:55:db:52:a4: 51:ac:e5:e0:c2:0a:45:72:41:fe:67:21:5b:70:07:22:e5:65: cc:40:5c:ad:09:e6:8a:5a:4c:ed:b7:97:8a:f9:55:76:50:93: ea:b3:9e:55:9b:e5:c7:dd:91:55:bd:d6:7a:64:02:9b:3e:23: 36:e1:05:58:8d:ac:8c:9f:c6:ca:61:05:1e:ba:09:ce:cd:e5: be:6a:f4:63:db:2d:43:5d:88:10:d9:d4:18:9b:6e:f4:0d:74: de:a0:b6:a9:ab:a6:7f:d5:70:7a:92:c3:7b:bc:1a:ee:c4:b9: f1:eb:52:9c:11:65:51:bd:11:f6:65:21:31:63:9b:d2:ff:91: ba:2a:4e:05:a2:3e:ae:39:7b:b0:95:cf:dd:26:0a:a0:18:2d: 71:a2:db:e7:e6:2b:b3:6e:b2:d0:72:1d:08:9d:26:e1:a0:91: 86:d3:14:a8:a7:0f:06:0f:56:c9:dd:cb:01:d2:d0:7d:44:f6: dd:c0:e2:47:12:26:63:17:20:ad:76:54:63:2c:0b:20:86:dd: 69:ea:99:8d:2f:f7:f5:ad:b3:6f:bb:15:ba:9b:a1:31:51:09: c0:47:68:d3:d7:dc:1f:2f:90:c9:ae:ab:55:17:4c:0a:bf:3e: d1:64:c0:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAY71XyHuJcjwE9VATUc5neYJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwYWZmNmI0ZWZmZTdjMzYzZWYyMDBmNmYzZTU4ODhiOTE1 YmE2ODEwHhcNMjQwNDE5MDgwMDM2WhcNMjQwNDIwMDgwMDM2WjAzMTEwLwYDVQQD Eyg5NWY0MzQyY2NmMmY4ZWM1YzY1YjI5MWJhNzhmYjgyNmZmMjQ1NDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhL6lm0RfWFta7sP4a9VTfQRh9kxd 29qXs/vxsBnr/6qF0BbKkgDqIUhgL2idzm55q9e5AuULu+JGSWM9TDEVSAayohP3 Yd8RDwHwkPQ8q/EsaD9Lp9bdh5YlgmyrrO5SQcvAkYLPxHFLYg7tCENAamFx/tG2 wwAB8V1hdGpc2XUjCsJA2zcEpWNu1FmeMVaN90R1LiqfWSWT065RUfF8uHlbL1Em Zvd2+/ZMCaLMvdtWvbxcBjAD2e74fvdLCk69KJdaOEFiAYWtYtO/lyZzCxGbCJQl B8EoN1JP+qOET1zF95iaVHmjslyX7NITF+wXJn7Je7k3SQievp3VBSzgVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJX0NCzPL47FxlspG6ePuCb/JFR7MB8GA1UdIwQY MBaAFACv9rTv/nw2PvIA9vPliIuRW6aBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMt YTg3NzNkZTc2OGY3LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC8wOThkMTMtNmQ2ZC00Mjk0LTk3NTMtYTg3NzNkZTc2OGY3 LzEvQUtfMnRPXy1mRFktOGdEMjgtV0lpNUZicG9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJYqIyWtI KKh+2PTceUZV21KkUazl4MIKRXJB/mchW3AHIuVlzEBcrQnmilpM7beXivlVdlCT 6rOeVZvlx92RVb3WemQCmz4jNuEFWI2sjJ/GymEFHroJzs3lvmr0Y9stQ12IENnU GJtu9A103qC2qaumf9VwepLDe7wa7sS58etSnBFlUb0R9mUhMWOb0v+RuipOBaI+ rjl7sJXP3SYKoBgtcaLb5+Yrs26y0HIdCJ0m4aCRhtMUqKcPBg9Wyd3LAdLQfUT2 3cDiRxImYxcgrXZUYywLIIbdaeqZjS/39a2zb7sVupuhMVEJwEdo09fcHy+Qya6r VRdMCr8+0WTA0g== -----END CERTIFICATE-----Generated at Fri Apr 19 17:34:07 2024 by rpki-client on console-fra.rpki-client.org