$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft File: dOPDNpcglLGowT1BgWhX0Zejquk.mft (raw, json) Hash identifier: rrH6RcDAH8o7kcKN8s8XRgNRoGZWdegb7arYW6eTOS0= Subject key identifier: 3C:81:88:B2:F4:A4:FE:0A:26:E3:73:E2:05:FF:F4:D8:45:02:A0:1A Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9 Certificate serial: 0193617A5E9576945EB5B1903C3308A25E6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft Manifest number: 1090 Signing time: Mon 25 Nov 2024 04:00:29 +0000 Manifest this update: Mon 25 Nov 2024 04:00:29 +0000 Manifest next update: Tue 26 Nov 2024 04:00:29 +0000 Files and hashes: 1: 1-ZzmXJj6xUZjqOjo9KmH6v3YHNM.roa (hash: GmpHOTEnhPba5m0S3oypSfNOZqkoVRBNNdPmDFM4Vhk=) 2: 55oFkeRL3iG22GPAdM6Sgx5iSwE.roa (hash: PfaRieRQR2lewjMk3HTckD6JnlD0cvD4TW7LUiwNvIU=) 3: 787no0U6EG2sMe8WyGfIrV-dAgE.roa (hash: JMOgO+hfeHEKdeTVaTQ4HZ0wAwhyh7QeIKoS19MGWDs=) 4: 8zfVEgO20l3xwQxuUXCS_jiNHBo.roa (hash: Z0PEOogw09uVGbeWfzfA3A7WSn8C/dm1kI0NKvp33O8=) 5: GFEzgKoshW5Js2k_gk643Q7YNu0.roa (hash: EgM1Q0RvyM4b+ffIBQVNA6dHVlBDiepGPvtOuna8O6k=) 6: V5EkRtCjuINU6JJWvdGZYNCnlpQ.roa (hash: kexHJV9iei0P/+HEckUnlvJeBrFfi7thZ6cNDTw51WM=) 7: WCeTutGNYOUSZToRg8kMosw7lA4.roa (hash: gg+41+WYV+q0hVMBCSFUkdSEGiTwP0jqkMt5QVrD76I=) 8: aCeRX2nTn7zUvEkXNF0vGJs_xm0.roa (hash: Qrp+R1O2dJ47Bd8kho/yGgLAp8jJQMMqhmF6wq1FkEk=) 9: dOPDNpcglLGowT1BgWhX0Zejquk.crl (hash: chw6TYW4xyU00V5M77wVW4sPvd+qP8RdVixbrFutGkA=) 10: hhVtoJeRGoTas_aawoPdDYctvOI.roa (hash: KqNgXXj8ZXHyKICJhlc1KloT79hlNMvwIWtMVZEQLWI=) 11: na2UKX-2KF2tT3Dok75MvGu6p88.roa (hash: cr+OHRY/pQBSdVbL/EfYjIR/w/9wYIEwjnicVMEWgOE=) 12: prTtt8UeW6vaIBf_yLpLK1hPYqs.roa (hash: oaJAGpKpwNsAbNb1yVNMFgsl7FwcJB+ZzevJj+mVP+A=) 13: vrH0b2k-uwRKqoo8p-yym3gv0rM.roa (hash: lWxa3Z2CH5LM3zBefhja94O186dytNmXZ/uPNS7nvwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:61:7a:5e:95:76:94:5e:b5:b1:90:3c:33:08:a2:5e:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9 Validity Not Before: Nov 25 04:00:29 2024 GMT Not After : Nov 26 04:00:29 2024 GMT Subject: CN=3c8188b2f4a4fe0a26e373e205fff4d84502a01a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:73:9c:ef:f5:c9:d4:19:6f:97:43:f7:21:dd: 3c:68:1f:42:63:f1:d6:35:39:ac:64:eb:00:06:76: b8:a8:f2:48:a6:c1:59:9f:9e:26:f7:db:6e:82:53: f7:09:af:1e:a7:68:18:3b:4b:f2:b4:54:51:a9:d2: ca:ec:bc:5e:00:2e:e4:3f:34:80:4d:74:80:0e:c7: 7e:1c:ac:e3:ec:44:f5:d3:9f:a5:9a:21:27:b5:67: 39:32:3c:7c:5c:ab:38:62:47:dd:22:ad:6d:99:7c: 38:4c:a1:2b:0d:ae:4d:83:32:f8:6f:66:a1:03:73: 75:0d:31:99:1e:2b:55:3e:1f:7d:5e:a9:6e:97:dd: e9:b3:d5:15:41:c8:e2:43:66:2a:66:31:e4:62:95: 91:7b:c3:c1:a0:4f:b0:38:91:3b:b0:db:c4:89:e8: 07:f4:f3:81:29:4a:d6:40:1b:76:3f:ec:69:5b:e6: 01:9b:f1:f0:78:fd:0a:e8:6c:ef:5a:3a:0a:1e:1b: a2:34:67:45:20:61:fd:58:b2:d9:12:84:88:da:26: 63:8d:76:ac:89:e4:56:8e:bf:d4:e1:16:a5:c3:72: 9d:9f:d7:17:fd:da:32:e7:c5:6a:42:63:41:a3:02: 49:99:49:e7:b3:2f:fe:71:fc:4f:4c:27:c7:8c:30: 52:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:81:88:B2:F4:A4:FE:0A:26:E3:73:E2:05:FF:F4:D8:45:02:A0:1A X509v3 Authority Key Identifier: keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:74:de:31:16:67:b2:71:6d:79:67:42:86:e8:e9:64:9f:69: 82:90:ee:23:44:09:3e:ce:ab:cb:8c:a1:48:ba:c3:66:d3:b7: 68:8a:d4:40:1d:5a:a3:e4:3f:eb:4b:57:72:13:61:91:9b:ec: c2:3f:ac:38:08:16:18:72:ab:66:77:18:e7:3e:38:b7:39:44: ec:c1:85:86:a8:55:cf:1d:2f:bb:f7:d9:0a:09:d7:a1:d8:4b: 04:c8:87:fc:d4:ff:4d:f9:d3:1e:2b:5e:c5:6e:c5:f0:77:2f: 65:86:9b:34:96:f5:de:14:56:1e:03:1e:05:ef:42:aa:a3:e9: d7:d4:df:91:23:29:ba:8a:89:82:04:3b:9b:3c:a2:d1:79:65: 68:29:f7:66:08:e1:0c:34:39:6e:f5:e0:39:d3:93:b8:c1:0b: 77:ff:fb:6f:cd:62:cf:69:10:a3:75:cc:09:44:75:35:29:d9: 2c:8c:c1:f2:23:e8:e3:77:9a:29:52:85:8d:b8:f0:f0:17:65: 5d:f9:40:6b:21:d8:94:20:cd:62:1e:e1:bb:70:68:6b:42:62: 0f:c8:0a:8a:6b:49:7e:a5:dd:41:d3:a3:9e:91:8d:c6:44:b9: 38:04:aa:2f:db:46:a3:cb:ea:db:3e:4f:d0:0b:5b:4d:7e:94: cf:97:c1:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNhel6VdpRetbGQPDMIol5qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTNjMzM2OTcyMDk0YjFhOGMxM2Q0MTgxNjg1N2QxOTdh M2FhZTkwHhcNMjQxMTI1MDQwMDI5WhcNMjQxMTI2MDQwMDI5WjAzMTEwLwYDVQQD EygzYzgxODhiMmY0YTRmZTBhMjZlMzczZTIwNWZmZjRkODQ1MDJhMDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnOc7/XJ1Blvl0P3Id08aB9CY/HW NTmsZOsABna4qPJIpsFZn54m99tuglP3Ca8ep2gYO0vytFRRqdLK7LxeAC7kPzSA TXSADsd+HKzj7ET105+lmiEntWc5Mjx8XKs4YkfdIq1tmXw4TKErDa5NgzL4b2ah A3N1DTGZHitVPh99Xqlul93ps9UVQcjiQ2YqZjHkYpWRe8PBoE+wOJE7sNvEiegH 9POBKUrWQBt2P+xpW+YBm/HweP0K6GzvWjoKHhuiNGdFIGH9WLLZEoSI2iZjjXas ieRWjr/U4Ralw3Kdn9cX/doy58VqQmNBowJJmUnnsy/+cfxPTCfHjDBSMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDyBiLL0pP4KJuNz4gX/9NhFAqAaMB8GA1UdIwQY MBaAFHTjwzaXIJSxqME9QYFoV9GXo6rpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAt YTZjNDllYjI4Mjg3LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAtYTZjNDllYjI4Mjg3 LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABnTeMRZn snFteWdChujpZJ9pgpDuI0QJPs6ry4yhSLrDZtO3aIrUQB1ao+Q/60tXchNhkZvs wj+sOAgWGHKrZncY5z44tzlE7MGFhqhVzx0vu/fZCgnXodhLBMiH/NT/TfnTHite xW7F8HcvZYabNJb13hRWHgMeBe9CqqPp19TfkSMpuoqJggQ7mzyi0XllaCn3Zgjh DDQ5bvXgOdOTuMELd//7b81iz2kQo3XMCUR1NSnZLIzB8iPo43eaKVKFjbjw8Bdl XflAayHYlCDNYh7hu3Boa0JiD8gKimtJfqXdQdOjnpGNxkS5OASqL9tGo8vq2z5P 0AtbTX6Uz5fBkw== -----END CERTIFICATE-----Generated at Mon Nov 25 11:30:57 2024 by rpki-client on console-ams.rpki-client.org