$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft (raw, json) Hash identifier: IvFCcVxc8stVPtXqRhn9wSWJvXXWwmWWBrp64/FH7M4= Subject key identifier: C4:D0:BF:B7:4B:8F:1B:3A:06:BE:7E:38:8D:7D:D5:92:15:34:6E:D4 Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 018F855AE2BF03668DFB7F99DDC9BF21ADD2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft Manifest number: 04B1 Signing time: Fri 17 May 2024 07:01:16 +0000 Manifest this update: Fri 17 May 2024 07:01:16 +0000 Manifest next update: Sat 18 May 2024 07:01:16 +0000 Files and hashes: 1: 4gxgACqclZuUFHbUdVD24UYxqxc.roa (hash: R8/eIA99SQCHlr6jRMCBdYs8Rpb0NXbbXc80B0uAXvo=) 2: 5NTDG_4DonHS7H3yvxy4PxjkwQ0.roa (hash: ZSFDJk1ZqWOAdRiURj7xQ+/OrW7kArTE55P4V3G1IuM=) 3: B5ka81XCk3sqeF-cSGSKJEUALjQ.roa (hash: T8X/Nj0s9TmzSqpU2PmPXcxoVu2LYyRgseF63QtrYVs=) 4: Gc4GFjRqJA13brQpyXI8Ft02P7I.roa (hash: U5SsZ3oURLkpSVdEKAm/d3hn7DJtIkISdceFjkeiKhs=) 5: I8G_eh-rVpx2oZHpNhQiXlPUS4I.roa (hash: iZLWupNZlFmxZVH6DAs8FckGutkB39c7rh7iVjxodnE=) 6: JoK8-2dNhHO8iSymI04tgCQAul8.roa (hash: i1BCI4iwpKSc5N25CyevS7ZjL/sorpZ/bXCKM6onpYk=) 7: JruvBhM4J4tY_yal2sOi9uiohWo.roa (hash: pkIbENcfT1xlfldgMckJ4v0WmR5fGNlbUQHT/vZ3hF0=) 8: KhAMfCR_qg_kB3qGegGpw1fiMvY.roa (hash: RF7nCIJh9Rzy3yaCAcVqyFzlLPp0ly9b5rdcO356Q5E=) 9: V_rux9A-K76_L-5JIgrFPqL8XhU.roa (hash: vvKWZ5yhRpw1/9gLRie+5q9Ug9kB9CxhwuZWKvYSL3s=) 10: Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl (hash: KlLmTAKhvEEt702iolOIlI5uIDo1uUazIpqiMwTdLlA=) 11: fFkfeFBVgarLLt3vR_YqviEPlwE.roa (hash: SZXzpXI1TB0+1TxBE5BCrlP3VWQt2R0ldC8D3kqiVIc=) 12: h1FGxHdiOi79NK1sAaotkuk4KY8.roa (hash: mUae4X+VSB3yskKp22RoUh6wmUNC2abidwXVi8P3IQI=) 13: mvYLp00a8AXi4GG7BuObnO2gRFo.roa (hash: Ng/CTbsUCxAk+VMRSU99baUVq8CzrRJjHp7atIsU7WA=) 14: omMqyJwb2TMKUg_d6AxeOiep24o.roa (hash: jqe4xwEnEXd+YYlvPtVux5Ur9EGE7a+JqP42x1J+kuM=) 15: vIxEo8ASP1DuGkv7LKCBVcKyIK0.roa (hash: FarHIP/UNrasIdkcg4CLzWDPqXnUpGSB5ZzmzeGiLOk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 07:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8f:85:5a:e2:bf:03:66:8d:fb:7f:99:dd:c9:bf:21:ad:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: May 17 07:01:16 2024 GMT Not After : May 18 07:01:16 2024 GMT Subject: CN=c4d0bfb74b8f1b3a06be7e388d7dd59215346ed4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:09:bd:d6:9e:b9:3d:83:2d:50:4c:f7:fc:25: e1:a5:9e:ff:6a:6e:c2:8a:cc:09:63:24:0d:34:5c: bd:1d:46:3c:aa:d2:61:0a:7c:d7:24:f8:e7:ce:ad: f5:b6:e4:67:49:59:88:9b:d0:e4:f6:bf:ab:76:02: d9:e5:58:9b:b0:6b:5a:0a:bf:85:aa:b0:6b:3f:1c: 21:4a:f2:a3:85:f7:e2:61:ad:4a:23:7e:0b:c1:da: ca:38:fd:66:3f:9a:d1:9e:44:33:ac:db:c3:ba:ed: fe:6d:6c:62:34:72:dc:c9:f1:94:55:b8:d5:e4:a5: d2:66:cc:24:2b:ed:ff:5f:55:2d:ce:72:dd:7d:44: 08:c9:bb:18:a5:cd:b1:69:07:81:82:6e:83:b9:3c: 95:76:5f:11:7d:15:f7:5a:ab:c6:9d:c5:cf:e8:96: ee:a6:89:51:ce:e3:87:db:57:6c:73:a8:82:db:42: 6d:b7:2a:94:7d:64:61:33:8a:88:99:4d:07:1c:fc: 1a:5a:56:45:10:10:08:67:15:b3:8e:2c:e3:20:64: a3:e3:ab:d6:8d:0c:a5:59:03:fd:aa:bd:76:32:48: f0:2f:97:1f:64:e3:02:6d:55:b0:4c:9b:e2:86:36: b8:23:d0:a2:8b:31:8c:65:62:2e:f4:92:0e:55:9d: b7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D0:BF:B7:4B:8F:1B:3A:06:BE:7E:38:8D:7D:D5:92:15:34:6E:D4 X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:be:b6:6e:fc:26:c9:ea:d6:2b:77:cd:c6:12:40:a5:91:47: 8f:60:ca:af:42:51:ce:46:67:db:a0:4c:34:80:d4:59:a6:aa: 34:8a:57:57:68:a4:da:05:d2:dd:47:64:53:e1:d3:72:d3:60: f4:27:5d:a8:47:20:1e:42:49:27:bc:26:f4:be:73:be:9d:47: 84:cc:f7:7f:3c:ee:27:1d:c3:9b:d5:86:cf:0b:24:a8:28:45: 11:f3:c5:e6:60:04:1d:96:5a:4c:5c:79:ae:9f:00:f1:57:20: ac:ce:d8:77:7f:9f:b1:bf:4c:fd:2a:e9:70:ff:c6:41:4e:6a: 5d:4e:92:d3:ce:c9:27:ee:98:c2:c8:b8:dd:c0:11:08:21:23: 5d:49:b2:25:39:14:ce:7d:5a:9b:01:f0:ca:df:3e:0a:5c:bc: 2e:15:45:59:39:fe:b0:1f:a0:cb:7e:2d:19:d4:3f:6a:41:84: 43:a9:35:3f:02:d0:14:84:b7:0b:02:0d:07:30:de:e7:b9:84: 98:8e:aa:62:8a:1f:f0:dd:5e:41:72:17:78:bb:71:ae:90:1e: e0:32:de:73:1f:32:bf:8a:d4:6b:7d:0c:74:a7:5e:ba:b4:56: 48:5b:8c:b7:1a:91:42:7e:5d:41:ad:5a:41:f2:55:c5:9a:18: 0c:ce:75:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAY+FWuK/A2aN+3+Z3cm/Ia3SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjQwNTE3MDcwMTE2WhcNMjQwNTE4MDcwMTE2WjAzMTEwLwYDVQQD EyhjNGQwYmZiNzRiOGYxYjNhMDZiZTdlMzg4ZDdkZDU5MjE1MzQ2ZWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgm91p65PYMtUEz3/CXhpZ7/am7C iswJYyQNNFy9HUY8qtJhCnzXJPjnzq31tuRnSVmIm9Dk9r+rdgLZ5VibsGtaCr+F qrBrPxwhSvKjhffiYa1KI34LwdrKOP1mP5rRnkQzrNvDuu3+bWxiNHLcyfGUVbjV 5KXSZswkK+3/X1UtznLdfUQIybsYpc2xaQeBgm6DuTyVdl8RfRX3WqvGncXP6Jbu polRzuOH21dsc6iC20JttyqUfWRhM4qImU0HHPwaWlZFEBAIZxWzjizjIGSj46vW jQylWQP9qr12MkjwL5cfZOMCbVWwTJvihja4I9CiizGMZWIu9JIOVZ238wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMTQv7dLjxs6Br5+OI191ZIVNG7UMB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH762bvwm yerWK3fNxhJApZFHj2DKr0JRzkZn26BMNIDUWaaqNIpXV2ik2gXS3UdkU+HTctNg 9CddqEcgHkJJJ7wm9L5zvp1HhMz3fzzuJx3Dm9WGzwskqChFEfPF5mAEHZZaTFx5 rp8A8VcgrM7Yd3+fsb9M/SrpcP/GQU5qXU6S087JJ+6Ywsi43cARCCEjXUmyJTkU zn1amwHwyt8+Cly8LhVFWTn+sB+gy34tGdQ/akGEQ6k1PwLQFIS3CwINBzDe57mE mI6qYoof8N1eQXIXeLtxrpAe4DLecx8yv4rUa30MdKdeurRWSFuMtxqRQn5dQa1a QfJVxZoYDM517Q== -----END CERTIFICATE-----Generated at Fri May 17 11:27:40 2024 by rpki-client on console-ams.rpki-client.org