$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft File: Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft (raw, json) Hash identifier: YbvLZ0HkRGwsnkAF/FyOMxIWt2UhnBZPyCg5gOkvpBI= Subject key identifier: CD:A0:D6:E0:89:CE:15:78:F2:FA:93:67:83:67:5B:29:71:C1:B7:69 Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Certificate serial: 019352750970DF082EB923CFA1A15179C1C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft Manifest number: 06DF Signing time: Fri 22 Nov 2024 06:00:21 +0000 Manifest this update: Fri 22 Nov 2024 06:00:21 +0000 Manifest next update: Sat 23 Nov 2024 06:00:21 +0000 Files and hashes: 1: 1-qJ7y3EK6lVL1Sy_0g1so5UbMqs.roa (hash: c/j0Wgzo4oxrXRd4nteHS0xyShUt1mNqYYYXwkvgLBw=) 2: 5iwH8Hc5OLWpWJBRoNBwV-4RGz8.roa (hash: 0xWkcEj6nqvmCPEMzIn6z3JacDxRBbemf2GkKrC+XeE=) 3: B6zv0uhUmh9tJpr3NlMBCwypu-w.roa (hash: HZ8r3zpJgSlSFtPhgEXjjm+n6/a0/TpU5u3eVvYFC/Y=) 4: GVgRCiEsTrJzhnBt2qp_4LpOlus.roa (hash: P6qfnCTePa1ASR8wbRf69RixpsshbnaldqDKKFk4n94=) 5: HIVaDPSx6Hlu7DfoL7MH0outhcY.roa (hash: AJeVOY0UsdUK4uQqVhpLHJBpFmAQ25c2VaYn5idu3CI=) 6: OOxGYQDR4ORyhZy2gS6ho-5fpyo.roa (hash: DG9wqws/Tg8PXDPKxYkJkjmLjOxqOtjZfa4Ew6XPkQ8=) 7: P8tWF-9Z3LsjOEPUI0cWwNIlcWg.roa (hash: Kv9SK76F6uDH3eeCe5pp0vqrZ0wPNb4cOa0mrfkvzlk=) 8: Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl (hash: fbN0gAmIXo0WOfooo9BfXTiaqjGqmh9aD0eiwTYDq4s=) 9: R-K__164MVgYOCCHegtPMgyht_w.roa (hash: lxuEOqOzgUmA+eQpiPCa3XHkNKH7aurxC8Ve1kYMRHs=) 10: U4hsS-9jfr52lqHezMKQlUP6Q-w.roa (hash: JqNc6V+Smt9vBB9H9+K4dFN6YTX32dRHbMwekxLtdoo=) 11: WmCZReUuTXguPw2N1-pQDN4eY8Q.roa (hash: i9te18DkIFHxNIMWX6rLdU14e7SgKKN/t+MPDMCrVDI=) 12: b3zyzN_UjZO7TcRUxkcW1rI3GMI.roa (hash: gyz3yW3seCzlp1kvbl7SAvWZYdHYkB87kYGj+l/qZ9o=) 13: jCpouARSG3K90Gx0MVfn-0eAqqU.roa (hash: 6XVaCB3Ek+yrjEQBe0YBiUl6RBU3gZCvJzalv8uzZNQ=) 14: khVhXc0JxaKSr1WfAAZk-A9Mlpc.roa (hash: eDK+VQRukAZ3FXzWH/oA0h3Jce9OKsY7WwIXopn9tMQ=) 15: rOuM8R13EZwAt0tMOM6f11O-WmA.roa (hash: dzNCtHJRySswhSYCH8zRcvcYniblkIGO2Sy7628+c2w=) 16: x5DGYpnfQejth6ht00r9OHhOf5Y.roa (hash: dIuJVyHCSQBqqqpcACIjf6dX7KxeOCxl70WuLid7Qmg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 03:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:52:75:09:70:df:08:2e:b9:23:cf:a1:a1:51:79:c1:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Validity Not Before: Nov 22 06:00:21 2024 GMT Not After : Nov 23 06:00:21 2024 GMT Subject: CN=cda0d6e089ce1578f2fa936783675b2971c1b769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:56:70:ae:ec:e0:bb:55:29:df:dd:d5:4f: d4:84:91:95:cf:c5:f5:1b:cb:47:03:97:e1:f5:00: 5d:e9:f9:b8:30:3e:17:18:35:ed:d2:5c:92:2b:ca: fd:3d:c2:e1:59:4a:aa:e1:61:62:97:10:f8:a4:78: da:ea:60:c3:b3:5d:c8:ff:65:d6:13:e1:6e:a9:0f: e9:1b:73:02:c5:fa:4c:70:d1:a6:02:d5:5b:bc:b0: b7:bb:68:88:39:bd:b7:3f:e8:11:c9:ba:22:04:56: d1:e3:1f:b2:fc:b6:45:37:c0:f3:34:e7:3d:82:ec: 14:76:e6:98:51:f6:80:db:83:c9:e4:a3:a4:11:cd: f5:f3:ba:60:30:a0:96:2a:59:c6:31:c6:ed:55:38: df:24:e0:de:0b:ba:d9:9c:8c:bd:a1:28:73:f1:4c: 67:13:3b:b7:58:24:b0:b6:06:7f:37:56:a9:12:55: 1f:c5:ce:c8:e2:55:49:3e:e8:47:2b:0b:f7:74:0e: fa:fc:1d:f4:56:d5:50:4c:30:93:d2:ea:f6:61:18: da:7b:73:86:6d:0b:46:ac:27:26:52:91:0e:72:21: 94:54:44:15:5a:45:5b:6b:67:f5:55:09:a7:c0:15: 41:5c:77:9e:bc:3f:07:4a:fa:8e:ce:5a:13:0f:01: fb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:A0:D6:E0:89:CE:15:78:F2:FA:93:67:83:67:5B:29:71:C1:B7:69 X509v3 Authority Key Identifier: keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:ff:5a:0f:e9:35:33:c7:36:ef:6b:71:2e:60:25:72:79:82: 31:cc:40:ab:30:6f:21:5d:d6:d9:cc:91:0a:e2:b7:5d:70:db: 62:70:9b:22:f7:42:e7:a2:90:44:3d:7e:74:89:a6:87:e0:81: 5d:b9:ef:0f:ff:68:d3:4f:b2:93:17:75:b7:d3:07:0b:33:e2: 3a:7a:48:75:86:59:3e:85:b0:58:65:2d:47:3d:7e:09:f2:28: ce:31:67:6a:a9:e6:e5:2d:8c:20:3e:f7:a6:21:92:c5:38:62: 46:fb:80:22:32:e4:41:5f:ec:8b:d8:eb:41:37:ad:4e:9f:6d: 1d:1d:e0:5d:f1:60:fe:c4:1a:f0:b7:bb:11:6e:11:b8:dd:b3: f1:b6:ce:5c:45:af:99:bd:4d:e3:cc:b7:72:84:ec:42:8a:18: 29:34:42:4f:89:a3:1a:e2:ef:fd:9e:1a:dc:e1:0f:3d:3a:85: ed:4f:e3:74:81:c3:92:ed:f9:e4:ed:ca:d5:3a:2a:88:6c:c1: 0d:dc:9f:f0:a5:b2:fe:12:b7:5b:2f:0c:8a:84:22:1f:1b:55: ab:28:43:b4:3d:57:25:ed:88:a1:2c:5c:e1:5a:df:76:ed:9a: 8d:65:ea:71:bd:a8:8a:0f:57:d9:e9:5f:7f:67:6c:c0:ab:35: 0d:2b:7e:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNSdQlw3wguuSPPoaFRecHHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNTRhNDE5MjI1ZDVkNzlmNGExYWUxNTIwYTNiMWE1NmQ0 NTI2OGMwHhcNMjQxMTIyMDYwMDIxWhcNMjQxMTIzMDYwMDIxWjAzMTEwLwYDVQQD EyhjZGEwZDZlMDg5Y2UxNTc4ZjJmYTkzNjc4MzY3NWIyOTcxYzFiNzY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfJWcK7s4LtVKd/d1U/UhJGVz8X1 G8tHA5fh9QBd6fm4MD4XGDXt0lySK8r9PcLhWUqq4WFilxD4pHja6mDDs13I/2XW E+FuqQ/pG3MCxfpMcNGmAtVbvLC3u2iIOb23P+gRyboiBFbR4x+y/LZFN8DzNOc9 guwUduaYUfaA24PJ5KOkEc3187pgMKCWKlnGMcbtVTjfJODeC7rZnIy9oShz8Uxn Ezu3WCSwtgZ/N1apElUfxc7I4lVJPuhHKwv3dA76/B30VtVQTDCT0ur2YRjae3OG bQtGrCcmUpEOciGUVEQVWkVba2f1VQmnwBVBXHeevD8HSvqOzloTDwH7SQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM2g1uCJzhV48vqTZ4NnWylxwbdpMB8GA1UdIwQY MBaAFENUpBkiXV159KGuFSCjsaVtRSaMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEt Njg4ZDUxYTQ0NDQ4LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEtNjg4ZDUxYTQ0NDQ4 LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFP9aD+k1 M8c272txLmAlcnmCMcxAqzBvIV3W2cyRCuK3XXDbYnCbIvdC56KQRD1+dImmh+CB XbnvD/9o00+ykxd1t9MHCzPiOnpIdYZZPoWwWGUtRz1+CfIozjFnaqnm5S2MID73 piGSxThiRvuAIjLkQV/si9jrQTetTp9tHR3gXfFg/sQa8Le7EW4RuN2z8bbOXEWv mb1N48y3coTsQooYKTRCT4mjGuLv/Z4a3OEPPTqF7U/jdIHDku355O3K1ToqiGzB Ddyf8KWy/hK3Wy8MioQiHxtVqyhDtD1XJe2IoSxc4Vrfdu2ajWXqcb2oig9X2elf f2dswKs1DSt+Ig== -----END CERTIFICATE-----Generated at Fri Nov 22 11:56:55 2024 by rpki-client on console-fra.rpki-client.org