$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft File: ZbfWaZg1v-moCB38EU3xv20hXac.mft (raw, json) Hash identifier: G+WX3Y8lqoT7M9zTyjJvUUt11qZ4gtgeSynTnURlLtI= Subject key identifier: BE:1F:19:1D:47:1A:77:48:DE:78:DF:24:F6:59:E2:32:9C:29:51:03 Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Certificate serial: 01935086A17873B9E9A45CDA1E4C5CF907D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft Manifest number: 13C7 Signing time: Thu 21 Nov 2024 21:00:20 +0000 Manifest this update: Thu 21 Nov 2024 21:00:20 +0000 Manifest next update: Fri 22 Nov 2024 21:00:20 +0000 Files and hashes: 1: D-hbNEgkDbtPfZRe3cRmvOPt04s.roa (hash: OjWnRxHjyrFtjznIpjXh/JaOqbs197KzEhvJRHqSgsE=) 2: DGbhLHutFQXb6ndyDZDKAcZfPBg.roa (hash: M1Vz4wAueEThTY0qkBYxfaEFMSD7YBOoDqdHYSGh7kI=) 3: Jc5SjZP7cu2cc7BmByNIp3FZ_gM.roa (hash: YM2tKCt3GUobR7Ptlb2hZrJx9DTpunUempEuXFCSCTI=) 4: Lxzl-u5c--8hsmivKetUFFMwuRQ.roa (hash: hWrzVRmkK/p6LnIQVQto2D1B/RJ3klgvwywKr/c9ATc=) 5: NmKq3a7_Lsg_C-anvlpjZhX0OHw.roa (hash: jRAFTDzXmxCAAxxLNXTmtkBa5N8/B+uqegFRr5JAVzI=) 6: SCaD2SqaWfN--N6DsF994_fc3Mg.roa (hash: +mVgiw0WyQXJZ5mj5zvKT11Ag+lyI+ehWbsz6ALMHpM=) 7: ZbfWaZg1v-moCB38EU3xv20hXac.crl (hash: ZuANVmf4OQrXI1PcLf2+So424eDoInqws2epATP8Slg=) 8: gZDp52mLrD3ehIfvaLEKrYEhWcQ.roa (hash: lMeWSoR4Q0LSVLDwL3afCOVFcb7LlthyPkKF4b1TRIQ=) 9: iFUnd3y2fskJ-fGZDyS2sf-Cnyg.roa (hash: WqLSm+uiSWKcO0oQKNbpittpdssoFoSyzRlPZX31wsY=) 10: kMGAjJqecVlYsPsgVnay2G29xx4.roa (hash: H5YRD/vJWSww+42rSK0C+Ajor/8axACnv6++kt5Rqo0=) 11: mKalWuYZbmNUhRIjCMGinGLnvQs.roa (hash: Zs+65sEUJytPZnnr+qDNyKL987g4Qls9GH6qRc3o3po=) 12: nHVkBV53zmTU5cOhwsfSsiHI_E0.roa (hash: VmfWQnsprOixfoja0VoSdL6hgfboczP1/mCKhSbAfsc=) 13: od7Il_13Nk5_yDVtyaNXCF8VyNs.roa (hash: WLY/3qpyNKvrQJvMOc5CWyzl6TwOHX0c4gTudsITODQ=) 14: p41qPh3EbNbLzH1tvYRYGS0N2E8.roa (hash: Zub/SyOrNLAvM8W+T3PNJnGTgJeGtmmMQ/2b5XCZoL8=) 15: pPIHbeNc62COyhxM6odIW3K025c.roa (hash: shu/5GmsXglrUQ5SYHSksaHwRxDDoZS6NDum2JTRhEs=) 16: py8ZliPh2RTdBVnoHOLe9dHz_Xs.roa (hash: LHWJd2BfkpS22nwh4rWxZGB71ZzorP1Lpg1gXf9jDQU=) 17: uyLzr0lNKusDt5k_MdYhqlyUNXg.roa (hash: HoypJnoS/mMaeQke6hovbvRQG6HeqkqPx+ogcXiII0Y=) 18: zFT75sq9liB8NP7YP6Jcg7qbVIo.roa (hash: BjWyimO8xb1d0zTB2WjZ1qMPSKjinekcF9D8C94Ok7g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 18:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:50:86:a1:78:73:b9:e9:a4:5c:da:1e:4c:5c:f9:07:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Validity Not Before: Nov 21 21:00:20 2024 GMT Not After : Nov 22 21:00:20 2024 GMT Subject: CN=be1f191d471a7748de78df24f659e2329c295103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:38:8f:10:29:d6:81:80:3d:b6:a2:82:39:af: b8:09:d3:cb:d8:6d:2b:92:26:29:31:c3:06:d6:8b: 92:14:f3:5e:b9:bc:bf:00:9e:4d:d8:f1:f8:3f:f4: 4c:15:4d:e8:43:e5:50:9a:67:82:4f:2f:3d:76:45: 9c:26:a4:ee:ae:99:12:a1:84:b0:0c:02:85:9f:54: ac:df:0c:68:76:c9:cf:38:d1:79:f8:43:ee:8e:c1: b9:56:c8:50:c0:f1:89:e9:74:6a:56:61:53:44:16: 02:16:42:1f:fb:56:e0:2b:22:35:52:f6:1a:14:42: ce:e8:8e:63:fe:51:d3:8f:17:c5:a4:c7:69:f1:c3: a5:21:a5:5c:53:91:78:f0:09:91:e5:6a:c2:fe:74: 52:0f:48:eb:cc:bf:ba:31:bb:c5:f6:a0:71:90:98: cd:0e:cc:bd:e3:9e:6e:b4:21:50:cb:1e:02:aa:33: 5e:48:01:34:5c:4c:48:c3:ef:04:99:ec:00:4f:4f: 7c:28:3a:63:84:26:ec:2d:e5:6f:fc:ad:57:0d:4b: 55:9b:2d:1f:30:e5:64:35:5f:03:68:69:b4:76:02: e6:87:e8:25:e7:94:e9:7a:dc:6b:9c:4e:58:e8:48: c2:1d:57:af:7b:d9:cc:91:4a:d2:f0:6f:77:c3:a1: 29:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:1F:19:1D:47:1A:77:48:DE:78:DF:24:F6:59:E2:32:9C:29:51:03 X509v3 Authority Key Identifier: keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:6f:d7:3b:02:19:d9:63:25:c6:f4:56:1f:c7:46:9d:40:ea: f0:a8:2e:46:5e:dc:aa:be:51:f8:da:1c:22:f5:2a:c6:77:61: f0:f8:23:68:0e:67:c8:de:b2:bc:4c:c5:82:c6:f0:82:1f:80: 9d:ea:d2:1b:e0:f3:c7:87:bc:73:e4:42:63:13:52:04:e2:f1: 1c:11:4b:ef:94:78:5f:a3:e0:43:dd:09:47:67:cd:59:3d:6c: bd:93:32:71:c8:2e:fd:34:60:b9:d5:91:22:28:17:88:8a:f2: 3b:d8:9a:e0:8f:ad:0e:5a:cd:a1:20:4a:0a:a7:e2:c7:ce:ab: 2c:7c:64:61:b4:ee:21:c5:4f:c2:f3:61:ed:47:93:42:08:74: ac:8b:1f:d2:52:e9:8e:1c:17:02:43:32:2d:5a:9b:45:62:b9: 5d:92:b6:15:09:e4:04:09:c7:25:d0:d6:fd:dc:2b:a7:f3:ab: c4:9b:4c:f5:1f:56:5c:cc:5d:fe:65:0e:f5:e5:4f:77:b3:d7: e7:d6:4e:21:d3:15:7a:7a:51:eb:33:99:2e:50:8a:23:b9:8b: 7d:57:80:ab:c9:43:5d:70:af:31:e6:94:e6:3f:f3:a8:8f:18: be:1b:d3:db:a2:58:6f:c3:66:d6:a4:5c:9e:5f:e9:9f:a8:9e: 1e:cb:4d:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNQhqF4c7nppFzaHkxc+QfZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1YjdkNjY5OTgzNWJmZTlhODA4MWRmYzExNGRmMWJmNmQy MTVkYTcwHhcNMjQxMTIxMjEwMDIwWhcNMjQxMTIyMjEwMDIwWjAzMTEwLwYDVQQD EyhiZTFmMTkxZDQ3MWE3NzQ4ZGU3OGRmMjRmNjU5ZTIzMjljMjk1MTAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkDiPECnWgYA9tqKCOa+4CdPL2G0r kiYpMcMG1ouSFPNeuby/AJ5N2PH4P/RMFU3oQ+VQmmeCTy89dkWcJqTurpkSoYSw DAKFn1Ss3wxodsnPONF5+EPujsG5VshQwPGJ6XRqVmFTRBYCFkIf+1bgKyI1UvYa FELO6I5j/lHTjxfFpMdp8cOlIaVcU5F48AmR5WrC/nRSD0jrzL+6MbvF9qBxkJjN Dsy9455utCFQyx4CqjNeSAE0XExIw+8EmewAT098KDpjhCbsLeVv/K1XDUtVmy0f MOVkNV8DaGm0dgLmh+gl55TpetxrnE5Y6EjCHVeve9nMkUrS8G93w6EpowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL4fGR1HGndI3njfJPZZ4jKcKVEDMB8GA1UdIwQY MBaAFGW31mmYNb/pqAgd/BFN8b9tIV2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDct OWU0MTNlYmY0MmYzLzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDctOWU0MTNlYmY0MmYz LzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhm/XOwIZ 2WMlxvRWH8dGnUDq8KguRl7cqr5R+NocIvUqxndh8PgjaA5nyN6yvEzFgsbwgh+A nerSG+Dzx4e8c+RCYxNSBOLxHBFL75R4X6PgQ90JR2fNWT1svZMyccgu/TRgudWR IigXiIryO9ia4I+tDlrNoSBKCqfix86rLHxkYbTuIcVPwvNh7UeTQgh0rIsf0lLp jhwXAkMyLVqbRWK5XZK2FQnkBAnHJdDW/dwrp/OrxJtM9R9WXMxd/mUO9eVPd7PX 59ZOIdMVenpR6zOZLlCKI7mLfVeAq8lDXXCvMeaU5j/zqI8YvhvT26JYb8Nm1qRc nl/pn6ieHstNbA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:18:02 2024 by rpki-client on console-ams.rpki-client.org