$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: 0uyn4fxBvdDM/2Hxb4pjTefw6eaVNS4wMQlFbcnXWw0= Subject key identifier: 58:7F:ED:D7:9E:6C:92:9D:90:CD:84:B2:A9:8A:35:F9:95:CA:C3:34 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 0193549A55FDD89CEE4D1493EDB5AFDEC2DD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 13D3 Signing time: Fri 22 Nov 2024 16:00:20 +0000 Manifest this update: Fri 22 Nov 2024 16:00:20 +0000 Manifest next update: Sat 23 Nov 2024 16:00:20 +0000 Files and hashes: 1: 8czIv6xafySuKjLGHy6qwH1kmhw.roa (hash: OkgfYBrmoHRm6nN9rqTUG/pdWxLFOVZzXI/AyMD821c=) 2: ItOHJdS2F9X-nROeVsSNmeqqdR4.roa (hash: kIL/dCFzJ35JTi6exfJJJrBBfrgsAsTVeLtTeAVE+Zw=) 3: MdKYoKHGPW7uYGALSxk5x-80SVw.roa (hash: 0EP8F+Dq9bvBn65y9MAnCiyX6vvtZKyhNxJJHNfA6qY=) 4: OY_afztFDoJIoyvIwd2e6Rlt28w.roa (hash: pyetmdCEH/DcgIYZbnYHLV7HyAteA6Rlgs9FUzs7/Mc=) 5: RWP5Auo_4SbRegnvpkBtzJe774M.roa (hash: BhQ1Tn0szR0IB/IqYEi1fU2HL77UZ14g1p0tGt1K198=) 6: RggiUZn0C3mF8FUjR4sgKFQlK2w.roa (hash: swU3vhiz5NYVmnExYh9ds0Z7CpK2zx5mUH5VEWEorcU=) 7: RpG_7r9oPuqL48wSc3nv8UkiXcQ.roa (hash: vm9zGi/ABZTP2vyYZttvU2NbLZrg3jY9vYdow36zO4U=) 8: SLE_h9b19SYroLRqDewta7PCu-Q.roa (hash: J7UlfTnTkDpjXl1dAC6DIMvShUQhERDMcoHx3jOWn34=) 9: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: 7u/3yF0hg0+vVI9hls+l7CLmqoKkgcwTz/Cr5r/7cIk=) 10: hYSdVCzwCF10fYtPBkWQIH9tx-A.roa (hash: kA1LXfebszh6Jy37appI6a/SvabVlZHQAKrEL5Rg2TQ=) 11: uD8wVPvtAG-eveV4AaRGXmCZUoA.roa (hash: gZuAmzY/VSaon7oGmg5rE+4Ba4gDdu2i7EBAqLVBC8Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 23 Nov 2024 12:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:54:9a:55:fd:d8:9c:ee:4d:14:93:ed:b5:af:de:c2:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Nov 22 16:00:20 2024 GMT Not After : Nov 23 16:00:20 2024 GMT Subject: CN=587fedd79e6c929d90cd84b2a98a35f995cac334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:51:b9:9d:1b:29:8b:6f:fb:1e:e4:db:23:8e: b1:b5:c1:e7:4a:44:6f:1e:06:b1:bb:aa:09:ce:7b: 80:ce:aa:43:8f:a9:e9:65:7b:b5:e6:aa:35:17:a0: 05:b1:09:0d:e0:65:b4:b2:ba:cb:e0:ac:7a:aa:00: d5:60:bc:ee:87:b7:56:05:b4:68:a8:cb:0d:c5:98: 6b:88:69:db:81:c0:ee:0b:c0:64:8d:9d:6c:36:62: 52:30:f4:50:25:a0:70:a2:a8:0f:5b:44:0b:71:c4: 3f:77:e4:d9:b4:4d:4a:2e:05:c9:7a:ea:c2:ca:54: 31:38:b8:0d:42:e2:68:36:77:a3:12:5a:09:36:b1: fc:09:2e:0a:12:1f:61:97:22:0d:c2:c9:5b:8e:eb: c6:ce:b0:7a:8f:f5:02:85:a4:b7:7f:64:3e:74:ee: 8a:14:a5:61:31:ac:e7:1f:76:cb:21:71:48:eb:ce: 41:7d:90:6a:dc:78:f6:6e:be:75:c5:d7:76:ba:00: e9:d9:45:a4:86:31:bb:be:a8:c4:e8:06:06:04:42: 3a:08:c5:42:e8:20:21:5c:8c:64:5e:97:3c:a1:78: 79:4e:c5:60:5e:e9:d8:c2:4a:d1:78:44:a7:a2:93: d3:f6:e9:cf:d6:c4:68:3e:13:f0:b4:69:85:c1:d8: 74:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:7F:ED:D7:9E:6C:92:9D:90:CD:84:B2:A9:8A:35:F9:95:CA:C3:34 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:99:54:0d:24:66:42:62:79:88:ff:c6:87:e9:e4:64:b9:5a: b8:29:64:7a:d8:f3:6e:8f:3c:82:23:d9:a3:1a:d0:71:00:83: 4f:48:aa:19:0f:91:2f:c8:0d:e8:67:bf:fb:3f:34:6b:9a:32: e3:a4:bf:03:9d:ff:6b:f8:d1:2e:9d:85:df:88:f6:f5:08:11: 66:49:74:08:8e:dc:0b:cd:17:6f:dd:59:24:d7:ab:30:f2:fe: 9b:b8:ce:43:b5:32:fe:90:f4:b5:55:4e:0e:fc:73:c9:92:aa: 34:4c:44:86:08:1b:c0:a3:45:9f:38:54:f9:12:a7:14:c1:44: fe:6d:da:1c:ce:b2:1e:7d:cb:e9:1c:2e:ca:71:23:cf:b5:9f: 47:f2:ce:35:11:b3:0b:cd:00:2c:43:a2:4f:ec:7b:74:fb:f7: ed:4c:fe:b2:ee:f3:1f:a0:9e:7c:b4:fa:fa:0a:1b:0b:6e:18: 5c:70:6d:31:89:ef:d0:e2:88:f7:c6:cb:5d:f3:a5:d2:aa:5e: 4d:58:0a:20:c5:07:6e:38:55:1f:8d:e9:f3:74:8a:41:5b:13: c0:7c:2d:29:ba:52:c5:85:e9:ac:a0:36:37:89:10:b8:ad:c9: 1b:63:5f:7a:68:93:6f:ca:30:42:d6:87:cb:2f:2b:51:5c:e1: fb:65:95:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNUmlX92JzuTRST7bWv3sLdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjQxMTIyMTYwMDIwWhcNMjQxMTIzMTYwMDIwWjAzMTEwLwYDVQQD Eyg1ODdmZWRkNzllNmM5MjlkOTBjZDg0YjJhOThhMzVmOTk1Y2FjMzM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4FG5nRspi2/7HuTbI46xtcHnSkRv Hgaxu6oJznuAzqpDj6npZXu15qo1F6AFsQkN4GW0srrL4Kx6qgDVYLzuh7dWBbRo qMsNxZhriGnbgcDuC8BkjZ1sNmJSMPRQJaBwoqgPW0QLccQ/d+TZtE1KLgXJeurC ylQxOLgNQuJoNnejEloJNrH8CS4KEh9hlyINwslbjuvGzrB6j/UChaS3f2Q+dO6K FKVhMaznH3bLIXFI685BfZBq3Hj2br51xdd2ugDp2UWkhjG7vqjE6AYGBEI6CMVC 6CAhXIxkXpc8oXh5TsVgXunYwkrReESnopPT9unP1sRoPhPwtGmFwdh01QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFh/7deebJKdkM2EsqmKNfmVysM0MB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApZlUDSRm QmJ5iP/Gh+nkZLlauClketjzbo88giPZoxrQcQCDT0iqGQ+RL8gN6Ge/+z80a5oy 46S/A53/a/jRLp2F34j29QgRZkl0CI7cC80Xb91ZJNerMPL+m7jOQ7Uy/pD0tVVO DvxzyZKqNExEhggbwKNFnzhU+RKnFMFE/m3aHM6yHn3L6RwuynEjz7WfR/LONRGz C80ALEOiT+x7dPv37Uz+su7zH6CefLT6+gobC24YXHBtMYnv0OKI98bLXfOl0qpe TVgKIMUHbjhVH43p83SKQVsTwHwtKbpSxYXprKA2N4kQuK3JG2NfemiTb8owQtaH yy8rUVzh+2WV1A== -----END CERTIFICATE-----Generated at Fri Nov 22 18:21:45 2024 by rpki-client on console-fra.rpki-client.org