$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: tUpfw44HlvpTM2xcgvhqCMgO15BF6K0+wR923UqgzC0= Subject key identifier: 4A:9D:6B:0D:C2:93:FE:5D:95:78:B1:30:00:3F:85:3B:C3:91:17:20 Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 018F5AA74283CC636ED952E854F432AF7F4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 117A Signing time: Thu 09 May 2024 00:01:01 +0000 Manifest this update: Thu 09 May 2024 00:01:01 +0000 Manifest next update: Fri 10 May 2024 00:01:01 +0000 Files and hashes: 1: 1-53nb8uuLZRvSiK8uA3pZh22ojQ.roa (hash: GNThijVasvM/pzOxZgB2pBwKaSEDu9vr+vSJkwB+rOs=) 2: 4fK9YMG4P6NddFG1dyElrA2M0oU.roa (hash: d0lhXfVClacq94jN43tiFWjZ3dJZd3pwL6HK9+LmHyI=) 3: 5F3-WAxzFpT2v7WW3nnigqCiewc.roa (hash: 2A8Xja0XdjaOdFJb1adzlNHu2PPOC9fUaW1Z2r872eM=) 4: 8X_7nUr4KOgK2RkTveGii6hWVYY.roa (hash: IRtoqhjSd2VrbK8AmxXDd7U03uXEoK1qOfQXk5MoyT4=) 5: Af1AYd4MSUXZ52QilDpdUKTnv6A.roa (hash: 9ANtmrWDKR1U/SaejZuOykgFxw7pLMoisV6PUzAKhAY=) 6: EEl8l4AtofWnhlqjzlYNbnMIqUk.roa (hash: yrfuzDF99uu3RmtyNoGdbAkDz5ICvqQRwN46DLbd/kk=) 7: JBAZS55h3azCEgsxXF7cax9wOVI.roa (hash: 5h9WWkkygl9a4ZrM3yYEfTiOCpRnQyYEFAn9BFUhp7E=) 8: Jmm8c32qcBMJ4ApUjNceIZLseJI.roa (hash: G6Ps7lcHEInZCW+YNBdsPUPx6F1fw8zP3adfz1K4VwY=) 9: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: A9kbcDaCJ+z9pha0PeBwEjGpCk2YJxFer3Yt1VwrFj4=) 10: S0ldKMJLgbZLKyHOtYnq0tIGVXM.roa (hash: 6BvV2rqunOTJ2x+wMn9To5TAUXdBl9dY8TADUNjOfW8=) 11: icbSWWNNjaiI2jvhZAoCcbvtGSs.roa (hash: JBLJRzuY0Ui6EKYpw3d9Mo2uf1il/pgoOQwQ2KgGmAw=) 12: jTp6Bu2AJ9eG6B-LPC2PwvArTWA.roa (hash: rngLgA4hOSSEmOFMR5yVVw2gsto/KirePHhqTa3+O50=) 13: xtxKCZNZNWhiIGcbdc037-48SNw.roa (hash: uTPHT0+T+LQNp5EirizPkqxezbZjw4A1h5Nd9yDG0lA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 09 May 2024 17:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:8f:5a:a7:42:83:cc:63:6e:d9:52:e8:54:f4:32:af:7f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: May 9 00:01:01 2024 GMT Not After : May 10 00:01:01 2024 GMT Subject: CN=4a9d6b0dc293fe5d9578b130003f853bc3911720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:40:63:cf:a0:69:18:7d:17:0c:af:32:13:53: e1:70:ea:ec:af:19:c3:a0:c4:9f:29:98:d1:bc:26: 9f:e7:14:2a:0e:4f:b3:47:68:0d:77:ad:90:35:fc: b5:d4:32:e6:1d:b2:4d:57:59:56:da:1f:48:fa:70: 9b:b5:24:06:41:be:ba:ef:24:30:90:06:7c:82:40: aa:5a:a3:2a:6f:50:b8:73:9e:cb:7a:c2:52:ec:0a: 00:09:70:83:51:a0:dc:24:e6:f1:b6:8a:f0:b9:a2: f5:e2:00:d2:86:8a:e8:83:bd:f0:bc:bb:25:f3:db: 9c:32:96:d8:f4:22:1c:3a:b0:c3:55:b1:1e:47:42: 5f:dc:73:0a:f7:35:a5:1b:55:0a:a8:e1:e8:7e:da: 34:13:b4:e1:74:26:b9:19:54:bc:ab:8d:f3:30:98: d4:ea:9f:3b:60:df:4f:54:20:0e:ba:e4:1e:45:0f: 71:5f:f2:cd:5a:9a:0a:b5:0d:05:d8:a8:5b:03:91: 67:c4:39:02:40:3a:6f:e2:a9:48:fd:97:0a:d6:1f: 38:e5:be:82:c4:a1:4c:09:99:b2:cf:c2:cf:95:88: 2e:d5:de:16:e2:cf:5e:3b:10:28:c9:cf:6c:35:85: 27:df:20:c2:b0:0e:c3:80:f0:2c:b3:b3:c5:c3:34: d4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:9D:6B:0D:C2:93:FE:5D:95:78:B1:30:00:3F:85:3B:C3:91:17:20 X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:d7:c8:55:54:d5:92:63:95:9e:ff:51:82:fb:fd:1a:d4:c1: 78:f6:6f:64:83:7e:c0:9e:af:ac:c5:59:5c:ae:9c:66:1b:b3: 1c:92:b9:ec:0d:00:73:a9:de:72:ac:c9:00:9c:09:cf:cc:33: 94:a4:2c:91:39:fd:4e:49:6b:41:81:3b:8e:ce:0d:6e:ca:a1: 6d:e0:c2:e3:37:72:56:f2:6e:75:5f:47:00:38:e3:d2:6f:f1: b0:b3:b6:be:97:44:d8:ce:4e:55:c4:02:c8:99:04:79:85:35: 94:02:3a:43:0c:1d:d6:eb:fc:48:5b:d2:dc:7c:74:43:20:e1: 8c:a3:d0:07:a6:68:46:6a:8b:63:ad:74:91:55:77:b8:0d:15: 68:cc:51:87:41:a9:19:3e:5b:cb:e2:c8:72:67:70:3b:ef:19: ba:fc:73:2a:11:e9:86:1e:ff:23:8f:1a:41:dd:f9:43:5d:69: 15:67:55:32:00:4d:a4:c3:25:c2:27:a6:f6:3f:07:12:f0:c1: d0:2c:b7:d8:cd:b1:9a:19:c4:c2:66:1f:68:54:bd:fe:8f:e6: 13:84:6f:9f:88:bc:4a:7b:25:f3:48:13:9e:4a:dc:53:e0:5e: 2d:ab:0e:fb:ff:8a:58:7a:cc:5a:5f:de:b3:44:17:e8:2c:9d: 01:4b:94:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAY9ap0KDzGNu2VLoVPQyr39NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjQwNTA5MDAwMTAxWhcNMjQwNTEwMDAwMTAxWjAzMTEwLwYDVQQD Eyg0YTlkNmIwZGMyOTNmZTVkOTU3OGIxMzAwMDNmODUzYmMzOTExNzIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1EBjz6BpGH0XDK8yE1PhcOrsrxnD oMSfKZjRvCaf5xQqDk+zR2gNd62QNfy11DLmHbJNV1lW2h9I+nCbtSQGQb667yQw kAZ8gkCqWqMqb1C4c57LesJS7AoACXCDUaDcJObxtorwuaL14gDShorog73wvLsl 89ucMpbY9CIcOrDDVbEeR0Jf3HMK9zWlG1UKqOHofto0E7ThdCa5GVS8q43zMJjU 6p87YN9PVCAOuuQeRQ9xX/LNWpoKtQ0F2KhbA5FnxDkCQDpv4qlI/ZcK1h845b6C xKFMCZmyz8LPlYgu1d4W4s9eOxAoyc9sNYUn3yDCsA7DgPAss7PFwzTUGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEqdaw3Ck/5dlXixMAA/hTvDkRcgMB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHNfIVVTV kmOVnv9Rgvv9GtTBePZvZIN+wJ6vrMVZXK6cZhuzHJK57A0Ac6necqzJAJwJz8wz lKQskTn9TklrQYE7js4NbsqhbeDC4zdyVvJudV9HADjj0m/xsLO2vpdE2M5OVcQC yJkEeYU1lAI6Qwwd1uv8SFvS3Hx0QyDhjKPQB6ZoRmqLY610kVV3uA0VaMxRh0Gp GT5by+LIcmdwO+8ZuvxzKhHphh7/I48aQd35Q11pFWdVMgBNpMMlwiem9j8HEvDB 0Cy32M2xmhnEwmYfaFS9/o/mE4Rvn4i8Snsl80gTnkrcU+BeLasO+/+KWHrMWl/e s0QX6CydAUuUgg== -----END CERTIFICATE-----Generated at Thu May 9 00:47:33 2024 by rpki-client on console-fra.rpki-client.org