$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft File: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft (raw, json) Hash identifier: 2jpBeHwF3sLBYr7/i17iiuGu/TMAh1tExWGqgX4gk74= Subject key identifier: 42:B8:35:9B:0D:9C:C5:3D:DF:7F:1E:FA:C9:0D:B2:72:AC:3E:2B:5A Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Certificate serial: 019350BDAF84DBD13C551561FFFA122DF376 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft Manifest number: 1389 Signing time: Thu 21 Nov 2024 22:00:28 +0000 Manifest this update: Thu 21 Nov 2024 22:00:28 +0000 Manifest next update: Fri 22 Nov 2024 22:00:28 +0000 Files and hashes: 1: 1-53nb8uuLZRvSiK8uA3pZh22ojQ.roa (hash: GNThijVasvM/pzOxZgB2pBwKaSEDu9vr+vSJkwB+rOs=) 2: 49fcvwUOxgDQSb6yIv0QLa2Zpvw.roa (hash: JlTFhC1tBOMJy9g55I1RA2Abfr5tvr90WH41SwQtRO4=) 3: 4fK9YMG4P6NddFG1dyElrA2M0oU.roa (hash: d0lhXfVClacq94jN43tiFWjZ3dJZd3pwL6HK9+LmHyI=) 4: 8X_7nUr4KOgK2RkTveGii6hWVYY.roa (hash: IRtoqhjSd2VrbK8AmxXDd7U03uXEoK1qOfQXk5MoyT4=) 5: Af1AYd4MSUXZ52QilDpdUKTnv6A.roa (hash: 9ANtmrWDKR1U/SaejZuOykgFxw7pLMoisV6PUzAKhAY=) 6: CHaYv23nBDvhgPnkAaJIG6qKyEc.roa (hash: PNChr98DacA+XSZQuclbW9wntjSDwWQ8owujTN7ptJ8=) 7: EEl8l4AtofWnhlqjzlYNbnMIqUk.roa (hash: yrfuzDF99uu3RmtyNoGdbAkDz5ICvqQRwN46DLbd/kk=) 8: JBAZS55h3azCEgsxXF7cax9wOVI.roa (hash: 5h9WWkkygl9a4ZrM3yYEfTiOCpRnQyYEFAn9BFUhp7E=) 9: Jmm8c32qcBMJ4ApUjNceIZLseJI.roa (hash: G6Ps7lcHEInZCW+YNBdsPUPx6F1fw8zP3adfz1K4VwY=) 10: MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl (hash: c2R6R4iBXCY0pGNo1Mh1A67pOtXPxHUD0Z9eSA4dg5s=) 11: S0ldKMJLgbZLKyHOtYnq0tIGVXM.roa (hash: 6BvV2rqunOTJ2x+wMn9To5TAUXdBl9dY8TADUNjOfW8=) 12: icbSWWNNjaiI2jvhZAoCcbvtGSs.roa (hash: JBLJRzuY0Ui6EKYpw3d9Mo2uf1il/pgoOQwQ2KgGmAw=) 13: jTp6Bu2AJ9eG6B-LPC2PwvArTWA.roa (hash: rngLgA4hOSSEmOFMR5yVVw2gsto/KirePHhqTa3+O50=) 14: xtxKCZNZNWhiIGcbdc037-48SNw.roa (hash: uTPHT0+T+LQNp5EirizPkqxezbZjw4A1h5Nd9yDG0lA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 18:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:50:bd:af:84:db:d1:3c:55:15:61:ff:fa:12:2d:f3:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f Validity Not Before: Nov 21 22:00:28 2024 GMT Not After : Nov 22 22:00:28 2024 GMT Subject: CN=42b8359b0d9cc53ddf7f1efac90db272ac3e2b5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:63:1b:d1:e5:41:41:5e:4e:fb:73:59:58:1d: cd:1b:c1:17:cf:d5:39:e3:2c:0e:12:f2:a0:4c:c9: 5d:ac:08:71:ea:7f:e1:b2:17:38:34:7e:f0:bd:dd: 19:d2:1d:a8:8c:c7:b5:b6:24:c7:bb:07:33:3b:36: bd:23:de:69:e2:a5:1a:f5:bf:a7:3a:26:ea:7a:12: c2:eb:75:4d:b3:00:8a:41:f9:77:03:7b:fd:7e:d5: 6f:4e:6c:9e:ff:ac:53:cc:60:79:ee:b4:31:3b:46: 57:1e:69:35:12:7f:9e:09:f5:72:95:95:0a:f1:84: 3b:e3:d5:15:ac:7d:57:11:53:54:d8:bd:84:d7:0b: 77:49:1f:2d:3a:e9:d9:27:85:de:95:69:06:c0:4e: 74:f8:55:24:ad:b0:99:3c:6d:69:1e:46:52:90:00: 5e:7a:a8:05:5b:c5:95:21:1c:db:e0:f8:10:a8:d3: 5c:a8:b9:a7:18:75:41:96:2e:f4:28:54:fd:fe:34: 6a:23:72:28:4d:21:66:24:e3:dc:e8:f1:ec:f6:c3: 06:f1:a3:3f:53:60:a5:fc:81:f4:21:ee:3b:ac:53: 67:ec:ab:01:7b:9f:27:18:ec:ec:c4:79:34:5a:c6: e1:2c:fb:c1:a8:75:8e:b1:8a:a3:52:ce:ac:a2:6c: 52:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:B8:35:9B:0D:9C:C5:3D:DF:7F:1E:FA:C9:0D:B2:72:AC:3E:2B:5A X509v3 Authority Key Identifier: keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e9:77:d0:5c:89:b0:09:e2:ca:76:f4:c0:69:d3:21:da:78: ab:ab:c8:fd:48:ea:b1:95:53:77:82:21:23:b2:12:37:bd:25: f3:8c:5f:d9:1d:87:5d:16:d7:6c:e6:ea:dd:73:3e:db:b5:79: 49:da:4c:fc:c4:70:70:cf:94:8b:56:9b:3c:16:98:6e:33:45: fb:84:23:5d:84:c8:9a:14:2e:6f:25:90:5d:9e:a6:f6:cb:4a: df:da:a0:5a:38:6b:57:dc:46:11:bf:04:3e:59:0c:15:7d:83: fa:6f:1c:e0:14:c2:4a:f2:e6:6a:a1:88:3c:76:40:54:d1:c2: 50:91:0b:7a:e5:10:e1:9d:a3:54:7b:c2:dd:f2:b7:9b:28:41: 96:e7:e5:6e:08:6c:c7:c2:d2:e6:3b:be:01:11:44:ae:22:52: 10:33:5e:7d:71:31:60:fb:1b:3e:b2:84:c0:41:22:88:e1:44: 01:a4:73:96:3e:83:72:37:08:ab:75:6f:e1:28:d5:4a:39:72: 35:42:92:c1:90:a0:d6:85:56:32:36:b0:eb:0b:57:75:b9:13: 87:78:3d:82:6f:0b:ce:ab:c0:aa:18:66:d1:74:7a:fb:91:93: 0e:bb:8a:75:71:18:9a:44:6c:8a:52:09:85:6d:28:c7:83:96: 57:fd:cc:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNQva+E29E8VRVh//oSLfN2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMyNDc0YWM3Y2E4NWUwOWMyZDQ4YjMzZTdiZjY2ZjhlZDc2 NGRlMGYwHhcNMjQxMTIxMjIwMDI4WhcNMjQxMTIyMjIwMDI4WjAzMTEwLwYDVQQD Eyg0MmI4MzU5YjBkOWNjNTNkZGY3ZjFlZmFjOTBkYjI3MmFjM2UyYjVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzWMb0eVBQV5O+3NZWB3NG8EXz9U5 4ywOEvKgTMldrAhx6n/hshc4NH7wvd0Z0h2ojMe1tiTHuwczOza9I95p4qUa9b+n OibqehLC63VNswCKQfl3A3v9ftVvTmye/6xTzGB57rQxO0ZXHmk1En+eCfVylZUK 8YQ749UVrH1XEVNU2L2E1wt3SR8tOunZJ4XelWkGwE50+FUkrbCZPG1pHkZSkABe eqgFW8WVIRzb4PgQqNNcqLmnGHVBli70KFT9/jRqI3IoTSFmJOPc6PHs9sMG8aM/ U2Cl/IH0Ie47rFNn7KsBe58nGOzsxHk0WsbhLPvBqHWOsYqjUs6somxS0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEK4NZsNnMU9338e+skNsnKsPitaMB8GA1UdIwQY MBaAFDJHSsfKheCcLUizPnv2b47XZN4PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzkt MTJlYzIyYzljNWEyLzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8xZmQwYTYtNDUxNy00YTBiLWIzYzktMTJlYzIyYzljNWEy LzEvTWtkS3g4cUY0Snd0U0xNLWVfWnZqdGRrM2c4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC+l30FyJ sAniynb0wGnTIdp4q6vI/UjqsZVTd4IhI7ISN70l84xf2R2HXRbXbObq3XM+27V5 SdpM/MRwcM+Ui1abPBaYbjNF+4QjXYTImhQubyWQXZ6m9stK39qgWjhrV9xGEb8E PlkMFX2D+m8c4BTCSvLmaqGIPHZAVNHCUJELeuUQ4Z2jVHvC3fK3myhBluflbghs x8LS5ju+ARFEriJSEDNefXExYPsbPrKEwEEiiOFEAaRzlj6DcjcIq3Vv4SjVSjly NUKSwZCg1oVWMjaw6wtXdbkTh3g9gm8LzqvAqhhm0XR6+5GTDruKdXEYmkRsilIJ hW0ox4OWV/3MTA== -----END CERTIFICATE-----Generated at Fri Nov 22 02:29:22 2024 by rpki-client on console-ams.rpki-client.org