$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: /vHit82LlAIe5/iYd4howGFzt92CquJQMlNUOLqezIw= Subject key identifier: B1:5C:26:78:B4:47:BA:8F:6D:0D:B8:A3:70:C5:93:47:58:9B:14:71 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 019364B23D10F4FCCF10E9BF689080E0664A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 0F8B Signing time: Mon 25 Nov 2024 19:00:22 +0000 Manifest this update: Mon 25 Nov 2024 19:00:22 +0000 Manifest next update: Tue 26 Nov 2024 19:00:22 +0000 Files and hashes: 1: 1-XJqMs10byIz0gdWv56f3zSQ1dM.roa (hash: RRGRXWHH8iQf/W7Pd63eL6Eh0Ak/PmzYQRHb2SfzIbA=) 2: 1-nsQWGsdz-53RFk8EUp8mXUHcx4.roa (hash: wZpNrv1SresT2L82q4j7DEGVmlL0VWkROgW6jakZmSA=) 3: 1w0h41r0HTxcOHBqpOzh4EjuHyw.roa (hash: tLXf7OGbnJbSuVhHI2tJb77n29JJsoYFuczudvHTQkg=) 4: GqrykflRWpR50UqZwe2Y_NWsUHE.roa (hash: 2XLET5abvTWTGX8k83DVu1jRnTeS8nFCOO/7KwAGPfk=) 5: I0P2Z2ix6d1AAc6-v0_OrOeIdOE.roa (hash: 7cmhqvSUgXUhJmuWkA7yHFbRBe9Xxnigl3fjqcaZhWw=) 6: RMt8Ypu40pEbX5eYRYX4unaFM0s.roa (hash: a6b8v7i+/gM9oUTUXGRbb0o8pOgUVeLMsZCCn1XNhds=) 7: TAcGJuAYM-Gy4bpULETeDuGbYGk.roa (hash: /3DKZogKnvF+xCcCpeSy3hQiHCfro6lKJWdIP/Q7lvg=) 8: WsmPbb_JL--2pAcx7EBavpszYwY.roa (hash: XbIsZytboWrtaXOaEfKfufCj3Nw4i21F19f49Qk/i8I=) 9: hQcJ2Qs8jIpSh5soXHW0IoyNbDI.roa (hash: w6IXP0RoGutT2Q5Y0xnp8N6Wq8mcal8ptGVwLHZexy0=) 10: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: /GLJHD1RIYpG6WxMcnadwUlSXTzMF97q2c4RF7q+sxk=) 11: kj0SFZ_BfU8FClGavebXLuxYFVs.roa (hash: god+78ecWGJ1OhsSOmPELhKeE4Vd+WuVoVWWbJI+6So=) 12: m1sQgArPhXPIwjmDsM1k2v0ZTYU.roa (hash: H3yhniCu4qvfgNG9olWtIGOp4uJh+7nut/AgrBj95lg=) 13: uW6obTMGdZw9nDQJZFt61WNnCbw.roa (hash: zXF2LGb2WkbWFIte1dxgPrTBfmXsbISwI5JJ4JJtSYc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 16:12:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:64:b2:3d:10:f4:fc:cf:10:e9:bf:68:90:80:e0:66:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Nov 25 19:00:22 2024 GMT Not After : Nov 26 19:00:22 2024 GMT Subject: CN=b15c2678b447ba8f6d0db8a370c59347589b1471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:aa:62:2c:d1:06:20:67:4e:e9:d9:b6:aa:02: b5:c7:e5:e1:af:ef:d0:83:3e:6d:66:cf:2a:41:c9: 14:13:b3:8d:dc:7a:17:85:6c:04:37:5c:e9:19:06: 86:55:b1:7f:cf:ed:e1:6a:72:3a:a8:26:4f:42:12: bb:81:fa:c6:11:4d:d0:61:54:a2:12:02:39:fc:25: af:17:a4:fb:08:55:a4:8b:88:f8:66:16:37:17:1d: 88:50:52:1c:80:79:ca:c8:5c:72:3e:16:59:46:a9: e8:ca:ba:1d:14:74:37:4c:8f:28:2f:7f:01:bd:ab: 88:c1:6d:8a:1b:6b:4e:df:45:23:bf:25:1d:6d:b7: 1d:9c:83:ef:74:b4:a3:a6:a2:98:ab:c2:f1:cf:a1: a7:2d:a9:86:b3:06:31:e8:d4:5a:94:ad:7b:e3:b1: 52:bb:ed:a1:2f:f9:60:db:08:fa:10:93:95:85:a9: 74:ce:6d:18:7e:61:63:26:6d:ca:8b:32:fd:32:8c: f3:f4:0b:a2:f3:b9:b7:47:b0:0b:15:be:71:36:37: 2a:0d:df:da:ed:e6:01:e6:17:e4:5a:47:5b:b1:66: e4:f4:00:a3:4a:a1:e7:09:4e:b3:38:7e:1b:0f:16: 1b:01:77:73:dc:61:31:8f:d5:5a:0b:df:4b:1b:db: 5c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5C:26:78:B4:47:BA:8F:6D:0D:B8:A3:70:C5:93:47:58:9B:14:71 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3c:28:00:f0:1d:d8:72:85:fe:74:b7:cf:d6:dc:5f:b1:e9:06: 6d:fd:d9:03:39:7f:a8:35:2a:2c:e5:b4:c7:79:09:35:a0:ee: 0f:3d:b2:85:03:a4:b5:dc:85:d8:91:01:5d:dc:0f:ec:13:e6: f5:71:cc:f1:e4:50:7d:60:b1:c7:7b:05:e2:fa:8d:51:d8:24: 21:15:b1:da:b4:eb:bf:13:fe:ab:6e:8b:86:a5:f6:17:57:e5: 24:83:9a:11:fb:21:f1:dc:2a:db:eb:db:5d:d4:2b:1d:0e:74: 11:af:cb:92:45:a5:31:4e:a5:04:ad:21:da:13:aa:42:be:09: 90:7b:82:61:b8:7b:34:84:c8:49:a2:0a:f4:20:37:71:95:25: e8:0f:58:06:72:f9:17:87:26:45:bf:2b:6f:ee:cf:75:7c:07: cf:1e:3d:44:6f:9f:cd:b4:69:9f:67:6f:96:e7:bf:38:cf:5c: de:cf:d3:66:6a:5e:6e:87:ca:4b:57:29:69:a8:e8:98:c9:5c: 40:97:b4:11:f1:1a:5c:41:80:40:53:e5:29:d6:2e:19:ed:ed: 09:f9:65:32:98:a2:66:e1:ab:9f:aa:b0:41:06:6b:0d:bd:b6: 7d:c4:13:83:c4:a0:c6:c0:9f:31:a8:c6:8b:29:5b:11:c3:4c: a3:aa:86:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNksj0Q9PzPEOm/aJCA4GZKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjQxMTI1MTkwMDIyWhcNMjQxMTI2MTkwMDIyWjAzMTEwLwYDVQQD EyhiMTVjMjY3OGI0NDdiYThmNmQwZGI4YTM3MGM1OTM0NzU4OWIxNDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA16piLNEGIGdO6dm2qgK1x+Xhr+/Q gz5tZs8qQckUE7ON3HoXhWwEN1zpGQaGVbF/z+3hanI6qCZPQhK7gfrGEU3QYVSi EgI5/CWvF6T7CFWki4j4ZhY3Fx2IUFIcgHnKyFxyPhZZRqnoyrodFHQ3TI8oL38B vauIwW2KG2tO30UjvyUdbbcdnIPvdLSjpqKYq8Lxz6GnLamGswYx6NRalK1747FS u+2hL/lg2wj6EJOVhal0zm0YfmFjJm3KizL9Mozz9Aui87m3R7ALFb5xNjcqDd/a 7eYB5hfkWkdbsWbk9ACjSqHnCU6zOH4bDxYbAXdz3GExj9VaC99LG9tctwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFcJni0R7qPbQ24o3DFk0dYmxRxMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPCgA8B3Y coX+dLfP1txfsekGbf3ZAzl/qDUqLOW0x3kJNaDuDz2yhQOktdyF2JEBXdwP7BPm 9XHM8eRQfWCxx3sF4vqNUdgkIRWx2rTrvxP+q26LhqX2F1flJIOaEfsh8dwq2+vb XdQrHQ50Ea/LkkWlMU6lBK0h2hOqQr4JkHuCYbh7NITISaIK9CA3cZUl6A9YBnL5 F4cmRb8rb+7PdXwHzx49RG+fzbRpn2dvlue/OM9c3s/TZmpebofKS1cpaajomMlc QJe0EfEaXEGAQFPlKdYuGe3tCfllMpiiZuGrn6qwQQZrDb22fcQTg8SgxsCfMajG iylbEcNMo6qGTA== -----END CERTIFICATE-----Generated at Tue Nov 26 00:53:27 2024 by rpki-client on console-fra.rpki-client.org