$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: p9vdwYcMAQ09j1V3aBEf/ArqiU6Ul53dbupD4ub9Cac= Subject key identifier: 89:11:AD:FF:BB:DC:38:AF:E5:2B:A5:12:AF:66:42:F7:0E:F1:90:42 Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 019358770D8028BC8CBB07C52366E4294C90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 137F Signing time: Sat 23 Nov 2024 10:00:17 +0000 Manifest this update: Sat 23 Nov 2024 10:00:17 +0000 Manifest next update: Sun 24 Nov 2024 10:00:17 +0000 Files and hashes: 1: 1--swjx5Yf6b6P4Bjt6ly0vvj4Y8.roa (hash: JKS28+2pUQyhZVYlVTh2cbf3l8eO45WDYz9m8IKdlk4=) 2: AIolZwn60CwfmKTqrqjmTVotYAc.roa (hash: jxzV6iRCJhB50eDSMhUt+C6EMYG83aVo/Sgm6Eqk6eU=) 3: Fo1e7Vz2i_vB7MwT4G1DyduBxFg.roa (hash: Y+YYCTa/FuNm15qHMpcHf3haMADvy/vXftlayHGdCrE=) 4: GYmaSoPTu3Zn2m9U8ik4PsEiUVQ.roa (hash: 3tWzE9X5UVipGSK3z64ov2E8Bk4qUNUHFGetu0e5fXs=) 5: JMyc902U4qAH4W8GY_seA4V06YA.roa (hash: CInztdSEWa/kQQjBmI41PEJmgZEl/9daZDOnb6LHhE0=) 6: Mi13p50Q15wKRoOpSTa41ffmJPQ.roa (hash: ppnQjiDFYPTPEoA4IY/TsMqsXGs6rtl0thWlCh9He0Y=) 7: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: bq44lsCXmSqo5lgudoYKa76bDxNyzYmOIPUtW1ShRxo=) 8: bZp6uGNTVzZfpJzWZQ1BzdfZk74.roa (hash: 5hyCCizwdJFl3UNVuBFvjhMhOJsjYuuZYt3Igj6mzmI=) 9: jFJSSkgb6c2DjoKgNUqvt1GZFuQ.roa (hash: MmwIuqNlvWE6o2TLV+NHY9+ngIyDNzmEBM7E1FiPp4M=) 10: lR4IJzpInny5h17UDb47FFwgiMg.roa (hash: BwXCSe+91hoqn4tj4B/7jSZ5HrN9Kj5L0yo3/Re+ASI=) 11: nEE13nYwxpzIA2sgJ0TKaWeqsVk.roa (hash: JajVpCrLvg5FU38iGoGAapfPKg6KV35OElOLmlW4UXY=) 12: nZLouYJBG9OmqSmoOJICH6UNAnM.roa (hash: fmTUM7Sq0SkG7XLcZ14wrgwIRK1bvQ48wK3wBIUT9wc=) 13: oJR3nyG8g0dr0ZNqVbdQY-nYE78.roa (hash: +IH4Xeuqbug8hEgld8K3Iz2Kyyey74uVx37uQysFgS0=) 14: pUJ4zs0rfGxu5OusAIqcGPtIqZA.roa (hash: Cwg1IW1tbB4qkED3bxxq9hb38aWVxZLLIQPxswq9GsI=) 15: try-6z2B0R8HS1ybokQXf3VCCps.roa (hash: cLfcclF77oIldHV6IX5lEzUY/R9bTq6XpCG0uVWvdP0=) 16: zHTa_OmUAxMl1cdCGrQ7BQ7wik4.roa (hash: MBaMMT8kCtQUH+3nj/4QWschufOQdDcXAmwUqbsICrc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 24 Nov 2024 06:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:58:77:0d:80:28:bc:8c:bb:07:c5:23:66:e4:29:4c:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Nov 23 10:00:17 2024 GMT Not After : Nov 24 10:00:17 2024 GMT Subject: CN=8911adffbbdc38afe52ba512af6642f70ef19042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:06:ec:51:ab:dc:5f:60:32:26:7d:10:a0:92: 16:87:29:9e:91:53:03:5e:13:fb:dd:d5:72:43:3e: 64:d8:22:1f:13:44:64:a8:b0:40:26:85:53:2c:fc: e5:5d:fb:82:9c:70:3d:42:d7:ee:1b:45:3c:07:e4: 56:41:de:51:dd:f9:64:ca:ac:67:8d:51:5d:11:9d: c5:e2:98:c8:3e:17:52:f5:3c:78:dc:42:62:39:01: c8:84:8b:52:2f:b6:33:78:83:64:d9:71:f8:f0:bd: c9:3f:ca:65:9f:e2:25:76:fc:24:07:71:f7:11:f1: 0e:f1:52:14:49:eb:fc:21:0e:e2:00:14:da:d1:95: 13:85:78:0d:62:1e:7b:1f:04:23:27:07:98:6c:bc: 70:76:c5:dd:96:94:e1:63:d2:42:40:3a:f5:96:56: ab:6c:04:f9:53:86:f6:d3:5a:70:c4:62:fd:39:26: 3c:6f:99:52:66:3b:40:2e:91:3a:3c:ed:ac:36:53: 75:f1:3b:2c:9b:35:70:6e:54:f4:93:97:6e:e2:05: 41:b4:22:ea:a4:78:76:fc:6c:9e:b7:fa:14:62:7c: d4:24:98:e3:e2:18:6e:30:6e:b2:dd:d5:44:bc:4d: 0d:23:bd:c3:b0:22:e8:4c:b5:e6:41:1c:7c:2c:ea: 38:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:11:AD:FF:BB:DC:38:AF:E5:2B:A5:12:AF:66:42:F7:0E:F1:90:42 X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:f6:ce:ad:04:39:8a:19:5f:e9:46:92:4f:cc:be:80:8a:93: 34:87:12:77:9d:78:2c:64:c9:61:2b:a0:62:ca:88:6d:da:a9: e8:50:4f:91:0b:9d:1c:5a:70:9c:e3:b2:ba:af:d3:a2:af:7f: 94:ab:05:a9:e3:b0:21:12:06:94:85:7a:f7:c3:19:8f:d3:c1: af:bd:f0:bc:c5:d1:29:67:a9:68:9f:34:10:00:c5:b2:ad:91: cc:49:18:23:f0:54:fc:7e:8b:ae:3c:5a:ae:a0:e7:30:76:17: a0:b8:5d:90:9b:f7:b1:30:6c:b4:79:37:ea:ae:3b:72:7d:10: 9b:2b:c7:0f:1b:a7:0e:e3:b4:fe:37:25:c3:3b:75:4f:9b:d9: 2d:2a:43:58:6a:64:ee:5a:23:7a:2a:41:2e:a1:09:2c:80:8f: 2c:56:00:f1:32:11:f1:cf:78:56:5a:0a:3e:8d:3b:6f:af:4b: 59:f3:64:14:89:c5:f2:3c:8f:e3:08:7c:46:65:92:59:4d:3b: 89:74:d0:36:9d:c6:34:1e:b0:e1:32:aa:eb:12:c5:42:26:fb: 39:8d:fc:79:9d:76:35:27:83:f8:48:22:31:8a:e0:9d:c6:30: e4:0b:21:97:5a:08:4d:96:2b:fe:e6:8c:cb:57:fc:4b:88:5a: f1:05:60:eb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZNYdw2AKLyMuwfFI2bkKUyQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjQxMTIzMTAwMDE3WhcNMjQxMTI0MTAwMDE3WjAzMTEwLwYDVQQD Eyg4OTExYWRmZmJiZGMzOGFmZTUyYmE1MTJhZjY2NDJmNzBlZjE5MDQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywbsUavcX2AyJn0QoJIWhymekVMD XhP73dVyQz5k2CIfE0RkqLBAJoVTLPzlXfuCnHA9QtfuG0U8B+RWQd5R3flkyqxn jVFdEZ3F4pjIPhdS9Tx43EJiOQHIhItSL7YzeINk2XH48L3JP8pln+IldvwkB3H3 EfEO8VIUSev8IQ7iABTa0ZUThXgNYh57HwQjJweYbLxwdsXdlpThY9JCQDr1llar bAT5U4b201pwxGL9OSY8b5lSZjtALpE6PO2sNlN18TssmzVwblT0k5du4gVBtCLq pHh2/Gyet/oUYnzUJJjj4hhuMG6y3dVEvE0NI73DsCLoTLXmQRx8LOo4FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIkRrf+73Div5SulEq9mQvcO8ZBCMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADPbOrQQ5 ihlf6UaST8y+gIqTNIcSd514LGTJYSugYsqIbdqp6FBPkQudHFpwnOOyuq/Toq9/ lKsFqeOwIRIGlIV698MZj9PBr73wvMXRKWepaJ80EADFsq2RzEkYI/BU/H6Lrjxa rqDnMHYXoLhdkJv3sTBstHk36q47cn0QmyvHDxunDuO0/jclwzt1T5vZLSpDWGpk 7lojeipBLqEJLICPLFYA8TIR8c94VloKPo07b69LWfNkFInF8jyP4wh8RmWSWU07 iXTQNp3GNB6w4TKq6xLFQib7OY38eZ12NSeD+EgiMYrgncYw5Ashl1oITZYr/uaM y1f8S4ha8QVg6w== -----END CERTIFICATE-----Generated at Sat Nov 23 12:04:45 2024 by rpki-client on console-fra.rpki-client.org