$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: 7pXOmQ9IhgR9Ugd74sXkFAxo1YpzHj9+/9lrXAhZKeE= Subject key identifier: 78:F5:27:86:8D:9D:FE:EC:21:6F:0C:56:C1:1F:71:D2:DD:40:EB:D2 Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 5677C57C76D9943B341BEE02D29C171C641CB2B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 02A6 Signing time: Thu 21 Nov 2024 19:02:28 +0000 Manifest this update: Thu 21 Nov 2024 18:57:28 +0000 Manifest next update: Fri 22 Nov 2024 20:58:28 +0000 Files and hashes: 1: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: +Vx7cPWX17QUm5q4oEHBBrGiQvI6E8LOHxd5Tzb+tsE=) 2: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: kAy+abXsJb9Q4kp22IeSWppW6m8I+XeaZMYUvXUunLw=) 3: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: T3/+meO0E6Kscbv4zABgR7LjWbA9HZkY2ThRNjT1/ho=) 4: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: Jy9FfpiRqJjeQijv4Je6SENUeGndVONxelwvwfNNzXI=) 5: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: LQgVQ1MyyeW/dmCTdxbfNRo0tK6PErHXDmnl/WHeT/0=) 6: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: My3yqf8SZAlUZtlcB3JmnWpb3SRX7htkUcZxm6LuIxA=) 7: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: ce0p5l8EbnIlkfTcKoQYlCwW/M5epxY2k2J2uChkpXk=) 8: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: qupft+yfIDkLB2YnMTYFZT4P6Bv9II0x6lbxw2SsutA=) 9: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: /R73oyZwtycfOIardsCBqBElyZyLAge3FIVtq7MzkqA=) 10: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: LKcPnvBQTsCR4w5Kx2YxxQoR+f2G/pvTMjh3hci1fU0=) 11: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: DRa+aO7PfiWNiVUAYWYYHBzJhLs+CludiMSn8iGHVjs=) 12: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: fHsDulc+1xp80jqhKPKtHjI+D1+Glp+svd8TMxrbCTU=) 13: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: 8EdY1bwfX2htrpnhHvYT4yLsf3n4DjnGjUcl+BBMtxU=) 14: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: LoPTcBT12GlxJeGQytlP+87jwAVqXsZ20yC+f2z0XAE=) 15: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: mr8O2GLITID87EQbUR0mW/IyDelg6k8ezJcKyZbdo9E=) 16: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: bRN9WIaNgBfL6hWP8Q0NfsbEb+S5Yh1ES6lsal3H0uY=) 17: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: obdRgrAlbArOEzRq2MdJUp0vE/IGIUgpRkpTPsHnYpw=) 18: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: yJ3jgTP5ms7vVZ9OOIspuE+dSGOdGl3B8e0eCPkkuvo=) 19: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: e8hvCxiMvjT88kkdzK/PJE+1AYzVFRj3s83FWT74Hd0=) 20: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: toTKmAJJ2uBqBLv6BkPz07R/jbWOIzBv8SNZxzfQ2BE=) 21: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: bGoZmuVAEB87yvgYuC6xqdUZRj5nlGp3K0afR23g6e0=) 22: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: p4ZDdtK86rJtR1Yy0U4pqQrkMy9Mt2wV6blAzKoSX2U=) 23: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: jwteD3hkzVMFXXEJSc8k23qf/90xvhdj/VD3gj2Catk=) 24: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: LIxp+Yx66SN3S5aAmVFOSGb98XSFAyI0SpT0sQdYaJk=) 25: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: 0IPNooT5QWBhGrICiMetYy7pCF+C6k7B4M0htQlo2Og=) 26: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: oRFKCFxJGvX68QWJfvbA6xvAXbsbAtUy8eErblPaedQ=) 27: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: SxwKmFdaPow3guK7NvONFCZ6G0PoorcTxWmZaoSvQiM=) 28: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: USXMXzOV5ANsNLdkdDGh+aelwmgR1a255Z8q4twzCv0=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:77:c5:7c:76:d9:94:3b:34:1b:ee:02:d2:9c:17:1c:64:1c:b2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Nov 21 18:57:28 2024 GMT Not After : Nov 22 20:58:28 2024 GMT Subject: CN=78F527868D9DFEEC216F0C56C11F71D2DD40EBD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ab:6d:f1:d1:9b:66:ec:5f:10:9c:02:9c:80: 0a:19:a2:df:87:b1:36:47:ae:f9:c8:4d:b5:e8:26: 80:34:ba:7b:03:8f:3d:88:7a:62:3b:31:5e:fe:6f: 00:34:29:b2:09:73:69:b9:d2:b8:fd:26:84:72:7c: d1:40:a7:52:6d:33:b1:4c:a7:0e:03:74:dd:62:c2: f0:13:f2:90:c5:2a:d2:56:53:02:a0:79:25:4e:a5: ff:c8:51:fd:bf:fb:a7:d4:c7:00:d9:95:ed:5c:fe: 3c:ae:b7:9e:ae:7d:1d:85:37:71:43:e4:c8:9a:cb: ea:8e:4f:f2:4e:83:3c:27:19:34:7c:0c:6f:19:09: e8:35:b2:4a:6a:f4:4a:61:8b:69:a2:ad:e0:45:dc: 26:a0:05:94:ba:aa:13:af:cb:b4:27:64:b1:fc:ac: eb:9d:a9:eb:bc:c9:36:42:54:b9:86:4f:02:13:70: f7:22:92:be:83:a1:05:23:1a:ff:d0:c1:3d:d8:29: e2:1c:65:62:b5:0a:36:3b:d3:81:7a:f6:90:75:e7: b5:80:c5:25:54:d0:7f:f2:e2:3d:04:4b:7c:9a:38: 1e:f8:80:d7:3d:86:ab:d0:11:ec:3c:cf:cb:d4:da: 0a:49:41:c5:a0:65:54:9a:e6:c7:b6:9f:78:b2:57: f9:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:F5:27:86:8D:9D:FE:EC:21:6F:0C:56:C1:1F:71:D2:DD:40:EB:D2 X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:d0:22:33:5a:73:cd:42:b0:d3:77:6d:ba:b3:6a:58:2b:00: 36:34:b6:a7:c0:6e:e6:72:c8:75:ac:e3:ca:30:6e:b1:54:1f: 2b:0a:ea:ca:a0:03:45:f0:18:34:41:0b:57:9d:e0:07:8c:09: 57:82:7c:9d:43:64:d5:f5:7e:71:7a:64:75:54:98:58:86:ca: 81:df:5b:33:93:38:29:5a:f8:62:0f:d3:09:dc:a8:f6:70:64: 0f:6e:a1:e7:2c:88:10:f0:1e:37:35:af:b2:ad:a4:a7:a0:8a: 20:c9:cf:9e:d7:3d:f8:fb:81:ff:63:7c:88:a8:dc:fe:a6:81: 1e:f6:98:94:ec:5b:3d:43:da:04:d5:3e:31:b4:07:27:63:72: 91:fa:a0:5e:bf:8d:62:66:99:98:a5:6c:70:69:f8:b9:41:8d: c1:c9:1c:b8:5b:1e:9b:d9:13:fc:96:6b:84:5f:a1:7e:44:36: e0:8b:5d:c9:1a:be:a9:e2:fb:5f:f7:3f:70:ba:3a:71:e1:45: b2:0b:c0:3b:8a:5d:d7:77:ff:76:2c:3a:25:35:2c:33:f2:da: 8c:0a:84:1f:1e:74:56:06:87:8c:51:fe:93:e4:b6:a7:6c:3f: 52:e5:13:72:6b:e7:81:7a:b4:a1:3c:d7:7a:70:a5:a9:b0:46: d1:5e:44:67 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUVnfFfHbZlDs0G+4C0pwXHGQcsrYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNDExMjExODU3MjhaFw0yNDExMjIyMDU4MjhaMDMxMTAvBgNV BAMTKDc4RjUyNzg2OEQ5REZFRUMyMTZGMEM1NkMxMUY3MUQyREQ0MEVCRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLq23x0Ztm7F8QnAKcgAoZot+H sTZHrvnITbXoJoA0unsDjz2IemI7MV7+bwA0KbIJc2m50rj9JoRyfNFAp1JtM7FM pw4DdN1iwvAT8pDFKtJWUwKgeSVOpf/IUf2/+6fUxwDZle1c/jyut56ufR2FN3FD 5Miay+qOT/JOgzwnGTR8DG8ZCeg1skpq9Ephi2mireBF3CagBZS6qhOvy7QnZLH8 rOudqeu8yTZCVLmGTwITcPcikr6DoQUjGv/QwT3YKeIcZWK1CjY704F69pB157WA xSVU0H/y4j0ES3yaOB74gNc9hqvQEew8z8vU2gpJQcWgZVSa5se2n3iyV/lzAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUePUnho2d/uwhbwxWwR9x0t1A69IwHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAANAiM1pzzUKw03dturNq WCsANjS2p8Bu5nLIdazjyjBusVQfKwrqyqADRfAYNEELV53gB4wJV4J8nUNk1fV+ cXpkdVSYWIbKgd9bM5M4KVr4Yg/TCdyo9nBkD26h5yyIEPAeNzWvsq2kp6CKIMnP ntc9+PuB/2N8iKjc/qaBHvaYlOxbPUPaBNU+MbQHJ2NykfqgXr+NYmaZmKVscGn4 uUGNwckcuFsem9kT/JZrhF+hfkQ24ItdyRq+qeL7X/c/cLo6ceFFsgvAO4pd13f/ diw6JTUsM/LajAqEHx50VgaHjFH+k+S2p2w/UuUTcmvngXq0oTzXenClqbBG0V5E Zw== -----END CERTIFICATE-----Generated at Thu Nov 21 21:58:15 2024 by rpki-client on console-ams.rpki-client.org