$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: vmxeKtR4dRDfUj2Jcp+bVgsKyAg2Ei6J7yKw/8oVtMk= Subject key identifier: A1:28:CC:1D:BF:19:5D:F0:88:11:F5:77:69:BA:35:E6:DF:9B:15:0C Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 5A9D05A8AA889AA455E2B200DDB78F343A34C81F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 0195 Signing time: Thu 02 May 2024 07:45:23 +0000 Manifest this update: Thu 02 May 2024 07:40:23 +0000 Manifest next update: Fri 03 May 2024 10:18:23 +0000 Files and hashes: 1: 38392e3131362e382e302f32322d3232203d3e203135343139.roa (hash: oliv3UvDFKTa0wiNT7OiJ64JX3DbfwpBCCLlzIdzyhs=) 2: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: rhFDH+HSHu4ldLmFGmaAa5PHLCVApED+hpmGpIlda10=) 3: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: 4mqwfhy9a9hkFt/HMZyRxqga/e91H8gT7Jps1d0H4tQ=) 4: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: gR/LokfWMESnLIj+2pTDgelwBH9gp7u/TXi46OlVsTM=) 5: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: wu/2prI2As0c83bwlp6sHkijs3ihcjyaF+tNuk8sDLU=) 6: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: L21kRkdZ2QmcX+cx/JVTrHttc0a4k1I07irYyy6DF3U=) 7: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: 2KedoZjsIqS/Z5u2ZKI6scofUoRYRc7bYw1os8PNF44=) 8: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: qhaFvlVLH+2xpWB5GUThhCTtmPpF9czPSm47uZpQLew=) 9: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: EdAeJzi7hzQ8grgTwwOtF0eu8ICWnleD0jVmMmEBH0Y=) 10: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: LHj7cEC3np/SL7KrzjVG4YK5k+/6vgSIt6qEAy8t6g8=) 11: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: /Sx3ZT56SijfaPfN0r7Rki9SbHf31MFkwpJxqoLjlyo=) 12: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: lOT9pfGeBYMNdNMD4FhM0REGqH5tpGCyVGBxXRBdkF4=) 13: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: LqVWkT/zceAzbvveNwhUbB73xAD4FqZemL5aMFNpkaM=) 14: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: I2TeOsW8hERX7OglLIhXdMp+lo2cpieJRhYcVEuHBoQ=) 15: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: UgvQYOhN2LyeI0GOMV54VcX7efV9Lmg6a869tKpf6jk=) 16: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: 2tsvA7xPz9IQULjIyLmZ9Zph2TZWDiyvUyvfFqz1Unw=) 17: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: cY4e9VLFYD8BeybjCnZhj2zoHTsJzvE6LjoNQ2J+RH4=) 18: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: QPZQLVOhfep2eSy91Ni75k8palTbuqH2cMFGoGjEWTE=) 19: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: pDz08t6uDLX+UQCcv6T58rLaflML1JlRSGhc6ytA2t0=) 20: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: 4XqIXzABkCq3gofskylIjQhpky7W4wsfBDZLMpMvFrs=) 21: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: odZkH62dhzXeLsXAmwvJM41Ox4ymXypFxB9iAiH0rhY=) 22: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: RopAUC9WeDxJkjPiIFGG3cAkxuCMld4PMKruh7HW+7M=) 23: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: qgA0jA2ez8XC53EvikT1lnkoABgWAoo3F15bMD9yrMI=) 24: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: J34QjF816p0aSnQhWLllJT3x/G7EZmHiKTc4oGtQixM=) 25: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: X3/9u46jAGxsIPtuCyeXYEK8c2AEjF7X4m/m2Lk2Ox8=) 26: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: XOUR7jlDOJh+58qxpGQGq2MOlSmScuDMgtUFExt9daE=) 27: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: ysNMOtywfh1ARPKCbUE+O+K4YEKjz0xe1hxdTS7Izrs=) 28: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: ytIjzRM2QHUDdWLnY1oaDhW3e5kak0xdKzdBBDfsG6c=) 29: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: NPM2yEw11OkbHwQ7vN+lq6WaHRQGeAFFz6T4nsSoJXM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 03 May 2024 08:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:9d:05:a8:aa:88:9a:a4:55:e2:b2:00:dd:b7:8f:34:3a:34:c8:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: May 2 07:40:23 2024 GMT Not After : May 3 10:18:23 2024 GMT Subject: CN=A128CC1DBF195DF08811F57769BA35E6DF9B150C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:69:c4:ce:a8:28:af:73:a7:f3:95:8c:a7:16: a3:3c:f4:55:9b:55:50:14:3f:59:76:8a:f9:98:a6: a5:21:88:11:7a:88:89:60:7e:f2:6f:fa:71:77:e0: 99:c0:3e:0d:cf:df:c8:11:3f:d6:5d:cb:a2:73:c5: 7b:40:b4:2e:a8:45:68:4c:c6:85:ee:32:e4:3d:ef: db:93:e8:a0:99:c6:e1:ba:40:64:05:b0:b8:60:c7: 07:90:df:0c:ec:bc:de:08:16:d3:ad:f9:a0:07:a5: 3c:43:b9:7b:bf:d2:c4:d0:31:b9:61:7c:15:74:df: 28:aa:2f:2d:b6:ba:92:67:92:59:17:ea:c2:93:2c: d0:54:fb:66:9f:9c:20:d5:73:d6:d6:d6:a4:29:a7: 03:26:3a:ad:d9:2a:ed:7d:65:78:2d:fc:8b:61:53: fa:9e:9c:fb:ac:8d:34:87:5b:f5:7a:be:27:97:39: 8a:48:5a:d9:d8:d8:c7:de:fa:b7:eb:8f:33:7b:b4: df:e6:65:99:10:34:1f:0a:e7:74:ff:b6:d3:46:4e: 5e:6a:4f:ff:f2:28:8f:95:50:8f:30:c1:62:a2:1f: 5e:58:13:6e:df:60:6b:53:fa:b3:a1:e4:d2:4d:b4: fe:1b:ca:75:7d:a7:55:33:07:89:aa:60:db:12:74: a7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:28:CC:1D:BF:19:5D:F0:88:11:F5:77:69:BA:35:E6:DF:9B:15:0C X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:33:bd:a6:01:e1:94:65:58:26:42:e1:ad:d9:19:49:dd:af: 50:35:17:ab:99:ca:84:99:9f:6f:58:f7:f7:96:bb:76:ba:e7: c3:93:ec:ef:99:13:0a:2a:fd:1f:7e:5a:d4:1f:cf:39:21:82: cb:b7:17:29:34:fd:84:95:cd:36:f6:e9:0c:ab:4c:a8:09:c3: 43:a1:d6:a3:08:25:81:d6:27:a1:28:d5:35:80:8e:e2:64:2e: aa:90:f2:13:fc:96:d0:69:d9:c7:5d:17:50:96:b3:59:d0:90: b1:70:65:2c:e3:24:f4:9f:a8:ba:52:fe:d7:78:3e:96:7c:b8: 7f:76:e5:ec:3f:2f:d2:18:52:4d:4b:78:fa:9a:ca:a6:cd:9f: ac:c6:3c:c2:6c:c0:7a:73:cc:db:7e:b1:04:aa:ee:ae:31:37: 65:c7:33:3b:fa:49:47:12:85:0d:94:5a:8f:75:6d:0b:04:38: 1a:9f:f0:01:af:52:08:a9:c7:9d:22:67:1e:fa:e2:7c:6d:54: 06:ea:18:8c:c5:9f:e3:58:25:b4:02:18:10:11:6c:03:f1:f8: 54:86:d4:d8:91:8b:95:4d:c6:d3:9f:ba:3d:a9:92:c1:94:1d: 3b:37:43:19:d5:78:43:9c:52:51:04:14:5b:70:1d:0c:c2:2a: df:a0:7c:87 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWp0FqKqImqRV4rIA3bePNDo0yB8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNDA1MDIwNzQwMjNaFw0yNDA1MDMxMDE4MjNaMDMxMTAvBgNV BAMTKEExMjhDQzFEQkYxOTVERjA4ODExRjU3NzY5QkEzNUU2REY5QjE1MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvacTOqCivc6fzlYynFqM89FWb VVAUP1l2ivmYpqUhiBF6iIlgfvJv+nF34JnAPg3P38gRP9Zdy6JzxXtAtC6oRWhM xoXuMuQ979uT6KCZxuG6QGQFsLhgxweQ3wzsvN4IFtOt+aAHpTxDuXu/0sTQMblh fBV03yiqLy22upJnklkX6sKTLNBU+2afnCDVc9bW1qQppwMmOq3ZKu19ZXgt/Ith U/qenPusjTSHW/V6vieXOYpIWtnY2Mfe+rfrjzN7tN/mZZkQNB8K53T/ttNGTl5q T//yKI+VUI8wwWKiH15YE27fYGtT+rOh5NJNtP4bynV9p1UzB4mqYNsSdKdFAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUoSjMHb8ZXfCIEfV3abo15t+bFQwwHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfzO9pgHhlGVYJkLhrdkZ Sd2vUDUXq5nKhJmfb1j395a7drrnw5Ps75kTCir9H35a1B/POSGCy7cXKTT9hJXN NvbpDKtMqAnDQ6HWowglgdYnoSjVNYCO4mQuqpDyE/yW0GnZx10XUJazWdCQsXBl LOMk9J+oulL+13g+lny4f3bl7D8v0hhSTUt4+prKps2frMY8wmzAenPM236xBKru rjE3ZcczO/pJRxKFDZRaj3VtCwQ4Gp/wAa9SCKnHnSJnHvrifG1UBuoYjMWf41gl tAIYEBFsA/H4VIbU2JGLlU3G05+6PamSwZQdOzdDGdV4Q5xSUQQUW3AdDMIq36B8 hw== -----END CERTIFICATE-----Generated at Thu May 2 10:52:57 2024 by rpki-client on console-fra.rpki-client.org