$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: M2afQZwc6JWH4sH2ntblGmwXMhAvAtbEzDiZa9plZI8= Subject key identifier: 45:6A:A1:20:21:19:70:ED:AA:9E:46:35:51:3B:E0:F0:DF:8E:D6:3D Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 523D3744E9F50F75201EFA0643B561357C1F07E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 02F6 Signing time: Thu 21 Nov 2024 16:28:40 +0000 Manifest this update: Thu 21 Nov 2024 16:23:40 +0000 Manifest next update: Fri 22 Nov 2024 19:00:40 +0000 Files and hashes: 1: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: 8b+3C/lbEihQ6OYLEzMZFV5C1X+J5iokJxJkEXA7uyc=) 2: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: yMp4N27BXYFMvxFXpYtEzVI3r3SVHmOz4dCZdlG1vnk=) 3: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: UnC4dY5BEMTU+QUmHEUrhfl+EBwa6d4Fy2eujPhitvA=) 4: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: eznERkc7DZbwVr+HCdvBRo/nv4eEoy29a9bx8QDzOz0=) 5: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: 93WlArlicDYcrFXuyD5oQHa3ZB3bdIjadlrADmzUdDQ=) 6: 34362e3138332e33312e302f32342d3234203d3e203537303433.roa (hash: QlWLXUph8uK9agUThltuDVNduQEWWszYWQo8eJekwTM=) 7: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: sxCRvdRH/61CgPyAucOSXXg3g5Gmmg1S97sa3AiLp/w=) 8: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: rC2FvchwzfGA4vzUPkVFGhR46h/VRe0cV/cq1q/zL0c=) 9: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: JlUuMcDs9iMbjR7dJiBbcJHNKwygu5z2CyX5rtJmf5E=) 10: 34362e3138332e32392e302f32342d3234203d3e20313734.roa (hash: iFoLwhPM2dsVM0j9MR72yEvFI7xyXfHeaQDbIOf/NSg=) 11: 34362e3138332e33312e302f32342d3234203d3e203439393831.roa (hash: 4SgUg02tThJbdAaEmVPuS6soKb1hRdiyWl1jwdMe4YE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 09:57:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:3d:37:44:e9:f5:0f:75:20:1e:fa:06:43:b5:61:35:7c:1f:07:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Nov 21 16:23:40 2024 GMT Not After : Nov 22 19:00:40 2024 GMT Subject: CN=456AA120211970EDAA9E4635513BE0F0DF8ED63D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:98:67:2b:ce:07:e7:fa:d6:05:77:de:de: 89:29:9c:c8:d5:c5:6b:e9:b3:89:e0:be:2d:46:b1: 0c:8d:5a:98:62:c4:24:45:7d:bb:db:ce:cf:af:9f: 20:7e:32:46:f8:cf:27:e8:3b:10:99:df:7d:7e:b7: 7c:8f:7d:d3:dd:e1:56:58:3c:37:a9:b6:43:12:73: 80:9b:9a:aa:c2:6e:03:3f:74:89:0d:50:e8:90:39: 8a:1f:46:e3:38:9b:5a:9b:0f:40:df:d9:5a:b0:06: e3:86:2a:f6:41:15:f4:ad:a9:67:de:65:53:e4:37: 40:80:d9:49:40:65:62:7d:1c:33:9f:6e:7f:23:d4: 6f:8a:ec:80:4a:1e:f2:7d:d6:4e:f8:ad:b3:8d:08: 78:d6:a4:26:76:f2:f2:ef:2c:36:a8:19:71:08:be: ff:5b:ad:cc:d8:ba:02:b7:2d:cd:2a:24:2e:e2:34: 93:04:76:48:e2:ed:20:67:98:e9:a8:7f:b1:e6:73: 53:9a:24:58:61:bc:18:93:0f:30:b8:96:b6:b6:64: 2d:46:2f:e9:88:f6:7a:29:61:f8:9c:a1:ce:4f:a4: a1:80:1d:29:dc:3c:2c:ec:ad:de:ea:90:57:79:b4: 58:b3:ee:7a:8e:4c:a2:3f:85:ca:b4:3e:7a:37:f8: 59:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:6A:A1:20:21:19:70:ED:AA:9E:46:35:51:3B:E0:F0:DF:8E:D6:3D X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:76:c7:9d:d3:bf:28:6c:1e:30:e4:32:39:91:f8:81:4a:6b: fb:76:8e:03:e4:1e:3e:a7:d8:76:75:06:19:ef:1d:f1:11:b0: 97:14:65:fa:0a:10:ba:de:3c:75:50:bd:1b:47:b7:02:dc:18: 30:e6:6f:9d:fe:0d:fc:ab:7d:34:78:72:83:5c:f4:5c:c0:1b: 70:bf:3d:5c:95:4f:cc:a6:0c:15:4f:3d:4b:ee:00:89:9b:17: f1:f0:d4:74:49:b1:83:12:f2:1d:2d:a7:17:e1:dc:7f:4a:79: 76:5d:47:d5:c5:56:95:50:4a:58:b7:4e:7d:89:f0:63:fb:c3: 2a:f9:49:62:ef:21:43:24:3d:4e:90:e9:fd:6f:0e:d5:4e:23: d2:81:c5:76:36:c6:57:32:5b:62:97:ce:84:35:0b:98:24:44: ff:ca:e9:79:be:53:cf:31:8e:91:b3:33:86:5f:4d:3e:25:d0: b8:af:28:10:22:1b:28:8f:6b:ff:ab:8f:2d:bc:8d:eb:fa:b8: f6:0c:d7:d6:2e:92:5d:d8:55:53:3c:86:3b:10:55:c0:03:dc: a4:11:59:a1:59:c8:12:94:4c:41:5c:fc:04:2e:d0:42:02:64: b9:85:08:7f:7d:d2:87:09:9d:06:0d:4b:6d:7c:c8:06:c8:c8: f0:ee:b2:81 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUUj03ROn1D3UgHvoGQ7VhNXwfB+cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNDExMjExNjIzNDBaFw0yNDExMjIxOTAwNDBaMDMxMTAvBgNV BAMTKDQ1NkFBMTIwMjExOTcwRURBQTlFNDYzNTUxM0JFMEYwREY4RUQ2M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5mJhnK84H5/rWBXfe3okpnMjV xWvps4ngvi1GsQyNWphixCRFfbvbzs+vnyB+Mkb4zyfoOxCZ331+t3yPfdPd4VZY PDeptkMSc4CbmqrCbgM/dIkNUOiQOYofRuM4m1qbD0Df2VqwBuOGKvZBFfStqWfe ZVPkN0CA2UlAZWJ9HDOfbn8j1G+K7IBKHvJ91k74rbONCHjWpCZ28vLvLDaoGXEI vv9brczYugK3Lc0qJC7iNJMEdkji7SBnmOmof7Hmc1OaJFhhvBiTDzC4lra2ZC1G L+mI9nopYficoc5PpKGAHSncPCzsrd7qkFd5tFiz7nqOTKI/hcq0Pno3+FnpAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQURWqhICEZcO2qnkY1UTvg8N+O1j0wHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqnbHndO/KGweMOQyOZH4 gUpr+3aOA+QePqfYdnUGGe8d8RGwlxRl+goQut48dVC9G0e3AtwYMOZvnf4N/Kt9 NHhyg1z0XMAbcL89XJVPzKYMFU89S+4AiZsX8fDUdEmxgxLyHS2nF+Hcf0p5dl1H 1cVWlVBKWLdOfYnwY/vDKvlJYu8hQyQ9TpDp/W8O1U4j0oHFdjbGVzJbYpfOhDUL mCRE/8rpeb5TzzGOkbMzhl9NPiXQuK8oECIbKI9r/6uPLbyN6/q49gzX1i6SXdhV UzyGOxBVwAPcpBFZoVnIEpRMQVz8BC7QQgJkuYUIf33ShwmdBg1LbXzIBsjI8O6y gQ== -----END CERTIFICATE-----Generated at Thu Nov 21 19:35:15 2024 by rpki-client on console-ams.rpki-client.org