$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft File: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft (raw, json) Hash identifier: 5ffXr+ZDlGuLMmOrW6d2+4Ne+gq1sTZo6Of2iKqpnaE= Subject key identifier: F4:1B:C4:D5:71:78:8D:4C:43:94:84:A5:15:DF:A6:B8:1D:2C:3F:6C Authority key identifier: C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E Certificate issuer: /CN=A91443440000/serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E Certificate serial: 1EAE210EB2DE763F081DE4EBEF76B51841ABA40C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft Manifest number: 7B Signing time: Wed 23 Oct 2024 09:26:17 +0000 Manifest this update: Wed 23 Oct 2024 09:21:17 +0000 Manifest next update: Thu 24 Oct 2024 13:24:17 +0000 Files and hashes: 1: 3136302e33302e32352e302f32342d3234203d3e20313533313736.roa (hash: dQX8k3kIeqGp3P2icN5/lEkgJizu7NVM5zOKZXx0I5g=) 2: C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl (hash: QxaHBVDA7EegaLLdR8Y4TD39kstUhqbtgWyJnie5ZUc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 13:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ae:21:0e:b2:de:76:3f:08:1d:e4:eb:ef:76:b5:18:41:ab:a4:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000/serialNumber=C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E Validity Not Before: Oct 23 09:21:17 2024 GMT Not After : Oct 24 13:24:17 2024 GMT Subject: CN=F41BC4D571788D4C439484A515DFA6B81D2C3F6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:70:8c:c6:4e:6e:b4:5b:f0:b9:d7:8f:5f:cc: 05:82:b5:40:fa:f5:54:9e:60:5e:0c:99:73:aa:90: fe:70:b7:aa:cb:b0:e5:7e:4b:1a:9e:a4:6a:13:b9: 79:50:49:e5:38:90:90:d5:27:d2:57:42:d5:52:8a: 97:03:e9:e7:33:a5:29:8b:d1:d0:58:89:4f:a3:52: dc:62:08:ae:dc:24:af:bc:f7:2f:27:5b:eb:14:de: ea:4e:95:89:e7:a6:6b:26:5d:e5:d2:05:9b:ef:78: f6:76:18:d9:db:a9:ab:47:fd:49:a6:0e:7b:66:fa: 73:6f:4a:9e:18:a7:62:6c:4a:80:3f:fe:19:a1:5c: a2:04:af:c8:5a:d7:8e:a3:ca:d1:e1:47:4f:1d:c8: 54:75:24:f5:76:38:18:03:09:8c:79:e4:b1:ab:eb: 72:0d:9a:1c:3d:de:90:8f:1d:cc:9a:70:3f:0d:9f: e6:d9:93:df:9d:c6:ed:32:3d:09:55:a9:47:4b:dd: 96:e8:20:c0:0b:bb:fc:29:4e:3a:87:e9:3b:7a:fb: 21:4e:c4:71:8c:2e:ec:0b:fb:44:6a:f9:8c:9d:6e: 44:a7:9e:64:18:fb:8b:d9:1f:f6:55:25:b3:c6:51: 69:c3:e9:83:a3:57:33:af:aa:f7:b1:c4:68:7e:03: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1B:C4:D5:71:78:8D:4C:43:94:84:A5:15:DF:A6:B8:1D:2C:3F:6C X509v3 Authority Key Identifier: keyid:C4:E6:C3:DA:EB:74:BE:45:20:7E:B8:0D:ED:F1:FF:D5:4B:C0:01:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xObD2ut0vkUgfrgN7fH_1UvAAZ4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/2/C4E6C3DAEB74BE45207EB80DEDF1FFD54BC0019E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:d7:b6:f3:4f:0c:5e:ba:ec:96:ba:d6:74:02:ce:95:e4:08: 1a:94:39:fd:ef:29:ec:66:10:1d:15:6c:ea:68:6d:22:24:2c: 41:0c:8c:51:60:7c:77:b2:58:59:d6:3b:74:28:83:11:60:a3: 9e:ab:db:d3:e7:99:37:46:0d:bc:9a:75:c7:80:d2:88:86:c6: e0:f2:1d:a2:a4:c7:4c:d9:c0:f1:3a:79:64:98:9f:d0:bd:c0: 18:5e:fe:3d:34:86:74:d9:c9:4b:b3:c5:cc:1f:75:53:fa:2c: e6:4f:fa:b4:4a:b9:0b:66:90:f6:55:ab:f0:c8:93:6f:7f:1f: 04:77:68:2e:38:16:56:d9:d2:f4:55:8c:e5:42:d1:1e:2a:52: e4:e1:7b:f1:43:53:64:d1:0f:91:5e:b8:99:62:73:c0:5f:8a: 50:9d:c7:54:c3:3f:1f:12:42:4d:46:f1:b2:07:8e:a3:12:ea: 8e:bf:cc:0e:95:e1:d0:d6:fc:ef:b7:a5:19:42:f2:9d:8b:1a: 9c:4b:72:c2:00:fb:a1:a1:a3:83:f4:c5:85:71:91:59:e7:a1: aa:a1:07:a4:08:c2:76:15:24:79:68:8b:66:e6:73:e4:13:99: f0:27:9e:2a:b0:08:c2:c0:40:1d:30:05:50:af:15:bc:04:6a: 54:f5:a8:bb -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUHq4hDrLedj8IHeTr73a1GEGrpAwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyhDNEU2QzNEQUVC NzRCRTQ1MjA3RUI4MERFREYxRkZENTRCQzAwMTlFMB4XDTI0MTAyMzA5MjExN1oX DTI0MTAyNDEzMjQxN1owMzExMC8GA1UEAxMoRjQxQkM0RDU3MTc4OEQ0QzQzOTQ4 NEE1MTVERkE2QjgxRDJDM0Y2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVwjMZObrRb8LnXj1/MBYK1QPr1VJ5gXgyZc6qQ/nC3qsuw5X5LGp6kahO5 eVBJ5TiQkNUn0ldC1VKKlwPp5zOlKYvR0FiJT6NS3GIIrtwkr7z3Lydb6xTe6k6V ieemayZd5dIFm+949nYY2dupq0f9SaYOe2b6c29KnhinYmxKgD/+GaFcogSvyFrX jqPK0eFHTx3IVHUk9XY4GAMJjHnksavrcg2aHD3ekI8dzJpwPw2f5tmT353G7TI9 CVWpR0vdluggwAu7/ClOOofpO3r7IU7EcYwu7Av7RGr5jJ1uRKeeZBj7i9kf9lUl s8ZRacPpg6NXM6+q97HEaH4D8vkCAwEAAaOCAmEwggJdMB0GA1UdDgQWBBT0G8TV cXiNTEOUhKUV36a4HSw/bDAfBgNVHSMEGDAWgBTE5sPa63S+RSB+uA3t8f/VS8AB njAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMi9DNEU2QzNEQUVCNzRCRTQ1MjA3 RUI4MERFREYxRkZENTRCQzAwMTlFLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0EyNEYy MDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi94T2JEMnV0MHZrVWdmcmdON2ZIXzFV dkFBWjQuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzIvQzRFNkMzREFFQjc0QkU0NTIw N0VCODBERURGMUZGRDU0QkMwMDE5RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAIHXtvNPDF667Ja61nQC zpXkCBqUOf3vKexmEB0VbOpobSIkLEEMjFFgfHeyWFnWO3QogxFgo56r29PnmTdG DbyadceA0oiGxuDyHaKkx0zZwPE6eWSYn9C9wBhe/j00hnTZyUuzxcwfdVP6LOZP +rRKuQtmkPZVq/DIk29/HwR3aC44FlbZ0vRVjOVC0R4qUuThe/FDU2TRD5FeuJli c8BfilCdx1TDPx8SQk1G8bIHjqMS6o6/zA6V4dDW/O+3pRlC8p2LGpxLcsIA+6Gh o4P0xYVxkVnnoaqhB6QIwnYVJHloi2bmc+QTmfAnniqwCMLAQB0wBVCvFbwEalT1 qLs= -----END CERTIFICATE-----Generated at Wed Oct 23 11:58:26 2024 by rpki-client on console-fra.rpki-client.org