$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft File: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft (raw, json) Hash identifier: 8OABGxBunoyigEi3lGDzqRHZpIuiQjoqei3f107MoDA= Subject key identifier: 3F:A0:A3:5E:C0:B0:CA:AC:DA:33:34:8E:0C:6B:C6:EA:C9:3D:0E:AE Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Certificate serial: 5D90C8BAD6E71087E85264AAA089E46AFD0AB615 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft Manifest number: 032E Signing time: Fri 22 Nov 2024 03:13:40 +0000 Manifest this update: Fri 22 Nov 2024 03:08:40 +0000 Manifest next update: Sat 23 Nov 2024 03:23:40 +0000 Files and hashes: 1: 39332e39322e32302e302f32342d3234203d3e2035353131.roa (hash: Anw+Ot0jzMET4Sk6hQNdmMLNf7QzBxX2vhTMbwb0Hp4=) 2: 39332e39322e31392e302f32342d3234203d3e203631333137.roa (hash: V6Z86uxrACipTWOrp3TXH6UNEJgsUWNL4dYbXMpslac=) 3: 39332e39322e31382e302f32342d3234203d3e203534333339.roa (hash: ZPrP8dQxnBlRV+SMhznGOOGWIIG1iXyuTJIlGLJRrkk=) 4: 37382e32342e3132322e302f32342d3234203d3e2037303138.roa (hash: VqVKoF7iu6oZpBibUU7dIXHyYCOWDkKvo2nEluE8pdI=) 5: 34352e38362e39342e302f32342d3234203d3e2039303039.roa (hash: rKfZougU8FJmyo76eGgyF3kpeC1vK03Kb0a4e2CX1MU=) 6: 37382e32342e3132342e302f32332d3234203d3e20383334.roa (hash: aR9bXXTYwrcEpOUA5zP1Au4UdLHmUATKygkKxMy2Hyo=) 7: 37382e32342e3132342e302f32342d3234203d3e203534333339.roa (hash: KBQWp2YW6b35tXBZxmWFRr/DTme9e2nhX14tjQgVgwA=) 8: 37382e32342e3132352e302f32342d3234203d3e203534333339.roa (hash: 7W/JQiIhBxvV9lPwlVaE2K95jNPOksJaHe90LVwGv1I=) 9: 37382e32342e3132332e302f32342d3234203d3e2037303138.roa (hash: /Sw/kTcH9aO7bMcRnVprTh49TII5UJ49lP8PepQkn1Y=) 10: 37382e32342e3132362e302f32332d3234203d3e203131343236.roa (hash: QHhKDdx7KbEi2pWBI66gL/yJWrRkXWlW9Ll3iu5yUnk=) 11: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl (hash: 7MOQvr1jj+QAkFc4Bzpj2lcKSLQqBI1tQepX8MFBkgs=) 12: 39332e39322e32312e302f32342d3234203d3e203631333137.roa (hash: AyhTLJhQIvRykhLJ0WDBmN+nDinIPxiWxR2A63QTjMo=) 13: 39332e39322e32322e302f32332d3234203d3e203534333339.roa (hash: MlVhq9YMUDch69apYFS1riPDRY/vCEBSVcnZ0AXUbzA=) 14: 34352e38362e39352e302f32342d3234203d3e2031323939.roa (hash: yQKHHpn8wCUHU+dOg286104MyMwPlf9k9qfBkCNGEsg=) 15: 37382e32342e3132312e302f32342d3234203d3e203631333137.roa (hash: RwfaSxxteSNcESziyQtnuZWAyXx/wSPpPO3hFCuLzuQ=) 16: 34352e38362e39332e302f32342d3234203d3e203631333137.roa (hash: 1x2zpcTAYyd8XetSB0JjPvLUa4clQe7hwjPf8ExgQOI=) 17: 34352e38362e39322e302f32342d3234203d3e20323039313831.roa (hash: axad6y4WO54wAX0JBbPnOOK6hI/gTIiMU9ubKRwS/L8=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 23:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:90:c8:ba:d6:e7:10:87:e8:52:64:aa:a0:89:e4:6a:fd:0a:b6:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Validity Not Before: Nov 22 03:08:40 2024 GMT Not After : Nov 23 03:23:40 2024 GMT Subject: CN=3FA0A35EC0B0CAACDA33348E0C6BC6EAC93D0EAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d0:25:b8:ad:b2:93:69:72:72:81:27:f1:f7: b2:1b:29:f8:fb:07:ee:70:0b:ad:38:0e:b9:6e:1b: 85:22:fd:10:ad:16:27:04:3a:67:3c:9a:7b:16:a4: ef:cd:24:d4:04:67:8d:6d:bd:e6:96:b3:fc:5e:9a: 8c:65:9a:8c:af:3b:0d:58:f1:10:f6:f4:7c:32:bf: b1:f7:2c:ab:bb:c9:db:78:14:c0:5d:3b:2e:a5:74: 76:eb:f1:8f:f3:e6:cf:04:be:5b:10:ba:5e:b2:0a: dc:1b:c2:91:d6:d4:9b:78:92:f0:aa:66:ee:7b:6f: 3b:82:5e:9b:d5:c1:59:15:4e:4d:91:10:46:bb:3e: f1:22:8e:64:3b:26:a5:db:59:fa:ac:c8:6b:b6:38: b6:59:e2:1a:c2:ac:21:d4:f9:f2:e7:49:5f:f1:f2: e1:f8:80:a0:3b:2c:74:11:bd:79:91:02:90:65:b6: a6:b1:79:e5:47:9e:91:0f:d3:24:7a:10:c9:ea:a1: 15:01:05:9e:7d:c6:6e:9c:e0:ce:b0:88:bd:1f:af: 24:b6:c2:ca:77:23:ba:03:af:eb:b1:4e:c4:d4:d0: ff:31:1b:b5:3b:1d:8b:6b:62:d6:67:1f:4b:bf:c1: e9:d8:2f:ce:b3:24:39:ca:a0:a9:4c:a6:1b:f7:b2: 23:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A0:A3:5E:C0:B0:CA:AC:DA:33:34:8E:0C:6B:C6:EA:C9:3D:0E:AE X509v3 Authority Key Identifier: keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:91:19:83:eb:23:8f:17:22:07:ee:d4:70:a1:15:4b:45:dd: a4:9a:00:10:e3:b0:1b:b6:8b:26:3b:8c:40:cc:df:3d:19:1a: 39:ad:b4:3b:e9:3e:26:92:53:e9:29:c6:3b:70:de:73:14:4c: 27:6e:d3:22:b8:67:d8:e1:c9:05:3c:c9:85:e1:91:36:c3:dd: 5b:36:50:e5:a1:e1:34:45:e8:bf:e0:87:fc:41:ee:35:68:63: d3:2e:30:12:4c:51:dc:72:12:f7:17:35:fe:d5:fd:08:ee:5b: 47:4c:d9:ea:9c:d1:42:11:59:ac:89:ac:6b:52:79:5f:79:07: 5b:77:66:23:ed:0f:06:77:59:34:f9:25:f8:20:f1:71:1b:1a: 7e:b0:74:8f:7d:a8:7a:2b:66:6b:7e:18:94:c2:dd:ee:a9:6e: 53:6f:4a:ae:53:0a:9c:50:ac:4d:9e:57:34:84:bd:47:b4:a3: 00:75:2e:7b:9b:5c:ee:a9:14:12:a2:80:ac:e5:8b:bb:0f:03: e3:5a:00:24:09:35:b3:30:94:3b:9c:2b:d9:fd:ea:ee:a5:03: a8:0f:ee:b6:37:30:01:73:eb:19:34:dc:b1:66:bd:47:2a:79: 57:8a:8b:1b:5c:f8:09:a5:21:9a:91:f9:29:c0:65:eb:eb:4c: 89:4d:19:41 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUXZDIutbnEIfoUmSqoInkav0KthUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDAxYmEwMTNiYzFlNmQ4NmYwZDZkNThlYWZhNTRlMjdm YWRhMzQ0NDAeFw0yNDExMjIwMzA4NDBaFw0yNDExMjMwMzIzNDBaMDMxMTAvBgNV BAMTKDNGQTBBMzVFQzBCMENBQUNEQTMzMzQ4RTBDNkJDNkVBQzkzRDBFQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi0CW4rbKTaXJygSfx97IbKfj7 B+5wC604DrluG4Ui/RCtFicEOmc8mnsWpO/NJNQEZ41tveaWs/xemoxlmoyvOw1Y 8RD29Hwyv7H3LKu7ydt4FMBdOy6ldHbr8Y/z5s8EvlsQul6yCtwbwpHW1Jt4kvCq Zu57bzuCXpvVwVkVTk2REEa7PvEijmQ7JqXbWfqsyGu2OLZZ4hrCrCHU+fLnSV/x 8uH4gKA7LHQRvXmRApBltqaxeeVHnpEP0yR6EMnqoRUBBZ59xm6c4M6wiL0fryS2 wsp3I7oDr+uxTsTU0P8xG7U7HYtrYtZnH0u/wenYL86zJDnKoKlMphv3siMzAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUP6CjXsCwyqzaMzSODGvG6sk9Dq4wHwYDVR0j BBgwFoAU0BugE7webYbw1tWOr6VOJ/raNEQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYtNjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5 NDMxLzEvRDAxQkEwMTNCQzFFNkQ4NkYwRDZENThFQUZBNTRFMjdGQURBMzQ0NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBCdWdFN3dlYllidzF0V09yNlZPSl9y YU5FUS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hNTIyYTUyZi02 NTM0LTQxNjUtYTZhNy1lZjlmNzRlZjk0MzEvMS9EMDFCQTAxM0JDMUU2RDg2RjBE NkQ1OEVBRkE1NEUyN0ZBREEzNDQ0Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADZEZg+sjjxciB+7UcKEV S0XdpJoAEOOwG7aLJjuMQMzfPRkaOa20O+k+JpJT6SnGO3DecxRMJ27TIrhn2OHJ BTzJheGRNsPdWzZQ5aHhNEXov+CH/EHuNWhj0y4wEkxR3HIS9xc1/tX9CO5bR0zZ 6pzRQhFZrImsa1J5X3kHW3dmI+0PBndZNPkl+CDxcRsafrB0j32oeitma34YlMLd 7qluU29KrlMKnFCsTZ5XNIS9R7SjAHUue5tc7qkUEqKArOWLuw8D41oAJAk1szCU O5wr2f3q7qUDqA/utjcwAXPrGTTcsWa9Ryp5V4qLG1z4CaUhmpH5KcBl6+tMiU0Z QQ== -----END CERTIFICATE-----Generated at Fri Nov 22 04:37:20 2024 by rpki-client on console-fra.rpki-client.org