$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: EE1Ra0taUZYH/+ZjhN5Nl2viVK+dgJkkXDZP/lWKptc= Subject key identifier: 3F:49:B2:4F:BF:8C:89:79:4A:97:41:25:C0:29:CF:94:7D:58:84:C9 Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 7DC205819DD3AC0166ED7D093797E52C6C3171DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: BB Signing time: Mon 25 Nov 2024 11:03:07 +0000 Manifest this update: Mon 25 Nov 2024 10:58:07 +0000 Manifest next update: Tue 26 Nov 2024 14:24:07 +0000 Files and hashes: 1: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: eJSksT4tbDIQ9nxZDstLl/kGIUJo4Eck2iH/dVXoJzg=) 2: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: DJLt/e/449v9r+KNwuaWwMzoJ+2R0sedCGgD71KEaIo=) 3: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: 7H9TXOPmRSCpSLvpUH5h0kneMvmA5e0Xb9ByogPe2KE=) 4: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: W33AY8n66YBiKFAdMlU1PcWz7qog9dVaO6LUtxa3ULA=) 5: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: Fa+HJyGeN4OUII4mISEevZUyzThis5w7MVhgz+1adr4=) 6: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: jXKKUMSDIyTb4ezvVpRo3NFIUpia25d8OkLWehTc52I=) 7: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: 5gKZW/GJ6szyeA660SSSZ04c5MFxaWdT28EUODZAZVs=) 8: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: 2yKfO2WqsfZLWhFp8Vgn43JsqJJGZp0JL5E1MzApx8g=) 9: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 26 Nov 2024 11:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:c2:05:81:9d:d3:ac:01:66:ed:7d:09:37:97:e5:2c:6c:31:71:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Nov 25 10:58:07 2024 GMT Not After : Nov 26 14:24:07 2024 GMT Subject: CN=3F49B24FBF8C89794A974125C029CF947D5884C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:62:cf:ab:75:d7:bf:5a:6b:11:d8:b3:d0: 75:1d:db:84:f8:84:c5:cd:57:8b:5a:d6:c9:3b:3c: ef:d9:ca:cf:7a:29:0b:aa:ee:06:4f:bc:53:ad:2d: ae:9f:f9:07:fe:f2:b2:48:62:3f:3f:d1:bf:c4:af: 6e:f5:de:ab:47:03:f8:41:d2:8b:ed:a0:b2:3e:10: 70:32:8c:4e:a9:d6:f0:9f:e2:3e:00:71:0d:3c:60: 9a:2c:05:18:c0:17:33:e7:ce:95:6e:0d:ec:a9:c5: aa:93:f7:46:e9:65:3a:25:59:44:76:5c:f9:da:4a: c7:d7:9c:ca:76:8a:35:73:3a:5f:f6:e5:01:2e:2c: d4:1b:fe:7d:69:ce:01:2a:ca:4b:51:99:ae:e2:bb: 9c:78:54:4e:99:db:ef:c0:23:10:3f:d7:f6:86:ed: c1:c9:03:1d:38:6b:a7:60:55:91:51:8c:77:af:8c: 05:6a:76:06:a1:23:b5:91:c2:01:11:e8:57:55:10: 52:19:40:48:f2:51:a7:46:4c:ee:bd:11:3a:bd:95: ed:17:84:5d:82:41:4d:d2:13:60:26:4b:0d:4b:51: 73:56:cf:be:aa:58:8f:2a:d1:82:20:48:ac:a0:9f: ef:cb:be:3f:4d:32:58:5b:81:b8:72:b8:66:96:be: 50:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:49:B2:4F:BF:8C:89:79:4A:97:41:25:C0:29:CF:94:7D:58:84:C9 X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:66:02:60:b5:b9:0d:b7:08:cf:09:75:5f:d5:5e:87:39:41: d3:6a:03:0a:8c:9f:91:43:47:07:e8:ec:03:6e:fe:c3:d7:22: 80:53:5c:f6:ce:ef:3b:6a:c1:8d:14:b5:a4:e8:cf:e8:39:b3: 33:ea:89:d0:ed:0e:9f:5b:58:79:36:c4:ab:5b:da:d4:19:23: cb:cf:b9:9f:80:5e:11:6b:07:bd:b4:5f:a8:ef:74:17:97:04: 08:31:1d:b6:07:2d:90:37:1c:ce:08:0d:70:2f:a0:a2:0e:a5: 72:87:66:75:2e:c3:03:1e:43:7d:29:9f:77:6a:38:49:87:17: 4d:86:64:dd:4a:7c:ef:77:8b:9e:94:c6:a5:a6:65:a5:d8:23: e6:a4:a9:c9:52:c7:fb:e0:63:a5:86:5d:40:96:2b:a9:ba:0a: 85:bf:89:f3:49:5d:3a:91:2b:05:b5:94:c8:67:b9:79:56:31: c7:33:40:a3:a4:ec:2a:6f:2e:cd:0d:5b:ec:e5:32:6b:10:69: e3:f0:ba:ef:ff:c2:02:e0:24:0d:66:48:44:57:28:05:95:cb: c7:d4:a3:80:98:cf:18:64:d2:bc:7a:8c:fb:39:a3:99:85:9e: 22:fc:62:b7:e1:0f:59:b9:f0:4a:c7:96:a0:23:0d:9e:1d:41: d4:aa:aa:ae -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUfcIFgZ3TrAFm7X0JN5flLGwxcdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNDExMjUxMDU4MDdaFw0yNDExMjYxNDI0MDdaMDMxMTAvBgNV BAMTKDNGNDlCMjRGQkY4Qzg5Nzk0QTk3NDEyNUMwMjlDRjk0N0Q1ODg0QzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7RmLPq3XXv1prEdiz0HUd24T4 hMXNV4ta1sk7PO/Zys96KQuq7gZPvFOtLa6f+Qf+8rJIYj8/0b/Er2713qtHA/hB 0ovtoLI+EHAyjE6p1vCf4j4AcQ08YJosBRjAFzPnzpVuDeypxaqT90bpZTolWUR2 XPnaSsfXnMp2ijVzOl/25QEuLNQb/n1pzgEqyktRma7iu5x4VE6Z2+/AIxA/1/aG 7cHJAx04a6dgVZFRjHevjAVqdgahI7WRwgER6FdVEFIZQEjyUadGTO69ETq9le0X hF2CQU3SE2AmSw1LUXNWz76qWI8q0YIgSKygn+/Lvj9NMlhbgbhyuGaWvlAFAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUP0myT7+MiXlKl0ElwCnPlH1YhMkwHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAq2YCYLW5DbcIzwl1X9Ve hzlB02oDCoyfkUNHB+jsA27+w9cigFNc9s7vO2rBjRS1pOjP6DmzM+qJ0O0On1tY eTbEq1va1Bkjy8+5n4BeEWsHvbRfqO90F5cECDEdtgctkDcczggNcC+gog6lcodm dS7DAx5DfSmfd2o4SYcXTYZk3Up873eLnpTGpaZlpdgj5qSpyVLH++BjpYZdQJYr qboKhb+J80ldOpErBbWUyGe5eVYxxzNAo6TsKm8uzQ1b7OUyaxBp4/C67//CAuAk DWZIRFcoBZXLx9SjgJjPGGTSvHqM+zmjmYWeIvxit+EPWbnwSseWoCMNnh1B1Kqq rg==Generated at Mon Nov 25 14:20:30 2024 by rpki-client on console-fra.rpki-client.org