$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: 7OWLZkxXVxG0tgE4LZ6OCYYApoDlPh9rkvXHEhJoUEg= Subject key identifier: 45:0E:64:9D:9C:9F:85:9E:03:46:F3:DB:E7:E0:A9:C5:3F:22:B5:1C Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 497549B1C5641172376EC7DD8F2DCED0DEC9E469 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 6D Signing time: Sat 28 Sep 2024 18:43:22 +0000 Manifest this update: Sat 28 Sep 2024 18:38:22 +0000 Manifest next update: Sun 29 Sep 2024 18:59:22 +0000 Files and hashes: 1: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) 2: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: 2yKfO2WqsfZLWhFp8Vgn43JsqJJGZp0JL5E1MzApx8g=) 3: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: 5gKZW/GJ6szyeA660SSSZ04c5MFxaWdT28EUODZAZVs=) 4: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: jXKKUMSDIyTb4ezvVpRo3NFIUpia25d8OkLWehTc52I=) 5: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: 7H9TXOPmRSCpSLvpUH5h0kneMvmA5e0Xb9ByogPe2KE=) 6: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: W33AY8n66YBiKFAdMlU1PcWz7qog9dVaO6LUtxa3ULA=) 7: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: eJSksT4tbDIQ9nxZDstLl/kGIUJo4Eck2iH/dVXoJzg=) 8: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: HG36r4vz/yaR4qyqKD0qR0gHjc+XK/buF2kDeiM+dwU=) 9: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: Fa+HJyGeN4OUII4mISEevZUyzThis5w7MVhgz+1adr4=) 10: 326131333a393634343a32303a3a2f34382d3438203d3e203132333132.roa (hash: 3+1Cj2YYQvFDti9TBeADmbDCGIli4tXzwV0XZQcNkD4=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Sep 2024 14:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:75:49:b1:c5:64:11:72:37:6e:c7:dd:8f:2d:ce:d0:de:c9:e4:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Sep 28 18:38:22 2024 GMT Not After : Sep 29 18:59:22 2024 GMT Subject: CN=450E649D9C9F859E0346F3DBE7E0A9C53F22B51C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b6:a5:23:c5:77:02:00:22:81:f6:84:f0:85: 89:e1:c9:b3:32:ed:db:eb:fd:d7:ae:96:a9:34:1a: 72:f8:97:86:e9:f5:0e:db:cd:ef:c5:a1:0b:60:b1: b8:95:e0:e5:db:7d:dc:e0:ae:c2:de:d9:c9:bc:6d: 02:df:1f:56:37:ee:ee:e1:50:58:e0:f8:1f:dc:d1: 70:58:ec:6f:be:1f:7e:74:c5:60:11:c1:b4:2b:27: 6a:7c:00:5e:1a:d3:1e:8d:f2:8c:43:54:1e:b1:bb: 89:3d:2b:b4:77:95:b1:df:5b:a2:61:53:af:0b:95: ed:10:70:1e:cb:7f:fb:38:ff:f1:c0:5b:ba:9c:78: a3:26:27:77:b6:1c:79:a6:b8:50:8c:c4:3b:e3:59: 14:54:ce:df:06:ee:24:e3:9e:a6:c4:64:1c:b0:e2: 1b:35:06:3e:7b:b9:8d:91:dc:3d:df:7a:e9:0b:c3: ea:41:a5:9a:8b:25:40:44:16:d3:da:8a:05:3e:3f: 7a:f3:c0:62:de:cd:fe:15:53:0f:01:8e:5f:e1:de: d2:36:85:dc:77:19:de:4b:8a:bd:60:db:8b:aa:19: 77:9a:02:de:67:9b:90:63:4b:69:00:b2:d9:ac:5c: 5c:90:58:07:28:d9:fb:3d:f3:36:29:9c:be:9e:e0: 4e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:0E:64:9D:9C:9F:85:9E:03:46:F3:DB:E7:E0:A9:C5:3F:22:B5:1C X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:82:43:4b:27:77:92:51:e3:65:b6:0f:5c:3c:3b:b7:67:2a: 6e:7a:6c:db:ab:cc:0a:23:90:a0:de:06:43:1c:91:b9:2d:f5: 31:ac:f2:39:b2:e0:63:dc:56:c5:7a:57:3d:17:c2:c9:fd:6a: f3:44:51:55:b5:89:8b:10:39:a8:50:7f:2f:99:3b:14:e5:c6: 1c:2b:15:55:79:0a:cd:89:52:47:81:ea:18:7c:7c:55:51:3b: c6:46:78:c1:65:4e:40:59:f5:9e:0a:b8:d4:b2:20:1b:d0:d7: 7f:93:d5:46:b1:a0:4c:56:5b:2f:73:4b:26:82:5b:a5:54:04: 19:05:c5:bb:f5:dc:36:9e:21:f2:9f:26:12:89:67:21:30:16: ba:1b:0a:17:27:58:ca:e0:d3:6d:71:4d:65:7b:ca:d1:6f:b5: cb:89:63:e2:c8:d1:cd:b2:25:f6:95:c5:14:3d:cf:02:00:3e: f3:ee:20:9c:cc:ee:64:b6:5d:d2:c2:77:06:73:6a:5b:76:d7: 68:58:19:9d:e6:f7:17:76:ba:ba:38:aa:33:28:e6:b5:58:98: 49:88:24:3d:68:b1:c4:2a:45:ae:46:36:de:05:df:b3:34:d2: f2:f7:ac:f6:9a:40:5d:67:7f:88:96:23:4a:77:3c:29:e3:79: 75:f6:6d:32 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUSXVJscVkEXI3bsfdjy3O0N7J5GkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNDA5MjgxODM4MjJaFw0yNDA5MjkxODU5MjJaMDMxMTAvBgNV BAMTKDQ1MEU2NDlEOUM5Rjg1OUUwMzQ2RjNEQkU3RTBBOUM1M0YyMkI1MUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNtqUjxXcCACKB9oTwhYnhybMy 7dvr/deulqk0GnL4l4bp9Q7bze/FoQtgsbiV4OXbfdzgrsLe2cm8bQLfH1Y37u7h UFjg+B/c0XBY7G++H350xWARwbQrJ2p8AF4a0x6N8oxDVB6xu4k9K7R3lbHfW6Jh U68Lle0QcB7Lf/s4//HAW7qceKMmJ3e2HHmmuFCMxDvjWRRUzt8G7iTjnqbEZByw 4hs1Bj57uY2R3D3feukLw+pBpZqLJUBEFtPaigU+P3rzwGLezf4VUw8Bjl/h3tI2 hdx3Gd5Lir1g24uqGXeaAt5nm5BjS2kAstmsXFyQWAco2fs98zYpnL6e4E59AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQURQ5knZyfhZ4DRvPb5+CpxT8itRwwHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE4JDSyd3klHjZbYPXDw7 t2cqbnps26vMCiOQoN4GQxyRuS31MazyObLgY9xWxXpXPRfCyf1q80RRVbWJixA5 qFB/L5k7FOXGHCsVVXkKzYlSR4HqGHx8VVE7xkZ4wWVOQFn1ngq41LIgG9DXf5PV RrGgTFZbL3NLJoJbpVQEGQXFu/XcNp4h8p8mEolnITAWuhsKFydYyuDTbXFNZXvK 0W+1y4lj4sjRzbIl9pXFFD3PAgA+8+4gnMzuZLZd0sJ3BnNqW3bXaFgZneb3F3a6 ujiqMyjmtViYSYgkPWixxCpFrkY23gXfszTS8ves9ppAXWd/iJYjSnc8KeN5dfZt Mg== -----END CERTIFICATE-----Generated at Sat Sep 28 19:49:41 2024 by rpki-client on console-fra.rpki-client.org