$ rpki-client -vvf chloe.sobornost.net/rpki/RIPE-nljobsnijders/cb/t7xg6ZtXdcYhy-YGTMk_ONTD31E.mft File: t7xg6ZtXdcYhy-YGTMk_ONTD31E.mft (raw, json) Hash identifier: 3XUa7Ib8pOo+rXYgUSradZCJI1O0qRjFfu5JqiUCW14= Subject key identifier: 54:00:74:8A:CA:D9:1E:4C:7F:6D:A5:65:AF:23:FF:5A:8B:D6:89:F0 Authority key identifier: B7:BC:60:E9:9B:57:75:C6:21:CB:E6:06:4C:C9:3F:38:D4:C3:DF:51 Certificate issuer: /CN=B7BC60E99B5775C621CBE6064CC93F38D4C3DF51 Certificate serial: 32ED Authority info access: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/t7xg6ZtXdcYhy-YGTMk_ONTD31E.cer Subject info access: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/cb/t7xg6ZtXdcYhy-YGTMk_ONTD31E.mft Manifest number: 32EB Signing time: Tue 09 Jan 2024 14:49:53 +0000 Manifest this update: Tue 09 Jan 2024 14:49:53 +0000 Manifest next update: Tue 09 Jan 2024 20:49:53 +0000 Files and hashes: 1: 5EjPZ8Kw2_h5hRqKpwmjdnq7Tq8.roa (hash: NFzQYsvSF+8jLhUXGuVwQ4NNoMyfrJnJbW6DNmbtXRc=) 2: VZgMGXDlMc_DQX3QkQKbaQ0K8vM.gbr (hash: VdDxMYhg8Go2z9xXDkf8db5I2OPKcq29PUaPETAoJAU=) 3: t7xg6ZtXdcYhy-YGTMk_ONTD31E.crl (hash: GXtBwNcEI6dZiuHqSfzEAybX8H28aCCwP3lvMnFv7bo=) 4: xN0RuVE3ZOUygQ9nxKfePJb1Jmo.roa (hash: gpcuKFdrn205W/v5w8JuRovGrWJVbrVJ+Q9VlOjJP+c=) Validation: OK Signature path: rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/cb/t7xg6ZtXdcYhy-YGTMk_ONTD31E.crl rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/cb/t7xg6ZtXdcYhy-YGTMk_ONTD31E.mft rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/t7xg6ZtXdcYhy-YGTMk_ONTD31E.cer rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.crl rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/yqgF26w2R0m5sRVZCrbvD5cM29g.mft rsync://rpki.ripe.net/repository/DEFAULT/yqgF26w2R0m5sRVZCrbvD5cM29g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.crl rsync://rpki.ripe.net/repository/aca/Kn3R14fXk-TIr1bhl9Tu2Sr2uhM.mft rsync://rpki.ripe.net/repository/2a7dd1d787d793e4c8af56e197d4eed92af6ba13.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Jan 2024 20:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13037 (0x32ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B7BC60E99B5775C621CBE6064CC93F38D4C3DF51 Validity Not Before: Jan 9 14:49:53 2024 GMT Not After : Apr 12 04:01:44 2024 GMT Subject: CN=5400748ACAD91E4C7F6DA565AF23FF5A8BD689F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:14:42:3c:0f:3d:d2:9e:c1:3f:c1:11:45:ae: bd:2f:63:78:5e:de:b9:52:ce:61:38:a9:f9:87:0b: 84:60:0f:49:e1:14:c8:91:76:da:33:e6:14:88:a4: 94:20:9b:01:a7:80:fe:9d:28:6a:dc:bc:42:c5:05: 74:86:f5:66:c5:9c:5f:d1:9c:f8:d5:e4:58:96:98: e5:a2:8e:90:f2:f0:75:de:72:c1:41:25:2b:ec:52: 77:ed:52:ff:31:45:7d:26:38:07:21:ad:6f:75:d8: f1:6f:6f:73:60:82:22:14:26:fa:d2:46:73:c1:39: d1:52:14:d3:59:b8:19:89:34:7f:2d:4e:65:a9:1e: 9e:b6:3e:65:3b:f6:c2:05:09:ee:36:bd:82:ad:c3: 7f:19:62:4e:27:27:26:35:9b:c4:b5:05:e5:e0:d9: 02:1e:82:06:0e:dd:5b:1b:0b:d8:14:19:23:03:74: ec:b3:2b:69:a4:a9:ee:c3:a4:c8:cb:dc:9e:ad:86: 60:2e:53:72:ad:84:80:31:77:2b:a3:ec:c2:da:ed: e2:9b:4b:fd:68:57:0e:ad:f0:bc:14:0d:d6:65:6f: 2b:70:cf:72:f0:88:52:ed:ef:79:eb:10:eb:59:1b: 9e:42:b5:81:03:d1:97:79:47:93:a3:71:a3:cb:4b: 26:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:00:74:8A:CA:D9:1E:4C:7F:6D:A5:65:AF:23:FF:5A:8B:D6:89:F0 X509v3 Authority Key Identifier: keyid:B7:BC:60:E9:9B:57:75:C6:21:CB:E6:06:4C:C9:3F:38:D4:C3:DF:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/cb/t7xg6ZtXdcYhy-YGTMk_ONTD31E.crl Authority Information Access: CA Issuers - URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/t7xg6ZtXdcYhy-YGTMk_ONTD31E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://chloe.sobornost.net/rpki/RIPE-nljobsnijders/cb/t7xg6ZtXdcYhy-YGTMk_ONTD31E.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:e5:ff:50:5f:24:d5:0f:3d:e7:33:08:48:71:47:6a:a1:48: ab:98:da:1c:29:61:c7:eb:03:fc:bb:7b:28:5b:db:15:93:5f: b1:91:70:85:d2:ab:77:03:59:b1:f1:d2:de:2f:2f:81:98:a2: a0:8b:9d:6b:28:ca:7a:b6:d0:de:05:33:6d:ea:43:05:6e:1c: 78:96:49:db:76:af:1a:84:c5:11:29:21:09:0d:3e:f9:74:4b: b4:6c:b0:0a:12:14:64:4f:97:84:77:37:d3:b8:2c:da:18:a2: 7c:1e:28:dd:38:e8:22:53:e3:d2:17:19:66:b5:a1:f3:95:8f: 51:8f:05:8d:b7:2c:fd:18:c6:88:d3:38:52:ba:1a:27:74:f8: 46:d0:95:ca:96:d1:79:13:dd:81:c6:84:a4:34:af:17:2e:0a: 4a:ba:6c:8d:cd:d8:e5:4a:c4:16:f2:84:86:37:23:b2:d2:cc: 99:31:63:49:cc:b7:f0:97:ac:ff:78:95:08:24:5d:91:00:fa: 14:5d:28:f0:a3:e8:f3:c7:02:26:76:e1:21:23:03:70:da:fd: 3d:bb:be:c7:1e:77:69:d4:c3:f2:1e:e5:ec:4e:a2:04:38:c4: 14:ab:26:0c:b7:02:3b:69:39:bb:66:93:02:75:3c:39:0e:e1: 00:c9:ac:c2 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICMu0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjdC QzYwRTk5QjU3NzVDNjIxQ0JFNjA2NENDOTNGMzhENEMzREY1MTAeFw0yNDAxMDkx NDQ5NTNaFw0yNDA0MTIwNDAxNDRaMDMxMTAvBgNVBAMTKDU0MDA3NDhBQ0FEOTFF NEM3RjZEQTU2NUFGMjNGRjVBOEJENjg5RjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwFEI8Dz3SnsE/wRFFrr0vY3he3rlSzmE4qfmHC4RgD0nhFMiR dtoz5hSIpJQgmwGngP6dKGrcvELFBXSG9WbFnF/RnPjV5FiWmOWijpDy8HXecsFB JSvsUnftUv8xRX0mOAchrW912PFvb3NggiIUJvrSRnPBOdFSFNNZuBmJNH8tTmWp Hp62PmU79sIFCe42vYKtw38ZYk4nJyY1m8S1BeXg2QIeggYO3VsbC9gUGSMDdOyz K2mkqe7DpMjL3J6thmAuU3KthIAxdyuj7MLa7eKbS/1oVw6t8LwUDdZlbytwz3Lw iFLt73nrEOtZG55CtYED0Zd5R5OjcaPLSyYJAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUVAB0isrZHkx/baVlryP/WovWifAwHwYDVR0jBBgwFoAUt7xg6ZtXdcYhy+YG TMk/ONTD31EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBnBgNVHR8EYDBeMFyg WqBYhlZyc3luYzovL2NobG9lLnNvYm9ybm9zdC5uZXQvcnBraS9SSVBFLW5sam9i c25pamRlcnMvY2IvdDd4ZzZadFhkY1loeS1ZR1RNa19PTlREMzFFLmNybDBvBggr BgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vY2hsb2Uuc29ib3Jub3N0 Lm5ldC9ycGtpL1JJUEUtbmxqb2JzbmlqZGVycy90N3hnNlp0WGRjWWh5LVlHVE1r X09OVEQzMUUuY2VyMA4GA1UdDwEB/wQEAwIHgDByBggrBgEFBQcBCwRmMGQwYgYI KwYBBQUHMAuGVnJzeW5jOi8vY2hsb2Uuc29ib3Jub3N0Lm5ldC9ycGtpL1JJUEUt bmxqb2JzbmlqZGVycy9jYi90N3hnNlp0WGRjWWh5LVlHVE1rX09OVEQzMUUubWZ0 MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgAB BQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXOX/UF8k1Q895zMISHFHaqFI q5jaHClhx+sD/Lt7KFvbFZNfsZFwhdKrdwNZsfHS3i8vgZiioIudayjKerbQ3gUz bepDBW4ceJZJ23avGoTFESkhCQ0++XRLtGywChIUZE+XhHc307gs2hiifB4o3Tjo IlPj0hcZZrWh85WPUY8Fjbcs/RjGiNM4UroaJ3T4RtCVypbReRPdgcaEpDSvFy4K Srpsjc3Y5UrEFvKEhjcjstLMmTFjScy38Jes/3iVCCRdkQD6FF0o8KPo88cCJnbh ISMDcNr9Pbu+xx53adTD8h7l7E6iBDjEFKsmDLcCO2k5u2aTAnU8OQ7hAMmswg== -----END CERTIFICATE-----Generated at Tue Jan 9 15:58:02 2024 by rpki-client on console.sobornost.net