$ rpki-client -vvf krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.mft File: 635C29FF238CC286AC1625A68EFCC04E2E460171.mft (raw, json) Hash identifier: S382k5AXigdWYqn7O+ofmo9er33g3Fh5jWt+woxioWQ= Subject key identifier: A3:FD:9C:A8:71:F2:5F:BB:12:91:F3:A0:EF:50:F8:3D:3B:01:2A:23 Authority key identifier: 63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71 Certificate issuer: /CN=635C29FF238CC286AC1625A68EFCC04E2E460171 Certificate serial: 3A448E901CE7791F695A52E320F44A916C7EBBD4 Authority info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer Subject info access: rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.mft Manifest number: EC Signing time: Fri 21 Jun 2024 16:45:16 +0000 Manifest this update: Fri 21 Jun 2024 16:40:16 +0000 Manifest next update: Sat 22 Jun 2024 16:54:16 +0000 Files and hashes: 1: 326130353a646663313a383930313a3a2f34382d3438203d3e20313939373636.roa (hash: GpUpkTMkavqbDpt0upSWmR/4RjpnKi888tIpKOqlbE4=) 2: 326130353a646663313a383930303a3a2f34382d3438203d3e203136353039.roa (hash: f85DXy8yBiJxNbf/E5hJps9t0vO8sa0Hifs3KBo+kIM=) 3: 635C29FF238CC286AC1625A68EFCC04E2E460171.crl (hash: 6PRu2WNOlgkg0HbQjLMf5knR1r1qUOJdolvzVv+ntPM=) 4: 326130353a646663313a383930313a3a2f34382d3438203d3e203136353039.roa (hash: fPF7N2jeRKJnTcZMZFKDQXCVgiaFNDI0Grk9ISzSyBg=) 5: 326130353a646663313a383930333a3a2f34382d3438203d3e20313939373636.roa (hash: uuTGEhAeGyU26jUVyq5CvdCVGF5bYkwRsfZUU8hPeCs=) 6: 326130353a646663313a383930303a3a2f34382d3438203d3e20313939373636.roa (hash: c5nkAZ/ShT+OHVbd5l5fKLOGr4UCdirZRPnJhMT4mgk=) 7: 326130353a646663313a383930323a3a2f34382d3438203d3e20313939373636.roa (hash: 5mYBCnb4GzurxkXg5f+OoBPkYQwPs12lpVzd2Gzk6Ik=) 8: 326130353a646663313a383930303a3a2f34342d3434203d3e20313939373636.roa (hash: iLxF/lqdqwnc+i0/8u5ohe9bBl/H2AiaIxAZn8wDA3g=) Validation: OK Signature path: rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.crl rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.mft rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 22 Jun 2024 07:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:44:8e:90:1c:e7:79:1f:69:5a:52:e3:20:f4:4a:91:6c:7e:bb:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=635C29FF238CC286AC1625A68EFCC04E2E460171 Validity Not Before: Jun 21 16:40:16 2024 GMT Not After : Jun 22 16:54:16 2024 GMT Subject: CN=A3FD9CA871F25FBB1291F3A0EF50F83D3B012A23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:34:ec:01:46:b5:eb:70:a8:0a:c9:a5:52:29: 41:36:40:32:cb:72:7c:fd:b9:69:c3:a8:74:7a:1f: e2:24:c2:3d:52:a6:17:21:15:5c:fa:d8:a7:95:da: ff:6f:7d:c1:89:fb:b2:ba:9c:6f:94:3c:7b:80:5b: 2c:81:de:2d:28:c3:a5:70:9d:8a:73:e8:35:90:9d: 02:b4:9b:00:03:1b:af:c2:f5:a3:12:e9:e2:9e:81: 7f:c0:82:21:15:83:0c:fe:9d:bd:32:d6:d7:10:62: d0:c9:05:94:52:92:cd:fa:c8:5e:ba:b7:9e:ef:da: 0a:e5:2b:c8:1a:4d:53:5e:e9:c2:8c:71:61:f1:ae: 3e:cf:1b:5c:8b:9f:6e:ea:e7:2f:b4:3f:8e:eb:3a: 1b:fb:77:7e:f6:61:b4:72:bb:18:d3:1a:5e:20:e1: d9:d6:04:bc:f3:68:1f:e9:b0:11:1a:99:53:d6:7e: 69:36:95:60:3e:35:15:c3:75:38:c1:02:89:48:2b: 24:03:30:6f:43:bb:57:05:fa:64:c5:6c:c8:0b:1d: 21:bd:a2:37:ef:44:11:d9:2d:af:cd:b9:4a:4d:96: 89:0d:7e:9b:69:4f:16:c7:0b:9a:8c:11:3e:78:ae: 6f:de:18:bc:89:ec:58:f9:49:6b:2a:cb:6c:d4:1a: 2b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:FD:9C:A8:71:F2:5F:BB:12:91:F3:A0:EF:50:F8:3D:3B:01:2A:23 X509v3 Authority Key Identifier: keyid:63:5C:29:FF:23:8C:C2:86:AC:16:25:A6:8E:FC:C0:4E:2E:46:01:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.crl Authority Information Access: CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/635C29FF238CC286AC1625A68EFCC04E2E460171.cer Subject Information Access: Signed Object - URI:rsync://krill.stonham.info/repo/Stonham/1/635C29FF238CC286AC1625A68EFCC04E2E460171.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:40:bd:73:e0:83:43:53:e7:73:f2:0f:b0:26:28:a7:f6:e7: d0:86:83:16:19:26:6e:13:7c:98:50:5a:00:f5:f8:a1:46:b4: d7:c5:2e:1f:eb:e7:06:98:d2:e1:6b:4c:a5:f9:71:2e:08:4d: cb:c9:87:92:80:88:c7:6c:5b:2d:49:64:60:67:8d:cf:e9:a9: 19:0b:ba:7d:77:1d:a6:a5:0b:e2:8b:d4:17:02:75:55:5b:10: c5:4d:52:50:a2:eb:a9:d2:98:72:de:24:4b:7c:21:96:80:d4: f4:6c:5e:8d:21:b9:bd:aa:87:85:26:a8:a8:49:a3:d4:52:f9: 12:94:dd:71:c8:63:22:ec:05:e0:be:d8:6e:12:73:6e:b1:cb: c5:fa:c1:ef:b7:8f:1e:fb:22:f0:13:d9:c2:93:79:cd:fb:f9: 7f:02:4a:5e:78:fe:f3:2b:e8:cf:e7:7b:91:c0:e6:41:ed:80: 3f:80:bf:f5:10:41:83:b0:69:a5:2d:ee:03:e2:f9:c7:61:6a: 81:08:af:34:c0:cd:0a:33:d9:76:e0:a0:a2:f8:c9:71:ba:25: f9:4e:e0:14:82:e2:d3:e3:29:51:a5:7a:de:57:19:0b:8f:28: e4:28:3a:79:f1:14:9d:f6:55:33:0f:21:47:bd:9d:7a:78:0a: 1f:25:e5:9b -----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIUOkSOkBzneR9pWlLjIPRKkWx+u9QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjM1QzI5RkYyMzhDQzI4NkFDMTYyNUE2OEVGQ0MwNEUy RTQ2MDE3MTAeFw0yNDA2MjExNjQwMTZaFw0yNDA2MjIxNjU0MTZaMDMxMTAvBgNV BAMTKEEzRkQ5Q0E4NzFGMjVGQkIxMjkxRjNBMEVGNTBGODNEM0IwMTJBMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3NOwBRrXrcKgKyaVSKUE2QDLL cnz9uWnDqHR6H+Ikwj1SphchFVz62KeV2v9vfcGJ+7K6nG+UPHuAWyyB3i0ow6Vw nYpz6DWQnQK0mwADG6/C9aMS6eKegX/AgiEVgwz+nb0y1tcQYtDJBZRSks36yF66 t57v2grlK8gaTVNe6cKMcWHxrj7PG1yLn27q5y+0P47rOhv7d372YbRyuxjTGl4g 4dnWBLzzaB/psBEamVPWfmk2lWA+NRXDdTjBAolIKyQDMG9Du1cF+mTFbMgLHSG9 ojfvRBHZLa/NuUpNlokNfptpTxbHC5qMET54rm/eGLyJ7Fj5SWsqy2zUGitlAgMB AAGjggIBMIIB/TAdBgNVHQ4EFgQUo/2cqHHyX7sSkfOg71D4PTsBKiMwHwYDVR0j BBgwFoAUY1wp/yOMwoasFiWmjvzATi5GAXEwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8va3JpbGwuc3RvbmhhbS5pbmZvL3JlcG8vU3Rv bmhhbS8xLzYzNUMyOUZGMjM4Q0MyODZBQzE2MjVBNjhFRkNDMDRFMkU0NjAxNzEu Y3JsMHoGCCsGAQUFBwEBBG4wbDBqBggrBgEFBQcwAoZecnN5bmM6Ly9jbG91ZGll LXJlcG8ucnBraS5hcHAvcmVwby9DTE9VRElFLVJQS0kvMC82MzVDMjlGRjIzOEND Mjg2QUMxNjI1QTY4RUZDQzA0RTJFNDYwMTcxLmNlcjByBggrBgEFBQcBCwRmMGQw YgYIKwYBBQUHMAuGVnJzeW5jOi8va3JpbGwuc3RvbmhhbS5pbmZvL3JlcG8vU3Rv bmhhbS8xLzYzNUMyOUZGMjM4Q0MyODZBQzE2MjVBNjhFRkNDMDRFMkU0NjAxNzEu bWZ0MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQ MAYEAgABBQAwBgQCAAIFADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3 DQEBCwUAA4IBAQCIQL1z4INDU+dz8g+wJiin9ufQhoMWGSZuE3yYUFoA9fihRrTX xS4f6+cGmNLha0yl+XEuCE3LyYeSgIjHbFstSWRgZ43P6akZC7p9dx2mpQvii9QX AnVVWxDFTVJQouup0phy3iRLfCGWgNT0bF6NIbm9qoeFJqioSaPUUvkSlN1xyGMi 7AXgvthuEnNuscvF+sHvt48e+yLwE9nCk3nN+/l/AkpeeP7zK+jP53uRwOZB7YA/ gL/1EEGDsGmlLe4D4vnHYWqBCK80wM0KM9l24KCi+MlxuiX5TuAUguLT4ylRpXre VxkLjyjkKDp58RSd9lUzDyFHvZ16eAofJeWb -----END CERTIFICATE-----Generated at Fri Jun 21 19:26:06 2024 by rpki-client on console.sobornost.net