$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: KGa6YrFbUnQLaM/FJEKYToHQTLrabZLCkvvyHq0FYbI= Subject key identifier: 43:56:2C:C9:07:43:12:F9:CA:76:D2:F5:85:98:C0:2B:D7:1D:0F:42 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 1A992C6A47175D096F41321B1C31E87BDF7E6A4D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 030D Signing time: Sat 19 Apr 2025 15:19:04 +0000 Manifest this update: Sat 19 Apr 2025 15:14:04 +0000 Manifest next update: Sun 20 Apr 2025 15:43:04 +0000 Files and hashes: 1: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=) 2: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: 6EGghbAmxP19J+e5TJMGvDqpzzh70WLLQNv2uE0emmc=) 3: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=) 4: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 20 Apr 2025 13:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:99:2c:6a:47:17:5d:09:6f:41:32:1b:1c:31:e8:7b:df:7e:6a:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Apr 19 15:14:04 2025 GMT Not After : Apr 20 15:43:04 2025 GMT Subject: CN=43562CC9074312F9CA76D2F58598C02BD71D0F42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a8:11:4b:0b:5c:2a:4f:55:e0:91:d7:13:ab: 9a:ed:8f:b6:fd:9b:f6:d7:54:f3:09:63:a1:2f:2a: ee:85:c2:78:05:2d:34:cd:0c:ec:1d:f7:6a:10:ce: 7e:be:50:4a:c7:74:e8:97:34:1a:b2:c9:cc:88:21: 34:09:8f:c6:49:67:a3:5a:dc:8d:ba:3c:ce:76:69: 8f:18:60:e3:15:8e:40:2a:16:62:0a:4e:0c:80:fe: d1:53:5c:d1:cd:ec:3e:da:c3:a9:40:4c:4f:6f:cb: 8e:7b:75:71:d2:d7:44:ce:76:24:71:ed:eb:eb:14: fd:00:cd:ea:5d:f3:d3:b3:2a:15:51:e7:b3:0c:31: 84:1a:f3:b8:73:5a:5a:f3:1e:06:ac:3e:4c:be:66: 14:d6:58:47:8a:23:07:82:52:d7:cb:8c:f6:61:ca: ac:a4:a5:72:00:b3:77:58:77:3c:b4:67:9e:64:e4: 32:fe:1f:66:dc:68:e0:b7:a0:c9:6b:7c:21:fc:30: d7:7e:1e:35:50:2b:fb:9c:f7:5e:0a:84:17:d6:e1: 90:8c:93:b2:6c:7e:83:67:32:6b:3d:7c:ee:c8:75: 10:03:a8:a4:1c:c9:6a:0f:cb:24:68:ed:36:13:b0: 41:41:b3:80:50:da:58:8f:f4:0b:49:39:23:8f:45: ac:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:56:2C:C9:07:43:12:F9:CA:76:D2:F5:85:98:C0:2B:D7:1D:0F:42 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:be:40:10:2b:6a:0f:0e:15:5d:8a:b2:82:52:e6:43:8d:f5: 84:c6:72:e5:19:d3:52:3d:8f:37:c4:6d:14:29:e2:c3:e1:cb: 89:c0:ad:50:10:32:21:ec:09:d3:50:df:8c:1a:b3:d3:f9:c0: 66:cf:a2:ea:27:35:b8:07:f8:c9:d3:da:8f:08:8b:41:81:c4: 42:94:70:3f:59:cb:89:b9:f7:6b:7c:74:f3:60:51:8b:d0:33: 0d:63:d4:ae:c9:b3:8a:b9:d3:a7:66:73:20:d8:84:82:b8:17: 3c:8b:89:a4:f8:cc:70:ed:20:29:86:84:75:e4:b6:13:d3:cf: 05:c6:08:a8:8f:b7:41:7a:ba:7d:a8:1e:c1:ca:a7:ca:b2:ec: 0a:d5:11:ec:66:47:5f:dc:4b:33:2a:6b:ce:d8:a5:d4:c3:8e: df:1c:85:62:bb:b4:d9:8e:fd:fd:25:40:7b:09:3e:93:2b:22: f4:63:16:2f:61:a7:b9:5d:7d:68:4a:10:cb:f9:6e:b9:87:64: 75:f1:ef:7a:56:b8:ea:b1:42:b2:1c:cf:9e:7f:0b:bd:de:d8: d2:e7:31:1e:ab:58:ca:e0:ba:91:f8:c0:20:89:fa:6c:94:fa: 93:27:88:b9:e2:9c:d5:64:80:13:3f:e5:66:62:ff:2d:c2:21: 57:da:f9:2b -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUGpksakcXXQlvQTIbHDHoe99+ak0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTA0MTkxNTE0MDRaFw0yNTA0MjAxNTQzMDRaMDMxMTAvBgNV BAMTKDQzNTYyQ0M5MDc0MzEyRjlDQTc2RDJGNTg1OThDMDJCRDcxRDBGNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdqBFLC1wqT1XgkdcTq5rtj7b9 m/bXVPMJY6EvKu6FwngFLTTNDOwd92oQzn6+UErHdOiXNBqyycyIITQJj8ZJZ6Na 3I26PM52aY8YYOMVjkAqFmIKTgyA/tFTXNHN7D7aw6lATE9vy457dXHS10TOdiRx 7evrFP0Azepd89OzKhVR57MMMYQa87hzWlrzHgasPky+ZhTWWEeKIweCUtfLjPZh yqykpXIAs3dYdzy0Z55k5DL+H2bcaOC3oMlrfCH8MNd+HjVQK/uc914KhBfW4ZCM k7JsfoNnMms9fO7IdRADqKQcyWoPyyRo7TYTsEFBs4BQ2liP9AtJOSOPRayfAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUQ1YsyQdDEvnKdtL1hZjAK9cdD0IwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaL5AECtqDw4VXYqyglLm Q431hMZy5RnTUj2PN8RtFCniw+HLicCtUBAyIewJ01DfjBqz0/nAZs+i6ic1uAf4 ydPajwiLQYHEQpRwP1nLibn3a3x082BRi9AzDWPUrsmzirnTp2ZzINiEgrgXPIuJ pPjMcO0gKYaEdeS2E9PPBcYIqI+3QXq6fagewcqnyrLsCtUR7GZHX9xLMyprztil 1MOO3xyFYru02Y79/SVAewk+kysi9GMWL2GnuV19aEoQy/luuYdkdfHvela46rFC shzPnn8Lvd7Y0ucxHqtYyuC6kfjAIIn6bJT6kyeIueKc1WSAEz/lZmL/LcIhV9r5 Kw== -----END CERTIFICATE-----Generated at Sat Apr 19 17:15:03 2025 by rpki-client