$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft File: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft (raw, json) Hash identifier: PUEWRMLuoKDOtT8ttpJSaso0xvAKLXGjl9KMM7twEas= Subject key identifier: 4E:CB:CA:1A:8F:85:1B:D5:14:91:2F:9C:FE:E9:B5:D9:DA:4D:6C:2A Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 2A5AEA28870C58B1E7EDAC585FCF71B219CCE3E3 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft Manifest number: 016D Signing time: Thu 03 Apr 2025 23:50:20 +0000 Manifest this update: Thu 03 Apr 2025 23:45:18 +0000 Manifest next update: Sat 05 Apr 2025 02:35:18 +0000 Files and hashes: 1: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (hash: JfPLPRAt2VAp3nl2F0n1tbo6w9Newb0Wr4PBuXgYvr8=) 2: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (hash: ClVHvr7GojPar4zAMCD4eI2tBACybHPAaOLXDJDUg04=) 3: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl (hash: fQAuXldLH1Uh1YoiNi6HInkDyMMKxwhf38nAfvmpAgM=) 4: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (hash: peEWNd0YL6h2f+IuETNQmau2DbuDTFrugtWV/YFAw0I=) 5: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (hash: i2iB6YVLT5JYbpw54S9VrpRYgnjxp0KAmu7VBiJDogE=) 6: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (hash: bGVhhAjrSr3hrPp0uo7loREHTNsf8cdWrceDPcnFXQ8=) 7: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (hash: K9EknQecR357zyEbt4Ik18qSt5faBYxt5/KQfQFvBXQ=) Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:35:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:5a:ea:28:87:0c:58:b1:e7:ed:ac:58:5f:cf:71:b2:19:cc:e3:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Apr 3 23:45:18 2025 GMT Not After : Apr 5 02:35:18 2025 GMT Subject: CN=4ECBCA1A8F851BD514912F9CFEE9B5D9DA4D6C2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d3:69:71:23:d8:96:1c:8c:a3:4b:8b:ec:07: 97:60:85:d6:4a:e4:cb:04:91:9c:5b:fc:1f:7e:65: ca:8f:d3:e4:93:c9:5b:53:e5:4b:dc:b7:a3:8f:e7: d5:21:c1:63:f1:ec:62:13:96:75:e7:98:2a:08:93: f5:e8:df:2f:2b:28:a4:07:b2:e1:85:ea:4e:52:4d: 51:d2:b3:b9:db:a1:ea:fa:10:c1:be:f6:cc:25:24: d3:b7:02:e4:f6:ed:24:84:95:83:95:a6:c1:2d:c0: c1:95:4f:28:b3:7b:55:4d:d3:97:5a:7c:4a:25:74: 10:d1:5d:50:e1:55:5f:df:0a:58:49:9c:fc:cf:ad: 99:dd:30:2d:e2:07:50:dd:ce:c7:cf:fe:9b:d2:3d: 67:4a:36:a8:0d:3b:94:f3:33:75:c2:00:c1:b7:11: 3d:b5:be:d1:8b:8b:87:22:71:d7:d0:3a:54:0a:a5: 0c:88:fd:32:bb:c2:42:45:40:cb:fb:1a:8a:8c:89: 0a:9e:7f:99:23:29:9f:2e:ba:33:11:98:80:4b:07: 38:b4:8e:de:c8:65:ee:ff:9d:dd:5d:43:51:1e:11: ef:1d:f6:81:79:05:95:13:3d:cf:04:7c:6e:93:21: 03:c8:a3:e6:92:c6:52:64:db:07:33:a8:1a:1f:c9: 8c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CB:CA:1A:8F:85:1B:D5:14:91:2F:9C:FE:E9:B5:D9:DA:4D:6C:2A X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f9:62:08:2b:a2:49:c7:84:bb:c1:c9:93:cf:a5:63:10:88: 9e:d1:c8:58:b5:4e:96:68:73:de:3b:64:29:7f:10:3f:e8:2c: 99:b3:bf:50:83:1a:53:05:79:1b:3a:87:1c:d3:1d:cc:64:87: 23:d3:71:c6:42:9f:a2:cd:ab:1c:98:e8:dd:bc:a7:bc:f8:c7: 76:ab:39:f4:1d:01:ec:15:68:7b:00:98:8c:78:d9:ce:76:a6: 39:c3:45:6d:f9:8d:c2:87:56:a8:0a:2b:99:5d:75:61:c5:0f: 55:a5:05:ff:0d:59:f5:20:b2:5f:3b:f1:1e:ec:ad:8f:f5:1f: 99:2f:cb:d5:be:48:73:59:05:a8:47:e0:c4:3d:d8:c0:e2:fc: 69:e4:30:c8:e3:a9:6c:d8:1a:d3:c5:77:b6:3f:e4:a5:dc:b0: f2:7b:63:36:e8:10:44:dc:0f:0e:88:34:40:8a:59:76:3c:e7: 64:85:ae:93:93:2a:b3:b7:a8:47:53:a0:a2:8b:f6:e6:6f:08: bb:62:37:bb:a0:58:3d:35:2d:10:ff:07:d5:1f:1c:04:67:83: d8:93:56:93:02:d3:24:0e:04:e8:8c:4e:53:32:6d:a9:b2:39: 24:42:96:ef:d3:44:aa:55:a1:77:47:20:0d:bf:27:fd:e3:43: 16:9d:ef:d7 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUKlrqKIcMWLHn7axYX89xshnM4+MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNTA0MDMyMzQ1MThaFw0yNTA0MDUwMjM1MThaMDMxMTAvBgNV BAMTKDRFQ0JDQTFBOEY4NTFCRDUxNDkxMkY5Q0ZFRTlCNUQ5REE0RDZDMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs02lxI9iWHIyjS4vsB5dghdZK 5MsEkZxb/B9+ZcqP0+STyVtT5Uvct6OP59UhwWPx7GITlnXnmCoIk/Xo3y8rKKQH suGF6k5STVHSs7nboer6EMG+9swlJNO3AuT27SSElYOVpsEtwMGVTyize1VN05da fEoldBDRXVDhVV/fClhJnPzPrZndMC3iB1DdzsfP/pvSPWdKNqgNO5TzM3XCAMG3 ET21vtGLi4cicdfQOlQKpQyI/TK7wkJFQMv7GoqMiQqef5kjKZ8uujMRmIBLBzi0 jt7IZe7/nd1dQ1EeEe8d9oF5BZUTPc8EfG6TIQPIo+aSxlJk2wczqBofyYzVAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUTsvKGo+FG9UUkS+c/um12dpNbCowHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBmgYIKwYBBQUHAQsEgY0wgYowgYcGCCsGAQUFBzALhnty c3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQvcmVwby9ycGtpX2NhXzI1NDA1 Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAvM0I4NkE0QTQ1MzgwQzZENDU1 Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAD35YggroknHhLvByZPP pWMQiJ7RyFi1TpZoc947ZCl/ED/oLJmzv1CDGlMFeRs6hxzTHcxkhyPTccZCn6LN qxyY6N28p7z4x3arOfQdAewVaHsAmIx42c52pjnDRW35jcKHVqgKK5lddWHFD1Wl Bf8NWfUgsl878R7srY/1H5kvy9W+SHNZBahH4MQ92MDi/GnkMMjjqWzYGtPFd7Y/ 5KXcsPJ7YzboEETcDw6INECKWXY852SFrpOTKrO3qEdToKKL9uZvCLtiN7ugWD01 LRD/B9UfHARng9iTVpMC0yQOBOiMTlMybamyOSRClu/TRKpVoXdHIA2/J/3jQxad 79c= -----END CERTIFICATE-----Generated at Fri Apr 4 17:29:20 2025 by rpki-client