$ rpki-client -vvf rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft File: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft (raw, json) Hash identifier: 0bMliyNbdgpFBr/G8GFn2hDCd5sfvKoeNsf02xmSzVk= Subject key identifier: 6D:2A:62:52:38:94:68:18:F7:FC:A6:58:E8:C8:B4:DA:52:54:2C:32 Authority key identifier: 3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 Certificate issuer: /CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Certificate serial: 71CD0DF7A134D9E8389C4B5B0A4BC3EEEA9F8064 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject info access: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft Manifest number: 01C0 Signing time: Fri 06 Jun 2025 07:57:02 +0000 Manifest this update: Fri 06 Jun 2025 07:52:00 +0000 Manifest next update: Sat 07 Jun 2025 11:28:00 +0000 Files and hashes: 1: 326131313a663263303a666664343a3a2f34362d3436203d3e20323135303639.roa (hash: peEWNd0YL6h2f+IuETNQmau2DbuDTFrugtWV/YFAw0I=) 2: 326131313a663263303a666664643a3a2f34382d3438203d3e20323135303639.roa (hash: bGVhhAjrSr3hrPp0uo7loREHTNsf8cdWrceDPcnFXQ8=) 3: 3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl (hash: DTcGFbdsqKN+VyGHLE4jKTnUxUfnJ8qGDy46iqbIbQA=) 4: 326131313a663263303a666664653a3a2f34382d3438203d3e20323135303639.roa (hash: ClVHvr7GojPar4zAMCD4eI2tBACybHPAaOLXDJDUg04=) 5: 326131313a663263303a666664633a3a2f34382d3438203d3e20323135303639.roa (hash: K9EknQecR357zyEbt4Ik18qSt5faBYxt5/KQfQFvBXQ=) 6: 326131313a663263303a666664303a3a2f34382d3438203d3e20323135303639.roa (hash: i2iB6YVLT5JYbpw54S9VrpRYgnjxp0KAmu7VBiJDogE=) 7: 326131313a663263303a666664313a3a2f34382d3438203d3e20323135303639.roa (hash: JfPLPRAt2VAp3nl2F0n1tbo6w9Newb0Wr4PBuXgYvr8=) Validation: OK Signature path: rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.crl rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/0839A93DAB544C296FFA143456844A8B2818B1D0.mft rsync://rpki.ripe.net/repository/DEFAULT/CDmpPatUTClv-hQ0VoRKiygYsdA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 02:50:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:cd:0d:f7:a1:34:d9:e8:38:9c:4b:5b:0a:4b:c3:ee:ea:9f:80:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3B86A4A45380C6D455CDE580DED1BC5612D0A578 Validity Not Before: Jun 6 07:52:00 2025 GMT Not After : Jun 7 11:28:00 2025 GMT Subject: CN=6D2A625238946818F7FCA658E8C8B4DA52542C32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d6:e1:2b:64:49:2e:61:15:6c:ff:1a:2d:0a: 33:e3:64:30:8c:6d:05:c7:c7:3c:93:18:ef:a1:c2: e0:bf:c5:59:a1:df:84:01:1d:66:97:9d:b0:6a:49: 55:ce:93:e2:47:8d:48:7d:3e:e9:2e:37:ce:40:92: 61:e8:77:2e:39:11:d0:fb:6b:02:b7:88:71:a2:fd: cf:70:34:1d:1f:99:11:6e:d5:f6:27:2c:44:af:f4: 9b:81:93:d1:35:29:8c:19:d8:37:c7:ab:e0:29:b0: b5:60:f5:87:ef:b5:7f:21:f0:3d:9f:27:48:7f:64: 7d:78:38:54:ef:ec:50:9b:60:c4:76:5f:ff:4a:5b: 6e:56:c4:32:5a:72:50:72:fd:0a:a6:60:17:4b:56: 17:90:d4:fb:b7:b2:fc:8a:58:da:db:29:a8:f3:fe: 75:3c:e0:c4:6e:f3:0e:5f:a7:20:0b:bf:e0:83:b4: a3:0b:6d:d8:63:ec:f5:43:75:20:67:6e:1c:b8:5c: 85:c2:11:c0:5b:44:2d:f9:9d:82:b0:e4:1e:6e:55: 1e:e5:d9:10:31:38:43:f3:8f:a0:10:c6:7b:6f:40: 42:11:28:28:4b:0c:07:05:ad:fb:e2:c8:f8:b1:88: 32:48:12:6d:6c:de:f1:72:e6:01:be:ca:02:e6:1b: 89:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2A:62:52:38:94:68:18:F7:FC:A6:58:E8:C8:B4:DA:52:54:2C:32 X509v3 Authority Key Identifier: keyid:3B:86:A4:A4:53:80:C6:D4:55:CD:E5:80:DE:D1:BC:56:12:D0:A5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/dde837fb-6390-41b5-82a0-f0d02c03a2c6/7/3B86A4A45380C6D455CDE580DED1BC5612D0A578.cer Subject Information Access: Signed Object - URI:rsync://rpki-repo.as207960.net/repo/rpki_ca_25405c76c7a043c89ace167e9d2cf79c/0/3B86A4A45380C6D455CDE580DED1BC5612D0A578.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:53:49:18:a3:de:f9:08:4d:80:cd:5c:cd:5d:83:67:cf:86: 4c:c5:1d:17:9b:aa:e4:92:16:40:f7:3a:33:d1:6e:7c:11:8e: df:a3:36:77:0f:7d:3d:75:b4:c9:8a:d1:d5:ab:b1:bc:73:06: 1a:d0:6c:64:0c:5a:8f:d1:12:4a:23:69:a6:06:d5:aa:28:a9: 13:f9:14:ca:15:ea:a5:0b:75:b1:3b:df:47:34:45:45:78:f7: 93:6c:bf:d9:8a:77:bc:a0:60:05:5e:17:ea:f5:e6:15:70:e6: ae:18:69:3c:62:73:1f:79:02:b0:08:15:a4:b7:74:4f:37:de: 7a:8d:1c:d5:02:21:be:f4:67:e3:8c:24:32:e1:a4:36:1c:18: 2a:d9:24:7c:f0:54:cf:12:b9:da:2b:89:df:41:98:c3:01:b4: b0:e4:64:b4:30:78:b4:4a:66:33:ae:02:49:bb:d7:fd:bc:2c: 4b:3c:dc:be:ad:45:0f:59:a7:8a:f6:64:2e:a9:d4:96:41:63: 5f:83:60:26:af:80:a6:a3:48:6a:05:43:04:e9:2e:07:f4:86: 4e:53:41:c4:f7:47:24:b8:4c:b7:0e:ab:e5:79:b2:f7:87:d8: 40:18:79:20:fb:23:2c:33:c6:42:5e:8a:d6:fa:b2:d5:d0:71: db:b6:b3:90 -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUcc0N96E02eg4nEtbCkvD7uqfgGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYx MkQwQTU3ODAeFw0yNTA2MDYwNzUyMDBaFw0yNTA2MDcxMTI4MDBaMDMxMTAvBgNV BAMTKDZEMkE2MjUyMzg5NDY4MThGN0ZDQTY1OEU4QzhCNERBNTI1NDJDMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY1uErZEkuYRVs/xotCjPjZDCM bQXHxzyTGO+hwuC/xVmh34QBHWaXnbBqSVXOk+JHjUh9PukuN85AkmHody45EdD7 awK3iHGi/c9wNB0fmRFu1fYnLESv9JuBk9E1KYwZ2DfHq+ApsLVg9YfvtX8h8D2f J0h/ZH14OFTv7FCbYMR2X/9KW25WxDJaclBy/QqmYBdLVheQ1Pu3svyKWNrbKajz /nU84MRu8w5fpyALv+CDtKMLbdhj7PVDdSBnbhy4XIXCEcBbRC35nYKw5B5uVR7l 2RAxOEPzj6AQxntvQEIRKChLDAcFrfviyPixiDJIEm1s3vFy5gG+ygLmG4nNAgMB AAGjggJ4MIICdDAdBgNVHQ4EFgQUbSpiUjiUaBj3/KZY6Mi02lJULDIwHwYDVR0j BBgwFoAUO4akpFOAxtRVzeWA3tG8VhLQpXgwDgYDVR0PAQH/BAQDAgeAMIGPBgNV HR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQv cmVwby9ycGtpX2NhXzI1NDA1Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAv M0I4NkE0QTQ1MzgwQzZENDU1Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5jcmwwgZ4G CCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3luYy5wYWFz LnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZGU4MzdmYi02MzkwLTQxYjUtODJh MC1mMGQwMmMwM2EyYzYvNy8zQjg2QTRBNDUzODBDNkQ0NTVDREU1ODBERUQxQkM1 NjEyRDBBNTc4LmNlcjCBmgYIKwYBBQUHAQsEgY0wgYowgYcGCCsGAQUFBzALhnty c3luYzovL3Jwa2ktcmVwby5hczIwNzk2MC5uZXQvcmVwby9ycGtpX2NhXzI1NDA1 Yzc2YzdhMDQzYzg5YWNlMTY3ZTlkMmNmNzljLzAvM0I4NkE0QTQ1MzgwQzZENDU1 Q0RFNTgwREVEMUJDNTYxMkQwQTU3OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAD1TSRij3vkITYDNXM1d g2fPhkzFHRebquSSFkD3OjPRbnwRjt+jNncPfT11tMmK0dWrsbxzBhrQbGQMWo/R EkojaaYG1aooqRP5FMoV6qULdbE730c0RUV495Nsv9mKd7ygYAVeF+r15hVw5q4Y aTxicx95ArAIFaS3dE833nqNHNUCIb70Z+OMJDLhpDYcGCrZJHzwVM8Sudorid9B mMMBtLDkZLQweLRKZjOuAkm71/28LEs83L6tRQ9Zp4r2ZC6p1JZBY1+DYCavgKaj SGoFQwTpLgf0hk5TQcT3RyS4TLcOq+V5sveH2EAYeSD7IywzxkJeitb6stXQcdu2 s5A= -----END CERTIFICATE-----Generated at Fri Jun 6 19:33:09 2025 by rpki-client