$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: lBp5cWO4YIjz9xYSFffDyEE11y8G/Vlz6XLGJCFAI2w= Subject key identifier: 4B:23:A3:22:9B:C9:63:05:5C:41:5D:C5:8F:E9:41:47:A4:14:51:11 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019604F7A410EF329E04CA20E0113D4B53F9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 0E27 Signing time: Sat 05 Apr 2025 08:01:00 +0000 Manifest this update: Sat 05 Apr 2025 08:01:00 +0000 Manifest next update: Sun 06 Apr 2025 08:01:00 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: B-5_egLdEl752iv9qxYdq8eosj8.roa (hash: Cdvp7KAkC+/9T90gVhhsMGICo5DVTrNIRp6EnoCK4JA=) 3: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 4: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 5: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 6: QZRImZcJfh5Rs-KyqN-hVpi16kg.roa (hash: MmbWMRjbWTAeW063pf9sig1YCHR9YwgTPc79vzpgNLo=) 7: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: yrnFhVSoTbSjLJiDcPAaR6Mk7CmAS21XUnlK2qHlOVY=) 8: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 9: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 12: sFVwAvso2RiBjXQQC5X8xPsYJBs.roa (hash: +5oPRTUTMFR48JZpxxq3OBMXLIXgfURgzHz46nSWc5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 08:01:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:04:f7:a4:10:ef:32:9e:04:ca:20:e0:11:3d:4b:53:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Apr 5 08:01:00 2025 GMT Not After : Apr 6 08:01:00 2025 GMT Subject: CN=4b23a3229bc963055c415dc58fe94147a4145111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:f7:9f:0e:1c:a1:e5:15:91:6e:72:5c:bd:6a: cf:a8:33:a7:09:be:1b:f4:02:9a:61:6c:9a:11:ac: 8e:53:2e:46:a8:fa:05:70:81:01:bf:a7:8a:1b:ec: a7:68:60:c8:9b:8a:64:1a:25:f6:7f:2b:1e:95:53: b9:35:a3:11:99:48:a8:e1:40:52:b0:3f:6c:10:6c: 77:53:9b:2c:40:73:f3:e1:3e:68:53:27:65:af:5e: a0:98:34:93:8c:d6:a2:d3:eb:83:60:01:92:d9:76: db:10:64:e7:ad:db:65:a3:2e:15:3c:73:90:34:5c: a3:ec:1d:70:80:3a:e1:48:43:c3:41:28:31:c3:89: 00:b2:ee:a3:ce:3e:79:33:d6:09:8a:49:a9:00:14: 71:80:79:5e:d9:a4:0e:a1:02:95:d3:d8:2b:b5:a9: 58:2d:93:3a:c5:c1:07:91:19:18:da:79:48:fa:27: 6e:82:5d:be:80:01:79:ba:a9:5d:47:98:4a:bf:d0: a9:6e:bc:1f:df:e8:3e:ca:3b:6d:b6:31:2f:3b:89: 74:56:f7:ff:4b:81:cd:79:d6:36:74:ca:6b:2d:49: 12:51:d3:96:f1:95:9e:2a:c3:70:b4:74:e2:e4:39: 44:18:c6:0e:9d:5e:47:68:59:f0:a1:03:12:12:3a: 1f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:23:A3:22:9B:C9:63:05:5C:41:5D:C5:8F:E9:41:47:A4:14:51:11 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:08:05:10:f5:5c:b1:64:3f:23:5a:6a:fd:4e:27:6f:5f:43: 1e:f4:65:8b:e7:fe:ad:95:fe:45:ea:45:99:18:d3:47:f5:38: 49:4b:b7:98:e3:05:3f:b0:a7:02:4e:8a:c8:ed:fb:35:47:a4: 42:0f:87:41:27:05:56:29:7b:50:5c:0a:7f:6f:50:85:ed:85: 1a:1d:8a:4d:de:f2:59:62:26:6e:7d:91:fe:31:bd:cf:9c:7f: 2f:c2:9c:b1:20:35:18:4f:a0:b4:2b:29:1b:69:ea:f2:aa:2d: 47:f7:f3:6e:53:1d:af:67:4e:f6:fe:37:a4:d5:20:c8:4f:78: 42:c6:cf:0d:2d:a2:da:ae:61:7e:5b:c2:da:22:f2:8a:ad:89: 56:0b:61:bf:af:14:04:94:b6:1c:85:ce:96:53:78:8d:ed:3e: 60:23:2d:3f:4f:3d:b6:f7:a6:8f:88:2f:25:f1:3d:84:02:8e: a7:80:3c:4c:df:34:f6:40:f3:7e:ff:cf:cc:ee:92:48:09:09: da:49:de:45:66:52:66:19:8c:0e:1c:65:c9:11:3f:bb:da:a8: d4:8d:f7:77:99:f9:53:ee:7c:f7:83:cf:f7:bb:6b:f0:11:d1: 49:96:99:af:f9:e6:71:5d:88:e0:92:2f:4d:ab:90:6b:e8:73: 4f:dd:cb:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYE96QQ7zKeBMog4BE9S1P5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUwNDA1MDgwMTAwWhcNMjUwNDA2MDgwMTAwWjAzMTEwLwYDVQQD Eyg0YjIzYTMyMjliYzk2MzA1NWM0MTVkYzU4ZmU5NDE0N2E0MTQ1MTExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2/efDhyh5RWRbnJcvWrPqDOnCb4b 9AKaYWyaEayOUy5GqPoFcIEBv6eKG+ynaGDIm4pkGiX2fyselVO5NaMRmUio4UBS sD9sEGx3U5ssQHPz4T5oUydlr16gmDSTjNai0+uDYAGS2XbbEGTnrdtloy4VPHOQ NFyj7B1wgDrhSEPDQSgxw4kAsu6jzj55M9YJikmpABRxgHle2aQOoQKV09grtalY LZM6xcEHkRkY2nlI+idugl2+gAF5uqldR5hKv9Cpbrwf3+g+yjtttjEvO4l0Vvf/ S4HNedY2dMprLUkSUdOW8ZWeKsNwtHTi5DlEGMYOnV5HaFnwoQMSEjofPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEsjoyKbyWMFXEFdxY/pQUekFFERMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJggFEPVc sWQ/I1pq/U4nb19DHvRli+f+rZX+RepFmRjTR/U4SUu3mOMFP7CnAk6KyO37NUek Qg+HQScFVil7UFwKf29Qhe2FGh2KTd7yWWImbn2R/jG9z5x/L8KcsSA1GE+gtCsp G2nq8qotR/fzblMdr2dO9v43pNUgyE94QsbPDS2i2q5hflvC2iLyiq2JVgthv68U BJS2HIXOllN4je0+YCMtP089tvemj4gvJfE9hAKOp4A8TN809kDzfv/PzO6SSAkJ 2kneRWZSZhmMDhxlyRE/u9qo1I33d5n5U+5894PP97tr8BHRSZaZr/nmcV2I4JIv TauQa+hzT93L0A== -----END CERTIFICATE-----Generated at Sat Apr 5 17:50:48 2025 by rpki-client