$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft File: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft (raw, json) Hash identifier: WBmRUncfyKlARAaUAHf1qPwWIDcdWfiJfmXQuauWkW8= Subject key identifier: 5F:66:4F:81:54:CE:74:36:BC:B6:CA:09:22:08:4A:4A:BC:51:8A:DA Authority key identifier: 25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 Certificate issuer: /CN=255876412d20fbb6cab823481782ac47703b4404 Certificate serial: 019743D4340F2B2B4218391E5F267C58A239 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft Manifest number: 024F Signing time: Fri 06 Jun 2025 06:01:09 +0000 Manifest this update: Fri 06 Jun 2025 06:01:09 +0000 Manifest next update: Sat 07 Jun 2025 06:01:09 +0000 Files and hashes: 1: 8g-49_qQ3fcAAr8ogKNyJYRIsqM.roa (hash: YUM8nQydrUaGiZYWfH9e5CkG/0ZnMAVKiwEv7wrrmyU=) 2: HL_391YyhybjwJ74kNKee4Xme30.roa (hash: SKqvmhnXy6lVHKlIjthvO2Ffcm5YC3y5BAN0frkvak8=) 3: JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl (hash: vP6YI00kB8ecJV7F/1JvarM9Vgmzi1bE+QRbhkT5EKs=) 4: UFzq6HTzLsKXQDiIwbMVwsSvCKE.roa (hash: SkcdE34ZRnlvciguMZx89azOscHKjWKi4kmUM6ce2ek=) 5: Vf3C3nEL83KU-t7pLCkbgpiASsA.roa (hash: 6SosAmZB67F6Q5qUy5fWvfEJcjGr5qv93jKtlhRr2es=) 6: b37yA0vBw9z9NXOjP3ngOC-nsdQ.roa (hash: xnMkc8ma8YV2ulWTsjtILbYV33NvcPwQMYE2M0mdniE=) 7: evsBxqfpyH3zHvt0KdEDbPjJt40.roa (hash: vsA8eWY0hm6KpE4+4Kq5HkaUgEZIYMzjLRq48DP4yG4=) 8: hp0pLX_QGiWhiOhgc-g-g3McIzI.roa (hash: iRmxgVLqjy7bOiMWp10+U3a2wekQwe0YpGsmUpp/wOw=) 9: lwlNrqm3r8NOZc8muUo80fFlOeY.roa (hash: FfJzjpvXZQfdbT9Lc8mjBM1Q8TX5WkjUXsorwJal9Zo=) 10: pu4GRTEZI-DDS8alCpZhtqjD728.roa (hash: 4gymL9RPKKRX/UazcJNoKfCcQGjN640R8KkZ8YDasZ0=) 11: r6VOlpU6VgL1WVlEQKIIOdFJ6jc.roa (hash: qZ5211k3RJOzvqXcolh5rN4QAkWpCPQgoaSC1kNOR9w=) 12: zB7jZpVQ6_QohXb9Ts1uTCDa9vc.roa (hash: G92uGtD4p7P9jynyu17jJLaD0YzUsjPpS9i4T5WM4LU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 06:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:43:d4:34:0f:2b:2b:42:18:39:1e:5f:26:7c:58:a2:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=255876412d20fbb6cab823481782ac47703b4404 Validity Not Before: Jun 6 06:01:09 2025 GMT Not After : Jun 7 06:01:09 2025 GMT Subject: CN=5f664f8154ce7436bcb6ca0922084a4abc518ada Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:fd:8f:f4:c4:34:31:8c:54:f3:a0:3e:b3:b8: 7e:58:82:ce:25:e6:cc:10:29:72:f5:0c:b0:ba:e1: f6:7d:82:c7:87:b9:0b:4f:ba:14:98:f3:56:f4:8b: 16:b2:6c:66:92:e1:3f:77:6b:06:e1:87:42:23:c3: 5d:87:0a:e8:af:ec:f3:d1:e1:87:f5:1d:4a:15:91: 8c:21:d6:94:4f:16:c2:78:af:62:87:7b:64:e6:fe: ce:f3:57:4f:3e:23:11:67:72:78:22:47:42:a7:96: d3:40:f3:6c:a7:06:91:37:72:30:68:4d:8a:a4:0c: 64:6c:41:2d:f9:2d:62:3d:e2:6d:79:66:21:54:57: ab:50:79:da:1a:bc:7d:9e:3e:76:d8:52:be:cc:5e: fb:6c:44:21:0a:74:81:c7:7d:fb:72:8d:b4:f4:59: 16:48:06:37:86:a3:dc:29:01:fe:e1:71:95:05:20: 6c:9e:fc:4c:37:ce:48:2c:a2:47:99:7b:0d:47:1c: 5d:c0:05:17:8c:a0:df:f5:ad:c8:d5:18:24:d8:a1: 0a:0b:17:a7:19:08:dc:a7:e3:61:58:50:ba:78:f2: 7f:0d:c1:f3:99:b8:9d:4b:cb:36:93:83:fe:a0:31: 60:5b:39:6b:6f:b2:8a:c7:d2:9a:9a:be:90:fa:a8: f9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:66:4F:81:54:CE:74:36:BC:B6:CA:09:22:08:4A:4A:BC:51:8A:DA X509v3 Authority Key Identifier: keyid:25:58:76:41:2D:20:FB:B6:CA:B8:23:48:17:82:AC:47:70:3B:44:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/dd062a-1319-4019-a551-876c7fca4b34/1/JVh2QS0g-7bKuCNIF4KsR3A7RAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:5a:53:e9:71:52:dc:f6:1f:70:36:ac:cc:3a:b1:cc:d4:a3: 55:6d:b8:9e:e2:59:8c:bd:cf:a9:cc:96:56:84:e3:f5:7c:f9: 3b:e5:df:87:9e:66:bb:7d:03:7d:02:02:f3:48:0a:fa:ca:4c: 32:0c:fd:85:cc:9d:6f:d5:77:98:d1:c0:71:d7:73:05:65:81: 3d:f8:77:12:46:25:63:d7:fe:98:fe:4c:35:0b:b4:a6:15:a9: 55:31:97:61:9c:d6:aa:61:64:37:ff:90:be:4a:bf:a7:82:a7: 99:40:2b:97:45:db:ac:51:4c:1c:69:61:9f:8e:86:55:e8:fb: 49:fb:c1:c9:3b:76:93:28:c0:81:59:09:9a:f9:8d:e0:66:15: 7d:c7:aa:3e:49:b1:4f:57:4e:f2:1a:c3:41:67:f5:90:e4:25: a4:d3:c3:1b:d9:f1:58:4e:3e:ec:e3:1c:dc:89:5a:b8:4f:1f: 86:38:69:1d:3b:ba:0a:fb:79:74:bb:d1:c2:a7:c2:44:dc:52: 1c:e9:66:2e:4a:da:56:a0:d4:bc:ca:5e:b6:ff:cd:9e:82:64: a0:c7:67:7f:26:01:c0:b7:54:5f:b1:e5:8a:fc:1e:61:ba:ee: 0d:e0:90:e1:52:41:78:45:37:37:4c:77:6b:cd:f5:59:b5:7d: 28:6d:01:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdD1DQPKytCGDkeXyZ8WKI5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI1NTg3NjQxMmQyMGZiYjZjYWI4MjM0ODE3ODJhYzQ3NzAz YjQ0MDQwHhcNMjUwNjA2MDYwMTA5WhcNMjUwNjA3MDYwMTA5WjAzMTEwLwYDVQQD Eyg1ZjY2NGY4MTU0Y2U3NDM2YmNiNmNhMDkyMjA4NGE0YWJjNTE4YWRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk/2P9MQ0MYxU86A+s7h+WILOJebM ECly9QywuuH2fYLHh7kLT7oUmPNW9IsWsmxmkuE/d2sG4YdCI8Ndhwror+zz0eGH 9R1KFZGMIdaUTxbCeK9ih3tk5v7O81dPPiMRZ3J4IkdCp5bTQPNspwaRN3IwaE2K pAxkbEEt+S1iPeJteWYhVFerUHnaGrx9nj522FK+zF77bEQhCnSBx337co209FkW SAY3hqPcKQH+4XGVBSBsnvxMN85ILKJHmXsNRxxdwAUXjKDf9a3I1Rgk2KEKCxen GQjcp+NhWFC6ePJ/DcHzmbidS8s2k4P+oDFgWzlrb7KKx9Kamr6Q+qj54QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF9mT4FUznQ2vLbKCSIISkq8UYraMB8GA1UdIwQY MBaAFCVYdkEtIPu2yrgjSBeCrEdwO0QEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEt ODc2YzdmY2E0YjM0LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC9kZDA2MmEtMTMxOS00MDE5LWE1NTEtODc2YzdmY2E0YjM0 LzEvSlZoMlFTMGctN2JLdUNOSUY0S3NSM0E3UkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAuVpT6XFS 3PYfcDaszDqxzNSjVW24nuJZjL3PqcyWVoTj9Xz5O+Xfh55mu30DfQIC80gK+spM Mgz9hcydb9V3mNHAcddzBWWBPfh3EkYlY9f+mP5MNQu0phWpVTGXYZzWqmFkN/+Q vkq/p4KnmUArl0XbrFFMHGlhn46GVej7SfvByTt2kyjAgVkJmvmN4GYVfceqPkmx T1dO8hrDQWf1kOQlpNPDG9nxWE4+7OMc3IlauE8fhjhpHTu6Cvt5dLvRwqfCRNxS HOlmLkraVqDUvMpetv/NnoJkoMdnfyYBwLdUX7HlivweYbruDeCQ4VJBeEU3N0x3 a831WbV9KG0Bqg== -----END CERTIFICATE-----Generated at Fri Jun 6 12:34:16 2025 by rpki-client