$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: sFR1Lw1mo8F9ZJ0oQCj5vZ8T2abPyZ9sA9g67hjxAEQ= Subject key identifier: 0F:8B:2E:E0:ED:A3:BB:AF:03:6F:ED:41:C7:17:A4:D5:5C:7E:1C:BF Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019748FAAF29476C581B61F9F5E7A07AA6F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 1663 Signing time: Sat 07 Jun 2025 06:01:17 +0000 Manifest this update: Sat 07 Jun 2025 06:01:17 +0000 Manifest next update: Sun 08 Jun 2025 06:01:17 +0000 Files and hashes: 1: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: RHOTncHceMeoaIvbg//u5spOCrKYZfvY3oVBjwL7oOk=) 2: FxbjUgILNh8KjbR9AMUoZSmmi6c.roa (hash: 3ZmoMll6QWurJqfB3jsbC7LM7XZQRyrFHg1c4LmOwgY=) 3: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 4: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 5: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 6: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 7: ixxzr0nDJC4AjQqKMOvhCRZIBS4.roa (hash: vRjMINEnN58WR68J2uy0IhPriH+22u9mcJzheawrNoA=) 8: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 9: mLGnKqO6v6O1noVxpXvCIxFUsAI.roa (hash: eYFzp6km8ZVknUVUDwRvZQMvzac7kZXeuFOwR7d+Lr8=) 10: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:48:fa:af:29:47:6c:58:1b:61:f9:f5:e7:a0:7a:a6:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Jun 7 06:01:17 2025 GMT Not After : Jun 8 06:01:17 2025 GMT Subject: CN=0f8b2ee0eda3bbaf036fed41c717a4d55c7e1cbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:36:50:3c:bb:c5:b1:f9:38:fe:e7:69:75:23: ac:32:69:2a:73:18:f0:19:19:0e:e2:fe:63:c7:30: e1:d7:84:0e:92:25:df:bf:af:cd:81:b7:bc:7f:3c: 41:60:59:1e:22:7b:74:40:96:8d:75:5e:ae:62:31: 39:32:16:55:6f:60:21:17:6b:8e:fb:e3:09:be:b8: a6:1e:24:d2:2c:cc:ac:bd:1f:e0:56:5e:31:13:cd: 05:9f:2e:ad:40:f9:d6:77:37:77:08:6c:9b:a8:80: 90:d4:dd:03:c4:10:1a:55:9d:a2:8e:b4:55:78:d2: 6c:24:f0:29:11:d5:41:5b:77:b2:05:99:ca:05:d8: c6:a8:ea:8b:9d:a1:12:85:ef:ac:7e:3f:10:68:ca: 44:6d:47:74:48:22:4a:2f:a9:80:8c:27:3b:0e:39: c8:28:73:e9:24:17:9e:6d:79:1a:bb:12:0a:66:9c: 6f:30:20:98:82:0d:d7:75:66:93:fa:a3:d0:80:1a: df:d9:c7:23:2e:27:91:3f:27:51:10:59:fe:2e:cf: 91:fa:cb:dd:36:96:72:ef:95:c1:d4:9a:af:d6:ad: a4:77:a0:aa:3d:b1:24:7c:77:9b:ec:eb:bd:13:0d: 0a:f8:37:c6:4e:32:09:d0:f9:9c:8f:85:b7:72:69: dd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:8B:2E:E0:ED:A3:BB:AF:03:6F:ED:41:C7:17:A4:D5:5C:7E:1C:BF X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:5f:eb:62:55:6f:08:f8:5a:e4:52:27:72:7f:df:97:07:f8: 28:8b:12:cd:cd:ee:da:f2:22:41:42:2c:cf:58:03:7b:cf:2f: 3c:b5:35:98:14:4c:c0:e2:b8:1b:bd:89:2a:d6:b4:ae:05:24: fb:8a:c3:fb:38:59:1f:c1:08:80:9b:1c:50:dd:c9:8f:c3:fa: 33:48:08:4f:35:31:2a:be:95:4f:a1:86:c5:cf:c0:bf:b1:9c: f8:69:57:d0:7e:e9:7f:1c:a2:e6:db:45:db:42:b6:84:21:77: b8:bb:ec:54:1a:5d:0b:09:a4:3d:7b:ed:82:7a:68:87:a3:0a: dd:2e:83:e9:a0:93:c9:db:8e:9f:59:a0:4c:1e:3a:00:dd:f9: 36:8c:8f:df:38:8b:af:6d:26:23:29:2a:d0:1a:c3:aa:75:aa: 74:c1:20:9a:f4:b7:7c:a9:a6:f5:1a:7e:69:2b:f6:4c:a0:16: f2:98:b9:bf:28:24:8e:d4:da:78:a7:31:23:42:ec:6c:6e:b1: c6:6b:4b:7c:e8:34:89:49:f3:71:aa:69:77:ea:80:94:8c:0f: cf:25:a8:74:22:c8:80:1d:99:60:bf:08:d4:38:1b:4d:3e:a4: 41:52:cf:57:28:24:5c:9c:42:cc:26:71:0e:8d:be:b6:02:40: 14:bc:e8:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdI+q8pR2xYG2H59eegeqb3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUwNjA3MDYwMTE3WhcNMjUwNjA4MDYwMTE3WjAzMTEwLwYDVQQD EygwZjhiMmVlMGVkYTNiYmFmMDM2ZmVkNDFjNzE3YTRkNTVjN2UxY2JmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqjZQPLvFsfk4/udpdSOsMmkqcxjw GRkO4v5jxzDh14QOkiXfv6/Ngbe8fzxBYFkeInt0QJaNdV6uYjE5MhZVb2AhF2uO ++MJvrimHiTSLMysvR/gVl4xE80Fny6tQPnWdzd3CGybqICQ1N0DxBAaVZ2ijrRV eNJsJPApEdVBW3eyBZnKBdjGqOqLnaEShe+sfj8QaMpEbUd0SCJKL6mAjCc7DjnI KHPpJBeebXkauxIKZpxvMCCYgg3XdWaT+qPQgBrf2ccjLieRPydREFn+Ls+R+svd NpZy75XB1Jqv1q2kd6CqPbEkfHeb7Ou9Ew0K+DfGTjIJ0Pmcj4W3cmndPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFA+LLuDto7uvA2/tQccXpNVcfhy/MB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmF/rYlVv CPha5FIncn/flwf4KIsSzc3u2vIiQUIsz1gDe88vPLU1mBRMwOK4G72JKta0rgUk +4rD+zhZH8EIgJscUN3Jj8P6M0gITzUxKr6VT6GGxc/Av7Gc+GlX0H7pfxyi5ttF 20K2hCF3uLvsVBpdCwmkPXvtgnpoh6MK3S6D6aCTyduOn1mgTB46AN35NoyP3ziL r20mIykq0BrDqnWqdMEgmvS3fKmm9Rp+aSv2TKAW8pi5vygkjtTaeKcxI0LsbG6x xmtLfOg0iUnzcappd+qAlIwPzyWodCLIgB2ZYL8I1DgbTT6kQVLPVygkXJxCzCZx Do2+tgJAFLzo9A== -----END CERTIFICATE-----Generated at Sat Jun 7 08:58:10 2025 by rpki-client