$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: yA8EUvNLbJE0cGvmknVbVKBRJRdh+W+2USyKf/tl3f4= Subject key identifier: CF:2A:D2:76:7A:F2:E2:7B:1E:8B:CF:93:4C:22:5A:68:9E:0E:71:3A Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 01964AEB5E4F019480CFDB7D5AAD5B78E193 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 15DB Signing time: Fri 18 Apr 2025 22:01:01 +0000 Manifest this update: Fri 18 Apr 2025 22:01:01 +0000 Manifest next update: Sat 19 Apr 2025 22:01:01 +0000 Files and hashes: 1: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: lGVugCLTHRja+2+lF+cc4EOKgx6vbtWHomWxjl0wlr8=) 2: OrOiINgdZXqLRIKoqM95TkMk-gA.roa (hash: 7nW5z7M/V107qb1CuI/43ok0uSb9cbAiI51o6T16dZI=) 3: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 4: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 5: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 6: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 7: ixxzr0nDJC4AjQqKMOvhCRZIBS4.roa (hash: vRjMINEnN58WR68J2uy0IhPriH+22u9mcJzheawrNoA=) 8: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 9: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) 10: zlEWywHDvYVAGJz9aqa98J5Wp1k.roa (hash: UP1TTgecSTqbyX4QgYhLri7ApWn2lJleZy1hs/lOY9I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 19 Apr 2025 22:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:4a:eb:5e:4f:01:94:80:cf:db:7d:5a:ad:5b:78:e1:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Apr 18 22:01:01 2025 GMT Not After : Apr 19 22:01:01 2025 GMT Subject: CN=cf2ad2767af2e27b1e8bcf934c225a689e0e713a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:09:33:30:ac:e5:cf:a6:d5:41:30:80:2c:84: bf:f3:bf:ac:e0:4b:58:e3:8a:82:8f:8f:40:35:a2: c4:71:31:d4:8a:92:cb:73:0b:ff:f2:7e:e1:f6:35: 14:09:b1:82:4e:77:54:17:1c:e8:64:ff:ff:6d:4d: 5f:41:83:43:68:ae:b4:3c:44:54:86:0f:99:2b:b3: 7d:d1:57:39:6f:b4:bf:7c:4a:3c:e2:a9:89:1a:1b: db:be:c2:08:a9:b1:67:f8:47:d8:c0:55:dd:8a:dc: 62:30:0f:46:a4:17:db:73:45:78:78:fc:24:fa:d0: 92:c7:77:4d:05:1a:3e:6d:07:1c:9f:25:01:42:38: 1a:d2:b7:68:52:17:7f:89:ef:51:89:06:d2:15:a6: 57:b7:83:36:85:be:62:e8:6f:a0:d8:92:c3:e0:4b: 8c:bd:b7:43:2e:3d:d1:95:10:df:12:a5:fc:8c:86: 7c:35:63:0a:d7:0c:bf:92:4f:6f:07:5a:5c:7f:0d: ca:0d:b9:d3:2e:65:a6:03:70:86:7b:32:ef:26:bf: de:19:ef:3e:48:60:46:65:d0:4c:f4:8b:16:d3:f7: 80:a8:58:3f:e7:08:41:50:4a:79:89:4f:69:96:2a: 90:2f:6e:66:4f:d0:45:c4:a4:49:7f:c3:d5:c8:27: 5e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:2A:D2:76:7A:F2:E2:7B:1E:8B:CF:93:4C:22:5A:68:9E:0E:71:3A X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:3a:22:4e:aa:15:eb:f8:ed:96:27:56:9e:a4:ce:48:19:ed: 4c:ad:8e:f0:0a:bf:22:b6:e9:fb:68:58:d5:b4:dd:f0:f6:16: 55:56:b6:3b:49:45:49:c2:65:18:e2:e8:3c:8d:5f:17:c3:f4: fe:90:95:e0:ec:4d:85:63:8a:95:30:4a:42:72:89:3b:01:d5: b7:0f:bd:31:a3:c1:89:02:2b:24:e0:76:08:cd:70:41:20:17: ff:26:90:58:a5:20:3c:f4:d4:e7:14:f4:b7:2e:6b:86:5b:57: 9e:04:a4:9d:fe:c1:39:1b:6e:b5:1e:7c:7c:51:76:ef:bb:7f: 29:b9:d5:52:85:7d:1e:a9:8e:25:71:ea:b7:de:cf:b5:71:9a: 00:f4:2e:25:c4:43:6b:fc:4b:86:b0:4d:e1:de:c6:e6:cd:31: a7:f7:54:40:06:24:4a:72:d5:ec:6e:e3:00:1f:ae:f3:e9:96: cd:25:ee:cd:f7:64:ee:3c:dc:49:6d:12:80:60:15:d3:b2:46: 05:3f:55:0b:03:dc:5b:f7:0c:b9:20:a2:ba:84:4d:ef:c7:ce: e6:78:6f:bf:d6:03:e0:6b:e0:f7:8d:f0:5b:a8:e4:76:7d:3a: e6:00:a8:19:ee:a9:1a:bb:db:6b:3c:42:8a:cb:14:85:e1:f3: f9:36:3b:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZK615PAZSAz9t9Wq1beOGTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUwNDE4MjIwMTAxWhcNMjUwNDE5MjIwMTAxWjAzMTEwLwYDVQQD EyhjZjJhZDI3NjdhZjJlMjdiMWU4YmNmOTM0YzIyNWE2ODllMGU3MTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjQkzMKzlz6bVQTCALIS/87+s4EtY 44qCj49ANaLEcTHUipLLcwv/8n7h9jUUCbGCTndUFxzoZP//bU1fQYNDaK60PERU hg+ZK7N90Vc5b7S/fEo84qmJGhvbvsIIqbFn+EfYwFXditxiMA9GpBfbc0V4ePwk +tCSx3dNBRo+bQccnyUBQjga0rdoUhd/ie9RiQbSFaZXt4M2hb5i6G+g2JLD4EuM vbdDLj3RlRDfEqX8jIZ8NWMK1wy/kk9vB1pcfw3KDbnTLmWmA3CGezLvJr/eGe8+ SGBGZdBM9IsW0/eAqFg/5whBUEp5iU9pliqQL25mT9BFxKRJf8PVyCderQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM8q0nZ68uJ7HovPk0wiWmieDnE6MB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPjoiTqoV 6/jtlidWnqTOSBntTK2O8Aq/Irbp+2hY1bTd8PYWVVa2O0lFScJlGOLoPI1fF8P0 /pCV4OxNhWOKlTBKQnKJOwHVtw+9MaPBiQIrJOB2CM1wQSAX/yaQWKUgPPTU5xT0 ty5rhltXngSknf7BORtutR58fFF277t/KbnVUoV9HqmOJXHqt97PtXGaAPQuJcRD a/xLhrBN4d7G5s0xp/dUQAYkSnLV7G7jAB+u8+mWzSXuzfdk7jzcSW0SgGAV07JG BT9VCwPcW/cMuSCiuoRN78fO5nhvv9YD4Gvg943wW6jkdn065gCoGe6pGrvbazxC issUheHz+TY71g== -----END CERTIFICATE-----Generated at Sat Apr 19 08:04:06 2025 by rpki-client