$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft File: orEujfOr1VWfnPloCvZd0WWJ3oY.mft (raw, json) Hash identifier: vDtxhC45bKpHBpj2p8D7TuoloAwLVzfq9TQ+NRzuW0s= Subject key identifier: 0C:A8:1B:93:C3:7C:5A:6B:4C:2A:AB:66:06:B2:6C:03:0E:7A:3F:3F Authority key identifier: A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86 Certificate issuer: /CN=a2b12e8df3abd5559f9cf9680af65dd16589de86 Certificate serial: 019747E774BC707536E84E0E927F3C2AC706 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft Manifest number: 1586 Signing time: Sat 07 Jun 2025 01:00:40 +0000 Manifest this update: Sat 07 Jun 2025 01:00:40 +0000 Manifest next update: Sun 08 Jun 2025 01:00:40 +0000 Files and hashes: 1: 0i2nUtRKmB3lhZOxzG3njrwbmME.roa (hash: dpZHm/KEbm95HKs7W7IrS4dN/fteRpx/stGG7Xu0VS8=) 2: 8LCZXWDLyLv6eORFWTYufaqnXGc.roa (hash: zQH0a6PafBtBLKWrkMxsvyuhb/nC1Pe5AfvaGkWpLmk=) 3: Cyo0vgpJooRhhQGTNLDVrhTVpFE.roa (hash: LY9FHhGpeiEV0YSyhn8sqnrszg5NO3LFheQVRLdgaNI=) 4: GcB06A0joSaNqm1qjn8cqCLYdMs.roa (hash: SOrq0ErpDn8P+KeZvvit9W/GaDxPmKvV9O+Jo+aosIk=) 5: OcAvtCfGeHAKogvTrE4zVIYXhXs.roa (hash: ytTb8Vp57MsWC+qg8DRVK13nEW8nfvpJJgza5MGPgYA=) 6: U8DoEOYZwi3hFxDhI_ZeyEzAKWg.roa (hash: xYdDt5sefA9c3Do+dzsPZm4stlI6uY172Lao1mLLokc=) 7: UTD25HSfDCitfEF77H0gTbBbKYg.roa (hash: JlSU0P58p4ohrtWd9vf+kXPT1uTSHo3mBZt0nA+3jpA=) 8: aEWr6-EqtkKVBn1aiC7rHdjKt8Y.roa (hash: crXyg1I0M6v1iZUeG0Vpk1mS5J8AlR2ziEDMO6PLwNs=) 9: hnuqfuqQFfls7WsQI7eQEfSUik0.roa (hash: 4glBckXjWMe5XR/kJnErYQjsYivbggBDZAVbZrhZteQ=) 10: orEujfOr1VWfnPloCvZd0WWJ3oY.crl (hash: jlZJa+29736R0XbB2N5fnKTIGQ0KubySmZ8UB1pHwCw=) 11: qKhGSn-anlVBbLwa8kuLCuYeIg4.roa (hash: GMbSoeO7Bt68N/Bj/6mj7uVPJ/WZKmJE6Cg5RyuDqEs=) 12: xY8O1HQcthonbf03hVZUJttA-3k.roa (hash: VnV3WEcdTaUx8HFdXjrg5qMNEOniv+q8hPyCeb+p72M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 22:50:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:47:e7:74:bc:70:75:36:e8:4e:0e:92:7f:3c:2a:c7:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a2b12e8df3abd5559f9cf9680af65dd16589de86 Validity Not Before: Jun 7 01:00:40 2025 GMT Not After : Jun 8 01:00:40 2025 GMT Subject: CN=0ca81b93c37c5a6b4c2aab6606b26c030e7a3f3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c3:92:6d:2a:90:ad:e2:84:ed:1d:74:1e:8c: 4e:ea:6f:b7:a1:a7:5d:5c:6e:9c:f0:e9:57:12:d4: 4d:f4:8b:45:7e:37:0c:05:04:72:4c:18:0f:64:aa: d4:f3:8f:75:80:a1:d4:f3:c8:06:54:09:ab:f6:86: a1:01:a8:7a:13:b1:ba:5d:f2:28:2f:61:2c:17:0d: 36:2b:a7:4d:c3:af:51:68:08:5a:a0:cb:ca:c7:51: 42:b7:cd:47:56:22:18:57:6f:1b:fb:97:c2:be:66: f0:f7:7f:14:21:05:41:4f:90:f1:91:3e:d7:f0:12: 9b:da:26:29:b2:de:81:1b:00:d2:bd:ef:d0:17:20: ca:06:22:f6:42:ed:21:d2:46:9e:60:85:d3:8f:1d: 00:ab:9a:26:05:56:ab:62:87:bc:b2:fe:2b:f7:8a: 9a:77:5c:51:0a:0a:f7:7e:8b:08:c4:f5:cd:e3:b9: 92:58:90:ef:50:59:00:e1:d5:09:0a:05:47:cc:24: 4d:77:20:26:94:80:a8:18:63:c8:e9:24:2b:2a:45: 93:7c:55:c7:d5:37:c8:ab:a5:fc:ec:b8:2a:55:a8: 35:c9:97:84:04:fa:6c:4c:1e:be:39:5d:fb:a9:59: a7:56:c6:2e:2b:07:16:d5:70:3d:3b:1c:6a:f1:8c: 47:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A8:1B:93:C3:7C:5A:6B:4C:2A:AB:66:06:B2:6C:03:0E:7A:3F:3F X509v3 Authority Key Identifier: keyid:A2:B1:2E:8D:F3:AB:D5:55:9F:9C:F9:68:0A:F6:5D:D1:65:89:DE:86 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orEujfOr1VWfnPloCvZd0WWJ3oY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ec44ea-ef43-4b3a-a69a-b4cb637da8c3/1/orEujfOr1VWfnPloCvZd0WWJ3oY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:2e:a9:88:46:1d:fd:75:84:42:41:c2:5b:c9:08:98:98:9c: 3a:40:60:f0:1b:75:4e:c4:72:c2:42:69:c7:84:35:c8:53:f3: 4b:00:b8:43:a9:b5:13:c1:e4:2a:28:fd:c4:cd:4d:b1:70:a5: 65:87:e2:ec:6f:98:ab:13:f5:ea:0a:48:2c:6e:41:82:c5:b5: e7:28:1a:28:b6:4d:25:08:7f:aa:7e:e4:82:e9:85:48:39:9c: 1e:cf:2b:6a:6a:c8:48:f6:cd:a9:48:85:fa:24:6e:92:b7:19: 62:3f:38:6e:3a:e9:b3:57:21:23:3d:47:06:a5:20:56:e1:74: 95:64:4b:83:d8:f0:2e:28:89:07:04:af:13:bc:f4:b3:d5:40: 84:f7:1a:96:61:d6:ac:f2:57:60:1c:1a:10:9a:bc:c6:f5:d1: 91:58:d8:30:ac:2a:c7:e2:5e:90:60:49:08:70:2f:30:57:91: 1e:21:0d:74:37:73:09:ed:5a:99:f1:37:ed:1d:26:0e:e2:00: 5f:3d:b2:51:d6:b3:fa:aa:44:0a:dc:08:e2:13:db:57:6d:3b: 3f:ea:bd:77:0f:9c:bd:56:f4:fa:5b:d0:49:45:b0:60:2a:34: 82:5b:dc:53:47:d1:44:bf:21:f0:48:0b:5e:e7:cc:f9:69:10: 23:eb:af:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdH53S8cHU26E4Okn88KscGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGEyYjEyZThkZjNhYmQ1NTU5ZjljZjk2ODBhZjY1ZGQxNjU4 OWRlODYwHhcNMjUwNjA3MDEwMDQwWhcNMjUwNjA4MDEwMDQwWjAzMTEwLwYDVQQD EygwY2E4MWI5M2MzN2M1YTZiNGMyYWFiNjYwNmIyNmMwMzBlN2EzZjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArMOSbSqQreKE7R10HoxO6m+3oadd XG6c8OlXEtRN9ItFfjcMBQRyTBgPZKrU8491gKHU88gGVAmr9oahAah6E7G6XfIo L2EsFw02K6dNw69RaAhaoMvKx1FCt81HViIYV28b+5fCvmbw938UIQVBT5DxkT7X 8BKb2iYpst6BGwDSve/QFyDKBiL2Qu0h0kaeYIXTjx0Aq5omBVarYoe8sv4r94qa d1xRCgr3fosIxPXN47mSWJDvUFkA4dUJCgVHzCRNdyAmlICoGGPI6SQrKkWTfFXH 1TfIq6X87LgqVag1yZeEBPpsTB6+OV37qVmnVsYuKwcW1XA9Oxxq8YxH3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAyoG5PDfFprTCqrZgaybAMOej8/MB8GA1UdIwQY MBaAFKKxLo3zq9VVn5z5aAr2XdFlid6GMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi9lYzQ0ZWEtZWY0My00YjNhLWE2OWEt YjRjYjYzN2RhOGMzLzEvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNi9lYzQ0ZWEtZWY0My00YjNhLWE2OWEtYjRjYjYzN2RhOGMz LzEvb3JFdWpmT3IxVldmblBsb0N2WmQwV1dKM29ZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANC6piEYd /XWEQkHCW8kImJicOkBg8Bt1TsRywkJpx4Q1yFPzSwC4Q6m1E8HkKij9xM1NsXCl ZYfi7G+YqxP16gpILG5BgsW15ygaKLZNJQh/qn7kgumFSDmcHs8ramrISPbNqUiF +iRukrcZYj84bjrps1chIz1HBqUgVuF0lWRLg9jwLiiJBwSvE7z0s9VAhPcalmHW rPJXYBwaEJq8xvXRkVjYMKwqx+JekGBJCHAvMFeRHiENdDdzCe1amfE37R0mDuIA Xz2yUdaz+qpECtwI4hPbV207P+q9dw+cvVb0+lvQSUWwYCo0glvcU0fRRL8h8EgL XufM+WkQI+uvUw== -----END CERTIFICATE-----Generated at Sat Jun 7 04:12:41 2025 by rpki-client