$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft File: X32laK0Ce54knBPiI9MidpiBop8.mft (raw, json) Hash identifier: O8bqVMmNqcD9LANvpICQYeFZ5eiBH/SGVJOeiNVioWg= Subject key identifier: 0A:86:9C:37:26:30:DD:9B:87:E8:9A:1D:9A:5A:53:9B:68:FF:1B:7D Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f Certificate serial: 0196507F3BF34735D0904A8CF9AB7A2DBA17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft Manifest number: 0A73 Signing time: Sun 20 Apr 2025 00:00:37 +0000 Manifest this update: Sun 20 Apr 2025 00:00:37 +0000 Manifest next update: Mon 21 Apr 2025 00:00:37 +0000 Files and hashes: 1: Dhg938LLNxihNYriqStR3oqs6Jg.roa (hash: Aj+6lvIDsodEZ6I55Us8ZFj5GtVjSmfFFjL8I/MfYqo=) 2: FuntCXoBht24QvgtEtbVZEuCdp0.roa (hash: JUPlc/PvxJjzfETFQC1BU7Iej8ynSg/XdYSUf902Tpo=) 3: OSozPCauqZRrj5FYZCZShQYan60.roa (hash: gJTuyuPcePva2Pf/4Z3V1y7VTQjYV+P6FusXSLPZfSw=) 4: X32laK0Ce54knBPiI9MidpiBop8.crl (hash: Ja79CC48zIUZ0fD465J10Z3pbrlWQA8ozMUCPStZGjg=) 5: XjVu2IyXljFzhSvYma_h3-clfVU.roa (hash: nT21YokFB5zQvbm3JPkkRJDjEHGU38C24xQDpQHQGAI=) 6: ZkkDzXmdTsLG1oQnHCXCpjMrN0c.roa (hash: vhxQZdTakyknsbSaFbQwA3rjVR03VcM9s8jNMsMZ03E=) 7: jUQ_fZXFaYGd4zaZnSgAlOdWse0.roa (hash: TxGng+dp5AKM1yJ/Crw7UDMDcGHP31uzC9AJJeqBDMA=) 8: oSGRjgd5g7uxmIyMg55GeDp1lcQ.roa (hash: yVVI9w+n8DQ5LZ0pU0EZPfP/S8D3Imwu6pg6ds8XII0=) 9: s84uwW_-i_SHLp2X5wNbbXCbos0.roa (hash: XmZwP1Dphpy/OpROhUP0RXS2PeMw5xbgxdsjXIheFhc=) 10: ztzJ9WkVuGW2KUZ-NYOffXMn-mU.roa (hash: 0aNwIJcWE8BWdRRapb0b1h0he6NRcvrOvXa3hI/Nxv4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 20 Apr 2025 22:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:50:7f:3b:f3:47:35:d0:90:4a:8c:f9:ab:7a:2d:ba:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f Validity Not Before: Apr 20 00:00:37 2025 GMT Not After : Apr 21 00:00:37 2025 GMT Subject: CN=0a869c372630dd9b87e89a1d9a5a539b68ff1b7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:48:cc:79:06:8c:90:93:4a:49:43:0b:10:1f: ed:7c:0b:2f:cd:20:89:41:45:a8:ef:a9:4b:86:50: 61:41:d7:05:55:2c:6b:ea:46:45:c6:4d:5a:45:bb: 98:c5:a2:59:e6:86:6c:1e:e4:35:06:a9:44:0d:b1: f8:7b:6f:9c:56:16:4d:17:33:5e:71:1f:45:3e:1c: 47:7e:e9:46:3f:21:46:a2:75:6a:47:30:2f:4c:81: f0:88:ab:de:b1:b5:d9:e5:bf:e4:9b:d7:d0:e9:6f: ed:b7:1a:b4:26:45:d1:e4:8d:8d:ee:51:27:70:34: d7:d6:12:a9:8e:d8:b7:ae:0d:91:f3:b2:6f:cf:f2: 93:d4:d1:b7:84:c2:55:48:c5:bb:81:f0:f6:98:5f: e1:4c:95:c1:5e:90:7f:ad:0f:80:48:5e:7b:8c:b6: 5b:bc:c4:c3:b2:d4:3d:ff:7c:80:e4:a3:b7:28:12: 75:5a:a1:cd:ce:20:c7:87:7c:02:42:cf:20:30:9e: dd:16:08:b9:6b:da:12:ad:39:66:ef:f8:f4:ce:30: 55:89:e7:41:a9:44:b5:2a:40:70:ec:ca:a7:65:57: 24:c5:62:5f:ef:0c:bc:d8:37:6e:78:f8:9c:2a:6b: c3:da:9b:69:e2:c1:9a:4e:f5:3b:e3:cb:10:7a:72: 88:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:86:9C:37:26:30:DD:9B:87:E8:9A:1D:9A:5A:53:9B:68:FF:1B:7D X509v3 Authority Key Identifier: keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:32:c4:cd:9b:79:90:fa:69:94:2c:36:43:b1:22:3d:78:7a: bc:12:29:7b:47:4f:1e:7b:91:27:0d:95:92:41:7c:26:e1:4f: 7c:95:1f:04:a1:0d:82:18:e4:72:ba:31:7e:79:69:28:5d:37: e4:98:8c:33:84:96:7e:19:63:33:fd:7e:0d:72:17:27:fc:26: 8a:1d:55:54:e0:31:e5:69:38:19:49:58:59:4e:75:80:e0:56: 41:8d:2f:9e:36:c1:1e:3a:c6:27:68:28:1c:e9:a7:b4:b0:cd: 6f:a3:8e:89:da:12:59:0f:6f:e0:67:c8:0f:e3:e9:a9:99:35: 5c:c0:d4:5b:bd:f8:12:2f:51:96:e1:e7:e0:3e:21:d1:f9:3c: 46:a7:7a:9e:4e:44:f2:ad:c8:fc:16:15:3f:df:0a:80:43:f0: 34:cd:b4:f9:cc:71:77:96:26:ed:6e:60:b0:54:c4:38:2a:de: 1a:c2:0d:5c:ff:42:5e:ec:33:e9:92:7a:ba:cf:0f:ae:6e:62: 4a:2a:42:0b:b0:54:18:87:9e:6b:2a:0c:ed:33:1c:45:c6:f7: dd:b3:cd:b7:52:e6:74:44:b6:c0:f0:d2:25:e0:ad:f6:1e:34: 0d:e5:5e:fc:68:c8:3d:e4:c5:9f:a1:c5:d4:86:c6:2e:50:ad: 94:49:a8:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZQfzvzRzXQkEqM+at6LboXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmN2RhNTY4YWQwMjdiOWUyNDljMTNlMjIzZDMyMjc2OTg4 MWEyOWYwHhcNMjUwNDIwMDAwMDM3WhcNMjUwNDIxMDAwMDM3WjAzMTEwLwYDVQQD EygwYTg2OWMzNzI2MzBkZDliODdlODlhMWQ5YTVhNTM5YjY4ZmYxYjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukjMeQaMkJNKSUMLEB/tfAsvzSCJ QUWo76lLhlBhQdcFVSxr6kZFxk1aRbuYxaJZ5oZsHuQ1BqlEDbH4e2+cVhZNFzNe cR9FPhxHfulGPyFGonVqRzAvTIHwiKvesbXZ5b/km9fQ6W/ttxq0JkXR5I2N7lEn cDTX1hKpjti3rg2R87Jvz/KT1NG3hMJVSMW7gfD2mF/hTJXBXpB/rQ+ASF57jLZb vMTDstQ9/3yA5KO3KBJ1WqHNziDHh3wCQs8gMJ7dFgi5a9oSrTlm7/j0zjBViedB qUS1KkBw7MqnZVckxWJf7wy82DduePicKmvD2ptp4sGaTvU748sQenKIkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAqGnDcmMN2bh+iaHZpaU5to/xt9MB8GA1UdIwQY MBaAFF99pWitAnueJJwT4iPTInaYgaKfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUt Mzc1NzUzOWMyYWM5LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUtMzc1NzUzOWMyYWM5 LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGDLEzZt5 kPpplCw2Q7EiPXh6vBIpe0dPHnuRJw2VkkF8JuFPfJUfBKENghjkcroxfnlpKF03 5JiMM4SWfhljM/1+DXIXJ/wmih1VVOAx5Wk4GUlYWU51gOBWQY0vnjbBHjrGJ2go HOmntLDNb6OOidoSWQ9v4GfID+PpqZk1XMDUW734Ei9RluHn4D4h0fk8Rqd6nk5E 8q3I/BYVP98KgEPwNM20+cxxd5Ym7W5gsFTEOCreGsINXP9CXuwz6ZJ6us8Prm5i SipCC7BUGIeeayoM7TMcRcb33bPNt1LmdES2wPDSJeCt9h40DeVe/GjIPeTFn6HF 1IbGLlCtlEmoBw== -----END CERTIFICATE-----Generated at Sun Apr 20 03:28:51 2025 by rpki-client