$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft File: X32laK0Ce54knBPiI9MidpiBop8.mft (raw, json) Hash identifier: Vy/VIAnLO3a1b1BOcONrppK25zJWHx631i4y+oXf/Uw= Subject key identifier: 33:5A:75:A4:12:82:DF:03:18:26:74:F2:C4:C5:DF:8C:A8:F3:0F:2C Authority key identifier: 5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F Certificate issuer: /CN=5f7da568ad027b9e249c13e223d322769881a29f Certificate serial: 0197499F0C379493A81E23CAD6E9B5650B43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft Manifest number: 0AF4 Signing time: Sat 07 Jun 2025 09:00:49 +0000 Manifest this update: Sat 07 Jun 2025 09:00:49 +0000 Manifest next update: Sun 08 Jun 2025 09:00:49 +0000 Files and hashes: 1: Dhg938LLNxihNYriqStR3oqs6Jg.roa (hash: Aj+6lvIDsodEZ6I55Us8ZFj5GtVjSmfFFjL8I/MfYqo=) 2: FuntCXoBht24QvgtEtbVZEuCdp0.roa (hash: JUPlc/PvxJjzfETFQC1BU7Iej8ynSg/XdYSUf902Tpo=) 3: OSozPCauqZRrj5FYZCZShQYan60.roa (hash: gJTuyuPcePva2Pf/4Z3V1y7VTQjYV+P6FusXSLPZfSw=) 4: X32laK0Ce54knBPiI9MidpiBop8.crl (hash: 2M50fC/Hdee7XezQB7Z2jCsNVGN3vpTrx8szaQKDKlc=) 5: XjVu2IyXljFzhSvYma_h3-clfVU.roa (hash: nT21YokFB5zQvbm3JPkkRJDjEHGU38C24xQDpQHQGAI=) 6: ZkkDzXmdTsLG1oQnHCXCpjMrN0c.roa (hash: vhxQZdTakyknsbSaFbQwA3rjVR03VcM9s8jNMsMZ03E=) 7: jUQ_fZXFaYGd4zaZnSgAlOdWse0.roa (hash: TxGng+dp5AKM1yJ/Crw7UDMDcGHP31uzC9AJJeqBDMA=) 8: oSGRjgd5g7uxmIyMg55GeDp1lcQ.roa (hash: yVVI9w+n8DQ5LZ0pU0EZPfP/S8D3Imwu6pg6ds8XII0=) 9: s84uwW_-i_SHLp2X5wNbbXCbos0.roa (hash: XmZwP1Dphpy/OpROhUP0RXS2PeMw5xbgxdsjXIheFhc=) 10: ztzJ9WkVuGW2KUZ-NYOffXMn-mU.roa (hash: 0aNwIJcWE8BWdRRapb0b1h0he6NRcvrOvXa3hI/Nxv4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 09:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:49:9f:0c:37:94:93:a8:1e:23:ca:d6:e9:b5:65:0b:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5f7da568ad027b9e249c13e223d322769881a29f Validity Not Before: Jun 7 09:00:49 2025 GMT Not After : Jun 8 09:00:49 2025 GMT Subject: CN=335a75a41282df03182674f2c4c5df8ca8f30f2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:67:d1:6d:26:16:67:37:50:7b:e9:d4:80:0f: aa:34:6c:07:15:97:86:a5:65:19:59:aa:c2:e3:1d: a4:16:ce:42:bb:85:a1:a9:be:ad:fc:f5:94:a5:ec: fe:3c:d3:59:a0:fc:6e:26:cf:e3:a6:f2:07:3a:6f: 4f:05:cd:6c:d4:72:68:43:8b:f9:8a:97:8d:7e:3b: 1d:f3:e8:94:7d:52:87:14:e2:ff:50:bd:78:b2:af: d5:e5:bc:59:b1:92:2a:94:49:0f:d1:c8:4c:74:f9: 4c:db:50:a7:be:7d:7d:b1:43:e4:f7:87:03:de:67: a2:d9:f6:f2:aa:d5:17:7e:84:c1:a4:c1:91:fe:94: 98:31:29:d1:c7:be:34:58:e7:8f:77:a3:27:77:12: 12:52:b9:2f:81:95:4b:75:36:2d:0a:00:95:72:b4: 35:b4:0d:89:5d:25:76:f7:ba:ff:42:92:73:b0:11: 56:a9:5f:79:08:be:dc:27:99:0f:e5:51:65:cf:a6: 2c:08:61:a9:55:98:57:5e:0f:ca:05:98:1b:46:d1: 2d:bb:f0:6c:56:86:d6:4b:d0:ff:10:70:62:10:e8: ce:f9:5a:90:2c:ce:53:e7:1e:53:66:9f:37:08:d2: 9b:a3:84:2d:c1:35:75:ac:b1:3b:a8:57:5d:25:7e: fc:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5A:75:A4:12:82:DF:03:18:26:74:F2:C4:C5:DF:8C:A8:F3:0F:2C X509v3 Authority Key Identifier: keyid:5F:7D:A5:68:AD:02:7B:9E:24:9C:13:E2:23:D3:22:76:98:81:A2:9F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X32laK0Ce54knBPiI9MidpiBop8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/05488f-f4e0-4e6c-94f5-3757539c2ac9/1/X32laK0Ce54knBPiI9MidpiBop8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:36:85:b1:9d:c6:52:0b:13:7a:3a:7a:80:5d:84:34:79:ae: a0:76:8f:ad:64:2a:a5:42:b8:a4:9e:fe:bf:28:bd:63:13:dd: a2:99:ad:59:53:34:06:3f:2e:35:4a:f6:f8:ef:fd:65:ec:2b: 0c:ee:bd:03:73:ce:f3:4c:3b:66:ac:2e:d8:33:f8:b2:b7:13: 26:e8:24:14:20:a3:f5:71:90:e2:22:36:5e:fc:10:d2:15:54: 48:a0:f4:bf:51:04:4a:bc:92:70:3c:15:88:42:88:4f:56:76: 1c:cc:ba:37:a8:7a:7f:11:ef:95:68:23:37:39:1c:34:62:47: ef:1b:49:0a:8e:87:b5:2d:5b:2b:b8:1d:ec:38:91:8a:cf:e8: 07:74:bb:21:1d:90:25:8e:e2:e6:17:df:8e:8a:8d:61:48:14: fb:28:ca:ef:5b:e3:27:e7:f3:a0:51:21:eb:ff:6c:fc:9a:bf: 5a:b9:e4:a7:3f:f7:99:fa:aa:e6:d5:aa:8e:dd:79:24:f8:da: 2c:b9:99:a3:b9:10:09:bc:3b:4b:d6:ca:d9:38:0c:93:82:bd: f1:3d:60:b7:3f:6d:ed:e3:90:63:6c:05:d9:46:44:1c:32:7a: e0:e3:93:2f:97:d3:7a:dc:73:9c:b8:98:b3:c6:f3:30:d2:82: 03:c7:b1:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdJnww3lJOoHiPK1um1ZQtDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVmN2RhNTY4YWQwMjdiOWUyNDljMTNlMjIzZDMyMjc2OTg4 MWEyOWYwHhcNMjUwNjA3MDkwMDQ5WhcNMjUwNjA4MDkwMDQ5WjAzMTEwLwYDVQQD EygzMzVhNzVhNDEyODJkZjAzMTgyNjc0ZjJjNGM1ZGY4Y2E4ZjMwZjJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiGfRbSYWZzdQe+nUgA+qNGwHFZeG pWUZWarC4x2kFs5Cu4Whqb6t/PWUpez+PNNZoPxuJs/jpvIHOm9PBc1s1HJoQ4v5 ipeNfjsd8+iUfVKHFOL/UL14sq/V5bxZsZIqlEkP0chMdPlM21Cnvn19sUPk94cD 3mei2fbyqtUXfoTBpMGR/pSYMSnRx740WOePd6MndxISUrkvgZVLdTYtCgCVcrQ1 tA2JXSV297r/QpJzsBFWqV95CL7cJ5kP5VFlz6YsCGGpVZhXXg/KBZgbRtEtu/Bs VobWS9D/EHBiEOjO+VqQLM5T5x5TZp83CNKbo4QtwTV1rLE7qFddJX78YQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDNadaQSgt8DGCZ08sTF34yo8w8sMB8GA1UdIwQY MBaAFF99pWitAnueJJwT4iPTInaYgaKfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUt Mzc1NzUzOWMyYWM5LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS8wNTQ4OGYtZjRlMC00ZTZjLTk0ZjUtMzc1NzUzOWMyYWM5 LzEvWDMybGFLMENlNTRrbkJQaUk5TWlkcGlCb3A4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjTaFsZ3G UgsTejp6gF2ENHmuoHaPrWQqpUK4pJ7+vyi9YxPdopmtWVM0Bj8uNUr2+O/9Zewr DO69A3PO80w7Zqwu2DP4srcTJugkFCCj9XGQ4iI2XvwQ0hVUSKD0v1EESryScDwV iEKIT1Z2HMy6N6h6fxHvlWgjNzkcNGJH7xtJCo6HtS1bK7gd7DiRis/oB3S7IR2Q JY7i5hffjoqNYUgU+yjK71vjJ+fzoFEh6/9s/Jq/Wrnkpz/3mfqq5tWqjt15JPja LLmZo7kQCbw7S9bK2TgMk4K98T1gtz9t7eOQY2wF2UZEHDJ64OOTL5fTetxznLiY s8bzMNKCA8exsQ== -----END CERTIFICATE-----Generated at Sat Jun 7 17:24:27 2025 by rpki-client