$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft File: BpLF8WMTZTQlvEZxBYdeOil8_5s.mft (raw, json) Hash identifier: UgQ8IK2usqXCu0BSf1xWLBnzSz4GjvTTYRD7YA1zTMQ= Subject key identifier: FA:16:BA:B8:66:88:6F:06:E8:10:45:73:73:41:93:4B:B3:27:07:A6 Authority key identifier: 06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B Certificate issuer: /CN=0692c5f16313653425bc467105875e3a297cff9b Certificate serial: 019758DB90B7880159B50C8CD3A1EC5D6B6C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft Manifest number: 0858 Signing time: Tue 10 Jun 2025 08:01:13 +0000 Manifest this update: Tue 10 Jun 2025 08:01:13 +0000 Manifest next update: Wed 11 Jun 2025 08:01:13 +0000 Files and hashes: 1: 6m4iBU1uV9OjtT-yI0kHDyi4gLg.roa (hash: N5jGzrk7sta0axX9QvqTjHgaFwV4arIObuPbt2KJNnM=) 2: 7tTZk2wCmakp5M5T1YuiU8TuWxw.roa (hash: 8JeqZuwRL8gNhmaq+aEKdQ907Eg7DEpF3/RheOxRpLQ=) 3: 84TrX0qs1Y4yZ95W-q51Grc9rH0.roa (hash: sAIYXtIgwoe7qa6SiMh9Mq7V0vDYEf6NPqM5EjqisbM=) 4: BpLF8WMTZTQlvEZxBYdeOil8_5s.crl (hash: Qp6lvZJdQE7rO0quUMc1MYa1qZ3gdInCQiz1le9gUiI=) 5: DH2KmHptf0XCrxVYDl8SWJ6n_OU.roa (hash: 1p3/Uw0Hzg9UQAF7EIOu+m40aaRU5MBeT7UYxTAJl5M=) 6: I0lZ-wnGmJHIeWk4JSccdYLGI-0.roa (hash: LnR75ICh/pu9YTgE61/TkYN/sNwF0ls7eWnRXUdZNeI=) 7: Qgkw5GtNRcsOFSShf-z0xF_tI6I.roa (hash: mZ0NWqp/jNCXFtNZo5WbQ6xy8wKTYFTecNdM8OwQcds=) 8: _6aivCsAWH-kqctPZhR5amDxfsA.roa (hash: nWAJSN6GSWrgvbg0VuNNKDg0OVs+juuAy8NmC7uqE34=) 9: acXjyXZbDzNfFna5ZWRHDz6K5YE.roa (hash: sm9lkJZIavBC2tJvS1A50JKwZEAycxeog0lweVtHcXM=) 10: e31KG_8dad-8ny4PFtbT297H7Sw.roa (hash: GQmunQnH91NAJBx06ug5Vq/w7qs39J3e7sMnlc2OutE=) 11: ej-rBCJmnu-miAXBE5PIqlt8TFo.roa (hash: Z10wztRjBSEGOvVc7tXz4TILdxZp89J4+J08gFrTvVU=) 12: gcpaoxI47uAbfYR_M1Dl9LctMNk.roa (hash: hG0WyItsQE7UjKos3HOIuobdbMTAqgbbv6pzl/cN/6g=) 13: pSbX-PyBbCbb6sLnIu1jAWYX5ak.roa (hash: GoC5K97gl9mRDyYEwiwyowaJojmTfgrX+bjBIRbHQpg=) 14: xe-KS40JXwA4DSnnilL2aYekU18.roa (hash: trUq9aYHMLBwRD59FTvYVzHcchsIZi2f2vJplQh7+rM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Jun 2025 00:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:58:db:90:b7:88:01:59:b5:0c:8c:d3:a1:ec:5d:6b:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0692c5f16313653425bc467105875e3a297cff9b Validity Not Before: Jun 10 08:01:13 2025 GMT Not After : Jun 11 08:01:13 2025 GMT Subject: CN=fa16bab866886f06e81045737341934bb32707a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:19:c2:b4:a9:16:e2:be:36:44:25:a8:0c:03: f3:61:36:b4:87:13:a9:05:51:76:36:c3:d1:8a:e4: bc:b7:b7:63:42:d7:ad:23:d2:a2:04:eb:38:d9:cf: db:58:7b:d6:88:f2:95:ca:89:89:3d:21:f7:cb:07: e8:17:c2:0b:14:bb:9b:74:25:b2:35:6c:55:6f:3b: 60:9b:8a:34:b5:3f:ae:de:61:e0:b8:18:c3:57:06: ae:bf:b2:84:80:61:fa:f9:53:f0:eb:fc:3b:8b:59: e9:5d:e8:0b:f5:c0:50:75:8b:ba:c4:7c:62:56:67: 1a:cf:18:9c:17:76:9b:b3:63:28:0d:ea:d4:2b:a1: 24:f4:64:78:76:47:f7:ff:f9:9f:50:f8:43:b3:d6: f0:c5:73:a9:19:f1:14:fa:f1:18:e9:5e:e0:d2:41: ca:66:36:02:a5:13:c7:98:3e:d7:8d:0d:bc:a6:b9: ae:50:43:c6:ef:96:a4:e1:d7:88:e8:ae:70:69:8f: cb:3c:57:a3:77:65:dd:1e:8d:21:87:2b:01:10:92: 39:de:39:a8:58:0c:2a:02:2a:1a:6e:db:77:01:0e: c5:ae:f1:9c:0f:d5:18:36:ec:5d:04:84:58:33:1c: f4:32:5e:3d:2f:52:76:47:84:c3:db:39:94:fd:5e: 9a:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:16:BA:B8:66:88:6F:06:E8:10:45:73:73:41:93:4B:B3:27:07:A6 X509v3 Authority Key Identifier: keyid:06:92:C5:F1:63:13:65:34:25:BC:46:71:05:87:5E:3A:29:7C:FF:9B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpLF8WMTZTQlvEZxBYdeOil8_5s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/779928-881c-433a-b243-c9f57e959ef1/1/BpLF8WMTZTQlvEZxBYdeOil8_5s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:d3:87:43:80:94:b5:79:39:cd:4a:2c:de:8b:43:a3:95:0f: ea:05:85:c1:30:65:bd:92:c4:e5:27:f2:76:3c:c8:c5:ea:f7: 8f:05:13:dd:7e:c7:73:13:4d:91:76:18:c6:f2:c0:59:bb:6c: c6:fe:ed:fa:55:d1:bb:48:87:a7:b3:78:f5:01:8a:80:f3:98: 67:17:3c:96:3e:46:3d:08:00:d2:b9:47:6e:f4:fc:46:34:0d: e6:0e:06:6a:b3:d9:c3:a3:c1:85:32:a3:e7:85:8a:bf:a9:0f: bc:e4:fa:d7:23:98:55:ab:e0:20:93:21:6e:5e:53:25:e1:dc: 10:62:d8:b0:a0:d3:3d:7b:9e:12:48:f9:b5:43:63:2a:ad:8d: 32:85:6b:8c:f4:2d:9a:6d:10:a8:d1:3d:fc:9b:29:f5:48:31: 83:75:36:a7:3d:2b:ab:9f:54:55:cf:57:9a:ac:79:cf:66:e2: 41:de:de:6e:7b:8f:bc:4d:6d:40:36:69:8c:53:49:eb:32:00: 35:36:08:d1:bd:cd:60:1b:c2:ff:f5:ee:72:f8:7d:9f:3c:6c: df:18:b0:00:c8:6e:54:f5:77:73:0a:b8:a8:24:aa:ec:b3:0c: be:95:64:3a:99:f8:87:ef:7b:0d:ac:52:6a:a8:fd:10:68:fa: 0d:8b:f9:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdY25C3iAFZtQyM06HsXWtsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2OTJjNWYxNjMxMzY1MzQyNWJjNDY3MTA1ODc1ZTNhMjk3 Y2ZmOWIwHhcNMjUwNjEwMDgwMTEzWhcNMjUwNjExMDgwMTEzWjAzMTEwLwYDVQQD EyhmYTE2YmFiODY2ODg2ZjA2ZTgxMDQ1NzM3MzQxOTM0YmIzMjcwN2E2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArhnCtKkW4r42RCWoDAPzYTa0hxOp BVF2NsPRiuS8t7djQtetI9KiBOs42c/bWHvWiPKVyomJPSH3ywfoF8ILFLubdCWy NWxVbztgm4o0tT+u3mHguBjDVwauv7KEgGH6+VPw6/w7i1npXegL9cBQdYu6xHxi VmcazxicF3abs2MoDerUK6Ek9GR4dkf3//mfUPhDs9bwxXOpGfEU+vEY6V7g0kHK ZjYCpRPHmD7XjQ28prmuUEPG75ak4deI6K5waY/LPFejd2XdHo0hhysBEJI53jmo WAwqAioabtt3AQ7FrvGcD9UYNuxdBIRYMxz0Ml49L1J2R4TD2zmU/V6amwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPoWurhmiG8G6BBFc3NBk0uzJwemMB8GA1UdIwQY MBaAFAaSxfFjE2U0JbxGcQWHXjopfP+bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMt YzlmNTdlOTU5ZWYxLzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS83Nzk5MjgtODgxYy00MzNhLWIyNDMtYzlmNTdlOTU5ZWYx LzEvQnBMRjhXTVRaVFFsdkVaeEJZZGVPaWw4XzVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJdOHQ4CU tXk5zUos3otDo5UP6gWFwTBlvZLE5SfydjzIxer3jwUT3X7HcxNNkXYYxvLAWbts xv7t+lXRu0iHp7N49QGKgPOYZxc8lj5GPQgA0rlHbvT8RjQN5g4GarPZw6PBhTKj 54WKv6kPvOT61yOYVavgIJMhbl5TJeHcEGLYsKDTPXueEkj5tUNjKq2NMoVrjPQt mm0QqNE9/Jsp9Ugxg3U2pz0rq59UVc9Xmqx5z2biQd7ebnuPvE1tQDZpjFNJ6zIA NTYI0b3NYBvC//Xucvh9nzxs3xiwAMhuVPV3cwq4qCSq7LMMvpVkOpn4h+97DaxS aqj9EGj6DYv5OA== -----END CERTIFICATE-----Generated at Tue Jun 10 10:25:23 2025 by rpki-client