$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft File: dOPDNpcglLGowT1BgWhX0Zejquk.mft (raw, json) Hash identifier: bZwtwMprr9obpBeS4xMqvgwUfmMznUGeVXDCk1Idn74= Subject key identifier: 94:3B:C1:F1:01:59:4F:90:AA:91:84:7B:EA:06:51:4F:70:E4:67:60 Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9 Certificate serial: 0196059C587C097EC90ECA35DE21B38315C6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft Manifest number: 11F2 Signing time: Sat 05 Apr 2025 11:00:54 +0000 Manifest this update: Sat 05 Apr 2025 11:00:54 +0000 Manifest next update: Sun 06 Apr 2025 11:00:54 +0000 Files and hashes: 1: 05CufssDJG0pTAbK0ZW527iD2UU.roa (hash: BGjazq+URRQ8AjeY79SbxnXbTrLwkTMUsC+q970r9fs=) 2: 1jpCyAps9bajWpTTNjuuJqkvGNw.roa (hash: QdNF4dszmqN93C6OMT7lYcdmskEQt8kQtHTCFEeRLK4=) 3: B-IzhwSKXhHkz88nSETOGD9yRG4.roa (hash: YnLpp9fGmyMsduAjb3ebFR0Lsy/94n7A+dxRiyz9BXo=) 4: VJ6MDr9v2VTJjopln-NK2ojxFwc.roa (hash: aCjSF+Bt+cDnTvcdibhV9s05hQuvY9LCYp3eMrgD2Ks=) 5: YOcpXFVJRTJW2caFAPTppkNQBuk.roa (hash: bsMm8G8+2Vegzn+c1SqEObi1wuYbeOXaQ994ZEYf674=) 6: ZkXHXACPVBEyaSWAI4Y5TiQ0uXg.roa (hash: 7IrCQhHl7e+sxv1qd9FACB7rpVFTzzOf7CaAsOq9lEE=) 7: a1U9llCdwrEqU4GkcwBsuwGny80.roa (hash: x9+7kA4QQzpZS4+gdNTWeXV2Ehq7i5FwV0w3Ws0zS7A=) 8: bilxvgHa_ortWdZiJoCPu9q2EO4.roa (hash: l/1X47j3OP5z+Rp05LuTXjyl7yZpgOm/aXT90ziTHDc=) 9: btX-zAe_zEJQ3ltM7sZKTKWNtzU.roa (hash: FXQNguGpvehosedHQRjCf06rJkvh5KY35ySN2Wig1dE=) 10: dOPDNpcglLGowT1BgWhX0Zejquk.crl (hash: 93BB3o93y9xi0loe3qtrZeP2QCoojGsTHCwsHD1iAic=) 11: leLN7dUwqNQXTkicjPodaPNaHrA.roa (hash: /TZBYmyqPdbIBcWc+Ubi8mL2e3Sg1zgKUo/8XZMZsK8=) 12: ltEUPJ59iMmxTdNEYLGbM1Yq6jY.roa (hash: 4OyHOUV/gpG2mHKMCDQGjjKuCFHSFtOInlqympBF1Os=) 13: pzyfVcqGqM8oIh9yspKnplAOyo4.roa (hash: hsiUYyCYakxAYsQctvaT1faoOH457ARGeeeeMVZVUZk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 11:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:05:9c:58:7c:09:7e:c9:0e:ca:35:de:21:b3:83:15:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9 Validity Not Before: Apr 5 11:00:54 2025 GMT Not After : Apr 6 11:00:54 2025 GMT Subject: CN=943bc1f101594f90aa91847bea06514f70e46760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a9:94:5c:53:5d:6c:e1:51:eb:b1:13:34:29: 45:4f:1a:ad:e8:69:de:b9:6e:28:ec:ba:22:00:3e: c3:76:a0:f8:8a:76:04:8d:b7:42:26:39:24:a7:5b: 1d:fa:b5:0a:c0:84:2c:22:99:82:3d:0b:0b:26:45: 4e:b6:f7:91:41:47:8a:0a:59:6b:0f:a9:66:23:a6: 79:88:72:fc:8c:f1:8a:d7:c9:a6:ee:6e:97:c4:2f: 8b:76:af:2f:05:0a:25:41:6c:d3:94:3f:0f:96:1c: a6:e4:f9:aa:40:e5:ef:cb:ed:0a:74:4d:46:31:cb: 69:be:10:49:4d:bd:34:76:53:bb:e9:91:ee:b4:be: 7c:8d:31:fc:32:f9:6b:59:94:2c:61:a1:52:a3:6a: 49:1d:3a:12:02:77:4d:21:c1:1a:a5:07:19:f5:9f: 10:90:0d:97:c5:22:01:89:dd:16:2c:fd:9a:62:01: 3d:ed:af:40:d6:f9:3b:4d:02:7b:bc:36:29:a2:fd: 32:c9:16:d8:3d:bd:d7:fc:f1:6c:c9:ff:71:3d:e5: 7f:7c:ff:e2:c9:02:00:9d:94:96:fb:51:01:8b:82: 73:5d:29:c2:4a:f2:0a:a4:58:ac:49:32:fa:e9:ac: f2:b0:9d:94:ce:ea:0f:54:b8:9e:46:1c:dc:bb:06: 38:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3B:C1:F1:01:59:4F:90:AA:91:84:7B:EA:06:51:4F:70:E4:67:60 X509v3 Authority Key Identifier: keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:eb:73:33:2a:39:ec:1a:c8:0f:96:2f:c2:6a:49:61:e6:a2: 1e:0f:2e:24:59:17:12:aa:26:9d:db:e6:b3:34:b3:a2:b7:4f: 1f:80:42:3c:17:df:f3:46:b9:3f:bb:23:3e:fa:6d:e7:44:73: b5:4e:50:35:a1:f9:23:58:dd:61:f5:0a:bb:0e:5d:26:b9:28: 09:48:bd:38:a6:fa:c4:27:ac:13:15:78:a7:0c:17:bc:62:13: 4f:5b:0d:91:b6:85:f4:41:c7:87:d2:87:90:bd:a8:6d:5b:7c: 2e:f7:5f:fd:44:e1:23:11:d2:1a:f8:ea:07:7e:34:58:8f:44: 2a:f0:a8:cb:be:ba:3a:98:98:d2:98:4e:19:37:8f:e1:0f:60: 36:ce:d9:e3:88:70:85:86:36:66:dd:31:a6:6e:d1:86:86:dc: 4e:4b:d0:39:66:4c:60:20:21:35:c0:9d:8b:b3:44:8e:04:35: 74:f7:20:61:ee:8b:55:e2:2c:ee:d0:69:0f:c2:b9:75:88:cb: 89:e3:44:79:e0:c0:91:20:dd:80:da:f1:ea:71:9f:a3:2a:34: 52:6f:f8:b8:67:d2:fa:09:84:18:bd:e7:7a:d7:df:84:ed:fe: 99:db:25:84:57:f5:a9:f7:8e:95:f3:2e:2b:f0:40:9b:dd:49: 53:78:8b:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYFnFh8CX7JDso13iGzgxXGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0ZTNjMzM2OTcyMDk0YjFhOGMxM2Q0MTgxNjg1N2QxOTdh M2FhZTkwHhcNMjUwNDA1MTEwMDU0WhcNMjUwNDA2MTEwMDU0WjAzMTEwLwYDVQQD Eyg5NDNiYzFmMTAxNTk0ZjkwYWE5MTg0N2JlYTA2NTE0ZjcwZTQ2NzYwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6mUXFNdbOFR67ETNClFTxqt6Gne uW4o7LoiAD7DdqD4inYEjbdCJjkkp1sd+rUKwIQsIpmCPQsLJkVOtveRQUeKCllr D6lmI6Z5iHL8jPGK18mm7m6XxC+Ldq8vBQolQWzTlD8Plhym5PmqQOXvy+0KdE1G MctpvhBJTb00dlO76ZHutL58jTH8MvlrWZQsYaFSo2pJHToSAndNIcEapQcZ9Z8Q kA2XxSIBid0WLP2aYgE97a9A1vk7TQJ7vDYpov0yyRbYPb3X/PFsyf9xPeV/fP/i yQIAnZSW+1EBi4JzXSnCSvIKpFisSTL66azysJ2UzuoPVLieRhzcuwY48wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJQ7wfEBWU+QqpGEe+oGUU9w5GdgMB8GA1UdIwQY MBaAFHTjwzaXIJSxqME9QYFoV9GXo6rpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAt YTZjNDllYjI4Mjg3LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZi8xOGM0OTgtMjE3MS00ZTFjLThkODAtYTZjNDllYjI4Mjg3 LzEvZE9QRE5wY2dsTEdvd1QxQmdXaFgwWmVqcXVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjetzMyo5 7BrID5YvwmpJYeaiHg8uJFkXEqomndvmszSzordPH4BCPBff80a5P7sjPvpt50Rz tU5QNaH5I1jdYfUKuw5dJrkoCUi9OKb6xCesExV4pwwXvGITT1sNkbaF9EHHh9KH kL2obVt8Lvdf/UThIxHSGvjqB340WI9EKvCoy766OpiY0phOGTeP4Q9gNs7Z44hw hYY2Zt0xpm7RhobcTkvQOWZMYCAhNcCdi7NEjgQ1dPcgYe6LVeIs7tBpD8K5dYjL ieNEeeDAkSDdgNrx6nGfoyo0Um/4uGfS+gmEGL3netffhO3+mdslhFf1qfeOlfMu K/BAm91JU3iLqA== -----END CERTIFICATE-----Generated at Sat Apr 5 21:17:39 2025 by rpki-client