$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.mft File: ypzNgwt-AzCL9c8l5np_wr3glXw.mft (raw, json) Hash identifier: GmKclJeYJBk0LHjVYk8DskJZ5AFBK3xYVmS7bnwxho4= Subject key identifier: E5:8A:D0:BE:5E:15:AF:93:27:0A:5C:44:0A:E0:61:71:24:01:CF:45 Authority key identifier: CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C Certificate issuer: /CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c Certificate serial: 01960FE920C0799CFC7A0F4A3659CCDF2CF3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.mft Manifest number: 0A66 Signing time: Mon 07 Apr 2025 11:00:58 +0000 Manifest this update: Mon 07 Apr 2025 11:00:58 +0000 Manifest next update: Tue 08 Apr 2025 11:00:58 +0000 Files and hashes: 1: 1X-psqrhXoWJNm9AGHsWuX9CEYk.roa (hash: bW01QgSO3kxqUT/liNPe0TPUpwe3PqHFLx6Llohhsy8=) 2: 8nba-exF3ZHVESE2CvVjIKuU3UQ.roa (hash: jxvFl3q0Zgzzo4QwCA+FiBdsIMPCA+I2+5CHXaI0+OI=) 3: 8r7t-b2e_EfXl9RRs5_1IFRyNrs.roa (hash: 3TJUxM+AkCdJEf5nh+cTQupJ1vwGY1vydjkX1hVECCo=) 4: JPxVqOesXWA7UlnuVxuhJ41K4nE.roa (hash: WJ4EYG+ApUnDg4fMXPapVphOz6r73qJ1wqwoDoIYIpU=) 5: PEXdMp-4CvfhDpAVQ0Pz3ECZAhk.roa (hash: qaoxZI1AadmU8INHwPbDVXQK737+Qj88K4LOCtSbEyg=) 6: PFaPt8f1BXC24GQ6dyfAr47R1QA.roa (hash: wfai0T+UJzpZnxL10tPs80Oos9vwanBxSD/wrEIQWEo=) 7: e5Sy1VAry68r-4ha4VS5j2qDIh4.roa (hash: iAgJw0j0bHx4il0UO6E61c4MJfLKF0a3JiNbi25PF/w=) 8: jWt_FdPMKhJ6LBUGm4GuQwlMer0.roa (hash: JSe4tFMgywTUkhZKCdS6lj1tYUGBxWS17wo5Kf6yHnk=) 9: qjQhZowEfdGa2UYTjjFEd5YoNZU.roa (hash: TNuRM9AWklcY8X4FhEL9ThUHd3ohdbsa495akoRBBzs=) 10: ypzNgwt-AzCL9c8l5np_wr3glXw.crl (hash: mwqWuO/+iF5aJdXbZOJejnQc2Sx0zcuh8sykUKCnIyU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.mft rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 08 Apr 2025 11:00:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:0f:e9:20:c0:79:9c:fc:7a:0f:4a:36:59:cc:df:2c:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c Validity Not Before: Apr 7 11:00:58 2025 GMT Not After : Apr 8 11:00:58 2025 GMT Subject: CN=e58ad0be5e15af93270a5c440ae061712401cf45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:4a:4f:13:dc:b7:79:f8:1e:6a:44:72:23:76: 65:e0:68:3a:df:58:44:b8:36:41:b4:3c:6f:0b:ba: 41:75:56:89:5e:cc:4b:74:a0:59:e1:50:11:d9:a3: 4c:26:6b:16:e9:47:b4:00:7f:e7:61:83:7f:d5:3a: 3e:bb:54:fe:df:29:76:17:20:e7:03:59:a1:68:4f: b7:ae:3c:81:77:9e:37:7a:0b:a0:e1:b6:74:bd:35: 9a:81:29:c8:b0:3e:a4:f0:cd:13:1f:39:e3:90:8f: 60:51:10:92:bc:eb:64:34:71:15:e0:db:bb:45:e6: a7:3f:32:29:d3:22:44:05:26:20:94:87:60:f9:65: 1d:b6:d0:4f:45:96:fd:b2:f7:df:e7:52:76:b4:f7: ae:5b:5c:4c:b6:2e:f9:1d:4d:02:48:59:14:a3:34: 91:4e:0c:70:c1:3a:b3:a4:4a:6d:06:a3:fc:86:3a: e7:1e:fe:75:89:4e:63:ae:39:52:f2:eb:92:89:b9: 88:15:67:49:66:73:90:27:f4:25:7f:b9:7f:c7:69: 8c:0b:8f:e5:0d:bc:b2:ba:d9:1a:dc:45:2d:9e:3f: 4a:29:c2:4b:d2:cc:e3:63:b2:23:b1:fc:31:95:fc: a9:39:7f:ce:11:d1:e7:08:b1:d0:44:a4:bd:7c:30: 45:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:8A:D0:BE:5E:15:AF:93:27:0A:5C:44:0A:E0:61:71:24:01:CF:45 X509v3 Authority Key Identifier: keyid:CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:ba:f1:8d:89:2e:e7:0e:a2:b4:1b:44:64:36:09:ca:29:28: 55:b1:0f:d8:69:94:e2:6b:75:08:6d:5a:d4:67:a5:41:9c:8e: 85:69:a4:5b:9c:02:31:6d:5a:7d:1a:12:08:b1:c2:e9:ba:22: 9c:22:fa:35:9f:bf:93:a6:b8:44:ec:c1:2d:28:5a:f2:ac:97: e4:ea:42:28:e3:53:c5:52:b8:61:54:a1:9f:25:61:ea:43:1b: bf:43:68:f3:55:88:32:bc:f6:3b:3e:8b:99:b8:b7:35:9c:43: f2:54:76:e4:07:f6:bf:12:b0:fc:cd:93:8d:01:b9:da:bb:22: 15:47:40:61:32:bd:c6:f3:7f:ce:15:90:11:06:5b:1d:3e:7b: 23:cc:ce:2b:e2:7d:3c:3a:a8:cf:14:da:89:e4:a2:a1:0c:62: 2a:05:9a:fb:5d:88:ed:c2:97:62:bd:88:92:5c:74:6e:12:55: 6f:1f:e2:f3:2b:4a:57:61:be:75:7b:4b:55:31:40:8d:aa:d6: bc:56:ba:3e:b8:90:c1:04:ec:ef:15:84:61:1c:92:13:2e:ee: 84:3e:1d:27:99:5c:d5:b6:65:11:71:47:06:86:a1:c0:de:af: 3e:58:e9:a3:e4:24:68:7e:52:42:26:21:cc:36:30:dd:79:f1: f4:14:c5:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYP6SDAeZz8eg9KNlnM3yzzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNhOWNjZDgzMGI3ZTAzMzA4YmY1Y2YyNWU2N2E3ZmMyYmRl MDk1N2MwHhcNMjUwNDA3MTEwMDU4WhcNMjUwNDA4MTEwMDU4WjAzMTEwLwYDVQQD EyhlNThhZDBiZTVlMTVhZjkzMjcwYTVjNDQwYWUwNjE3MTI0MDFjZjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7EpPE9y3efgeakRyI3Zl4Gg631hE uDZBtDxvC7pBdVaJXsxLdKBZ4VAR2aNMJmsW6Ue0AH/nYYN/1To+u1T+3yl2FyDn A1mhaE+3rjyBd543egug4bZ0vTWagSnIsD6k8M0THznjkI9gURCSvOtkNHEV4Nu7 ReanPzIp0yJEBSYglIdg+WUdttBPRZb9svff51J2tPeuW1xMti75HU0CSFkUozSR TgxwwTqzpEptBqP8hjrnHv51iU5jrjlS8uuSibmIFWdJZnOQJ/Qlf7l/x2mMC4/l Dbyyutka3EUtnj9KKcJL0szjY7IjsfwxlfypOX/OEdHnCLHQRKS9fDBFYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOWK0L5eFa+TJwpcRArgYXEkAc9FMB8GA1UdIwQY MBaAFMqczYMLfgMwi/XPJeZ6f8K94JV8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveXB6Tmd3dC1BekNMOWM4bDVucF93cjNnbFh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9hNjhmMjEtOWZmOC00YTQ0LWEzNmQt ZDFjZGUyNDY1Zjg5LzEveXB6Tmd3dC1BekNMOWM4bDVucF93cjNnbFh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My9hNjhmMjEtOWZmOC00YTQ0LWEzNmQtZDFjZGUyNDY1Zjg5 LzEveXB6Tmd3dC1BekNMOWM4bDVucF93cjNnbFh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJbrxjYku 5w6itBtEZDYJyikoVbEP2GmU4mt1CG1a1GelQZyOhWmkW5wCMW1afRoSCLHC6boi nCL6NZ+/k6a4ROzBLSha8qyX5OpCKONTxVK4YVShnyVh6kMbv0No81WIMrz2Oz6L mbi3NZxD8lR25Af2vxKw/M2TjQG52rsiFUdAYTK9xvN/zhWQEQZbHT57I8zOK+J9 PDqozxTaieSioQxiKgWa+12I7cKXYr2Iklx0bhJVbx/i8ytKV2G+dXtLVTFAjarW vFa6PriQwQTs7xWEYRySEy7uhD4dJ5lc1bZlEXFHBoahwN6vPljpo+QkaH5SQiYh zDYw3Xnx9BTFQw== -----END CERTIFICATE-----Generated at Mon Apr 7 18:31:32 2025 by rpki-client