$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft File: iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft (raw, json) Hash identifier: UDKjMFEBcNTj76cY8aF7MtbtyDPWZlbZ2BcxXgXQ7s0= Subject key identifier: E3:74:79:D3:16:C1:80:29:C0:74:BE:4F:6A:F6:D6:D4:15:5C:97:C2 Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108 Certificate serial: 01974742F10175031436D14B4D36C889B4C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft Manifest number: 1588 Signing time: Fri 06 Jun 2025 22:00:58 +0000 Manifest this update: Fri 06 Jun 2025 22:00:58 +0000 Manifest next update: Sat 07 Jun 2025 22:00:58 +0000 Files and hashes: 1: 1DkWoYQm2CYL8NcPditLkUCz0lY.roa (hash: WyOC+C/qv1YH3uRFOHpvx69KEYldJQ9ngZYV7GVibxI=) 2: 6qHqGf1lu-fFKG9vb1_H15ADuJo.roa (hash: gDMApq50Y9wGQLSLp13vWrDWiuCmDUvoHVz6wC2AjEE=) 3: LSo0XxjpXr0DzXCFwSii4YX0VQQ.roa (hash: 2mkDU8WQtOKRRgS6azU91vya8dzOKN960jNf5zxA1Jo=) 4: YVY9nIlUnxzvYvUHcuswYdgv-5c.roa (hash: de7Nhke3BR4RbsVq7LgDRBaPDz0mhJShPdisp8UZut0=) 5: YaHy853da93BgH6RfguxUPJfVLo.roa (hash: 0j9KCyGYrKnVsUjih9K2QETrLLFsgZaBmann0nAUaSU=) 6: fRZWH_M0OyQ2q7C3l2YZBzviPzY.roa (hash: F07+RgoevJOf1u0ML2Jb2xCzFrPFpbtH07Gxnbmp3Hg=) 7: h5s-RrqHnVtybQpFRQ5VYLEm6yM.roa (hash: /wt/zGlyKyo5yBKQsxdlAjFg6RgIZkpoAWM7K7t2AFA=) 8: iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl (hash: Sdk8kw1aL1IeipmbXjXirjUdmgEonSBAEPyo3s/bawU=) 9: kA7t86VhHLfxpZem9_pfnrfA8Jw.roa (hash: JdzmdB6Yw1EEixYlbi2OlJNyDFF6uk/A+LWmVNqQ7XY=) 10: w9tecX0WpG6EBeEQV6lN7pOizZM.roa (hash: r56/6xcnyNBLy2vRf5p/uK/JECPQgO4M3DafNXdoW0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:47:42:f1:01:75:03:14:36:d1:4b:4d:36:c8:89:b4:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896a82a725ed22bb46847ae568912078de25c108 Validity Not Before: Jun 6 22:00:58 2025 GMT Not After : Jun 7 22:00:58 2025 GMT Subject: CN=e37479d316c18029c074be4f6af6d6d4155c97c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:45:0b:ef:c1:8b:48:80:06:e9:65:58:b8:21: f5:28:4e:56:43:e7:9a:34:d2:dc:b2:25:85:17:cb: a8:a9:fe:13:9a:9e:91:08:38:87:94:e5:40:92:38: d4:bc:8f:52:fc:81:71:0e:05:3c:5a:46:8f:b8:d1: 06:78:8f:97:18:86:6f:a9:a9:d6:66:d1:3c:8e:e2: 66:b6:e5:9c:28:c5:72:30:cd:ca:34:c5:b4:2d:f0: 5f:65:9a:e3:86:43:0e:27:11:41:13:88:fe:ac:da: b9:33:75:86:9c:f6:5b:90:3c:af:c0:bf:02:45:ec: a1:7c:4d:50:63:29:ca:e0:bd:96:cb:70:cb:1f:37: 9c:44:4f:e0:b4:2d:3f:e1:e8:ad:4e:64:03:d5:7b: 81:fe:02:f0:89:fe:de:0a:9b:4d:77:0a:62:ac:2f: 94:ac:22:4c:70:57:50:ab:41:59:1c:80:bd:b7:98: 5e:76:57:44:2d:8b:c2:25:41:f2:0d:8f:c7:1e:f6: 3d:3d:d9:5e:60:50:a7:63:6b:8b:02:b2:fe:4b:c3: 7a:df:2c:63:62:39:c8:78:d4:4e:58:b5:e2:fe:9f: 10:6f:ff:cc:89:76:44:52:23:a0:e7:30:4f:80:d0: 9e:23:4e:90:71:e6:7e:aa:d8:c7:34:17:86:69:14: be:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:74:79:D3:16:C1:80:29:C0:74:BE:4F:6A:F6:D6:D4:15:5C:97:C2 X509v3 Authority Key Identifier: keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:a9:b3:f0:ec:7c:59:a8:d1:7c:16:c1:6f:05:41:17:83:92: 3f:09:6d:3e:fd:50:d4:b8:f9:d7:2d:8c:a7:db:32:10:2c:b5: 2f:ea:a3:86:1f:fa:4e:59:d6:e6:26:d0:06:4f:c3:3a:46:1c: b8:55:6e:99:9b:a3:8f:b6:44:3c:c7:e3:2f:cd:0a:8d:b6:18: e8:23:43:d2:19:49:ac:8b:46:6d:6c:b7:b0:d2:80:18:46:09: 6b:77:18:96:44:84:b1:67:0b:59:81:cd:34:3c:83:9d:e8:94: 3f:58:b5:36:81:32:54:57:df:4f:57:74:38:bb:1f:77:26:8d: 6b:e1:82:39:76:f4:b0:9a:58:a1:97:30:90:5f:1d:4d:9f:95: cb:0d:d8:e2:d2:7c:50:a3:b9:cc:22:d0:15:a0:6d:b9:3f:b3: fc:eb:87:9e:2c:17:ef:ad:9b:1d:eb:9b:93:81:1f:3f:ec:f6: ac:e9:37:bb:4d:36:fe:4e:1f:65:f4:92:ee:55:5b:f1:41:ae: fc:d5:f6:33:47:33:92:84:73:ec:b5:54:0f:e7:6b:5c:12:85: 78:46:8c:ff:1c:1a:5c:e3:03:16:47:94:e9:cd:d7:2f:7e:73: 01:49:a4:a0:d7:17:d3:69:0d:03:ed:8d:95:ad:67:ed:ea:b7: 31:7b:0b:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdHQvEBdQMUNtFLTTbIibTIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmE4MmE3MjVlZDIyYmI0Njg0N2FlNTY4OTEyMDc4ZGUy NWMxMDgwHhcNMjUwNjA2MjIwMDU4WhcNMjUwNjA3MjIwMDU4WjAzMTEwLwYDVQQD EyhlMzc0NzlkMzE2YzE4MDI5YzA3NGJlNGY2YWY2ZDZkNDE1NWM5N2MyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0UL78GLSIAG6WVYuCH1KE5WQ+ea NNLcsiWFF8uoqf4Tmp6RCDiHlOVAkjjUvI9S/IFxDgU8WkaPuNEGeI+XGIZvqanW ZtE8juJmtuWcKMVyMM3KNMW0LfBfZZrjhkMOJxFBE4j+rNq5M3WGnPZbkDyvwL8C ReyhfE1QYynK4L2Wy3DLHzecRE/gtC0/4eitTmQD1XuB/gLwif7eCptNdwpirC+U rCJMcFdQq0FZHIC9t5hedldELYvCJUHyDY/HHvY9PdleYFCnY2uLArL+S8N63yxj YjnIeNROWLXi/p8Qb//MiXZEUiOg5zBPgNCeI06QceZ+qtjHNBeGaRS+QwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFON0edMWwYApwHS+T2r21tQVXJfCMB8GA1UdIwQY MBaAFIlqgqcl7SK7RoR65WiRIHjeJcEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUt MDQwMTI3MTAyMjA5LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUtMDQwMTI3MTAyMjA5 LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwqmz8Ox8 WajRfBbBbwVBF4OSPwltPv1Q1Lj51y2Mp9syECy1L+qjhh/6TlnW5ibQBk/DOkYc uFVumZujj7ZEPMfjL80KjbYY6CND0hlJrItGbWy3sNKAGEYJa3cYlkSEsWcLWYHN NDyDneiUP1i1NoEyVFffT1d0OLsfdyaNa+GCOXb0sJpYoZcwkF8dTZ+Vyw3Y4tJ8 UKO5zCLQFaBtuT+z/OuHniwX762bHeubk4EfP+z2rOk3u002/k4fZfSS7lVb8UGu /NX2M0czkoRz7LVUD+drXBKFeEaM/xwaXOMDFkeU6c3XL35zAUmkoNcX02kNA+2N la1n7eq3MXsLzw== -----END CERTIFICATE-----Generated at Sat Jun 7 01:23:43 2025 by rpki-client