$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft File: iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft (raw, json) Hash identifier: 07D4WZMrOgI9om5Id51U2+KHxw4Mswc9hp5bEUAD+nA= Subject key identifier: 47:2C:07:AB:69:80:8C:94:62:51:16:C5:56:80:DF:04:5E:C6:F6:B7 Authority key identifier: 89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 Certificate issuer: /CN=896a82a725ed22bb46847ae568912078de25c108 Certificate serial: 019631D0A93AB159506363DB0F3179824269 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft Manifest number: 14F7 Signing time: Mon 14 Apr 2025 01:01:20 +0000 Manifest this update: Mon 14 Apr 2025 01:01:20 +0000 Manifest next update: Tue 15 Apr 2025 01:01:20 +0000 Files and hashes: 1: 1DkWoYQm2CYL8NcPditLkUCz0lY.roa (hash: WyOC+C/qv1YH3uRFOHpvx69KEYldJQ9ngZYV7GVibxI=) 2: 6qHqGf1lu-fFKG9vb1_H15ADuJo.roa (hash: gDMApq50Y9wGQLSLp13vWrDWiuCmDUvoHVz6wC2AjEE=) 3: LSo0XxjpXr0DzXCFwSii4YX0VQQ.roa (hash: 2mkDU8WQtOKRRgS6azU91vya8dzOKN960jNf5zxA1Jo=) 4: YVY9nIlUnxzvYvUHcuswYdgv-5c.roa (hash: de7Nhke3BR4RbsVq7LgDRBaPDz0mhJShPdisp8UZut0=) 5: YaHy853da93BgH6RfguxUPJfVLo.roa (hash: 0j9KCyGYrKnVsUjih9K2QETrLLFsgZaBmann0nAUaSU=) 6: _PDfqiydgAhxO9j0sxCdFKtIkKc.roa (hash: YOuCdaiFwxVca+9zs4xrpramJM629b4/EHiWgyL8CG0=) 7: h5s-RrqHnVtybQpFRQ5VYLEm6yM.roa (hash: /wt/zGlyKyo5yBKQsxdlAjFg6RgIZkpoAWM7K7t2AFA=) 8: iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl (hash: 7iPutLsKqznAoKWJ6oR+lft0aoBFQilaMvwoUhIvZcw=) 9: kA7t86VhHLfxpZem9_pfnrfA8Jw.roa (hash: JdzmdB6Yw1EEixYlbi2OlJNyDFF6uk/A+LWmVNqQ7XY=) 10: w9tecX0WpG6EBeEQV6lN7pOizZM.roa (hash: r56/6xcnyNBLy2vRf5p/uK/JECPQgO4M3DafNXdoW0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 15 Apr 2025 01:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:31:d0:a9:3a:b1:59:50:63:63:db:0f:31:79:82:42:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=896a82a725ed22bb46847ae568912078de25c108 Validity Not Before: Apr 14 01:01:20 2025 GMT Not After : Apr 15 01:01:20 2025 GMT Subject: CN=472c07ab69808c94625116c55680df045ec6f6b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:65:e4:0d:f5:70:13:1c:77:99:40:b1:3b: 8d:10:f0:b9:e4:c5:6a:71:c1:65:e7:db:21:01:ea: 70:93:06:e2:a2:0d:c7:8b:4a:3e:d0:35:47:4f:60: 64:8e:e1:7e:2e:e5:56:6f:18:97:71:3d:62:ef:6d: 41:80:c3:9d:67:86:53:c1:36:59:82:11:28:95:77: d7:0f:cf:a5:4a:f9:90:d0:eb:4e:38:9a:bb:a7:8f: 8b:d1:ba:85:69:eb:8b:e3:cd:52:ef:af:13:c4:0c: 3c:61:87:12:c1:5a:cb:c8:8c:c0:f9:fe:5f:11:f0: 2b:93:42:35:cd:75:08:0e:23:12:fa:49:64:46:ed: 38:20:aa:45:89:b9:7f:7e:51:6f:aa:d7:07:8d:bf: 84:fc:e2:8c:67:d6:c4:0d:d6:1c:34:27:5f:ee:55: 58:a3:ff:4d:0d:1c:4c:d6:51:fb:84:e0:88:1b:a1: 1a:cc:88:1b:22:3a:b6:d1:f0:06:46:c8:e7:64:85: fd:97:ba:1b:fa:6b:d1:f8:43:b1:9e:47:7d:85:ae: c5:1b:3d:c6:f9:71:8c:f1:c8:50:7c:42:76:e0:d1: a2:60:8b:6c:92:b0:66:34:24:37:89:20:05:e9:53: 58:82:df:68:44:21:d4:ed:bc:1a:62:ee:d7:b3:23: de:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2C:07:AB:69:80:8C:94:62:51:16:C5:56:80:DF:04:5E:C6:F6:B7 X509v3 Authority Key Identifier: keyid:89:6A:82:A7:25:ED:22:BB:46:84:7A:E5:68:91:20:78:DE:25:C1:08 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWqCpyXtIrtGhHrlaJEgeN4lwQg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/3fc8da-3515-434d-9f0e-040127102209/1/iWqCpyXtIrtGhHrlaJEgeN4lwQg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:9e:1b:76:14:27:b6:9e:00:3c:8c:f2:96:f0:5c:75:f4:0b: c7:97:d8:2a:4f:cf:2e:0d:2a:76:18:43:a7:a9:74:84:4e:ee: f4:9c:24:64:ab:f4:8f:96:93:8a:42:7f:40:f9:79:fc:2b:5f: 1b:f9:e6:64:bf:f2:8a:32:55:c8:4e:70:d0:e7:03:09:4e:80: 02:61:53:05:ad:c6:a9:ee:35:14:8d:31:f2:fe:f3:a2:ff:0a: fe:54:aa:f8:03:49:3e:1a:38:67:58:0d:37:06:de:36:c9:0b: 65:0a:fe:d2:bb:4b:ef:56:27:33:34:b6:83:09:86:a6:14:38: 22:30:e8:66:1e:b3:dc:39:af:11:86:c3:05:68:1f:0d:ae:ba: ef:57:d1:62:c9:25:57:b6:97:a4:5f:c2:5c:02:8d:e1:eb:a8: 24:51:9d:4e:de:37:d5:35:dc:56:31:f3:f6:01:17:87:78:54: 83:ac:43:2a:5d:b1:92:98:9d:ea:79:a2:c9:ca:6d:2d:ef:65: b4:e0:12:64:18:5d:53:80:aa:d6:de:46:52:82:94:05:dc:ac: 21:c9:9d:9e:fc:08:a6:ba:dc:35:fb:aa:30:aa:3e:48:af:24: d3:76:2e:8b:85:83:c9:3c:b8:2b:b1:25:c1:a3:35:c4:4f:58: a1:d3:43:93 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYx0Kk6sVlQY2PbDzF5gkJpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg5NmE4MmE3MjVlZDIyYmI0Njg0N2FlNTY4OTEyMDc4ZGUy NWMxMDgwHhcNMjUwNDE0MDEwMTIwWhcNMjUwNDE1MDEwMTIwWjAzMTEwLwYDVQQD Eyg0NzJjMDdhYjY5ODA4Yzk0NjI1MTE2YzU1NjgwZGYwNDVlYzZmNmI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJ1l5A31cBMcd5lAsTuNEPC55MVq ccFl59shAepwkwbiog3Hi0o+0DVHT2BkjuF+LuVWbxiXcT1i721BgMOdZ4ZTwTZZ ghEolXfXD8+lSvmQ0OtOOJq7p4+L0bqFaeuL481S768TxAw8YYcSwVrLyIzA+f5f EfArk0I1zXUIDiMS+klkRu04IKpFibl/flFvqtcHjb+E/OKMZ9bEDdYcNCdf7lVY o/9NDRxM1lH7hOCIG6EazIgbIjq20fAGRsjnZIX9l7ob+mvR+EOxnkd9ha7FGz3G +XGM8chQfEJ24NGiYItskrBmNCQ3iSAF6VNYgt9oRCHU7bwaYu7XsyPeJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEcsB6tpgIyUYlEWxVaA3wRexva3MB8GA1UdIwQY MBaAFIlqgqcl7SK7RoR65WiRIHjeJcEIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUt MDQwMTI3MTAyMjA5LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC8zZmM4ZGEtMzUxNS00MzRkLTlmMGUtMDQwMTI3MTAyMjA5 LzEvaVdxQ3B5WHRJcnRHaEhybGFKRWdlTjRsd1FnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc54bdhQn tp4APIzylvBcdfQLx5fYKk/PLg0qdhhDp6l0hE7u9JwkZKv0j5aTikJ/QPl5/Ctf G/nmZL/yijJVyE5w0OcDCU6AAmFTBa3Gqe41FI0x8v7zov8K/lSq+ANJPho4Z1gN NwbeNskLZQr+0rtL71YnMzS2gwmGphQ4IjDoZh6z3DmvEYbDBWgfDa6671fRYskl V7aXpF/CXAKN4euoJFGdTt431TXcVjHz9gEXh3hUg6xDKl2xkpid6nmiycptLe9l tOASZBhdU4Cq1t5GUoKUBdysIcmdnvwIprrcNfuqMKo+SK8k03Yui4WDyTy4K7El waM1xE9YodNDkw== -----END CERTIFICATE-----Generated at Mon Apr 14 08:28:40 2025 by rpki-client