$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft (raw, json) Hash identifier: UKjVG1KdecgrhZr3APZUkQyF5vpevm6eemq3llgic04= Subject key identifier: D0:4D:F2:99:9A:C5:05:8C:5B:C6:3D:61:B9:DA:70:5C:26:3A:13:BC Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 0196391B8FB98C42271A70D8BF5A98789F76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft Manifest number: 0845 Signing time: Tue 15 Apr 2025 11:00:29 +0000 Manifest this update: Tue 15 Apr 2025 11:00:29 +0000 Manifest next update: Wed 16 Apr 2025 11:00:29 +0000 Files and hashes: 1: 0UnS-IxSrSbJu0LMwZGgrlOMQaY.roa (hash: RlE1mBt+QrDUuTHvHAH0++Dmsi2Z+uRQ/Byv5g9xWBY=) 2: 1-MsC5JIxdLnLZFyHuf6RgL5WGhc.roa (hash: pKBlmn1z+pps27wu7UmvO8rAolauod4xSkZZnJ9W1vs=) 3: 2pvIQqdrnc-BOV2vOiV82aU9KnE.roa (hash: JAA8g6YNbUGTGs3DmgxNRM+sH++rPd6SoVFBQv/ksXw=) 4: 5iTlOOubPJODXH7vsUI7Wpq0ba8.roa (hash: VCwAilQGOK0VnPyRzIvdM0YYC7WGdN3kdeSa5Bw3IAA=) 5: Aktpx74XmatUTO0PsnrIQ8oLXas.roa (hash: yiP/SdOJNGEPMmg3Jf+uPMZaRzGu2ta2551I6jbIIyI=) 6: FMB-bLkFzuyKrNP2ugJeFR5FvcA.roa (hash: b4QarnLE9DJEtGHI3hEpn5pxBgsxCwePllqAAi4lx4c=) 7: RkzLHfWs_BL956tVkCeC3dIaNec.roa (hash: wKD0RAlNUVNkdZZ5vl809Igsg9tUDfvk8Sh/yVsSt8s=) 8: U-0XoRYDV1K8NeLT79sQu_iy4t8.roa (hash: QAJ2fJtDmsN9XNVxW3a/dJEvqFcETnDiO1SCagG2pSk=) 9: X9nzYcXU9EgIVl_7ZZWxlGNl4g4.roa (hash: wL/WH3TZ58EyBKIgJ0ej+sAXqdnuotdQ0gWq1xiVtwU=) 10: Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl (hash: nOQIY500qZ1RkqKqg2Hh53UPNVEl9EG2JQfTXwYXz/o=) 11: aQ7JsCHnSB2G4dfY_3yHXhj3Wo8.roa (hash: jc74/wQHOsinC7epcPYWAUkOMi5kreIozg0B86UPDDA=) 12: a_6EfM_eUhmEh3H7meW3ObA4-Go.roa (hash: NcCAQGLpBENo3heEl3G42fQyl7X50upMygvTrvmVy/A=) 13: hU6ysCSCwhi7AocVlZV2-kgfgvU.roa (hash: LrcKOnzG/efqMUBHkJ8AHRPoocasIQSiV6d2HPCgQgY=) 14: lO_bhdVoi0rApHqZUYrR4e0dET0.roa (hash: L6ri99HTG/n8zl4aG6bBJmgMqEKOzJ8HTJ12NQEy2Ow=) 15: yH-qgMAP1a-ONlIbLyS-3YiA-v8.roa (hash: 5ALF18aBSR3V/0UBc56QwyH3CpaKIq6eI34/1+3sXLg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 16 Apr 2025 08:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:39:1b:8f:b9:8c:42:27:1a:70:d8:bf:5a:98:78:9f:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Apr 15 11:00:29 2025 GMT Not After : Apr 16 11:00:29 2025 GMT Subject: CN=d04df2999ac5058c5bc63d61b9da705c263a13bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:31:c4:48:43:80:a5:9a:5d:87:00:3a:bc:6b: 33:3e:b9:c5:2a:cb:7c:a9:01:b4:7e:4d:e3:a4:0f: 9a:d8:7a:e3:f3:dc:0b:a1:c6:79:5a:39:75:66:91: 63:6f:18:79:97:db:78:d8:97:b7:c5:68:65:b9:4e: c6:6f:e5:7e:dc:6f:db:32:2a:21:a6:21:09:08:65: 56:89:fc:25:93:b3:4c:83:85:57:0f:18:41:a3:d1: bd:42:2f:0d:30:d7:f3:6f:61:c7:78:78:a5:08:5e: 14:ea:3f:e3:9f:69:3d:63:31:25:77:e8:04:d8:15: 6f:c6:e8:f6:55:f3:e6:a2:89:63:4e:23:06:0d:84: 90:c4:e7:a6:b0:71:58:52:5b:47:f5:c6:89:a1:67: 1f:a4:ab:83:8a:53:ef:a6:02:5a:98:33:6b:cf:60: e2:3a:da:23:69:18:2d:5f:d9:34:01:a2:40:10:bc: 23:7f:bc:fc:6a:e0:6b:d2:b2:a7:04:83:ac:eb:de: 75:c5:ce:96:6d:7a:28:22:c3:11:fc:61:f9:77:a4: 45:99:e7:4e:0c:b4:7b:71:ed:ff:e3:51:d7:e6:72: 36:05:46:0b:13:82:d5:bc:71:3e:3a:76:d0:fe:ce: aa:a4:87:42:fa:e3:85:59:4b:2d:9f:b2:72:f4:6c: 7a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:4D:F2:99:9A:C5:05:8C:5B:C6:3D:61:B9:DA:70:5C:26:3A:13:BC X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:e4:5f:73:c2:0e:c5:b2:e2:3d:0e:78:1e:36:ba:28:41:fd: cb:33:f6:c2:51:9a:14:4a:fb:92:b6:50:1e:23:0e:68:e5:65: 05:b2:f0:dd:94:16:44:9c:35:70:3b:5b:78:80:1d:f0:4f:04: 8f:f8:09:82:d7:bb:58:df:d6:da:07:d8:5b:d3:81:9a:59:6b: 77:8f:60:c1:fd:a1:ce:90:93:e7:bd:62:0c:de:57:59:aa:7d: c1:6f:cd:f6:3d:21:e0:01:14:4f:c0:d7:58:89:97:90:e1:b4: 7c:4e:26:a2:5e:03:79:77:27:5a:cb:79:cd:8f:94:86:64:72: e1:99:22:1a:e5:19:ec:a6:89:2c:13:f7:8d:1f:c1:7d:e0:f3: 77:92:6d:44:16:01:ff:6d:c8:30:84:c3:37:7b:2d:4e:9c:24: a2:a1:f5:92:ea:17:3b:18:7c:61:46:e5:b7:f1:d9:16:a7:fe: c0:d5:14:90:92:fa:67:26:79:cf:da:6a:7b:b6:31:41:ed:37: 56:bb:c7:72:c0:33:38:18:4a:2f:26:b4:a9:1a:c9:d4:ac:cd: 06:1c:37:c8:7b:d6:0c:54:d2:94:a7:5b:bf:4f:56:25:54:74: ec:ec:1d:71:21:4c:af:27:12:b9:df:72:fc:28:13:de:4f:a1: f4:5b:8c:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZY5G4+5jEInGnDYv1qYeJ92MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjUwNDE1MTEwMDI5WhcNMjUwNDE2MTEwMDI5WjAzMTEwLwYDVQQD EyhkMDRkZjI5OTlhYzUwNThjNWJjNjNkNjFiOWRhNzA1YzI2M2ExM2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmTHESEOApZpdhwA6vGszPrnFKst8 qQG0fk3jpA+a2Hrj89wLocZ5Wjl1ZpFjbxh5l9t42Je3xWhluU7Gb+V+3G/bMioh piEJCGVWifwlk7NMg4VXDxhBo9G9Qi8NMNfzb2HHeHilCF4U6j/jn2k9YzEld+gE 2BVvxuj2VfPmooljTiMGDYSQxOemsHFYUltH9caJoWcfpKuDilPvpgJamDNrz2Di OtojaRgtX9k0AaJAELwjf7z8auBr0rKnBIOs6951xc6WbXooIsMR/GH5d6RFmedO DLR7ce3/41HX5nI2BUYLE4LVvHE+OnbQ/s6qpIdC+uOFWUstn7Jy9Gx6PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNBN8pmaxQWMW8Y9YbnacFwmOhO8MB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgeRfc8IO xbLiPQ54Hja6KEH9yzP2wlGaFEr7krZQHiMOaOVlBbLw3ZQWRJw1cDtbeIAd8E8E j/gJgte7WN/W2gfYW9OBmllrd49gwf2hzpCT571iDN5XWap9wW/N9j0h4AEUT8DX WImXkOG0fE4mol4DeXcnWst5zY+UhmRy4ZkiGuUZ7KaJLBP3jR/BfeDzd5JtRBYB /23IMITDN3stTpwkoqH1kuoXOxh8YUblt/HZFqf+wNUUkJL6ZyZ5z9pqe7YxQe03 VrvHcsAzOBhKLya0qRrJ1KzNBhw3yHvWDFTSlKdbv09WJVR07OwdcSFMrycSud9y /CgT3k+h9FuMLw== -----END CERTIFICATE-----Generated at Tue Apr 15 13:52:43 2025 by rpki-client