$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft (raw, json) Hash identifier: JvgczBK3qbTvSvoGvRNVD+NEmxJ50eBZA39wTneVvm8= Subject key identifier: D7:E1:B4:D8:59:A1:8E:95:95:DE:14:E1:03:56:94:25:02:97:15:7B Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 01951022932691311D2B59A9EDE472CEA510 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft Manifest number: 07A6 Signing time: Sun 16 Feb 2025 19:00:56 +0000 Manifest this update: Sun 16 Feb 2025 19:00:56 +0000 Manifest next update: Mon 17 Feb 2025 19:00:56 +0000 Files and hashes: 1: 0UnS-IxSrSbJu0LMwZGgrlOMQaY.roa (hash: RlE1mBt+QrDUuTHvHAH0++Dmsi2Z+uRQ/Byv5g9xWBY=) 2: 2pvIQqdrnc-BOV2vOiV82aU9KnE.roa (hash: JAA8g6YNbUGTGs3DmgxNRM+sH++rPd6SoVFBQv/ksXw=) 3: 5iTlOOubPJODXH7vsUI7Wpq0ba8.roa (hash: VCwAilQGOK0VnPyRzIvdM0YYC7WGdN3kdeSa5Bw3IAA=) 4: DHmEi4YQiRBETpzSBvEeBakhLko.roa (hash: j1aPlu5sKrus49MGN9eDsSKbvbp9RSPAs4EoBXRS7Es=) 5: FMB-bLkFzuyKrNP2ugJeFR5FvcA.roa (hash: b4QarnLE9DJEtGHI3hEpn5pxBgsxCwePllqAAi4lx4c=) 6: U-0XoRYDV1K8NeLT79sQu_iy4t8.roa (hash: QAJ2fJtDmsN9XNVxW3a/dJEvqFcETnDiO1SCagG2pSk=) 7: U0kqMSvEMI8hRJet4zAEIktzcDY.roa (hash: y36cc96/Q3L8viOS6my5jFXQjppRke81XW3uxWeh0lI=) 8: X9nzYcXU9EgIVl_7ZZWxlGNl4g4.roa (hash: wL/WH3TZ58EyBKIgJ0ej+sAXqdnuotdQ0gWq1xiVtwU=) 9: Yx_GQymFWWc8W00REVOmsqhmb14.roa (hash: +6zqzvEzSwhIK5wEIMFVf/Y4CsRGiIkAcDuWUWWG0oI=) 10: Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl (hash: 7FObDFkI+DITjqikPQmHX14EQ1E+2BEEN+4zT/RX5tk=) 11: aQ7JsCHnSB2G4dfY_3yHXhj3Wo8.roa (hash: jc74/wQHOsinC7epcPYWAUkOMi5kreIozg0B86UPDDA=) 12: a_6EfM_eUhmEh3H7meW3ObA4-Go.roa (hash: NcCAQGLpBENo3heEl3G42fQyl7X50upMygvTrvmVy/A=) 13: lO_bhdVoi0rApHqZUYrR4e0dET0.roa (hash: L6ri99HTG/n8zl4aG6bBJmgMqEKOzJ8HTJ12NQEy2Ow=) 14: s-O-Xa-PER85Kd80a5vFRTOSotY.roa (hash: NuukypAt6COI1RdeaDQm8oQpwDKeNhmg7D2Gj0Rrwxo=) 15: yH-qgMAP1a-ONlIbLyS-3YiA-v8.roa (hash: 5ALF18aBSR3V/0UBc56QwyH3CpaKIq6eI34/1+3sXLg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:95:10:22:93:26:91:31:1d:2b:59:a9:ed:e4:72:ce:a5:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Feb 16 19:00:56 2025 GMT Not After : Feb 17 19:00:56 2025 GMT Subject: CN=d7e1b4d859a18e9595de14e1035694250297157b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:4d:cf:33:28:8d:f0:6a:df:d4:00:9d:27: b9:00:45:a2:80:0e:76:51:52:fd:01:fd:3f:f2:9a: 37:51:1b:5b:02:f9:85:46:0e:2d:de:b4:97:a1:b3: 94:21:24:23:d1:5f:0b:51:ee:68:0a:6d:11:52:a9: fe:f8:f6:55:ab:08:63:17:c2:83:9e:41:a3:ca:81: 05:d4:30:a7:40:42:3b:41:0d:64:69:b4:09:c3:cb: ec:4d:5d:ac:8b:66:5c:53:bb:24:dc:0f:5f:03:6e: 8e:76:0e:e3:6a:76:f2:bd:23:4a:c8:d0:8e:e9:08: 96:82:5d:aa:1b:d5:1b:64:7a:02:a4:c5:b7:54:78: a9:1e:ff:fe:98:42:b6:be:93:fd:48:90:23:d4:5e: 5d:f3:43:6d:e9:a4:08:eb:3d:72:9a:18:11:ac:25: e5:31:87:92:a6:81:82:ba:fd:4e:33:cd:46:df:56: 8a:06:8e:72:aa:af:34:e2:f4:ad:b3:c7:98:a9:fa: 96:fe:eb:d9:33:42:32:f3:42:d6:15:6e:21:0e:31: 21:13:b8:22:e1:4d:9e:bd:87:af:11:51:79:0e:8d: 60:76:1f:79:d7:9d:c4:dd:dd:12:88:36:13:ea:7c: 6b:aa:e2:41:65:f9:5c:42:c0:53:bf:01:2f:aa:62: 5a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E1:B4:D8:59:A1:8E:95:95:DE:14:E1:03:56:94:25:02:97:15:7B X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:b5:46:3a:b6:50:1c:a8:d6:72:0d:80:58:f3:a8:7b:53:1a: e9:8c:be:a1:94:55:76:8c:d7:ce:a3:95:1a:ef:f4:f8:16:27: 59:62:ab:16:e2:c9:31:37:32:9b:05:81:7a:86:8b:72:29:29: a9:d7:c0:85:df:d1:00:d7:68:33:8d:27:56:b3:17:3f:25:95: de:f3:7c:82:46:7b:e0:5e:ca:76:7b:b6:d2:22:b2:e2:d9:bb: 55:f8:ae:39:07:bc:eb:64:e3:7a:2f:52:52:a2:69:94:33:93: ab:f8:32:08:ae:31:6a:94:78:bc:6b:77:aa:8b:0a:af:c1:35: bb:f4:4a:64:8b:51:25:89:85:ae:74:2f:d5:e2:9f:9b:7d:e1: 9f:2d:0c:f5:79:96:23:67:06:8f:2c:b9:6b:a7:2a:7d:1b:3d: 9a:b5:ae:08:6b:cf:09:ad:38:22:9c:c9:65:f5:7a:68:3f:36: 96:c1:71:1d:e6:16:a1:8e:e3:11:bb:a0:60:bd:2d:f2:f4:de: 54:a6:90:87:8c:e7:2b:86:a7:40:58:14:26:7c:61:15:fa:40: 4c:c2:00:cf:da:86:de:09:38:cd:61:8e:6c:31:d4:da:15:c8: 62:30:c6:bb:e3:f5:e7:7c:65:dc:28:a7:84:59:70:0c:c8:c6: eb:4b:19:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZUQIpMmkTEdK1mp7eRyzqUQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjUwMjE2MTkwMDU2WhcNMjUwMjE3MTkwMDU2WjAzMTEwLwYDVQQD EyhkN2UxYjRkODU5YTE4ZTk1OTVkZTE0ZTEwMzU2OTQyNTAyOTcxNTdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4JNzzMojfBq39QAnSe5AEWigA52 UVL9Af0/8po3URtbAvmFRg4t3rSXobOUISQj0V8LUe5oCm0RUqn++PZVqwhjF8KD nkGjyoEF1DCnQEI7QQ1kabQJw8vsTV2si2ZcU7sk3A9fA26Odg7janbyvSNKyNCO 6QiWgl2qG9UbZHoCpMW3VHipHv/+mEK2vpP9SJAj1F5d80Nt6aQI6z1ymhgRrCXl MYeSpoGCuv1OM81G31aKBo5yqq804vSts8eYqfqW/uvZM0Iy80LWFW4hDjEhE7gi 4U2evYevEVF5Do1gdh95153E3d0SiDYT6nxrquJBZflcQsBTvwEvqmJa1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNfhtNhZoY6Vld4U4QNWlCUClxV7MB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGLVGOrZQ HKjWcg2AWPOoe1Ma6Yy+oZRVdozXzqOVGu/0+BYnWWKrFuLJMTcymwWBeoaLcikp qdfAhd/RANdoM40nVrMXPyWV3vN8gkZ74F7Kdnu20iKy4tm7VfiuOQe862Tjei9S UqJplDOTq/gyCK4xapR4vGt3qosKr8E1u/RKZItRJYmFrnQv1eKfm33hny0M9XmW I2cGjyy5a6cqfRs9mrWuCGvPCa04IpzJZfV6aD82lsFxHeYWoY7jEbugYL0t8vTe VKaQh4znK4anQFgUJnxhFfpATMIAz9qG3gk4zWGObDHU2hXIYjDGu+P153xl3Cin hFlwDMjG60sZHw== -----END CERTIFICATE-----Generated at Sun Feb 16 20:12:53 2025 by rpki-client