$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft File: Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft (raw, json) Hash identifier: 8CZjid5DLRB8WKUhYXodzAaSZ0V4QqffRK7fseudBj4= Subject key identifier: BD:05:34:B5:58:4D:44:DA:80:99:C3:41:13:2B:F9:33:65:18:41:46 Authority key identifier: 67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 Certificate issuer: /CN=67499595a65aab0b53768def08091e31061e9e65 Certificate serial: 01973987AEC52EB5C209A29CE36ACD0CADBD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft Manifest number: 08CC Signing time: Wed 04 Jun 2025 06:01:22 +0000 Manifest this update: Wed 04 Jun 2025 06:01:22 +0000 Manifest next update: Thu 05 Jun 2025 06:01:22 +0000 Files and hashes: 1: 0UnS-IxSrSbJu0LMwZGgrlOMQaY.roa (hash: RlE1mBt+QrDUuTHvHAH0++Dmsi2Z+uRQ/Byv5g9xWBY=) 2: 1-MsC5JIxdLnLZFyHuf6RgL5WGhc.roa (hash: pKBlmn1z+pps27wu7UmvO8rAolauod4xSkZZnJ9W1vs=) 3: 2pvIQqdrnc-BOV2vOiV82aU9KnE.roa (hash: JAA8g6YNbUGTGs3DmgxNRM+sH++rPd6SoVFBQv/ksXw=) 4: 5iTlOOubPJODXH7vsUI7Wpq0ba8.roa (hash: VCwAilQGOK0VnPyRzIvdM0YYC7WGdN3kdeSa5Bw3IAA=) 5: 9O5dSbjYP7CKebfq3udyDWQ-8qo.roa (hash: dSfT3SWrTibx/fqvSGXLvGAtplCZ8CPdd3iXIRIH8Vo=) 6: FMB-bLkFzuyKrNP2ugJeFR5FvcA.roa (hash: b4QarnLE9DJEtGHI3hEpn5pxBgsxCwePllqAAi4lx4c=) 7: Pd7_BuMRngySvCOEXZzIMz9jyRk.roa (hash: sixeKX7UtbFferQNxLx2jnfuNmnIKZsouzMYORIygXY=) 8: RkzLHfWs_BL956tVkCeC3dIaNec.roa (hash: wKD0RAlNUVNkdZZ5vl809Igsg9tUDfvk8Sh/yVsSt8s=) 9: U-0XoRYDV1K8NeLT79sQu_iy4t8.roa (hash: QAJ2fJtDmsN9XNVxW3a/dJEvqFcETnDiO1SCagG2pSk=) 10: X9nzYcXU9EgIVl_7ZZWxlGNl4g4.roa (hash: wL/WH3TZ58EyBKIgJ0ej+sAXqdnuotdQ0gWq1xiVtwU=) 11: Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl (hash: ua7mwAvcVMuGFYp/bAKFUOYOVYkAxcu7vl1IWgf3Ij8=) 12: ZUGOIAUF7QcfJjyar2KLvgczs3w.roa (hash: hYWt23TW4POZBD00pdsn3rVpmOTF/64UdGALhmAlXk0=) 13: aQ7JsCHnSB2G4dfY_3yHXhj3Wo8.roa (hash: jc74/wQHOsinC7epcPYWAUkOMi5kreIozg0B86UPDDA=) 14: a_6EfM_eUhmEh3H7meW3ObA4-Go.roa (hash: NcCAQGLpBENo3heEl3G42fQyl7X50upMygvTrvmVy/A=) 15: bXxx-llWekyrtBewA8UESiAygSk.roa (hash: CVAUCXJbLgxcc/u+sDImVr2cGi4Am9sXCXZAdGDnVHY=) 16: lO_bhdVoi0rApHqZUYrR4e0dET0.roa (hash: L6ri99HTG/n8zl4aG6bBJmgMqEKOzJ8HTJ12NQEy2Ow=) 17: yH-qgMAP1a-ONlIbLyS-3YiA-v8.roa (hash: 5ALF18aBSR3V/0UBc56QwyH3CpaKIq6eI34/1+3sXLg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Jun 2025 06:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:39:87:ae:c5:2e:b5:c2:09:a2:9c:e3:6a:cd:0c:ad:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67499595a65aab0b53768def08091e31061e9e65 Validity Not Before: Jun 4 06:01:22 2025 GMT Not After : Jun 5 06:01:22 2025 GMT Subject: CN=bd0534b5584d44da8099c341132bf93365184146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:64:05:af:1f:6b:22:cc:1b:f9:9c:fe:a2:bb: 90:44:76:af:c5:95:47:4b:0f:c2:4c:a8:c2:67:23: 5b:a2:64:0c:f9:c5:ff:22:f8:40:d8:03:f2:63:d6: f4:a9:8b:a9:3d:33:ad:b1:fc:f5:fc:d4:6b:62:c8: d1:0e:27:25:bc:f9:0f:b2:39:49:ba:8b:fa:2a:4c: 03:69:98:9f:dc:2d:55:af:c5:51:bd:c3:f4:74:0f: dc:f0:98:5e:81:47:fe:eb:d2:57:e7:be:0d:b9:17: 68:06:ca:a1:e4:46:f7:23:81:c9:36:b5:fc:51:9d: 90:df:71:32:27:e3:69:33:b0:42:2a:df:93:04:15: 30:7b:b7:0a:16:59:30:08:39:51:88:b4:cb:f4:e5: 16:f5:c5:66:cd:9d:89:46:a1:f4:34:82:14:d7:ea: 98:bf:3b:12:ef:a8:e8:79:78:c7:e7:74:4d:74:5f: eb:bd:c5:38:c5:6d:80:22:51:7c:26:95:0d:d8:e9: 2c:c2:cf:4c:6f:48:f5:57:81:84:ac:f3:e2:dc:25: ac:6c:3d:84:4e:99:5e:62:ed:09:2a:29:82:b3:73: 37:7b:89:ed:59:89:37:de:6c:df:93:17:20:1b:9c: bd:94:69:63:5b:2e:65:cc:bf:5a:1d:d0:7c:42:03: 87:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:05:34:B5:58:4D:44:DA:80:99:C3:41:13:2B:F9:33:65:18:41:46 X509v3 Authority Key Identifier: keyid:67:49:95:95:A6:5A:AB:0B:53:76:8D:EF:08:09:1E:31:06:1E:9E:65 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0mVlaZaqwtTdo3vCAkeMQYenmU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/b744b8-f39d-495b-b217-35508041652d/1/Z0mVlaZaqwtTdo3vCAkeMQYenmU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:ff:f5:81:6b:7e:3c:0b:04:f1:65:cf:72:bd:89:7b:2a:84: fb:0f:8f:ee:ee:8f:ee:00:4c:17:38:a6:ad:8d:41:33:2a:22: d0:d9:37:4b:47:36:50:fc:3f:cc:98:8d:82:9a:ab:5c:7e:bd: 99:bb:47:48:81:0d:7d:30:b9:c0:fa:7b:05:f9:b6:13:28:1a: 92:64:c6:ea:2d:6f:bb:cb:d6:90:d5:84:f3:e9:27:be:9e:32: 3c:57:9a:1f:2c:5d:28:c9:4e:ca:88:8a:2e:d2:e8:f2:48:e8: 1f:fb:bb:0d:ae:2b:d0:8e:fc:b5:83:f9:f5:b8:dd:c2:90:7a: 45:8e:5e:d0:b6:7d:7e:07:c2:1a:67:9a:ff:09:5a:71:10:54: ee:7f:07:a8:a9:fc:0f:61:4e:7a:97:ef:6c:64:33:ef:10:32: 3a:5a:84:a4:5a:f6:a0:34:8b:26:44:c1:50:3c:73:0a:66:2c: 1d:9b:ab:7e:35:e0:3f:46:a4:61:da:c5:a0:91:5a:16:d7:d1: 77:38:39:83:c7:06:97:0e:8c:cc:2d:7a:6f:9f:55:a3:13:c1: f2:77:15:01:04:27:25:4c:a7:cc:71:3d:6d:4c:8a:27:96:89: 8e:15:05:84:e7:b7:ee:8e:5a:a7:a0:3f:bd:ec:e5:c8:04:4c: b8:e6:0e:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZc5h67FLrXCCaKc42rNDK29MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NDk5NTk1YTY1YWFiMGI1Mzc2OGRlZjA4MDkxZTMxMDYx ZTllNjUwHhcNMjUwNjA0MDYwMTIyWhcNMjUwNjA1MDYwMTIyWjAzMTEwLwYDVQQD EyhiZDA1MzRiNTU4NGQ0NGRhODA5OWMzNDExMzJiZjkzMzY1MTg0MTQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymQFrx9rIswb+Zz+oruQRHavxZVH Sw/CTKjCZyNbomQM+cX/IvhA2APyY9b0qYupPTOtsfz1/NRrYsjRDiclvPkPsjlJ uov6KkwDaZif3C1Vr8VRvcP0dA/c8JhegUf+69JX574NuRdoBsqh5Eb3I4HJNrX8 UZ2Q33EyJ+NpM7BCKt+TBBUwe7cKFlkwCDlRiLTL9OUW9cVmzZ2JRqH0NIIU1+qY vzsS76joeXjH53RNdF/rvcU4xW2AIlF8JpUN2Oksws9Mb0j1V4GErPPi3CWsbD2E TpleYu0JKimCs3M3e4ntWYk33mzfkxcgG5y9lGljWy5lzL9aHdB8QgOH7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL0FNLVYTUTagJnDQRMr+TNlGEFGMB8GA1UdIwQY MBaAFGdJlZWmWqsLU3aN7wgJHjEGHp5lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTct MzU1MDgwNDE2NTJkLzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi9iNzQ0YjgtZjM5ZC00OTViLWIyMTctMzU1MDgwNDE2NTJk LzEvWjBtVmxhWmFxd3RUZG8zdkNBa2VNUVllbm1VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZP/1gWt+ PAsE8WXPcr2JeyqE+w+P7u6P7gBMFzimrY1BMyoi0Nk3S0c2UPw/zJiNgpqrXH69 mbtHSIENfTC5wPp7Bfm2EygakmTG6i1vu8vWkNWE8+knvp4yPFeaHyxdKMlOyoiK LtLo8kjoH/u7Da4r0I78tYP59bjdwpB6RY5e0LZ9fgfCGmea/wlacRBU7n8HqKn8 D2FOepfvbGQz7xAyOlqEpFr2oDSLJkTBUDxzCmYsHZurfjXgP0akYdrFoJFaFtfR dzg5g8cGlw6MzC16b59VoxPB8ncVAQQnJUynzHE9bUyKJ5aJjhUFhOe37o5ap6A/ vezlyARMuOYO/Q== -----END CERTIFICATE-----Generated at Wed Jun 4 11:52:35 2025 by rpki-client