$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft File: TuhDqF3WZOncAxCJK9fdnOUlkcc.mft (raw, json) Hash identifier: L076dKX9pz1lHZBDva/EsVbwZk+RaPvmN18b/xe4uT4= Subject key identifier: EF:07:8F:74:61:F1:E5:B3:6F:3B:9E:19:F2:8B:BA:31:A2:51:71:E4 Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7 Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7 Certificate serial: 01950ED8C7A0F7AAFEDD6181347E1FCE52AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft Manifest number: 1464 Signing time: Sun 16 Feb 2025 13:00:42 +0000 Manifest this update: Sun 16 Feb 2025 13:00:42 +0000 Manifest next update: Mon 17 Feb 2025 13:00:42 +0000 Files and hashes: 1: C0z6DdMKY0011CEMg0brREHft8I.roa (hash: +dbFWwxBIyFnN27a31OlolUnKb6JKZSNaPcmvgDSLGs=) 2: GkzUiQjxAwqkp5Z39cxt3GUWIng.roa (hash: vLNapJVPwIEWIsnPkWMH8DeeJJAdXd67gcOUXS+rDWA=) 3: HGF0XnEulxWULqSPMu5rErMyWs8.roa (hash: 00NcZYCZGF+IaFRnbk/Q2PKjg8CgZv2ruaoed5i5QAU=) 4: Jf9tWqpPm8b_qtBGjgHB3JrayvI.roa (hash: F+vaHx2nXHjw+peb75MX84DsisidlKe5+WsqVxKmiwg=) 5: QKwROlQM-_7u8gKJ-Lg37KQ_boU.roa (hash: Fa0oIDfIQnPmvyxAKLNkB0kAHP+b9oUKAQ9IQ1FgP5k=) 6: RMcCzrlu2sJ4XSxYoo8m_7o27EI.roa (hash: nNPJHMZXA57YTnbJiFW2Eg774bTCKrqipOlc615iB9U=) 7: TuhDqF3WZOncAxCJK9fdnOUlkcc.crl (hash: b12t3+dRM4FeKDN+Di4vIAItCR4H06n+CyMARtxPZLU=) 8: d2OIjSeYBVWvYxP4n_ODfkSTTf4.roa (hash: be0M2z23DoEhwT4FhHP2BW24O0nYk4oyMfhX4PQ+pRo=) 9: k0c655RtHVAv5VenJ67F29SWhuc.roa (hash: hr75P5l79VgHodFxnHOuC7mIYeQ5S0TGyQcgAwawdyM=) 10: r-swhppIcOXVOL-qulJXjDeie58.roa (hash: tLe4aQVO3I/Ibbb/ytDDCDyBYPXI1bQa/rhwVMn9mk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Feb 2025 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:95:0e:d8:c7:a0:f7:aa:fe:dd:61:81:34:7e:1f:ce:52:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7 Validity Not Before: Feb 16 13:00:42 2025 GMT Not After : Feb 17 13:00:42 2025 GMT Subject: CN=ef078f7461f1e5b36f3b9e19f28bba31a25171e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:93:b4:93:31:1b:14:4d:b7:c0:a7:04:63:65: 45:4d:9f:16:b2:6a:59:e2:4e:ae:08:c1:19:cf:e3: 5a:4d:21:66:b4:36:bc:fa:9c:f8:32:76:c5:79:a6: bd:10:19:60:0e:34:90:c8:af:ba:3d:19:5b:83:1c: 44:50:a4:be:dd:37:94:17:fb:73:52:cb:9a:4c:b9: a3:b2:d6:43:4a:d3:c6:4e:8c:0f:5a:67:f4:a4:80: 5e:4c:b1:34:14:f9:a9:f0:a9:ee:d9:54:51:e5:93: be:69:17:d7:99:bf:f1:76:8e:c9:93:ed:02:44:b7: e1:61:ea:6f:a8:4c:52:eb:19:2f:01:7f:76:ff:0b: da:4e:e8:fb:c2:d0:82:ea:41:d2:5b:45:3d:40:27: 0b:da:34:e9:58:e6:42:53:a1:43:4c:56:70:94:7a: 8c:8a:73:45:fc:86:b1:90:6e:e5:de:f2:f2:26:41: 30:f7:66:dd:ea:42:13:f1:9a:e3:9e:97:33:f6:f5: 45:4f:11:52:a4:a8:53:58:5e:a6:a0:72:2c:04:c2: 1f:24:27:75:66:4d:c1:d9:cb:de:ce:68:08:b2:2e: 07:86:90:8b:9e:86:d2:15:99:48:bd:cd:dc:61:1f: 47:6a:37:6c:b7:ea:ac:80:a1:67:3f:e1:ba:38:1e: 4d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:07:8F:74:61:F1:E5:B3:6F:3B:9E:19:F2:8B:BA:31:A2:51:71:E4 X509v3 Authority Key Identifier: keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:4a:81:fa:52:f7:e7:75:8e:30:8d:0c:5b:fd:6b:ed:c6:90: 9e:08:02:a6:9a:70:f8:e1:f8:13:58:92:80:31:01:65:14:fa: 34:10:2d:b7:7b:05:c3:64:24:a8:4b:a7:e2:db:f8:92:e4:12: f7:7b:f4:9d:a2:b3:d0:c2:b7:5c:e9:e4:59:d2:45:e6:5b:8f: df:39:65:a0:9e:f0:26:63:bc:68:13:54:f6:d5:a0:82:d0:9a: 53:ea:16:29:27:74:64:fe:3c:85:b5:1c:00:f8:b0:0e:3b:a1: 1e:fb:25:3d:d7:18:ce:fd:7b:b1:21:c2:56:7f:04:e8:56:b9: ef:03:7e:be:ad:eb:c5:70:2c:a8:cb:82:2c:24:95:74:9c:eb: b0:5f:ca:f4:2e:8e:f4:14:2b:8f:79:73:65:68:cc:90:f7:9a: b3:10:98:22:58:94:4b:ba:37:c0:e8:e6:8f:87:35:9d:45:a6: 9f:42:54:56:50:cd:10:4b:20:b7:e7:8d:64:1d:30:f1:3f:ea: 7f:a7:71:0c:08:cc:b4:67:6e:53:17:ff:b5:3a:0c:a9:4e:0c: b2:41:8b:c8:fd:77:d3:4e:44:86:40:90:c2:4f:2c:40:60:6b: a1:40:9e:01:4c:af:d3:cd:74:27:e1:74:37:ff:7d:83:dc:b4: 94:9e:e7:f2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZUO2Meg96r+3WGBNH4fzlKqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZTg0M2E4NWRkNjY0ZTlkYzAzMTA4OTJiZDdkZDljZTUy NTkxYzcwHhcNMjUwMjE2MTMwMDQyWhcNMjUwMjE3MTMwMDQyWjAzMTEwLwYDVQQD EyhlZjA3OGY3NDYxZjFlNWIzNmYzYjllMTlmMjhiYmEzMWEyNTE3MWU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZO0kzEbFE23wKcEY2VFTZ8WsmpZ 4k6uCMEZz+NaTSFmtDa8+pz4MnbFeaa9EBlgDjSQyK+6PRlbgxxEUKS+3TeUF/tz UsuaTLmjstZDStPGTowPWmf0pIBeTLE0FPmp8Knu2VRR5ZO+aRfXmb/xdo7Jk+0C RLfhYepvqExS6xkvAX92/wvaTuj7wtCC6kHSW0U9QCcL2jTpWOZCU6FDTFZwlHqM inNF/IaxkG7l3vLyJkEw92bd6kIT8Zrjnpcz9vVFTxFSpKhTWF6moHIsBMIfJCd1 Zk3B2cvezmgIsi4HhpCLnobSFZlIvc3cYR9Hajdst+qsgKFnP+G6OB5NdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO8Hj3Rh8eWzbzueGfKLujGiUXHkMB8GA1UdIwQY MBaAFE7oQ6hd1mTp3AMQiSvX3ZzlJZHHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjct NDhjZjQxMmIzODdiLzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjctNDhjZjQxMmIzODdi LzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvUqB+lL3 53WOMI0MW/1r7caQnggCpppw+OH4E1iSgDEBZRT6NBAtt3sFw2QkqEun4tv4kuQS 93v0naKz0MK3XOnkWdJF5luP3zlloJ7wJmO8aBNU9tWggtCaU+oWKSd0ZP48hbUc APiwDjuhHvslPdcYzv17sSHCVn8E6Fa57wN+vq3rxXAsqMuCLCSVdJzrsF/K9C6O 9BQrj3lzZWjMkPeasxCYIliUS7o3wOjmj4c1nUWmn0JUVlDNEEsgt+eNZB0w8T/q f6dxDAjMtGduUxf/tToMqU4MskGLyP13005EhkCQwk8sQGBroUCeAUyv0810J+F0 N/99g9y0lJ7n8g== -----END CERTIFICATE-----Generated at Sun Feb 16 20:26:22 2025 by rpki-client