$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft File: TuhDqF3WZOncAxCJK9fdnOUlkcc.mft (raw, json) Hash identifier: 4X7kIg6u4QML6PyBiEzzFT1H80qz0vzLks1XGvnts5g= Subject key identifier: 2C:61:63:74:61:90:A8:8F:5D:3A:4B:81:4E:B6:0D:D7:F3:EF:13:E1 Authority key identifier: 4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7 Certificate issuer: /CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7 Certificate serial: 01963C1D230E6D035B3F4D9B950300DDD575 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft Manifest number: 1500 Signing time: Wed 16 Apr 2025 01:01:04 +0000 Manifest this update: Wed 16 Apr 2025 01:01:04 +0000 Manifest next update: Thu 17 Apr 2025 01:01:04 +0000 Files and hashes: 1: C0z6DdMKY0011CEMg0brREHft8I.roa (hash: +dbFWwxBIyFnN27a31OlolUnKb6JKZSNaPcmvgDSLGs=) 2: GkzUiQjxAwqkp5Z39cxt3GUWIng.roa (hash: vLNapJVPwIEWIsnPkWMH8DeeJJAdXd67gcOUXS+rDWA=) 3: HGF0XnEulxWULqSPMu5rErMyWs8.roa (hash: 00NcZYCZGF+IaFRnbk/Q2PKjg8CgZv2ruaoed5i5QAU=) 4: Jf9tWqpPm8b_qtBGjgHB3JrayvI.roa (hash: F+vaHx2nXHjw+peb75MX84DsisidlKe5+WsqVxKmiwg=) 5: QKwROlQM-_7u8gKJ-Lg37KQ_boU.roa (hash: Fa0oIDfIQnPmvyxAKLNkB0kAHP+b9oUKAQ9IQ1FgP5k=) 6: RMcCzrlu2sJ4XSxYoo8m_7o27EI.roa (hash: nNPJHMZXA57YTnbJiFW2Eg774bTCKrqipOlc615iB9U=) 7: TuhDqF3WZOncAxCJK9fdnOUlkcc.crl (hash: jwXjEduDtbO27lqIScuJjo0LLPG+C8AMbLHjE8CcFas=) 8: d2OIjSeYBVWvYxP4n_ODfkSTTf4.roa (hash: be0M2z23DoEhwT4FhHP2BW24O0nYk4oyMfhX4PQ+pRo=) 9: k0c655RtHVAv5VenJ67F29SWhuc.roa (hash: hr75P5l79VgHodFxnHOuC7mIYeQ5S0TGyQcgAwawdyM=) 10: r-swhppIcOXVOL-qulJXjDeie58.roa (hash: tLe4aQVO3I/Ibbb/ytDDCDyBYPXI1bQa/rhwVMn9mk0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 17 Apr 2025 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:3c:1d:23:0e:6d:03:5b:3f:4d:9b:95:03:00:dd:d5:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4ee843a85dd664e9dc0310892bd7dd9ce52591c7 Validity Not Before: Apr 16 01:01:04 2025 GMT Not After : Apr 17 01:01:04 2025 GMT Subject: CN=2c6163746190a88f5d3a4b814eb60dd7f3ef13e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ce:ce:ab:4b:67:66:2a:9d:c4:79:7e:d6:a4: 74:29:bf:f0:9b:66:9a:f8:90:5b:d4:55:de:95:13: 89:67:46:13:5a:8b:c3:57:d7:b5:11:59:1d:0b:9c: 0f:7b:b5:54:05:9a:43:96:ea:0e:4a:3e:70:96:38: 47:15:a8:fb:20:99:c2:a1:d6:46:fd:79:e7:bf:9b: 2c:68:b4:18:a6:d4:40:bc:9d:6a:44:aa:ab:19:09: 70:eb:9a:aa:ff:78:a6:52:7b:d9:e4:37:a2:70:de: 3a:7a:43:ca:b7:56:6b:af:b6:1f:3a:be:38:d8:9a: 8d:f4:ac:8c:5a:a7:81:a3:9e:9a:50:0b:41:c7:38: 76:9e:88:ad:e2:e3:99:03:9a:a2:0a:c2:c8:1c:e9: 76:9a:37:8b:3e:17:26:f6:51:be:99:4a:26:ad:73: e6:ae:89:ed:59:83:0b:5e:47:24:ba:e9:57:97:6b: 3d:f2:9c:b0:2f:5d:e7:8f:45:8f:41:68:e6:6c:6b: da:ee:bc:87:f0:74:bc:9c:4b:dc:ba:1f:be:c7:b1: 67:d0:bf:b4:b5:b6:a4:d9:9d:4f:7e:91:04:56:e7: 27:75:f4:f0:23:ff:43:3d:50:e3:36:54:1c:46:11: 25:70:06:62:2e:01:ac:00:72:d2:f7:bb:bc:c6:ed: 1c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:61:63:74:61:90:A8:8F:5D:3A:4B:81:4E:B6:0D:D7:F3:EF:13:E1 X509v3 Authority Key Identifier: keyid:4E:E8:43:A8:5D:D6:64:E9:DC:03:10:89:2B:D7:DD:9C:E5:25:91:C7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuhDqF3WZOncAxCJK9fdnOUlkcc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/adad20-c512-4fb0-a127-48cf412b387b/1/TuhDqF3WZOncAxCJK9fdnOUlkcc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:4a:5a:7b:40:6c:83:a5:c8:10:ec:d6:9d:c4:dd:ef:85:ab: d3:38:53:69:36:f2:7b:18:26:d9:1d:7c:46:5e:ba:8b:d7:03: a5:5b:24:ae:9f:2a:1d:f7:7a:3e:11:b5:71:bd:5b:8a:5a:8c: fa:00:5a:75:a5:65:09:f2:b0:37:40:88:1f:8d:d2:5e:c1:5c: 65:c2:54:f2:81:0c:17:b1:f5:60:92:a8:15:06:d7:fd:22:ff: 80:2b:ad:27:42:e7:1f:a7:4b:63:e4:a4:4c:4b:23:c0:62:63: 57:4a:13:c2:01:de:fd:8e:fd:14:53:c0:44:0b:cd:9b:64:8e: c7:f5:36:ae:3b:fb:db:3d:53:11:46:39:8b:54:c3:a9:b7:ec: f1:b0:07:df:d1:45:4c:56:4d:93:46:25:e4:11:b6:4d:a0:83: f6:a0:17:64:0d:3b:47:3b:37:14:4f:ca:18:42:87:7b:c4:0a: ea:59:f9:69:6c:1f:70:fc:30:e7:be:b8:2a:9f:7e:95:76:73: 3a:22:7b:e6:66:08:cb:48:f5:69:f2:21:cb:c0:6d:08:23:3e: 6f:1a:d9:0c:6f:18:3c:3a:58:dc:c4:77:a3:4d:99:f6:5c:40: c7:ce:5f:b2:6e:95:99:e7:e7:68:68:79:df:21:9e:7d:59:43: ce:04:7b:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZY8HSMObQNbP02blQMA3dV1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRlZTg0M2E4NWRkNjY0ZTlkYzAzMTA4OTJiZDdkZDljZTUy NTkxYzcwHhcNMjUwNDE2MDEwMTA0WhcNMjUwNDE3MDEwMTA0WjAzMTEwLwYDVQQD EygyYzYxNjM3NDYxOTBhODhmNWQzYTRiODE0ZWI2MGRkN2YzZWYxM2UxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuc7Oq0tnZiqdxHl+1qR0Kb/wm2aa +JBb1FXelROJZ0YTWovDV9e1EVkdC5wPe7VUBZpDluoOSj5wljhHFaj7IJnCodZG /Xnnv5ssaLQYptRAvJ1qRKqrGQlw65qq/3imUnvZ5DeicN46ekPKt1Zrr7YfOr44 2JqN9KyMWqeBo56aUAtBxzh2noit4uOZA5qiCsLIHOl2mjeLPhcm9lG+mUomrXPm rontWYMLXkckuulXl2s98pywL13nj0WPQWjmbGva7ryH8HS8nEvcuh++x7Fn0L+0 tbak2Z1PfpEEVucndfTwI/9DPVDjNlQcRhElcAZiLgGsAHLS97u8xu0cBwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCxhY3RhkKiPXTpLgU62Ddfz7xPhMB8GA1UdIwQY MBaAFE7oQ6hd1mTp3AMQiSvX3ZzlJZHHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjct NDhjZjQxMmIzODdiLzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZC9hZGFkMjAtYzUxMi00ZmIwLWExMjctNDhjZjQxMmIzODdi LzEvVHVoRHFGM1daT25jQXhDSks5ZmRuT1Vsa2NjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArkpae0Bs g6XIEOzWncTd74Wr0zhTaTbyexgm2R18Rl66i9cDpVskrp8qHfd6PhG1cb1bilqM +gBadaVlCfKwN0CIH43SXsFcZcJU8oEMF7H1YJKoFQbX/SL/gCutJ0LnH6dLY+Sk TEsjwGJjV0oTwgHe/Y79FFPARAvNm2SOx/U2rjv72z1TEUY5i1TDqbfs8bAH39FF TFZNk0Yl5BG2TaCD9qAXZA07Rzs3FE/KGEKHe8QK6ln5aWwfcPww5764Kp9+lXZz OiJ75mYIy0j1afIhy8BtCCM+bxrZDG8YPDpY3MR3o02Z9lxAx85fsm6VmefnaGh5 3yGefVlDzgR7OQ== -----END CERTIFICATE-----Generated at Wed Apr 16 04:43:39 2025 by rpki-client