$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft File: ZbfWaZg1v-moCB38EU3xv20hXac.mft (raw, json) Hash identifier: B4paPJPEokr4KcjP5madvvR9TJWTNwVSbP6S/6oKNn4= Subject key identifier: C6:18:D6:38:0A:A8:B9:E7:DF:DA:FD:29:EA:34:22:85:77:36:60:55 Authority key identifier: 65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 Certificate issuer: /CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Certificate serial: 0196078AD802B99F0A9D92DDE41DC6BA49A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft Manifest number: 1547 Signing time: Sat 05 Apr 2025 20:01:01 +0000 Manifest this update: Sat 05 Apr 2025 20:01:01 +0000 Manifest next update: Sun 06 Apr 2025 20:01:01 +0000 Files and hashes: 1: 1-YvEReZaLsTO0jjKZ78pRhHRfsQ.roa (hash: zdufkDo+ZHpmPAX/tYX0aFypSlJTt9HUATtQVpaRiJ0=) 2: 18sxOB5Kpihtussm1nLKSIGMFSE.roa (hash: b7X7RSJm4cnyNvUC/xqU2kCOGFYxn6Od5qlq/zQq/DM=) 3: 2SAQLA7QMTW3rJ2MPjCOahlOsgA.roa (hash: YQiN3iKo5zTaytwvVXkZsjdfMdlDibNqV0v4+CZFgPw=) 4: 2xOCedaAnbKcKNMkapjr0-xRU0U.roa (hash: 1AkAMO6XuRRkWK537SoyCbP4MBTHrJRSOO13VGIcmVk=) 5: 4ugbCy83DcO9TYhxoGqg3xYqKBI.roa (hash: uW7VWLBw91JN4k11JcZFpOcPQ5HtPfwoG25WkIgbLeQ=) 6: 5nWvohwCHORmoTVfbcYEK_V_9dE.roa (hash: 1Sev0d5kMbKbc6VdXiKhzPYsS3EF31JUEjphYARSAIc=) 7: 9_6Qgvz8x0xmVgbjQq9RZaCrzwI.roa (hash: XDjG9XViYUZoXuJfh57cLMJxvVfFwPpTj7Ylh+rpLA4=) 8: CkBRqOo4nHpiMZCMmHhlMyMyMW8.roa (hash: QqiQ/A2UMFrHNJ7zFLbdbwUvQQ7O2J6ld5ZejB7+vXI=) 9: GfHlMDqW8f_RPGupY42wfeJn0K0.roa (hash: yZdyaaWtQN06+585o6qcTebcPl9jvWJOnIEn2z7Qx10=) 10: GxYedkSTeiLaGGZm3zR7zXc_okU.roa (hash: yZtZ5bEs3PMC5gEdtfPDZZYkR4su+br574QwtztI1z0=) 11: IGXep-Sp1xTx1rwpzVruBZRjNug.roa (hash: cujh35boqOnCbI1nKqG05ttKtrmdk5otJzYosXhUDII=) 12: NNPkTDbtxCjIv0T_rkcglbIHKsI.roa (hash: IKxplvCU83AT08NdV5QMZT2pNZspbe6MXkpY4tcztgc=) 13: Olvba8b0LQ3XYjmweIYYCWlaL24.roa (hash: Wj2tE5RhOaTBOgwtpy7j+LlliXQCV/ipn4kpk6MvU1M=) 14: UabrP9SFPinXYIxzV1CHpeuYu-U.roa (hash: vZsFY4hIlYsgml0HPRseUEiONs3e+mJi4UxFhq6ZGsU=) 15: YVwxp9vRo78D3Zkq4PWUJjvh2ys.roa (hash: 6SWi7F6i8jnqxlALTm3akUKfwciw3a80Vo8UDIGTBq0=) 16: ZYHUvuA6eBDvKLI8l4NHS4rjSHQ.roa (hash: tWzvfyg7YU/4s3lE4fLo1otFrzbgL/5RYx619Pe+eMw=) 17: ZbfWaZg1v-moCB38EU3xv20hXac.crl (hash: jc1llS0H17s2ZrLYFy84YT2QfDhXB4tW+78SS/2OQj8=) 18: Zgs9-zOzZ1bVcmw_hJ-aLd6LSw0.roa (hash: Hd3GHtUQTqMRi7qf1gZPAx94+btgVUkFfnwpTbzv+nY=) 19: llk4ofXvRzHEH-qWue__dsHka_s.roa (hash: K2BZhTog7Vh0tYt+YbAIQfdPEsZY55aQG6EI2WxH2g8=) 20: tR6Fa03gzifqR6_y9F-SUYuYgcc.roa (hash: uncWfY5Wy22Nief+j+lCY37qfqCxhpjeMeXy7CgUPqE=) 21: wCb4vbrgGFRhU-Cc5NMZl-jzWqo.roa (hash: zpBJ6kRrehBfcMMd+SMf9RfgRe0zUoI1wInwbsH+nsg=) 22: z6jYSnHDtoGGfHKYIRCDy4kC3uc.roa (hash: Vi9kGfRbZv/6QO+j/QQ2QU1ueyC8xJ89Nu2SL4QOCaI=) 23: z9Z9t7kfWwit4I9_Rt9Xt7bo-ms.roa (hash: xjQ2gHL1Jh7hwOv5Vlv0kGkojGyyO/DQzH561lm74tc=) 24: zmWLRvZ7XMmYhQOppzBvFxRjR9o.roa (hash: 6Q/6wdfAylMsEZywBPJb5E0+PJFDXtpbTad0L2I6rWg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Apr 2025 20:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:07:8a:d8:02:b9:9f:0a:9d:92:dd:e4:1d:c6:ba:49:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65b7d6699835bfe9a8081dfc114df1bf6d215da7 Validity Not Before: Apr 5 20:01:01 2025 GMT Not After : Apr 6 20:01:01 2025 GMT Subject: CN=c618d6380aa8b9e7dfdafd29ea34228577366055 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c0:f7:ed:42:1d:43:3b:61:84:98:a7:57:1e: 10:00:a1:26:ca:4d:8e:8e:36:78:3b:8f:e7:13:22: 61:c3:6c:b1:19:fd:10:9d:00:e0:a6:f7:02:f4:70: b9:17:d8:1b:26:69:20:2d:de:0c:b6:7e:69:a8:e8: d0:48:0c:1a:0b:fe:a9:b0:d8:35:21:00:05:0e:a3: fb:db:19:d7:17:10:7c:df:38:ef:fc:81:ed:45:96: 50:2e:89:2d:b3:53:c5:8c:89:eb:49:00:ae:b1:f6: 28:3f:5b:19:22:e8:e1:c2:b8:57:cf:36:f4:89:7f: 49:e5:dc:04:60:6d:b1:31:70:c1:ba:b8:4d:a5:12: e6:cd:38:1b:26:6b:f1:6a:cd:4a:9f:fe:13:69:78: ea:dc:29:85:3d:7f:dd:cd:36:23:27:08:ea:e9:97: 11:83:36:e7:13:b3:0b:1f:ad:64:a1:0a:df:11:a7: 86:0b:a1:33:86:e8:46:84:c8:81:74:bb:9e:cf:04: 41:a8:b8:7f:9b:56:c2:43:af:34:c2:d7:22:6a:62: 3b:1b:ac:29:31:19:28:13:91:dd:c8:ce:fb:bc:49: 7c:e9:60:25:ec:83:c6:ce:33:e0:2a:8f:8b:41:a1: 26:0d:be:2a:32:37:ea:4c:ac:c0:56:23:8c:89:45: 50:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:18:D6:38:0A:A8:B9:E7:DF:DA:FD:29:EA:34:22:85:77:36:60:55 X509v3 Authority Key Identifier: keyid:65:B7:D6:69:98:35:BF:E9:A8:08:1D:FC:11:4D:F1:BF:6D:21:5D:A7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZbfWaZg1v-moCB38EU3xv20hXac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/90/025ee8-3f47-457d-8d47-9e413ebf42f3/1/ZbfWaZg1v-moCB38EU3xv20hXac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:d0:8f:37:72:cb:d4:4d:0f:c1:d9:3f:d7:24:f0:c2:8f:b4: 25:6c:a7:3f:fa:b1:06:51:23:e6:58:9a:2f:65:d5:9d:af:6f: 17:93:0f:d3:26:b7:6c:75:86:8b:62:d3:c6:98:22:8e:c9:3e: 02:1e:ca:17:4c:88:92:53:99:06:95:d5:a5:7e:dd:ed:03:12: ef:c9:f8:c1:1e:ee:ba:77:f0:51:6c:30:54:e4:1a:e5:9b:7f: e9:ee:65:f8:f3:1f:cb:0b:77:35:8a:18:ba:84:0e:60:30:43: 35:b7:79:fe:33:84:e1:29:84:37:5b:74:7b:3c:5f:7d:36:bb: 5d:a9:b6:87:7a:b1:48:30:9d:e3:2b:50:40:d3:32:50:2e:32: 48:85:f5:9e:3f:87:2b:5d:f9:8b:8f:12:9d:95:df:4d:56:f1: ef:79:0c:fa:ce:09:7d:94:78:dc:4e:46:6f:cc:5e:25:91:68: 47:be:0b:e7:9b:f0:3a:77:df:46:f0:69:e0:3c:95:3e:d4:5f: 6c:cc:02:9a:5e:8b:5c:b1:14:90:1e:08:03:ce:e9:30:e8:ff: 80:4c:a9:3a:1a:11:2f:c1:59:e6:c4:31:e1:1c:22:a3:e0:c7: ac:a9:ee:99:4c:6e:09:11:bb:b3:b9:6e:49:60:40:2b:62:bd: 4d:8c:4e:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYHitgCuZ8KnZLd5B3GukmpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1YjdkNjY5OTgzNWJmZTlhODA4MWRmYzExNGRmMWJmNmQy MTVkYTcwHhcNMjUwNDA1MjAwMTAxWhcNMjUwNDA2MjAwMTAxWjAzMTEwLwYDVQQD EyhjNjE4ZDYzODBhYThiOWU3ZGZkYWZkMjllYTM0MjI4NTc3MzY2MDU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6MD37UIdQzthhJinVx4QAKEmyk2O jjZ4O4/nEyJhw2yxGf0QnQDgpvcC9HC5F9gbJmkgLd4Mtn5pqOjQSAwaC/6psNg1 IQAFDqP72xnXFxB83zjv/IHtRZZQLokts1PFjInrSQCusfYoP1sZIujhwrhXzzb0 iX9J5dwEYG2xMXDBurhNpRLmzTgbJmvxas1Kn/4TaXjq3CmFPX/dzTYjJwjq6ZcR gzbnE7MLH61koQrfEaeGC6EzhuhGhMiBdLuezwRBqLh/m1bCQ680wtciamI7G6wp MRkoE5HdyM77vEl86WAl7IPGzjPgKo+LQaEmDb4qMjfqTKzAViOMiUVQIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMYY1jgKqLnn39r9Keo0IoV3NmBVMB8GA1UdIwQY MBaAFGW31mmYNb/pqAgd/BFN8b9tIV2nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDct OWU0MTNlYmY0MmYzLzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85MC8wMjVlZTgtM2Y0Ny00NTdkLThkNDctOWU0MTNlYmY0MmYz LzEvWmJmV2FaZzF2LW1vQ0IzOEVVM3h2MjBoWGFjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACdCPN3LL 1E0Pwdk/1yTwwo+0JWynP/qxBlEj5liaL2XVna9vF5MP0ya3bHWGi2LTxpgijsk+ Ah7KF0yIklOZBpXVpX7d7QMS78n4wR7uunfwUWwwVOQa5Zt/6e5l+PMfywt3NYoY uoQOYDBDNbd5/jOE4SmEN1t0ezxffTa7Xam2h3qxSDCd4ytQQNMyUC4ySIX1nj+H K135i48SnZXfTVbx73kM+s4JfZR43E5Gb8xeJZFoR74L55vwOnffRvBp4DyVPtRf bMwCml6LXLEUkB4IA87pMOj/gEypOhoRL8FZ5sQx4Rwio+DHrKnumUxuCRG7s7lu SWBAK2K9TYxOVg== -----END CERTIFICATE-----Generated at Sun Apr 6 05:09:46 2025 by rpki-client