$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: cTEvS8n6cXsmbqIaom/YBskVoVvKv/LOUqq3LFOwVE0= Subject key identifier: 3B:48:14:53:F7:10:B0:8C:D8:CC:F3:0E:31:5D:6C:6C:F9:07:14:81 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 01960F7B81F5F4A81C083DCFCBA9EFF81785 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 1559 Signing time: Mon 07 Apr 2025 09:01:14 +0000 Manifest this update: Mon 07 Apr 2025 09:01:14 +0000 Manifest next update: Tue 08 Apr 2025 09:01:14 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 3: UTgRulJfmraGi0toko70wCEmGFA.roa (hash: /+qQOZA++jaLu5bGfT6khqkHyM9MBYNcQ493XjcwmbI=) 4: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 5: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 6: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 7: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 8: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: edsfIBPghVcVmJ6yrYNUkN+1LK/b+Zrk8vRkq4yfDcU=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 08 Apr 2025 01:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:0f:7b:81:f5:f4:a8:1c:08:3d:cf:cb:a9:ef:f8:17:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Apr 7 09:01:14 2025 GMT Not After : Apr 8 09:01:14 2025 GMT Subject: CN=3b481453f710b08cd8ccf30e315d6c6cf9071481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:26:d4:e9:45:e7:5d:7e:dc:b3:38:4f:ae:59: c8:8e:06:96:84:e3:f9:ec:88:51:c1:f5:9a:03:09: 75:f5:e2:63:c2:4d:2a:3a:65:c3:21:aa:26:93:1c: f9:05:2c:db:fc:a9:e6:2b:29:6b:84:3c:77:fd:a3: aa:e6:ca:ba:17:21:12:90:a3:81:4f:e6:5e:98:a9: bb:3a:e3:34:4b:37:7a:d5:ac:ef:89:6d:30:75:de: 21:4a:bf:76:b8:1c:fd:69:01:40:8a:5c:50:15:6a: 02:99:6b:8a:b8:6b:aa:9b:22:33:20:ad:5d:fb:eb: 5b:21:68:54:60:cf:e9:20:59:b5:43:86:fc:51:bf: 7d:37:7b:8c:be:83:57:ed:a2:76:b3:f2:18:fd:bb: 89:25:e9:bc:07:e1:f0:f2:30:62:70:18:ad:47:b9: 36:c6:42:1f:83:21:fe:f1:a0:63:d3:c4:97:10:1e: be:ae:f5:d8:9d:fe:9c:e4:94:03:a0:c7:78:c8:b9: 96:77:f0:f0:73:ed:a7:da:c3:f1:84:51:00:8c:a5: b2:92:15:2b:1f:7b:5d:9b:4d:0a:5c:6a:3b:0d:6f: c7:83:d0:e5:f4:39:75:89:ab:81:09:c3:26:2e:b7: e0:0e:a8:4e:d5:40:7e:e2:a7:4f:b6:d3:6d:c4:99: cb:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:48:14:53:F7:10:B0:8C:D8:CC:F3:0E:31:5D:6C:6C:F9:07:14:81 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:34:44:f0:8f:88:8b:84:9f:42:0f:3a:e4:9b:53:0f:7b:2f: a1:02:28:28:3c:4d:07:5c:45:ce:52:f3:38:be:7e:81:ff:67: 68:9a:da:71:21:30:dc:e5:e4:c2:92:93:f1:a4:16:5b:13:70: 5f:4d:10:37:b6:26:66:b1:cb:9e:e4:2f:53:5e:9b:73:ce:9c: 40:d7:57:10:14:22:c6:7a:3a:25:50:7b:27:b8:2e:6b:54:13: 14:64:f9:a3:e3:f3:ed:b5:15:14:ba:0b:ad:51:5d:5a:5e:83: 08:7e:0d:99:96:cc:50:a9:46:51:d7:06:fe:67:4b:cb:4d:2c: 09:11:75:36:30:91:04:8d:99:ca:36:e7:f2:1f:70:6f:f9:e7: 72:51:ea:70:7b:2b:bc:9a:1b:54:f1:79:6f:08:44:31:85:95: 6b:9d:d3:c0:32:1a:53:b8:d6:b1:d6:df:a3:dd:c6:d0:f9:9f: ab:57:f4:18:24:28:cd:21:81:14:b5:53:4a:c0:e9:f4:7b:a8: 6a:32:6b:58:50:98:e7:16:16:b1:32:e8:e9:46:13:b1:03:51: d3:22:ba:24:a9:0a:78:98:09:bb:93:15:a9:ac:e2:b9:8a:80: 1d:09:be:a7:8a:5d:1b:e3:7a:ab:93:14:f7:9f:2d:2d:c5:94: 50:44:d6:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYPe4H19KgcCD3Py6nv+BeFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUwNDA3MDkwMTE0WhcNMjUwNDA4MDkwMTE0WjAzMTEwLwYDVQQD EygzYjQ4MTQ1M2Y3MTBiMDhjZDhjY2YzMGUzMTVkNmM2Y2Y5MDcxNDgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwibU6UXnXX7cszhPrlnIjgaWhOP5 7IhRwfWaAwl19eJjwk0qOmXDIaomkxz5BSzb/KnmKylrhDx3/aOq5sq6FyESkKOB T+ZemKm7OuM0Szd61azviW0wdd4hSr92uBz9aQFAilxQFWoCmWuKuGuqmyIzIK1d ++tbIWhUYM/pIFm1Q4b8Ub99N3uMvoNX7aJ2s/IY/buJJem8B+Hw8jBicBitR7k2 xkIfgyH+8aBj08SXEB6+rvXYnf6c5JQDoMd4yLmWd/Dwc+2n2sPxhFEAjKWykhUr H3tdm00KXGo7DW/Hg9Dl9Dl1iauBCcMmLrfgDqhO1UB+4qdPttNtxJnL6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtIFFP3ELCM2MzzDjFdbGz5BxSBMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQjRE8I+I i4SfQg865JtTD3svoQIoKDxNB1xFzlLzOL5+gf9naJracSEw3OXkwpKT8aQWWxNw X00QN7YmZrHLnuQvU16bc86cQNdXEBQixno6JVB7J7gua1QTFGT5o+Pz7bUVFLoL rVFdWl6DCH4NmZbMUKlGUdcG/mdLy00sCRF1NjCRBI2Zyjbn8h9wb/nnclHqcHsr vJobVPF5bwhEMYWVa53TwDIaU7jWsdbfo93G0Pmfq1f0GCQozSGBFLVTSsDp9Huo ajJrWFCY5xYWsTLo6UYTsQNR0yK6JKkKeJgJu5MVqaziuYqAHQm+p4pdG+N6q5MU 958tLcWUUETWxA== -----END CERTIFICATE-----Generated at Mon Apr 7 11:41:40 2025 by rpki-client