$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: mjzXqbjKd2V+3Cpo6e6D8+3PUcTuErGCy2FTaR6wTzY= Subject key identifier: 8A:0B:ED:A1:4D:7C:FE:4E:54:2E:3E:59:F5:53:60:BD:03:25:F5:2E Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 01960F0D4CAEF182960BAC5A8E242524B938 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 0793 Signing time: Mon 07 Apr 2025 07:00:51 +0000 Manifest this update: Mon 07 Apr 2025 07:00:51 +0000 Manifest next update: Tue 08 Apr 2025 07:00:51 +0000 Files and hashes: 1: AVhJFVI2rddRDN9TZkxu2cOqd_U.roa (hash: Z21jddbs3xWpC/IPmSRdmy8CLER4CTA+wtUEhdmSjWA=) 2: GJoKWxqXVe9byJ7vEN4O3FsAPbw.roa (hash: 3INb6wymsZxncaYsZTd/NPz0kxdapcCp+SJMbjM8l0Y=) 3: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 4: Qu4ONRj9Tnvy_jUVCaYk-FPrpBY.roa (hash: uN7owuwNEzSt/aZwd8y6vL95cBARm3xUUdKefTm2BpI=) 5: TAjOCfxKmVaufyeMAaRjJQRrJpo.roa (hash: SxUJ/IMNoKh2IGXhAoqHbHYgCNszkM1cz1fmREsS+Ko=) 6: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: nQnCb6TYZ0sPfaX0Cwc5hOqhX6p8u5vrRDlC/uJQc8o=) 7: WNXcUWyOPw_jgwsMhjt3tr-DAXY.roa (hash: xCXJ3TCSOan9saMZR5HLRDriokOQriL1DMFUL1E2Cpg=) 8: ZGAhlZjnasS5BKxbuKtTlb2IG8g.roa (hash: /CWZhme5O1ZBpiwykCFeFAG1hv6S2QE4eqN/Qea+vmc=) 9: cbgxDriMd1w8Ezk1j_uW9c-uk8k.roa (hash: RA/kZIx4fzU+RCbQ8O1BxIKCZRJDjC4JRLSNt3ovrQ8=) 10: cblkW3ZYAZ5VQl8X3gHLFnE7S8g.roa (hash: +MK4cG6/hNPklJaXz5PxE5zp6rLCIwlFMKcCPx37Jxo=) 11: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 12: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 13: jDpfwbf-MYo1z6WLxxoQR9fD_bw.roa (hash: zExaE643LO98tK4NvHjnGSmdQinpnm87QOpAVLfdMLY=) 14: puM6zDTCACkm8XM63GmrJCmb9w4.roa (hash: /wWLN32nFvo5E1f9qQj5og/sDQq7KYw38OVpA8GGi58=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 08 Apr 2025 01:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:0f:0d:4c:ae:f1:82:96:0b:ac:5a:8e:24:25:24:b9:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Apr 7 07:00:51 2025 GMT Not After : Apr 8 07:00:51 2025 GMT Subject: CN=8a0beda14d7cfe4e542e3e59f55360bd0325f52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:48:5a:89:6a:eb:36:db:54:83:98:33:39:39: 09:08:54:c0:bb:bd:da:65:e1:bd:8c:ee:c9:de:75: d6:98:db:d1:c6:67:2a:c6:73:b9:a5:a3:8c:79:21: 52:31:03:04:6a:f6:75:af:49:54:d4:f8:33:d0:22: 2d:e9:82:36:3b:37:ce:ed:aa:10:1d:25:e4:b3:29: aa:c8:4a:e1:22:f1:ec:f0:14:52:81:3b:8f:1f:8e: e0:4e:91:6f:3d:52:2a:a2:4c:83:94:04:22:dd:97: 86:55:e6:ab:db:23:b2:85:a3:5f:7c:b1:d8:79:e9: f9:de:3d:6e:55:6d:67:62:3d:3a:9f:a9:05:1c:7d: 0d:87:3b:f3:81:13:95:e6:57:50:06:d6:bf:32:e1: 5f:40:eb:1a:a2:a8:48:21:3a:20:22:be:c9:a5:c5: 1b:af:1f:17:99:0f:ca:cf:8b:63:d0:ce:cd:df:70: c3:81:e0:46:ad:7a:70:20:87:df:7c:82:94:64:bb: 5c:0e:bb:fe:bb:40:aa:45:39:09:71:16:67:a6:b4: bb:97:d7:07:f9:63:d2:0e:02:e3:f7:74:43:75:62: 5e:c7:25:d3:f4:f0:a6:e9:b0:16:1d:d7:37:70:63: 34:e3:84:6d:04:08:6a:f9:d1:73:4c:ba:8e:b9:c5: 9d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:0B:ED:A1:4D:7C:FE:4E:54:2E:3E:59:F5:53:60:BD:03:25:F5:2E X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:04:10:eb:49:c5:04:7d:0a:67:0e:50:8e:8a:77:08:fb:f9: 49:d8:61:27:31:bb:78:71:3c:08:eb:40:24:cd:93:4b:46:78: 11:e2:18:bb:3b:7e:69:16:2a:d2:18:a3:42:ab:6c:80:6e:f9: 82:4f:2e:94:49:32:16:33:36:0d:28:8a:da:27:ba:77:67:d2: ef:fa:46:e0:65:2c:5f:82:d2:8f:99:6c:b7:24:b1:1d:4c:e6: d9:64:84:70:b3:5a:79:ff:df:bf:6f:a5:67:9c:4c:7c:67:c4: 70:9c:28:bb:94:3b:09:82:a0:0c:a8:ea:99:ec:7c:b3:50:08: 03:85:06:91:da:6c:6b:84:dc:bc:01:85:cc:7c:35:95:c1:37: 0d:32:ff:a0:d5:f6:91:4a:63:fd:4c:b4:22:7f:bb:ee:46:40: 94:ce:2e:b7:e5:7f:d9:24:41:5a:46:a7:a4:93:9a:20:1d:2b: 79:15:67:a1:f2:3d:2e:01:ce:68:a1:dd:1d:d4:26:59:b4:a9: 63:39:e8:98:23:ae:ca:e7:28:10:2b:9b:bf:53:8c:89:08:c0: 14:08:79:a8:97:b1:8a:0b:4a:d9:18:3c:9d:88:dd:64:79:b1: e2:7c:88:3f:77:f0:ff:3c:df:44:1b:0b:f2:4a:4c:4d:c1:b4: 07:5d:dd:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYPDUyu8YKWC6xajiQlJLk4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUwNDA3MDcwMDUxWhcNMjUwNDA4MDcwMDUxWjAzMTEwLwYDVQQD Eyg4YTBiZWRhMTRkN2NmZTRlNTQyZTNlNTlmNTUzNjBiZDAzMjVmNTJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxkhaiWrrNttUg5gzOTkJCFTAu73a ZeG9jO7J3nXWmNvRxmcqxnO5paOMeSFSMQMEavZ1r0lU1Pgz0CIt6YI2OzfO7aoQ HSXksymqyErhIvHs8BRSgTuPH47gTpFvPVIqokyDlAQi3ZeGVear2yOyhaNffLHY een53j1uVW1nYj06n6kFHH0NhzvzgROV5ldQBta/MuFfQOsaoqhIITogIr7JpcUb rx8XmQ/Kz4tj0M7N33DDgeBGrXpwIIfffIKUZLtcDrv+u0CqRTkJcRZnprS7l9cH +WPSDgLj93RDdWJexyXT9PCm6bAWHdc3cGM044RtBAhq+dFzTLqOucWdCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIoL7aFNfP5OVC4+WfVTYL0DJfUuMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAewQQ60nF BH0KZw5Qjop3CPv5SdhhJzG7eHE8COtAJM2TS0Z4EeIYuzt+aRYq0hijQqtsgG75 gk8ulEkyFjM2DSiK2ie6d2fS7/pG4GUsX4LSj5lstySxHUzm2WSEcLNaef/fv2+l Z5xMfGfEcJwou5Q7CYKgDKjqmex8s1AIA4UGkdpsa4TcvAGFzHw1lcE3DTL/oNX2 kUpj/Uy0In+77kZAlM4ut+V/2SRBWkanpJOaIB0reRVnofI9LgHOaKHdHdQmWbSp YznomCOuyucoECubv1OMiQjAFAh5qJexigtK2Rg8nYjdZHmx4nyIP3fw/zzfRBsL 8kpMTcG0B13dgg== -----END CERTIFICATE-----Generated at Mon Apr 7 10:17:54 2025 by rpki-client