$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: A75crjEk7oYTFdVJl2dg+rXdlMNXpzzFP5KhwzSJlK8= Subject key identifier: D6:95:0B:76:7B:75:0C:D1:08:CD:0D:C7:16:AF:25:F9:5F:43:BE:85 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 019751588C3CD237585DC7832473910D0BDC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 083D Signing time: Sun 08 Jun 2025 21:00:46 +0000 Manifest this update: Sun 08 Jun 2025 21:00:46 +0000 Manifest next update: Mon 09 Jun 2025 21:00:46 +0000 Files and hashes: 1: 1FJeVgZId139knZgMTYZmAnwLDs.roa (hash: VPpFwlCkzXISful3TlM5ZgodfCcJYCCPoZqn50dkuRo=) 2: BaoLehfzYM1vkBF2LqjuxCVGppw.roa (hash: wk0ycjZln2vcCwTCcN83YoDpaabATIZRlFvsl/RZ67U=) 3: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 4: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: jF4C4QKgkBed5ZaX96m6u6WhIDSIbadnkh5X0MxJpAA=) 5: WNXcUWyOPw_jgwsMhjt3tr-DAXY.roa (hash: xCXJ3TCSOan9saMZR5HLRDriokOQriL1DMFUL1E2Cpg=) 6: Wbt2iaP6Wu29ETEZevGjkYyyw8Y.roa (hash: mBaJPapqwbvtmJukkLZju5JRZWG5d49D3KPZxGiRkTk=) 7: ZGAhlZjnasS5BKxbuKtTlb2IG8g.roa (hash: /CWZhme5O1ZBpiwykCFeFAG1hv6S2QE4eqN/Qea+vmc=) 8: cbgxDriMd1w8Ezk1j_uW9c-uk8k.roa (hash: RA/kZIx4fzU+RCbQ8O1BxIKCZRJDjC4JRLSNt3ovrQ8=) 9: cblkW3ZYAZ5VQl8X3gHLFnE7S8g.roa (hash: +MK4cG6/hNPklJaXz5PxE5zp6rLCIwlFMKcCPx37Jxo=) 10: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 11: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 12: jDpfwbf-MYo1z6WLxxoQR9fD_bw.roa (hash: zExaE643LO98tK4NvHjnGSmdQinpnm87QOpAVLfdMLY=) 13: obpj78Cj4h6AqPChG513fVXXoMs.roa (hash: xhWt95TQUSf4jmhliYXpfzfmunJAIuxitDmmO5ohsLY=) 14: puM6zDTCACkm8XM63GmrJCmb9w4.roa (hash: /wWLN32nFvo5E1f9qQj5og/sDQq7KYw38OVpA8GGi58=) 15: zAnPUHrCJSV18x-mMc7-hNiZjaY.roa (hash: LG3Y0utc8dwpuU3oGtbD8u6QKi2Bv7dHexHJeWNV5Hk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 09 Jun 2025 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:51:58:8c:3c:d2:37:58:5d:c7:83:24:73:91:0d:0b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jun 8 21:00:46 2025 GMT Not After : Jun 9 21:00:46 2025 GMT Subject: CN=d6950b767b750cd108cd0dc716af25f95f43be85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:42:7e:47:31:9f:35:b3:e8:d0:ba:04:41:7c: 4f:a0:d5:50:30:d4:f6:b2:f4:44:ea:90:b7:e7:a7: 7e:3f:d4:70:1c:cd:03:46:97:84:b1:0c:fd:2b:51: 37:df:15:1b:c8:a0:5e:10:a8:68:f9:a5:ed:73:8c: 8a:51:fd:d4:fb:a6:02:8b:ee:25:02:cb:54:43:30: 37:45:5d:92:a9:94:0d:82:82:10:ab:66:27:84:b2: 46:47:d6:34:ad:bd:18:9d:30:9a:4d:5c:07:a0:5f: c7:6b:2d:da:aa:53:84:ab:3a:c1:d3:4a:74:c3:9d: 54:80:88:05:9d:d4:3d:e8:42:ab:40:54:a3:86:08: 56:aa:40:2a:be:75:40:77:63:17:d2:83:dd:56:5d: 48:03:20:7c:7a:23:14:35:b1:ff:5f:b2:96:25:9d: 56:78:43:b5:fb:9f:a3:a0:58:d6:a8:49:24:bd:76: 79:8f:f9:c4:e1:b4:f3:8d:87:93:38:b0:15:7c:45: 06:f7:1d:05:76:cd:93:bd:26:fc:2a:26:07:6c:65: 07:8c:d8:12:d0:7f:ce:98:7b:7a:62:cd:24:04:5d: d7:18:19:4e:99:38:1f:63:51:93:48:7e:59:b6:8e: 9d:60:d3:ac:a3:9e:40:42:cc:e1:7f:a9:85:dc:a2: 29:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:95:0B:76:7B:75:0C:D1:08:CD:0D:C7:16:AF:25:F9:5F:43:BE:85 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 69:84:13:b8:4e:79:a3:b2:44:1e:82:6b:d7:c2:e3:34:8b:b6: f3:88:5b:e8:03:6a:92:ba:9f:01:96:5c:32:e2:42:97:ad:8f: bf:96:fa:9c:ab:86:87:50:d2:5c:9b:8b:dd:7f:ec:ce:36:63: 2a:cc:e2:b8:f1:a1:53:51:4e:d7:00:b6:07:be:20:a9:ca:2c: a8:e4:8b:3d:0c:ba:de:b3:55:66:78:4c:35:58:de:07:a8:b7: ef:be:b2:71:78:c0:68:33:99:5c:8b:dc:bc:03:d0:db:06:d1: 2a:19:1a:f5:24:48:e4:c9:8f:47:4b:11:c6:15:82:f4:3a:73: e8:d0:2e:4e:01:88:2b:c2:85:8c:d4:38:d3:81:1b:11:8c:9e: 52:08:e7:8e:91:ae:55:88:50:2d:54:c3:19:46:6a:29:73:84: bc:42:5d:85:3d:0b:69:d2:29:a5:fe:52:a9:0a:21:d6:84:e6: c0:37:59:0a:4d:fe:aa:5b:81:d2:0b:af:04:ea:4c:aa:a3:38: 60:68:b6:c5:7f:63:fe:9f:7b:06:5f:38:1e:4d:43:a2:75:77: 59:86:f0:1b:00:90:bc:04:71:a5:05:a2:9b:51:5a:d7:bf:e3: ee:a6:d5:3d:d4:d6:10:a4:49:58:be:65:a7:59:20:a3:ce:00: 5b:fd:8f:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdRWIw80jdYXceDJHORDQvcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUwNjA4MjEwMDQ2WhcNMjUwNjA5MjEwMDQ2WjAzMTEwLwYDVQQD EyhkNjk1MGI3NjdiNzUwY2QxMDhjZDBkYzcxNmFmMjVmOTVmNDNiZTg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv0J+RzGfNbPo0LoEQXxPoNVQMNT2 svRE6pC356d+P9RwHM0DRpeEsQz9K1E33xUbyKBeEKho+aXtc4yKUf3U+6YCi+4l AstUQzA3RV2SqZQNgoIQq2YnhLJGR9Y0rb0YnTCaTVwHoF/Hay3aqlOEqzrB00p0 w51UgIgFndQ96EKrQFSjhghWqkAqvnVAd2MX0oPdVl1IAyB8eiMUNbH/X7KWJZ1W eEO1+5+joFjWqEkkvXZ5j/nE4bTzjYeTOLAVfEUG9x0Fds2TvSb8KiYHbGUHjNgS 0H/OmHt6Ys0kBF3XGBlOmTgfY1GTSH5Zto6dYNOso55AQszhf6mF3KIpxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNaVC3Z7dQzRCM0NxxavJflfQ76FMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaYQTuE55 o7JEHoJr18LjNIu284hb6ANqkrqfAZZcMuJCl62Pv5b6nKuGh1DSXJuL3X/szjZj KsziuPGhU1FO1wC2B74gqcosqOSLPQy63rNVZnhMNVjeB6i3776ycXjAaDOZXIvc vAPQ2wbRKhka9SRI5MmPR0sRxhWC9Dpz6NAuTgGIK8KFjNQ404EbEYyeUgjnjpGu VYhQLVTDGUZqKXOEvEJdhT0LadIppf5SqQoh1oTmwDdZCk3+qluB0guvBOpMqqM4 YGi2xX9j/p97Bl84Hk1DonV3WYbwGwCQvARxpQWim1Fa17/j7qbVPdTWEKRJWL5l p1kgo84AW/2P2A== -----END CERTIFICATE-----Generated at Mon Jun 9 07:19:29 2025 by rpki-client