$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft File: zYMT5B5kagnNAeLm9HOdO9I2xP8.mft (raw, json) Hash identifier: jyGVQNpHZGMLsnmSIqKt028/LI6HEqTQej82t7AVN1I= Subject key identifier: A7:06:C3:14:FE:1F:56:4E:A4:FF:7A:90:7A:F2:F2:B2:3C:C7:95:25 Authority key identifier: CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF Certificate issuer: /CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Certificate serial: 01961056F7FB069FA171658836FF65E76352 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft Manifest number: 14E7 Signing time: Mon 07 Apr 2025 13:00:57 +0000 Manifest this update: Mon 07 Apr 2025 13:00:57 +0000 Manifest next update: Tue 08 Apr 2025 13:00:57 +0000 Files and hashes: 1: 2PiS2J9-ItXkVvnefA7xUJmmHco.roa (hash: fm4Z7vvzHDMokg8lvCFW4L0Rre6/U9BEbHKtNsNHxxs=) 2: 9TwneljnoP6bcfYQvihrxla0RcI.roa (hash: Zr2Ui8lpKBSfU5vJuPYuh/1cm8NiWiUfV6M604x4ojg=) 3: HkTCrKZqDwa8EUL4YflDFIxvuSo.roa (hash: zO36rkW4iEPf0HW9ThqXz35RBy/UdvCTSm39AhOu1Wg=) 4: KcTcayFrsZLodbwf3DiREG7aMgQ.roa (hash: 8/vbDhWMe2EfxMGVicJi+/pUGnJZy6R4MjOjEjkxjUk=) 5: LsmwcIccA3zM4d7kxqt3XhLcSa0.roa (hash: 98WTFaz7XPqlrJj7+XyfBTJEw1Sf7UEiPzA9D8zWsIw=) 6: PneAThfusF70GWHWywmhFb0vzKg.roa (hash: 0kjnbKbpSjxRU2te032pdWFUGrUsCjxiyKJ48H1DPUU=) 7: QPCXSoVGqmo5YTCi73-CSDuyZ-M.roa (hash: BYlFE9CUTQ67gGcO7goW8z5RieIlu+Sp4h/7HCES0Bg=) 8: T-x5NWBWP7z0RtMavKGuf9lbyTk.roa (hash: 5meL33wuT4ICoWjsr5JwrdL6iizp93b+W5Vq2RQt4cs=) 9: YPhWBSPHGs5SvVUlaCiCKWmqFfE.roa (hash: 5GbYaE22J8Owy6TgFxnM856qPEXWo4AxIXtfMEPnMxs=) 10: Yqt3Kg8k1YJOv7s88RcINuiKaCE.roa (hash: nWZ5K8Cmhazakp99a9slUSDcrdtW/sXazmS+lE8qgb8=) 11: d-qZVEez3-tqSbLZHyKHdZ5qcJA.roa (hash: +81/qDkled7/tuehBezhqXR9TX8Qi/57Cwe4Hugu7Ps=) 12: e3hNMZozjl2a8wTj5jqUKt2netU.roa (hash: z65fVe11ggvNgyomVpHPZ3mT5uEYvV6n9cNO6WIVkOQ=) 13: jcSJxEfFuIOqv-vUuvBQckyf-ZI.roa (hash: V8+8ahCoa4BEtoKDRdWiWxQzrt5GRgWy4qkSi1g/uZs=) 14: lcN6tqSn03IPMO2AvpfpxpGgDQY.roa (hash: 8fvPqg+8qqIeW9Kd8tRNl8Xlys8MO8b9CTy9FA3u9tA=) 15: lzFclAiK-AKgH976Yl_uXg9r5wM.roa (hash: H/cy8Ymyjy+9oeeIlZQHYMPSRfjOx2uqFxTFGhSTiGE=) 16: oLt7xT_rHP-Hxh3lUeggtdVEvTs.roa (hash: hblIrYC6F95+wg2sH5P/uCfjsNRvIhmQ2s3oU6U1S/g=) 17: ogeSaiZjPO4Kd4PF4MmZ3E0M2dA.roa (hash: Y6nye2lCZkZiTnuBzh99LMq3fLt8LGMzc9QAvB3SwlM=) 18: p-aeeSEszU3aapQ0yEslN0bhQQ8.roa (hash: Mh/Q23651bJq9potJm5ecJKYPprCxzH57rPx/Ooy5iY=) 19: r40XtPdgr8Y3RxrHTUe0xVuomM0.roa (hash: t4ySxCeAxHkHkDK1q9KhuYpYVZshrBVi3KJ4uODs/8Q=) 20: rD4_vnlr510eZLzrr2aCnfyAvEE.roa (hash: dL+NP4nhH4zwWo5a+tL5dbCaIelO5RMTVy2uI8g69YI=) 21: rdclR5rmMPPiGdub64u9CAD4cr0.roa (hash: wXgXLOiDxEJK62XQ7DLJMuxi7/zXmFbGyGpgUuOv+8k=) 22: tNteV-bYipxacIdsneN2kRS27vI.roa (hash: DK40xOAWm2KZPWxZ02RGtb+aUbxm0wIjZBTHx/mZzWs=) 23: uzMFOnPKpMqU8CP0ss6Mpv56PiE.roa (hash: F8nsfvroSbli8FdaVZTheRyMCu5cUrtu6qwv9yns62A=) 24: zYMT5B5kagnNAeLm9HOdO9I2xP8.crl (hash: A2dHkgOyyVfLQpDzFpRcwg4ZmTQTrwOWizsD0/hdShg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 08 Apr 2025 13:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:10:56:f7:fb:06:9f:a1:71:65:88:36:ff:65:e7:63:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8313e41e646a09cd01e2e6f4739d3bd236c4ff Validity Not Before: Apr 7 13:00:57 2025 GMT Not After : Apr 8 13:00:57 2025 GMT Subject: CN=a706c314fe1f564ea4ff7a907af2f2b23cc79525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:15:35:87:bb:37:b5:81:18:7e:06:1d:e1:99: d5:60:ca:31:28:f8:9e:a0:e0:16:05:5c:6e:ea:7b: e0:1f:90:ac:71:f2:32:62:23:ba:5f:0e:d5:b5:56: ca:aa:1b:c9:7f:b4:be:57:e7:db:9a:4a:5c:1f:82: f7:f0:07:94:65:f1:09:45:d4:ad:cb:75:9b:f1:78: 44:f4:01:1d:c1:7b:e8:ca:95:65:26:58:db:34:8e: b9:38:68:4f:94:5f:15:f9:87:e1:38:55:9f:ba:35: 0d:7e:e2:aa:38:31:54:75:69:0f:bc:34:44:5e:23: 78:e1:c4:ee:d7:e9:a1:30:6a:6c:6b:71:3f:47:84: 29:aa:63:bb:c2:c5:9c:0d:93:17:db:7a:5b:55:63: 01:01:06:ac:06:88:79:79:43:24:59:d1:1f:58:ce: 02:93:e6:ac:c9:c1:a3:e9:16:c3:d9:11:c5:cd:f7: ff:e9:fd:3a:20:9a:d7:87:e8:57:12:ed:33:57:ec: e8:32:f5:96:80:9e:68:fb:e1:e3:2d:be:60:ea:92: 9e:0a:c8:02:7a:10:83:e8:af:e4:df:4c:ce:74:bd: 9a:e5:0f:1f:7d:54:d9:2a:eb:f6:13:07:e5:61:4e: 33:09:0e:46:0e:07:19:0b:dd:7f:bb:85:71:e2:10: e1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:06:C3:14:FE:1F:56:4E:A4:FF:7A:90:7A:F2:F2:B2:3C:C7:95:25 X509v3 Authority Key Identifier: keyid:CD:83:13:E4:1E:64:6A:09:CD:01:E2:E6:F4:73:9D:3B:D2:36:C4:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zYMT5B5kagnNAeLm9HOdO9I2xP8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/be/3465f3-03c2-4eaa-a674-8862b517317c/1/zYMT5B5kagnNAeLm9HOdO9I2xP8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:da:a7:83:3a:f8:c9:85:00:f8:ad:4e:06:ad:3d:61:0d:9f: a0:4c:0a:37:39:43:54:95:1c:dc:14:ea:0f:2d:5c:71:d0:25: 10:43:09:02:b5:4c:ae:59:8e:5f:e5:2c:0d:91:e7:0d:11:b8: 7a:24:1d:57:5f:7c:1f:c9:eb:65:af:3d:a9:cf:db:fe:c4:43: 9f:ec:f7:c0:d6:78:76:f7:14:d1:71:5a:38:fe:98:0d:e0:12: 4f:9b:23:7d:22:82:bd:ea:b5:7c:f8:1e:6f:ed:78:30:08:70: 52:54:ce:92:8c:90:52:9d:76:74:15:cb:a0:51:fb:32:4b:1d: 85:6f:d4:bf:db:55:f7:22:36:93:28:89:74:e0:1f:4c:ba:de: 8e:6e:b2:bf:03:30:d1:9e:31:53:65:b8:e0:ab:70:27:71:20: 9c:32:06:85:88:72:d2:cd:53:66:57:eb:f3:97:56:3a:95:d4: ce:73:f0:29:72:46:2b:30:c4:1a:ab:62:13:d4:33:3c:22:73: 4d:5d:9e:5c:c8:bc:aa:07:af:e6:a4:9b:75:4e:ab:7d:8b:e1: e6:8c:8e:2d:0e:4b:81:69:81:8a:e7:eb:78:40:5e:dc:5c:76: 8b:14:a4:a3:a5:53:83:62:9d:57:06:39:e7:84:5f:e9:82:d6: 31:bc:80:ce -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYQVvf7Bp+hcWWINv9l52NSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkODMxM2U0MWU2NDZhMDljZDAxZTJlNmY0NzM5ZDNiZDIz NmM0ZmYwHhcNMjUwNDA3MTMwMDU3WhcNMjUwNDA4MTMwMDU3WjAzMTEwLwYDVQQD EyhhNzA2YzMxNGZlMWY1NjRlYTRmZjdhOTA3YWYyZjJiMjNjYzc5NTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBU1h7s3tYEYfgYd4ZnVYMoxKPie oOAWBVxu6nvgH5CscfIyYiO6Xw7VtVbKqhvJf7S+V+fbmkpcH4L38AeUZfEJRdSt y3Wb8XhE9AEdwXvoypVlJljbNI65OGhPlF8V+YfhOFWfujUNfuKqODFUdWkPvDRE XiN44cTu1+mhMGpsa3E/R4QpqmO7wsWcDZMX23pbVWMBAQasBoh5eUMkWdEfWM4C k+asycGj6RbD2RHFzff/6f06IJrXh+hXEu0zV+zoMvWWgJ5o++HjLb5g6pKeCsgC ehCD6K/k30zOdL2a5Q8ffVTZKuv2EwflYU4zCQ5GDgcZC91/u4Vx4hDheQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKcGwxT+H1ZOpP96kHry8rI8x5UlMB8GA1UdIwQY MBaAFM2DE+QeZGoJzQHi5vRznTvSNsT/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQt ODg2MmI1MTczMTdjLzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZS8zNDY1ZjMtMDNjMi00ZWFhLWE2NzQtODg2MmI1MTczMTdj LzEvellNVDVCNWthZ25OQWVMbTlIT2RPOUkyeFA4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYtqngzr4 yYUA+K1OBq09YQ2foEwKNzlDVJUc3BTqDy1ccdAlEEMJArVMrlmOX+UsDZHnDRG4 eiQdV198H8nrZa89qc/b/sRDn+z3wNZ4dvcU0XFaOP6YDeAST5sjfSKCveq1fPge b+14MAhwUlTOkoyQUp12dBXLoFH7MksdhW/Uv9tV9yI2kyiJdOAfTLrejm6yvwMw 0Z4xU2W44KtwJ3EgnDIGhYhy0s1TZlfr85dWOpXUznPwKXJGKzDEGqtiE9QzPCJz TV2eXMi8qgev5qSbdU6rfYvh5oyOLQ5LgWmBiufreEBe3Fx2ixSko6VTg2KdVwY5 54Rf6YLWMbyAzg== -----END CERTIFICATE-----Generated at Mon Apr 7 15:39:59 2025 by rpki-client