$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: fQhBbMyMtOkftYvitd1Rxsy460k6KAayf/+Ei5PH+RI= Subject key identifier: E8:C6:E1:4B:3C:A4:46:A9:56:FA:DB:7C:DC:8B:FA:AC:29:BE:DC:DD Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 01963688D7C60F0DC3DAD4FCA1A5E7118D69 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 110C Signing time: Mon 14 Apr 2025 23:00:59 +0000 Manifest this update: Mon 14 Apr 2025 23:00:59 +0000 Manifest next update: Tue 15 Apr 2025 23:00:59 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: PSbAgR9oWL_1M-wwCnHY0Z_n_5s.roa (hash: UVsiOXoHlbBoR5HA9KIjZeyp4Ya5xZxEFqXfSX00QTE=) 4: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 5: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 6: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 7: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 8: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 9: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 10: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 11: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: AKGiUjaarWH7S3+I1TkEQKNOdwO5U3OD5TXqwKR9G88=) 12: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 15 Apr 2025 23:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:36:88:d7:c6:0f:0d:c3:da:d4:fc:a1:a5:e7:11:8d:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Apr 14 23:00:59 2025 GMT Not After : Apr 15 23:00:59 2025 GMT Subject: CN=e8c6e14b3ca446a956fadb7cdc8bfaac29bedcdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f2:6b:54:96:fe:02:60:04:63:a3:87:a3:b2: 58:f8:cd:2f:9c:4b:9d:de:de:d3:97:d2:0b:9c:62: 96:14:16:16:dd:6d:c9:bc:5c:0b:dd:16:71:1c:80: 42:f8:06:7f:00:b3:dd:40:0c:1b:f7:29:02:84:10: 54:93:44:f2:18:35:74:76:8c:9c:a8:a5:64:73:e6: 8e:eb:91:b8:04:b7:fa:49:d0:a9:84:0f:87:11:e7: d6:ff:5f:bb:14:48:e5:0d:0b:ee:d5:8c:e9:f5:76: f8:a5:0d:e9:cf:a3:2d:3b:f3:dc:91:38:43:e1:04: 8a:d4:62:32:0c:9a:54:f9:ab:1c:44:d0:af:05:a4: fe:d4:c4:ea:9a:2d:b4:a6:ce:bf:90:0e:ed:da:44: 1e:62:0b:a6:00:81:fe:93:54:03:41:e9:8a:e0:83: ea:d9:9f:c3:7c:25:8b:69:13:fd:a9:f9:19:66:9b: 91:ad:91:e6:db:7b:e8:55:43:b1:7f:73:f8:09:c4: 7e:da:f4:c0:7f:fc:fa:d8:b8:0e:39:21:ce:63:60: 0f:fb:bc:ae:d0:44:da:d5:1b:f6:cb:d6:54:da:69: d6:35:54:11:40:cd:2a:d1:27:ae:d0:7d:b4:0b:3d: 36:21:8b:f5:9d:58:a5:28:9a:f2:60:4e:d7:57:08: cd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C6:E1:4B:3C:A4:46:A9:56:FA:DB:7C:DC:8B:FA:AC:29:BE:DC:DD X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:74:19:3d:28:8e:d9:85:99:fe:46:33:d7:a9:b5:7e:c1:d0: e6:51:b0:b9:1e:c7:b1:1d:02:41:98:c6:79:c7:34:9b:4e:43: 00:ed:03:61:80:7f:85:ec:c6:75:ba:82:1f:c7:6a:84:a6:19: 66:f2:2e:04:6f:5f:c7:56:49:70:59:88:ed:80:4a:dd:65:c0: c9:11:32:fe:26:94:c8:6a:ba:5d:55:2f:20:8e:8f:39:32:7b: 68:99:fc:74:30:b5:bb:5c:85:69:0c:41:70:fc:33:63:9f:4b: 4c:3d:37:f7:57:a0:a2:eb:66:cd:76:62:f4:e5:d4:59:a6:b4: cb:27:d8:6e:74:91:cb:c2:a1:df:02:4a:8c:a5:a8:ed:9a:91: 05:0e:27:70:23:f3:bf:31:2d:20:cb:d1:2a:f1:78:7d:f6:94: 88:44:be:02:af:5d:82:e6:f4:41:fe:04:a5:bc:f5:7f:13:1c: af:17:7d:ac:dd:dc:2f:1c:32:44:87:f0:e3:f4:ab:68:e6:07: 37:d8:3e:82:24:1b:81:82:99:77:52:ce:42:e1:9c:de:59:46: 6f:f8:46:39:5d:e9:5f:12:ce:05:75:75:63:2b:75:3b:fe:69: bc:de:9a:5a:7b:7e:f0:6e:d7:30:78:b2:ab:a9:ca:41:ba:2b: 5c:38:28:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZY2iNfGDw3D2tT8oaXnEY1pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUwNDE0MjMwMDU5WhcNMjUwNDE1MjMwMDU5WjAzMTEwLwYDVQQD EyhlOGM2ZTE0YjNjYTQ0NmE5NTZmYWRiN2NkYzhiZmFhYzI5YmVkY2RkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/JrVJb+AmAEY6OHo7JY+M0vnEud 3t7Tl9ILnGKWFBYW3W3JvFwL3RZxHIBC+AZ/ALPdQAwb9ykChBBUk0TyGDV0doyc qKVkc+aO65G4BLf6SdCphA+HEefW/1+7FEjlDQvu1Yzp9Xb4pQ3pz6MtO/PckThD 4QSK1GIyDJpU+ascRNCvBaT+1MTqmi20ps6/kA7t2kQeYgumAIH+k1QDQemK4IPq 2Z/DfCWLaRP9qfkZZpuRrZHm23voVUOxf3P4CcR+2vTAf/z62LgOOSHOY2AP+7yu 0ETa1Rv2y9ZU2mnWNVQRQM0q0Seu0H20Cz02IYv1nVilKJryYE7XVwjNmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOjG4Us8pEapVvrbfNyL+qwpvtzdMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEnQZPSiO 2YWZ/kYz16m1fsHQ5lGwuR7HsR0CQZjGecc0m05DAO0DYYB/hezGdbqCH8dqhKYZ ZvIuBG9fx1ZJcFmI7YBK3WXAyREy/iaUyGq6XVUvII6POTJ7aJn8dDC1u1yFaQxB cPwzY59LTD0391egoutmzXZi9OXUWaa0yyfYbnSRy8Kh3wJKjKWo7ZqRBQ4ncCPz vzEtIMvRKvF4ffaUiES+Aq9dgub0Qf4Epbz1fxMcrxd9rN3cLxwyRIfw4/SraOYH N9g+giQbgYKZd1LOQuGc3llGb/hGOV3pXxLOBXV1Yyt1O/5pvN6aWnt+8G7XMHiy q6nKQborXDgoiQ== -----END CERTIFICATE-----Generated at Tue Apr 15 06:13:18 2025 by rpki-client