$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: RKAPDyZTH0gi2DUepfvrHY+a6z4p0Dj1mKffIx1kodA= Subject key identifier: 0B:D5:73:4E:ED:5D:F5:DB:DD:97:50:C0:7E:08:8F:1D:36:DF:1B:1A Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 019746673C67AD37BCD7A1C5BF8F6616682D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 1344 Signing time: Fri 06 Jun 2025 18:01:00 +0000 Manifest this update: Fri 06 Jun 2025 18:01:00 +0000 Manifest next update: Sat 07 Jun 2025 18:01:00 +0000 Files and hashes: 1: 4_O_iIpyAI9RehObq-pOpadb0Oc.roa (hash: yk0faU3G873g+gLSQoGVoe7NYYyCWEaHzHI6ZIk9UdY=) 2: 7loUqY3SMQ476AvW8cBj_oE5D0w.roa (hash: 9ZWiK7Ya0oQoJXKuXssFNZZZ1jcO9WaxjH/2eSSyYlw=) 3: 9qXJnie35SdfH2J2EgodKBngTzA.roa (hash: jwDaD5ZgcucjZdcdoISWLpA3Zdrcncz7G1jWAlDHN4k=) 4: _K6pKy4r_yxn6KKjdedN6hKQIRc.roa (hash: Fa8PiwPRQ/Nbg/tMa4sLtAZckTKFYG8hQ2oLAm3z+YE=) 5: eeGo9wragRSvkLaXijzUVv6g1UQ.roa (hash: f0fCuBwmYqh4E9JpX2SXK0IGaTdlCqkrpCwPLzLM7U8=) 6: f_BAmJDU6YD_W-jGGFTEv2Fs7Ak.roa (hash: PaLYZLAv0TrU+Bsc9bxTmK6PnOfA5lCBIqcJSl9Ay7o=) 7: h0Rq-64YdH2Rhgx8VqQPxecaOJk.roa (hash: +OMPPDfPiGbQBs5xm10WtKzO2XvkhzUC6VL8TFg0R8M=) 8: p7CrYRPqjfqg5-SpOOWgZYcH7pg.roa (hash: VxeYJO6+oO8JTtkcjhdpm2dOlDG12rU/cm/baKhjYqs=) 9: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: POp7T6bLDMYps3o2iWFjhGeKbnjPVQEFzShiKRA4+q8=) 10: vm5i6AVzmYzAz9qPwbnD4VrLfVA.roa (hash: VDQ8oeDiLzJU7KaKEM2DHEI37PMjg/GP0JQI1knZDEc=) 11: yj9vr2VnE10QnxtDsz-n2QVr0i4.roa (hash: oY4OEejijqth0Kn/mWSI257F9MR4bW3yyLCjseFCr/g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 15:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:46:67:3c:67:ad:37:bc:d7:a1:c5:bf:8f:66:16:68:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Jun 6 18:01:00 2025 GMT Not After : Jun 7 18:01:00 2025 GMT Subject: CN=0bd5734eed5df5dbdd9750c07e088f1d36df1b1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:e4:9c:dd:f8:77:af:57:f4:b2:16:40:60:a3: bf:f6:31:a6:f4:ca:f9:1a:44:0b:ee:06:02:96:0d: 00:09:ab:f0:00:7e:91:06:94:be:b3:4d:91:6a:1e: be:03:05:3a:1c:51:2d:0c:53:20:3c:4f:e1:c1:0b: a5:51:45:f8:05:86:71:54:88:6f:b4:b5:30:29:db: 20:f3:ad:1c:2c:ad:0c:09:ea:17:dc:93:2c:09:8d: c9:87:60:15:62:96:c6:6b:56:ae:51:d7:b1:4b:1b: 4f:db:fc:6c:13:8f:c5:35:76:8b:8d:b1:28:70:b4: a0:e8:c1:1b:1e:c0:b6:5d:f6:06:eb:86:19:13:e4: a1:e5:3e:66:10:62:ee:36:9e:36:23:33:cb:11:ed: 40:c3:60:12:47:7a:f9:f6:01:7a:05:62:d0:3f:3a: 85:17:7c:ae:d2:e2:f4:11:c5:b6:da:30:93:83:77: 74:03:a4:63:38:9e:c0:e0:7c:84:83:72:22:d0:25: 40:93:4c:87:2d:2a:11:d5:e5:6c:15:51:85:c2:33: 55:e7:9e:42:0b:f2:82:9d:3b:f6:01:9a:b2:78:9c: 4d:70:a5:bb:28:5d:4d:02:8e:cd:14:08:99:87:b9: a5:2d:79:f9:7e:aa:15:d4:90:22:7a:ca:6a:41:74: f2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D5:73:4E:ED:5D:F5:DB:DD:97:50:C0:7E:08:8F:1D:36:DF:1B:1A X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:6e:54:20:23:d8:41:66:7d:59:46:47:49:2e:cf:fc:41:72: 00:54:c4:3e:9d:b4:ce:3f:d0:d2:df:9a:fd:af:90:02:fc:79: 83:4e:33:cc:e2:f4:e3:48:f9:11:0b:07:a2:0e:a3:65:43:52: 43:fb:95:ca:1c:cb:4d:34:d3:2d:9c:96:29:b6:40:a0:85:6c: 0b:31:63:98:5d:96:b2:de:7c:1b:2d:19:0b:0c:93:d7:c6:1b: 54:4b:18:10:4a:26:80:53:d4:f2:5a:89:f1:f3:fc:e5:06:a7: 6e:35:a4:3c:8a:91:1e:75:0f:82:7f:e5:fd:51:7c:31:f0:37: 88:47:99:86:5e:3d:b4:17:03:5e:c0:c4:53:d8:b8:76:75:88: dd:0e:80:ee:95:d9:a8:08:63:c6:e5:9f:0a:be:21:2b:9d:7d: 30:5a:e8:95:a8:59:f7:a3:93:7e:eb:f6:66:54:e7:5b:cc:89: 33:74:ea:7b:22:85:ec:12:83:7b:96:b7:6f:c4:3c:66:38:ba: 7d:55:da:30:b4:72:06:57:90:08:97:94:53:e5:00:25:1d:9d: ea:41:7d:74:cd:3a:d3:34:f9:34:6c:15:05:3a:e5:ec:a7:55: 28:ee:34:68:2a:69:a9:23:ea:6d:7e:4d:a3:58:b0:0d:31:8d: f1:71:30:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdGZzxnrTe816HFv49mFmgtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjUwNjA2MTgwMTAwWhcNMjUwNjA3MTgwMTAwWjAzMTEwLwYDVQQD EygwYmQ1NzM0ZWVkNWRmNWRiZGQ5NzUwYzA3ZTA4OGYxZDM2ZGYxYjFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAieSc3fh3r1f0shZAYKO/9jGm9Mr5 GkQL7gYClg0ACavwAH6RBpS+s02Rah6+AwU6HFEtDFMgPE/hwQulUUX4BYZxVIhv tLUwKdsg860cLK0MCeoX3JMsCY3Jh2AVYpbGa1auUdexSxtP2/xsE4/FNXaLjbEo cLSg6MEbHsC2XfYG64YZE+Sh5T5mEGLuNp42IzPLEe1Aw2ASR3r59gF6BWLQPzqF F3yu0uL0EcW22jCTg3d0A6RjOJ7A4HyEg3Ii0CVAk0yHLSoR1eVsFVGFwjNV555C C/KCnTv2AZqyeJxNcKW7KF1NAo7NFAiZh7mlLXn5fqoV1JAiespqQXTyeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAvVc07tXfXb3ZdQwH4Ijx023xsaMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADW5UICPY QWZ9WUZHSS7P/EFyAFTEPp20zj/Q0t+a/a+QAvx5g04zzOL040j5EQsHog6jZUNS Q/uVyhzLTTTTLZyWKbZAoIVsCzFjmF2Wst58Gy0ZCwyT18YbVEsYEEomgFPU8lqJ 8fP85QanbjWkPIqRHnUPgn/l/VF8MfA3iEeZhl49tBcDXsDEU9i4dnWI3Q6A7pXZ qAhjxuWfCr4hK519MFrolahZ96OTfuv2ZlTnW8yJM3TqeyKF7BKDe5a3b8Q8Zji6 fVXaMLRyBleQCJeUU+UAJR2d6kF9dM060zT5NGwVBTrl7KdVKO40aCppqSPqbX5N o1iwDTGN8XEwrA== -----END CERTIFICATE-----Generated at Sat Jun 7 01:16:31 2025 by rpki-client