$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: hjugLVLtCv6AZhqGf3aTFON9txS/4L+bux30t5aoItg= Subject key identifier: C5:6B:67:D7:86:BC:50:B4:CE:F2:47:40:FC:BC:AD:92:BB:4C:2F:DE Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 01962A84D13A4F031D2424675D9E439316B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 12B0 Signing time: Sat 12 Apr 2025 15:01:09 +0000 Manifest this update: Sat 12 Apr 2025 15:01:09 +0000 Manifest next update: Sun 13 Apr 2025 15:01:09 +0000 Files and hashes: 1: 4_O_iIpyAI9RehObq-pOpadb0Oc.roa (hash: yk0faU3G873g+gLSQoGVoe7NYYyCWEaHzHI6ZIk9UdY=) 2: 7loUqY3SMQ476AvW8cBj_oE5D0w.roa (hash: 9ZWiK7Ya0oQoJXKuXssFNZZZ1jcO9WaxjH/2eSSyYlw=) 3: 9qXJnie35SdfH2J2EgodKBngTzA.roa (hash: jwDaD5ZgcucjZdcdoISWLpA3Zdrcncz7G1jWAlDHN4k=) 4: _K6pKy4r_yxn6KKjdedN6hKQIRc.roa (hash: Fa8PiwPRQ/Nbg/tMa4sLtAZckTKFYG8hQ2oLAm3z+YE=) 5: eeGo9wragRSvkLaXijzUVv6g1UQ.roa (hash: f0fCuBwmYqh4E9JpX2SXK0IGaTdlCqkrpCwPLzLM7U8=) 6: f_BAmJDU6YD_W-jGGFTEv2Fs7Ak.roa (hash: PaLYZLAv0TrU+Bsc9bxTmK6PnOfA5lCBIqcJSl9Ay7o=) 7: h0Rq-64YdH2Rhgx8VqQPxecaOJk.roa (hash: +OMPPDfPiGbQBs5xm10WtKzO2XvkhzUC6VL8TFg0R8M=) 8: p7CrYRPqjfqg5-SpOOWgZYcH7pg.roa (hash: VxeYJO6+oO8JTtkcjhdpm2dOlDG12rU/cm/baKhjYqs=) 9: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: 9ozwkFXSk9MbW9o0qNI5mAVazQR83Pasogp0yR4PKzo=) 10: vm5i6AVzmYzAz9qPwbnD4VrLfVA.roa (hash: VDQ8oeDiLzJU7KaKEM2DHEI37PMjg/GP0JQI1knZDEc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 13 Apr 2025 14:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:2a:84:d1:3a:4f:03:1d:24:24:67:5d:9e:43:93:16:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Apr 12 15:01:09 2025 GMT Not After : Apr 13 15:01:09 2025 GMT Subject: CN=c56b67d786bc50b4cef24740fcbcad92bb4c2fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:28:6c:a6:c9:b3:1c:c6:78:64:9d:17:ca:cb: ea:f5:62:ed:e1:c8:ba:f6:08:b5:22:20:9a:de:aa: 77:a3:18:a5:ad:51:21:9a:21:7d:47:f2:05:0d:30: 49:dd:f0:2a:1d:a2:18:3c:5b:4a:86:7a:a1:08:a8: 39:c7:3f:63:2d:1b:55:f8:7a:4b:58:4e:b3:eb:45: f2:33:7a:f4:17:2c:82:9c:17:11:4c:da:88:69:fb: 9f:fb:1e:85:31:9b:58:73:64:43:21:d6:b6:46:89: 81:ee:be:9f:c0:68:52:c7:25:0f:20:df:f3:0e:dc: b9:c2:5a:91:fb:52:7e:9f:e9:84:db:66:83:59:2b: 0d:2e:32:4b:65:bd:1e:77:5a:94:e5:fe:11:71:f7: eb:39:66:b0:11:36:81:c4:9c:9c:ed:a7:66:c3:07: 88:fd:17:56:72:a8:59:96:2c:e9:95:1d:03:c0:1d: 93:49:3e:85:d9:a5:e7:94:df:8b:3e:3f:6b:96:c6: f8:a1:08:b9:99:22:e6:c6:1a:bd:1d:e9:ab:9e:98: ce:aa:9b:cc:ce:60:92:3c:9a:ef:9b:17:cb:94:26: 15:2e:94:55:1a:a2:03:e7:42:10:fa:48:25:a1:11: c1:2b:f2:6f:a8:91:6c:37:e7:b5:b2:f3:62:29:94: 5f:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:6B:67:D7:86:BC:50:B4:CE:F2:47:40:FC:BC:AD:92:BB:4C:2F:DE X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:90:27:3a:a9:c9:9a:61:7e:d3:87:c1:8a:0e:cc:a9:33:e1: b2:d4:a4:2d:5a:0d:fa:28:58:82:23:d6:0c:4e:55:91:d4:bf: 9c:8d:8f:b4:a9:15:ba:84:32:9a:e9:f0:74:ed:d6:7d:8a:c5: 75:a6:0c:3c:13:3c:25:5e:15:54:79:eb:ad:92:e5:a7:44:80: 44:87:dd:f0:a8:e7:cd:d5:dd:19:f2:81:41:3d:b5:70:88:3f: 73:b6:f6:2e:32:bf:b7:86:12:9d:0e:31:e3:00:55:9f:a3:9d: da:28:c8:78:35:45:7a:a3:47:4c:26:dc:dc:64:7a:c4:f6:a3: e4:a0:5b:b5:80:93:33:1e:ce:d6:36:8f:85:b5:87:58:dd:44: 36:f5:06:c7:1b:24:12:14:45:2a:ce:00:10:bf:93:25:b1:11: 81:d5:eb:d0:94:c4:1f:a3:3d:41:a2:03:a2:2d:21:ee:b5:9b: 4e:2f:9a:32:8f:1c:1f:93:cc:f0:4d:28:db:8a:7f:20:1e:9a: 10:a5:3e:a7:b1:d8:5b:8a:58:b2:23:af:dd:da:33:95:d4:57: ef:84:14:5a:08:8a:38:ec:0d:dc:37:79:53:bd:14:dc:26:c5: aa:50:c3:a7:33:55:c1:a2:21:0c:90:1c:01:86:18:0d:84:c2: 48:53:05:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZYqhNE6TwMdJCRnXZ5DkxaxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjUwNDEyMTUwMTA5WhcNMjUwNDEzMTUwMTA5WjAzMTEwLwYDVQQD EyhjNTZiNjdkNzg2YmM1MGI0Y2VmMjQ3NDBmY2JjYWQ5MmJiNGMyZmRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuShspsmzHMZ4ZJ0Xysvq9WLt4ci6 9gi1IiCa3qp3oxilrVEhmiF9R/IFDTBJ3fAqHaIYPFtKhnqhCKg5xz9jLRtV+HpL WE6z60XyM3r0FyyCnBcRTNqIafuf+x6FMZtYc2RDIda2RomB7r6fwGhSxyUPIN/z Dty5wlqR+1J+n+mE22aDWSsNLjJLZb0ed1qU5f4RcffrOWawETaBxJyc7admwweI /RdWcqhZlizplR0DwB2TST6F2aXnlN+LPj9rlsb4oQi5mSLmxhq9HemrnpjOqpvM zmCSPJrvmxfLlCYVLpRVGqID50IQ+kgloRHBK/JvqJFsN+e1svNiKZRfXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMVrZ9eGvFC0zvJHQPy8rZK7TC/eMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGJAnOqnJ mmF+04fBig7MqTPhstSkLVoN+ihYgiPWDE5VkdS/nI2PtKkVuoQymunwdO3WfYrF daYMPBM8JV4VVHnrrZLlp0SARIfd8KjnzdXdGfKBQT21cIg/c7b2LjK/t4YSnQ4x 4wBVn6Od2ijIeDVFeqNHTCbc3GR6xPaj5KBbtYCTMx7O1jaPhbWHWN1ENvUGxxsk EhRFKs4AEL+TJbERgdXr0JTEH6M9QaIDoi0h7rWbTi+aMo8cH5PM8E0o24p/IB6a EKU+p7HYW4pYsiOv3dozldRX74QUWgiKOOwN3Dd5U70U3CbFqlDDpzNVwaIhDJAc AYYYDYTCSFMFdw== -----END CERTIFICATE-----Generated at Sat Apr 12 20:42:29 2025 by rpki-client