$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft File: OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft (raw, json) Hash identifier: kTN0dKNft+1yruYvXAN/tqeSBelTA23dRW3ZfW+nmQQ= Subject key identifier: 6D:33:9E:99:5D:8D:9D:DD:9D:7A:B1:96:33:58:B3:6B:85:25:FB:23 Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Certificate serial: 019749D5F5764BC68E78AE05BA19DCD8D3DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft Manifest number: 158B Signing time: Sat 07 Jun 2025 10:00:47 +0000 Manifest this update: Sat 07 Jun 2025 10:00:47 +0000 Manifest next update: Sun 08 Jun 2025 10:00:47 +0000 Files and hashes: 1: 3nAxOrqe3oi83iVjt7-kMzJ_imI.roa (hash: 0jNIl4uBhcm5LdIuubw+L/Ha2QMXka6zLLkNeAcF40c=) 2: 7B2j1343QblR9F6iTWiRinHn8x0.roa (hash: Bp/dbOZRIjunqnEsDuN3X0tRwg1SKVjgcGEA09U24Zc=) 3: B9dwnbBbiJenj05UDjyUy_TzXDg.roa (hash: s4Wv5YaGEZaX82N6dusRWR3tSJBVmvjmxniLSHfxYAE=) 4: E6umy5_OlHHb3NOgNKiaqTj372A.roa (hash: kmYIRPqCRch39x2r6WhmK+8aDVBlwYVLvzQIGAbOPps=) 5: MP0FknZx-rt-jXqxm1yu7mNghjg.roa (hash: 0IVLTHz5qrQC3E0s/+3I0aF+dTWKqMK9+O5p+t6rJac=) 6: OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl (hash: RiwAyNlrkKJn1hZQom9KSwmXxZDVvOCoHXolc/kCpBU=) 7: P0hYRZk_epkkwrcDiaxk_ejd9pE.roa (hash: RbP7Hj7hNb6SHmHJtPw1bzOEo2w8Ign3eKIaXKeZWz8=) 8: SOBAES4j7h-D6nKfccoc2NpSr8A.roa (hash: vmAKmT6VUkF1cozh164hgKJKVk8BJXYwDbwibYkkVy4=) 9: WBa-OMWvS5R9EiWcpIqPa_m7lKo.roa (hash: JhWDx8KAw0uX/VJGQRKzvoZLcAnbsOAM+D0EwwgJJrs=) 10: _6ucnx77KQFalvj5yEE2wp5osls.roa (hash: Xw55WCSv/8tmiRj4/KKvZ6v3swmB6TKO4qL1Xw6aI30=) 11: hmNo0lfF6aVfLa7MkqmEKjtbdyQ.roa (hash: +xwhsq1RdvJOWfeJtHcoWSMc+U0UkSWEqMUWf9xz80w=) 12: jtw47htspCaZBqLn-szAwwLDgRI.roa (hash: 4ge4ZfZPpCPnlsJ6k5nbKp3z9nIWCai+fnrSIWJ/WUA=) 13: jzrvK-bgXnpFKZtkluSwDEQbp08.roa (hash: ZM3tthCJVaSjXclzoJDdeWjLh7O5ICpnIBuMTiMEL9g=) 14: nDB6bqiXy-rzhdku9Lj005kPHfA.roa (hash: 0AJR+PurXnO7T0pJNk8Tq3MFQx7X/cSxW3eCAXJvtLk=) 15: pvCC0r4LUt3fsl1VHVQdfXh8Y18.roa (hash: 7j0tvWV4dVH4uAAkH8k/IyIqfSMk5UZQp8CnBxjMpFY=) 16: u50dx3Lab1g7VZDVh4T56LPcn_0.roa (hash: jDquIHZmp2NFyWqEfhpXVj8qaJ2TUhubdI3kfdM2qms=) 17: z5q48ktpf1eARPpbmIGK9GsvsrQ.roa (hash: tmWASzkDn54AHUg2VFq+szTIlcEFXE4zmXDoc40cFbw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 10:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:49:d5:f5:76:4b:c6:8e:78:ae:05:ba:19:dc:d8:d3:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8 Validity Not Before: Jun 7 10:00:47 2025 GMT Not After : Jun 8 10:00:47 2025 GMT Subject: CN=6d339e995d8d9ddd9d7ab1963358b36b8525fb23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:43:77:1e:d9:1e:5d:69:26:e0:09:24:54:51: 3b:b7:57:e7:81:17:58:90:e6:81:e7:62:9d:6f:40: ff:2c:de:07:f0:8a:84:ef:19:1b:45:fe:aa:61:be: 42:db:2e:11:43:3b:d0:65:e8:34:64:42:36:67:f1: fe:1d:15:32:ec:e4:6c:e6:15:1c:ba:97:0f:80:46: d1:84:d5:d0:25:28:e5:c5:96:b0:b3:90:bb:60:f4: 66:d5:98:d7:b7:39:05:81:71:2c:1e:b1:ee:ce:19: e8:ef:49:ba:9f:c9:87:84:62:39:85:86:91:70:bf: 17:9d:d8:3b:25:33:90:75:de:04:af:38:c8:82:50: 7f:52:9a:cb:da:d5:8c:c1:9f:1a:da:1b:9c:97:ce: 40:c1:de:1e:0f:92:cb:8a:7f:93:c1:97:3a:14:3e: 7d:62:9b:b1:c1:00:cf:67:7b:41:bd:1d:c9:f3:80: ff:48:70:58:9d:f3:72:2a:cc:95:41:9a:f2:b9:d7: 12:1f:1e:31:77:2c:e0:f2:bc:10:c4:43:e5:94:a6: ca:de:d2:97:ec:b8:2e:bd:29:2e:4a:0e:d9:73:f0: c7:aa:a4:b9:6d:5c:b0:13:75:43:43:f7:33:ef:a8: ef:da:cc:ec:91:32:02:df:44:3b:12:d6:f3:e5:7f: 18:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:33:9E:99:5D:8D:9D:DD:9D:7A:B1:96:33:58:B3:6B:85:25:FB:23 X509v3 Authority Key Identifier: keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 23:39:63:a1:86:64:ae:b8:ae:27:76:dc:ef:37:80:d8:89:81: 2c:cb:01:03:7c:19:20:4e:c7:97:42:6b:f4:fc:62:c9:49:6a: 8e:2f:9b:f9:53:20:ff:2f:c1:9d:3a:0c:29:7e:f3:34:63:b2: f2:25:66:44:b8:52:b2:6e:2c:e4:34:ee:9b:55:5d:18:cf:70: 57:d5:64:1d:11:41:a4:f3:87:b5:3a:b5:76:ba:c1:aa:31:85: 9e:e1:2a:66:7e:88:88:fb:21:36:84:c3:2f:a1:3d:96:d6:be: ae:2d:3c:a4:70:4c:4d:9a:94:7a:31:99:23:c5:7f:87:20:0f: b1:a3:28:52:d7:fc:8a:94:15:6e:37:91:ec:31:31:e9:af:5c: a9:f4:8d:4f:aa:1a:d4:25:18:cc:56:4e:54:95:3a:a7:ab:73: a1:05:aa:c0:07:3e:03:5a:9f:a0:f2:a3:1f:c6:39:99:20:b7: e5:68:a7:ec:07:5a:5d:15:21:f4:ff:55:37:14:8c:f0:86:a7: 22:42:9c:c3:61:e1:b2:80:17:f2:50:14:d8:c2:24:84:78:4b: aa:d0:87:47:ad:b7:7a:55:f5:7a:57:b8:30:63:98:5e:05:04: 54:aa:98:3d:82:31:95:e6:14:ef:4b:5c:a5:d9:d1:a0:11:ef: 28:36:b5:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdJ1fV2S8aOeK4Fuhnc2NPbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4N2Q2ZGY3ZWI3NTQyZTAzMzNhZWVkZDE0YWRmZjhmNTFm OGNiZDgwHhcNMjUwNjA3MTAwMDQ3WhcNMjUwNjA4MTAwMDQ3WjAzMTEwLwYDVQQD Eyg2ZDMzOWU5OTVkOGQ5ZGRkOWQ3YWIxOTYzMzU4YjM2Yjg1MjVmYjIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEN3HtkeXWkm4AkkVFE7t1fngRdY kOaB52Kdb0D/LN4H8IqE7xkbRf6qYb5C2y4RQzvQZeg0ZEI2Z/H+HRUy7ORs5hUc upcPgEbRhNXQJSjlxZaws5C7YPRm1ZjXtzkFgXEsHrHuzhno70m6n8mHhGI5hYaR cL8Xndg7JTOQdd4ErzjIglB/UprL2tWMwZ8a2hucl85Awd4eD5LLin+TwZc6FD59 YpuxwQDPZ3tBvR3J84D/SHBYnfNyKsyVQZryudcSHx4xdyzg8rwQxEPllKbK3tKX 7LguvSkuSg7Zc/DHqqS5bVywE3VDQ/cz76jv2szskTIC30Q7Etbz5X8YcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG0znpldjZ3dnXqxljNYs2uFJfsjMB8GA1UdIwQY MBaAFDh9bffrdULgMzru3RSt/49R+MvYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2Mt NjA5YTQ4YjJiMTRkLzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOC9kNGE4OWMtNTRiMi00NDViLWJiN2MtNjA5YTQ4YjJiMTRk LzEvT0gxdDktdDFRdUF6T3U3ZEZLM19qMUg0eTlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIzljoYZk rriuJ3bc7zeA2ImBLMsBA3wZIE7Hl0Jr9PxiyUlqji+b+VMg/y/BnToMKX7zNGOy 8iVmRLhSsm4s5DTum1VdGM9wV9VkHRFBpPOHtTq1drrBqjGFnuEqZn6IiPshNoTD L6E9lta+ri08pHBMTZqUejGZI8V/hyAPsaMoUtf8ipQVbjeR7DEx6a9cqfSNT6oa 1CUYzFZOVJU6p6tzoQWqwAc+A1qfoPKjH8Y5mSC35Win7AdaXRUh9P9VNxSM8Ian IkKcw2HhsoAX8lAU2MIkhHhLqtCHR623elX1ele4MGOYXgUEVKqYPYIxleYU70tc pdnRoBHvKDa1Bw== -----END CERTIFICATE-----Generated at Sat Jun 7 20:27:40 2025 by rpki-client