$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft File: 9LdilQ63kWZou_qNG4cFYLHKdzk.mft (raw, json) Hash identifier: +LlNMUSUwAICnuFzw1hRjgkBx+ZfHaXJcGYpA2oY3+o= Subject key identifier: 15:26:A7:7B:B0:06:DB:47:3A:13:F2:AC:DF:04:B6:10:CD:89:63:87 Authority key identifier: F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39 Certificate issuer: /CN=f4b762950eb7916668bbfa8d1b870560b1ca7739 Certificate serial: 01974A7A718EFB1529863C1E6A4111BBB103 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft Manifest number: 141A Signing time: Sat 07 Jun 2025 13:00:27 +0000 Manifest this update: Sat 07 Jun 2025 13:00:27 +0000 Manifest next update: Sun 08 Jun 2025 13:00:27 +0000 Files and hashes: 1: 2I_gyEpNZ4JuV81yJRUXBVu-KOA.roa (hash: r49ywNskr+Vb41Ou7x0XARQgE2G5ZH5biPRfE9u4cAc=) 2: 2tZ8QlZM2m2IpNLIvJ0W7pbf-Z0.roa (hash: 9Uhvy9O+l0zHDpQPVkCj98q8JIdj7ZhjiR3rxLVvfII=) 3: 9LdilQ63kWZou_qNG4cFYLHKdzk.crl (hash: x7YYA+JKwyqxJmRY86M6M1bnmlzTXWNy63yjaXlCh84=) 4: Cqe38rpbTYcW3IBIj3GE-axW20k.roa (hash: rFb4HKGqgMrSh0TmO+Kz12Dni5W90nAeu/GsQNE5QbI=) 5: QvUi-uUyEPClIhL14Tjl4e8kcJ8.roa (hash: JHsP9SRn0z74odoNftVjEsPtUj5FZk/4tMrWE3fymP0=) 6: RW6wxE8PmfS_l7583dlKYTuULiM.roa (hash: NA5N2aFRPb0HCLNpvXiULoI8i28V3/zHm+oTFj2hW9U=) 7: XViXWtM4Qca08fEngqnKAjV8_6k.roa (hash: FX1LXPYDV9yZbUiSRuPd/ffSUdla1CU7pMstvEpaovA=) 8: YcddWRNkcNBtg2GRMDNHHw9mFJ4.roa (hash: G/xopPnzXkAvpcbYnZmulnHRu0yyJM+YK09jXPq59tw=) 9: t292OmKp-GnX0MyFpL72FnDc9MA.roa (hash: uIDL5vQGM8ia+mjLC9CmEE4toRqUWbIawZ8YzQbIFpY=) 10: vyCGGnsFvqliTEx12jYp6lwRAek.roa (hash: l5raYrCV5cZJwg0Ik6+6Zpw1vWa9xl0dKA9pFd0Ksa8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 11:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:4a:7a:71:8e:fb:15:29:86:3c:1e:6a:41:11:bb:b1:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f4b762950eb7916668bbfa8d1b870560b1ca7739 Validity Not Before: Jun 7 13:00:27 2025 GMT Not After : Jun 8 13:00:27 2025 GMT Subject: CN=1526a77bb006db473a13f2acdf04b610cd896387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:fb:9b:40:17:5d:44:cb:de:53:13:bb:7b:1a: 8f:d4:58:21:dc:16:00:59:4d:69:33:2b:3a:f2:db: 7d:8c:e0:a3:8c:f7:4a:a8:7b:5f:6b:3e:fd:3a:7a: 9d:31:b6:29:0c:78:24:d3:88:35:5a:f0:6f:20:69: 40:6c:70:9a:b4:92:4b:98:af:69:e5:06:aa:84:1d: 61:61:c7:14:30:85:07:9a:66:95:bd:81:e5:87:9b: a2:b9:4d:d1:5a:11:2b:d4:f8:5b:3b:dd:71:06:15: 1d:47:2a:38:23:94:5b:46:df:27:d7:6c:5a:00:90: 2d:88:03:6e:83:e2:af:a4:03:78:2e:91:43:a3:61: 95:0b:ce:24:b6:ae:97:ce:5b:8c:c2:e3:ef:e4:ab: a2:df:18:8d:3c:59:6c:21:1f:07:b5:bf:13:0a:0d: 2f:54:02:d5:25:69:f6:68:65:06:1d:35:52:a5:b8: 33:a1:aa:b3:82:db:69:59:46:a3:f8:aa:a7:87:4d: 32:99:9e:cb:ef:e2:1c:2b:ea:20:1e:93:a0:f1:2e: f9:83:4f:f3:7c:e5:b3:53:a1:7b:d1:66:ae:2e:b4: 07:cc:d3:c1:9c:43:df:3a:50:c5:87:bd:08:5c:b6: 22:65:5a:69:a4:96:14:a1:17:ba:61:3a:03:a2:42: c8:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:26:A7:7B:B0:06:DB:47:3A:13:F2:AC:DF:04:B6:10:CD:89:63:87 X509v3 Authority Key Identifier: keyid:F4:B7:62:95:0E:B7:91:66:68:BB:FA:8D:1B:87:05:60:B1:CA:77:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdilQ63kWZou_qNG4cFYLHKdzk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/0b23c5-21b5-4ab3-97a0-2f8df187f98b/1/9LdilQ63kWZou_qNG4cFYLHKdzk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:0d:8e:ba:91:f0:0b:17:26:53:47:c6:f2:1f:ba:4e:0a:03: c2:05:aa:96:84:d8:5e:ca:f8:88:f7:f2:dd:64:ac:f6:a5:b7: 69:fe:eb:77:85:11:a3:02:00:5c:09:3c:98:31:58:7c:1d:a7: 71:03:ec:6d:cc:1c:b8:38:df:b0:3c:59:de:fb:1c:a7:6b:63: d0:bd:f0:70:d3:2c:1d:a8:28:34:b6:38:24:47:36:a7:87:2f: 41:7a:e9:d3:ab:f1:2e:ce:8a:86:dd:e6:19:5a:13:80:c1:71: 67:e3:6d:d0:fd:5a:b3:25:fb:4d:25:c5:7d:e1:65:e3:d2:1c: e1:c9:8f:16:36:d8:f6:40:2c:36:ee:8b:11:e0:03:69:04:d4: 30:33:fa:9c:d9:9f:1a:f3:ce:91:8a:a8:de:11:ea:f5:5a:20: c6:26:09:40:b8:88:32:df:59:ea:14:52:ff:19:16:50:9c:15: 34:05:0f:19:39:4b:65:57:13:bd:b2:90:25:16:82:8c:d3:17: 29:82:85:48:a1:3f:99:18:82:90:f3:e0:c2:33:38:34:ac:66: 2a:8c:e1:38:31:6e:37:01:2a:d2:65:85:81:41:d6:a0:cd:10: 78:21:6f:02:d0:dc:2b:03:82:b0:92:3c:b6:17:25:86:13:14: f8:c9:6c:34 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdKenGO+xUphjweakERu7EDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGY0Yjc2Mjk1MGViNzkxNjY2OGJiZmE4ZDFiODcwNTYwYjFj YTc3MzkwHhcNMjUwNjA3MTMwMDI3WhcNMjUwNjA4MTMwMDI3WjAzMTEwLwYDVQQD EygxNTI2YTc3YmIwMDZkYjQ3M2ExM2YyYWNkZjA0YjYxMGNkODk2Mzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4PubQBddRMveUxO7exqP1Fgh3BYA WU1pMys68tt9jOCjjPdKqHtfaz79OnqdMbYpDHgk04g1WvBvIGlAbHCatJJLmK9p 5QaqhB1hYccUMIUHmmaVvYHlh5uiuU3RWhEr1PhbO91xBhUdRyo4I5RbRt8n12xa AJAtiANug+KvpAN4LpFDo2GVC84ktq6XzluMwuPv5Kui3xiNPFlsIR8Htb8TCg0v VALVJWn2aGUGHTVSpbgzoaqzgttpWUaj+Kqnh00ymZ7L7+IcK+ogHpOg8S75g0/z fOWzU6F70WauLrQHzNPBnEPfOlDFh70IXLYiZVpppJYUoRe6YToDokLIpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBUmp3uwBttHOhPyrN8EthDNiWOHMB8GA1UdIwQY MBaAFPS3YpUOt5FmaLv6jRuHBWCxync5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAt MmY4ZGYxODdmOThiLzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMi8wYjIzYzUtMjFiNS00YWIzLTk3YTAtMmY4ZGYxODdmOThi LzEvOUxkaWxRNjNrV1pvdV9xTkc0Y0ZZTEhLZHprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXA2OupHw CxcmU0fG8h+6TgoDwgWqloTYXsr4iPfy3WSs9qW3af7rd4URowIAXAk8mDFYfB2n cQPsbcwcuDjfsDxZ3vscp2tj0L3wcNMsHagoNLY4JEc2p4cvQXrp06vxLs6Kht3m GVoTgMFxZ+Nt0P1asyX7TSXFfeFl49Ic4cmPFjbY9kAsNu6LEeADaQTUMDP6nNmf GvPOkYqo3hHq9VogxiYJQLiIMt9Z6hRS/xkWUJwVNAUPGTlLZVcTvbKQJRaCjNMX KYKFSKE/mRiCkPPgwjM4NKxmKozhODFuNwEq0mWFgUHWoM0QeCFvAtDcKwOCsJI8 thclhhMU+MlsNA== -----END CERTIFICATE-----Generated at Sat Jun 7 22:54:46 2025 by rpki-client