$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft File: zV45ZYo-9vE8ohzBGk4z682UZwI.mft (raw, json) Hash identifier: HViPQg5AL2ObOwQQaFOFDG4aM3XPWYHr4nhK4N2meig= Subject key identifier: D9:13:92:28:0D:DF:FF:F8:4E:B0:C2:2C:3A:E8:1C:09:D9:A9:E8:7B Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02 Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702 Certificate serial: 01950FEB53B31B0ECFE11714D0F4E7675A07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft Manifest number: 1571 Signing time: Sun 16 Feb 2025 18:00:35 +0000 Manifest this update: Sun 16 Feb 2025 18:00:35 +0000 Manifest next update: Mon 17 Feb 2025 18:00:35 +0000 Files and hashes: 1: 1-8UxcVTla5j7bO3G5vVxQgJ3gzs.roa (hash: ch8dpT85wJEGWDgj3N5hDC8XQYwv3BSkNMrgH1pP29g=) 2: 1-OswzRevrV2DebcIQRHsYjkREFE.roa (hash: P7qDnBUcDVovbH517fq2GYmB24DHk22bZU1xMQXyG9U=) 3: 2aYfbRwaZVy9SIZh5WeXhdSVQqQ.roa (hash: ap9afqiOMT9+4dw6ee5JDSibMDIDQ7cdyEaEq2eFSwk=) 4: 5n_YcLg3YQQNFYTwhU5huai3ZJI.roa (hash: 9mpciFsp3Kugx6pov8E04ElUzgFox7xfMS6pjLwC4Qg=) 5: ECT8clfNxElQsbNgWf5MSMBQJBw.roa (hash: OHKduQ+nBMz5yKr3Tz8KQLq2T4SUqaXm2BJrDDuQUCc=) 6: Eg5cB0gFbZt-mtb2g5DlnYfptYU.roa (hash: N8GnHFT4fRhNM3nodSxCZOH18KkVNRyweY1llmfoJHs=) 7: GCq3OcvhsVssgyhwVftlmv2qS0g.roa (hash: amGc7yYYdNqbzEM6/ZudOs3K3qKn0m9v09EM2kwWv7M=) 8: It_f8Sf2FfhB_S0DbfQKa-2JOPY.roa (hash: QAc5gHOaQXt39S4LjrikuPGmP8en9wsKvBleiEYuYHU=) 9: KCCAvsdFABptcdWkmYzNnQ9RL6E.roa (hash: DSZuLAxhdSWLE0DFN+BFigCnq9IYv1dV5jCeoEQh9rg=) 10: SeBDGoUZsUtOUZx02IQlwMJ27mU.roa (hash: c6tFykgM8su9GyncwABr6lgk4O/lhzLOVTR6XdjeoGk=) 11: T8nK914dXUKjKwmBTR6OBzRr4W8.roa (hash: lQ1rtnQt8mNlcDp2IXxjTk0VtlErhLs/vW2VTluXoYg=) 12: aqcyD04I5tez90f4iAT7WnG7VCQ.roa (hash: Q1+PORgycb9l0/xUPpaAuPXqw8JpkaIq9bzlnN5L4VI=) 13: dVNypIi5TMUPRWZbGjNPncY4Vgs.roa (hash: pcdcDvvm2WvXQvM0gMEQ8nPGvhEKpgKnRVYVVdKC7Co=) 14: eHOgLTcKFTQCb9pEoV1RpO9Ob6A.roa (hash: RcgTIJu/NwqSqC/vmr9OYFdwRt2Fz/3jLy3D9rjl+1A=) 15: gRGDjjLT48vk7uk37lX43qmpguM.roa (hash: r1CGQBpwekmoJBDyj4suW0g94HtAtdOyi9owjr8gV84=) 16: nvWYjhHXGuflWePISaSvNcdKkqQ.roa (hash: hx4+k+ZfhQfERSOkEsaZUId7/mQkGHRFBX4VUBA24sE=) 17: ob_RURKVUgsmITZALhVsa-qXolg.roa (hash: Fa1GGWTo+0NV3NehS4X6jfnbmrCwDIsz+qaYmi3m0FU=) 18: pYYheMngH9PrFAWYb7D0Rnwh3Rc.roa (hash: Kusa3kjA5UvOGnNhZkPG36CpyMnLT1XxrIsJiFszyIE=) 19: ro5M-dHEvoHU0Wp1W7KVNXTJRB0.roa (hash: XLpdig1yngTdqxo047wSxCKu12A/eL61KXVLCkHmUrU=) 20: tY_SBiXlNsyr5MWGvZwrQKokaZY.roa (hash: kjGrN/I53C88kyyVw+9gflWs7bJ3X6mbRrf1jGUgHG8=) 21: u2lc14tvu5h_9CLcTYmJhXN1dS4.roa (hash: ZEZqgy+vq22Eq2BMU3CLjDKDUayQshMITeCdx49A4Io=) 22: uBPI4Rs7rRPQGCWlNIMKuX7PU7k.roa (hash: jFkWBUBLmZ3TDstxedf2WQQANWt19wC/I1ODOLEnI/k=) 23: v4CBgLv9j2JeRIvOJQdKbNxvJTA.roa (hash: Ttid+kREmc6Upy79hRBO9XMBfRE+dqbNAYWtSZGV6ag=) 24: vS_G30kRmF5yTvVCZuLriQbTalI.roa (hash: jpLTyi2oD569vb7nR4qsqTlGyMLcUPoGbyflTszDmns=) 25: yxb4qAopfVWx9tbVX2D9X8-NDPo.roa (hash: SCjFOGOJpyW+e/90L6KJ17UwdzCSiXn/XxCg01egwec=) 26: z5USRWL1xokOYfBSwUf22d4RSgs.roa (hash: +k9eJkOqlZwo2Ca8utkijZ5ya8drgkfsi12poSw6dDo=) 27: zV45ZYo-9vE8ohzBGk4z682UZwI.crl (hash: rh9lmwhKaIRUbv0rVar3gUBekDtujiqQ5SiozoPhoBw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:95:0f:eb:53:b3:1b:0e:cf:e1:17:14:d0:f4:e7:67:5a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702 Validity Not Before: Feb 16 18:00:35 2025 GMT Not After : Feb 17 18:00:35 2025 GMT Subject: CN=d91392280ddffff84eb0c22c3ae81c09d9a9e87b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:07:47:0a:cb:dd:99:30:2f:19:a9:74:0a:76: 3d:c8:3e:b1:83:9b:0e:5c:c3:07:4a:ca:cc:23:12: 93:99:a7:a5:7b:88:d6:17:8a:ea:64:e2:6d:4e:c4: 47:25:cb:6e:ba:b6:5d:4c:9e:9e:ca:fc:ab:f7:86: 33:ea:7a:49:7b:1b:d4:53:1e:46:9d:97:67:19:f8: d3:27:59:1f:6d:b6:f4:fd:57:31:d5:f4:7e:15:cd: 0f:d7:8b:4b:16:2a:e4:db:3e:bd:dd:4d:d5:12:5d: a5:72:a2:81:78:b7:07:f5:12:3f:35:50:70:4c:89: 2c:dc:bf:f2:ea:81:55:5a:6b:7a:a1:21:36:a0:70: 9d:55:63:26:87:60:73:22:05:20:d2:e7:b2:a2:b9: f1:40:25:04:1b:77:b4:39:06:cf:2d:61:01:b5:a2: 00:c7:4d:4f:0c:c4:97:9a:a5:de:aa:b1:39:9d:a9: 2e:eb:6b:46:f1:66:75:39:4d:2d:27:84:6e:89:4b: e9:88:6f:f1:5c:d5:bb:0c:90:70:1b:79:1f:85:51: 3e:07:3e:e3:5a:49:6b:72:66:50:73:00:bf:15:51: 83:e3:d4:71:55:65:cf:d1:67:73:b9:4b:93:9e:cf: 93:5a:80:a4:b3:33:87:dd:9f:cb:8e:f5:61:1a:8e: e7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:13:92:28:0D:DF:FF:F8:4E:B0:C2:2C:3A:E8:1C:09:D9:A9:E8:7B X509v3 Authority Key Identifier: keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:69:f1:79:f3:71:1e:9b:ef:fa:c0:63:7e:73:2b:d5:9f:f7: 6c:b6:f7:5a:b8:8e:94:a5:8c:93:29:dd:e2:86:a3:c6:45:83: fc:03:02:86:14:9a:d5:27:92:74:0f:36:00:f9:16:fd:de:22: 50:55:ef:b4:21:b5:dd:93:92:11:64:33:ef:31:eb:1d:38:4e: 5d:09:bc:a5:0d:c3:7b:e5:a4:05:e9:85:4d:70:2a:3e:3f:4e: 35:41:4b:5b:bc:9b:70:b5:14:d9:a3:dd:e8:27:e1:f9:c7:e4: 3a:a5:46:f4:87:46:f9:45:d6:9e:5d:0d:b6:3a:38:29:99:a5: e5:f3:a7:60:57:05:92:1c:73:e6:dc:47:da:f0:23:66:3d:14: 1e:a7:72:40:ec:2d:17:4c:51:09:07:60:2c:a9:83:65:07:10: 7b:81:0c:bb:19:c3:c7:ac:7f:54:4c:c3:f0:c3:df:4c:33:a8: 71:32:6a:df:d6:16:94:75:47:80:2b:99:ce:d0:a7:88:f1:b4: c2:47:95:93:ee:1b:c4:88:a4:f9:8c:2b:4b:0b:30:60:36:87: c9:ff:df:ab:31:1c:52:03:73:c7:11:3a:9f:e8:3f:ad:c1:42: a8:f9:99:b2:e0:70:9b:c3:d0:0b:ae:13:fb:29:85:82:a1:31: f4:08:8d:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZUP61OzGw7P4RcU0PTnZ1oHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkNWUzOTY1OGEzZWY2ZjEzY2EyMWNjMTFhNGUzM2ViY2Q5 NDY3MDIwHhcNMjUwMjE2MTgwMDM1WhcNMjUwMjE3MTgwMDM1WjAzMTEwLwYDVQQD EyhkOTEzOTIyODBkZGZmZmY4NGViMGMyMmMzYWU4MWMwOWQ5YTllODdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuQdHCsvdmTAvGal0CnY9yD6xg5sO XMMHSsrMIxKTmaele4jWF4rqZOJtTsRHJctuurZdTJ6eyvyr94Yz6npJexvUUx5G nZdnGfjTJ1kfbbb0/Vcx1fR+Fc0P14tLFirk2z693U3VEl2lcqKBeLcH9RI/NVBw TIks3L/y6oFVWmt6oSE2oHCdVWMmh2BzIgUg0ueyornxQCUEG3e0OQbPLWEBtaIA x01PDMSXmqXeqrE5naku62tG8WZ1OU0tJ4RuiUvpiG/xXNW7DJBwG3kfhVE+Bz7j WklrcmZQcwC/FVGD49RxVWXP0WdzuUuTns+TWoCkszOH3Z/LjvVhGo7nxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkTkigN3//4TrDCLDroHAnZqeh7MB8GA1UdIwQY MBaAFM1eOWWKPvbxPKIcwRpOM+vNlGcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUt NWQxZmE2NmMzNjNiLzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMC9lZjUzNmMtMDNkMy00YWM1LWIxMjUtNWQxZmE2NmMzNjNi LzEvelY0NVpZby05dkU4b2h6QkdrNHo2ODJVWndJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjGnxefNx Hpvv+sBjfnMr1Z/3bLb3WriOlKWMkynd4oajxkWD/AMChhSa1SeSdA82APkW/d4i UFXvtCG13ZOSEWQz7zHrHThOXQm8pQ3De+WkBemFTXAqPj9ONUFLW7ybcLUU2aPd 6Cfh+cfkOqVG9IdG+UXWnl0Ntjo4KZml5fOnYFcFkhxz5txH2vAjZj0UHqdyQOwt F0xRCQdgLKmDZQcQe4EMuxnDx6x/VEzD8MPfTDOocTJq39YWlHVHgCuZztCniPG0 wkeVk+4bxIik+YwrSwswYDaHyf/fqzEcUgNzxxE6n+g/rcFCqPmZsuBwm8PQC64T +ymFgqEx9AiNTQ== -----END CERTIFICATE-----Generated at Sun Feb 16 22:25:32 2025 by rpki-client