$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft File: ER1oFDdScdGjy9EhVdsR0r1BqNM.mft (raw, json) Hash identifier: qRSXT/A9EvNRlypHOzNLWb3xbBcyIyQba+1p1qzcPTI= Subject key identifier: FE:BB:EC:97:25:7F:C5:DB:34:6B:83:13:E9:1D:50:34:87:9E:DB:07 Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Certificate serial: 01964DEC89F7B2D8C0F53F46D39AC1DB9342 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft Manifest number: 13BF Signing time: Sat 19 Apr 2025 12:01:09 +0000 Manifest this update: Sat 19 Apr 2025 12:01:09 +0000 Manifest next update: Sun 20 Apr 2025 12:01:09 +0000 Files and hashes: 1: 1-Eladd6sj8Y7vq1mtW5h6ASM_tM.roa (hash: auxhruGljCxtN9ijkL9KZ/K4C+RcNKrzhKvUSRg/9HQ=) 2: 1-dpIOgQrHNlMUsxt6C2Ztf5nfuM.roa (hash: pCUJMhojWf39aVt/QyofbsbuGjc8Gizw3ZJ2MSqOsTA=) 3: 1-gUTUj2JpuChCvozdxCQFTR22DM.roa (hash: f/2CCyCRw0ujuPO8AP04nbSH6GVLpL5l8bdrrfS8KoQ=) 4: 4JmdsvBatEpFanHBLwN8tE53B0o.roa (hash: rZ4Y8EU6soeJCyiHjLhVB0iARab8gRMfLlwRpZ6KFuk=) 5: 7ap_QJi20SaGnPgK1pV6_7cP-Uo.roa (hash: BOo8F2wEw4BgZClwTOfUjkt0HIqhHPtSsQJru4E0kFk=) 6: 7pYVLfxDyksCdUmiOhbgviOo3x8.roa (hash: QcPN759vJqixjDGU3gmMeZsCeSMWabiqP3hVma37vPU=) 7: ER1oFDdScdGjy9EhVdsR0r1BqNM.crl (hash: EgpsETz93Ebk8g455enROdP7Rx5JOWfB6buVG4mFpOs=) 8: Hfkubm6yrWEn7gBE9wSMaD_ExXE.roa (hash: FXP2ir2FJkx6oy+MltDsbhNB8kOwwEjeXoSk5fOxlUM=) 9: Kk7xKrzHzx6qmDJI5CVBM_Sl474.roa (hash: m5FUWhJ54zbQwUlYkehhIiOw3x1SXokhdxGSIsx1B6c=) 10: Si8V8khtv0yVUA78DGGzfalNcCk.roa (hash: TuKNETdYYEdxWIcOAjkF1OdADD7zXp4g+mS6E5V7pvo=) 11: XjirH4cwDvxlRkAGxm7FSwAK2sM.roa (hash: YF/U/qPEr6M3Q+MIXQrnfUUKIV5n5WTRe7Dd9hsZTtM=) 12: aaSIhAJHCTwygtdFuXnOQPW6bY4.roa (hash: wv3RWyn/0THt7bCTdq/aMs2HWBM2MxgNANY6nblHNaA=) 13: cozXNddBZMRS0D_fVDWk42XqVNI.roa (hash: nP2wP4zibtasbSbsg7EMlMPSKjFkuBzXXdP2DBCONIM=) 14: iwe0kg-crqIWyp2IScMa9LxREgQ.roa (hash: CaVzf6weXzwiNznLUpeTB+QaHcaNjVgYiVjygsUgHxg=) 15: lQoeI3fot2NEOazpcJqwENKoEUU.roa (hash: Elimcemes6spMNky/T+TAYcPtxVw5jFrGcayiuk5D80=) 16: vsEC-C0-IZ2XJzdCqJMyLFlVXyo.roa (hash: 6dyvsyNO+SBB5YmEGzfWoUfWH/YqXAoOIBD3aTROXnU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 20 Apr 2025 07:26:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:4d:ec:89:f7:b2:d8:c0:f5:3f:46:d3:9a:c1:db:93:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3 Validity Not Before: Apr 19 12:01:09 2025 GMT Not After : Apr 20 12:01:09 2025 GMT Subject: CN=febbec97257fc5db346b8313e91d5034879edb07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:88:0b:bc:5e:e5:8a:d1:fe:20:19:9d:a3:7c: ed:ea:6b:15:e2:64:2e:59:4b:3f:eb:1a:f7:3c:f5: 68:54:d4:ac:90:d1:58:18:25:fc:4e:ce:82:a6:6c: 60:d5:ed:45:62:a4:37:6a:4c:2e:2c:eb:64:5a:85: 27:f7:0f:4b:04:c1:12:20:19:cf:5a:64:7e:74:3c: ba:2e:fb:20:5d:7d:8a:58:4b:91:5c:27:8b:dd:e6: 48:e7:03:68:10:2e:10:b0:67:b7:2a:fc:89:72:29: d3:3b:59:c9:7d:89:a1:34:1b:2d:0b:f2:93:f4:d6: 7e:ee:da:8c:0b:9d:9d:77:d1:27:bb:e2:66:be:e7: 3d:01:35:5e:d3:99:fa:d7:df:f7:b9:20:90:ae:1f: 64:b9:12:db:6c:db:88:cb:a7:22:a7:6c:c8:97:bb: 8a:9c:15:d8:4f:22:17:d3:46:62:3b:90:8b:d1:95: a5:cb:b2:8f:df:39:db:7b:91:23:f0:e3:72:12:c7: d1:be:55:22:0d:3c:1d:8b:5e:7c:b0:62:37:7f:22: 98:d1:5b:ee:b8:71:b1:7a:dc:68:c0:47:cb:19:ef: 3b:40:49:a8:f8:52:ff:54:ab:70:68:92:46:c5:be: c7:2e:19:1c:8f:2e:7c:bb:b6:b3:44:14:0e:d8:eb: 6c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BB:EC:97:25:7F:C5:DB:34:6B:83:13:E9:1D:50:34:87:9E:DB:07 X509v3 Authority Key Identifier: keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:89:e1:2a:5f:9f:f1:b8:1d:9c:86:e0:47:06:fa:64:6c:e5: 0f:18:11:29:f6:81:f4:85:21:f8:a9:90:43:7e:38:cb:d6:01: 79:a2:16:97:58:c7:4f:a8:33:2f:e9:55:83:d0:a9:32:8c:28: 57:a8:84:c5:75:e4:d6:8e:3f:45:fe:ad:df:48:b8:23:04:14: 9f:64:a2:ab:3e:a2:a4:f7:31:76:e4:db:2b:b3:ba:6f:43:e5: 61:c4:67:f1:60:a9:37:9a:a1:94:4d:33:03:e4:dc:2b:8d:fb: 4b:67:5f:f0:c0:34:2f:33:eb:7c:6a:e1:f2:64:fb:72:d3:4c: 5f:76:b2:a3:5c:94:00:db:b1:ce:82:08:11:e2:a8:3e:6a:5c: 29:9c:7e:e6:e3:29:81:ff:49:01:b8:e3:1a:e9:06:d5:21:37: c3:21:13:df:c9:01:00:69:7e:d6:7f:1c:47:6a:f5:93:0d:cd: b9:ef:e9:d4:35:0c:51:39:4c:32:7f:2b:7e:77:64:66:c4:bf: 90:31:51:ba:fb:3a:8e:11:fb:7c:36:61:c6:2d:d5:0d:5b:9e: 8c:7b:c7:ef:69:af:5d:19:97:0f:96:2f:66:c8:d0:1c:d8:e5: 5a:e4:60:a7:45:c6:15:11:32:19:7a:f7:8a:20:e7:43:a2:c1: b9:b5:19:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZN7In3stjA9T9G05rB25NCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0 MWE4ZDMwHhcNMjUwNDE5MTIwMTA5WhcNMjUwNDIwMTIwMTA5WjAzMTEwLwYDVQQD EyhmZWJiZWM5NzI1N2ZjNWRiMzQ2YjgzMTNlOTFkNTAzNDg3OWVkYjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxYgLvF7litH+IBmdo3zt6msV4mQu WUs/6xr3PPVoVNSskNFYGCX8Ts6Cpmxg1e1FYqQ3akwuLOtkWoUn9w9LBMESIBnP WmR+dDy6LvsgXX2KWEuRXCeL3eZI5wNoEC4QsGe3KvyJcinTO1nJfYmhNBstC/KT 9NZ+7tqMC52dd9Enu+Jmvuc9ATVe05n619/3uSCQrh9kuRLbbNuIy6cip2zIl7uK nBXYTyIX00ZiO5CL0ZWly7KP3znbe5Ej8ONyEsfRvlUiDTwdi158sGI3fyKY0Vvu uHGxetxowEfLGe87QEmo+FL/VKtwaJJGxb7HLhkcjy58u7azRBQO2Ots/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP677Jclf8XbNGuDE+kdUDSHntsHMB8GA1UdIwQY MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt MjcxZDI1ZTIwNTc0LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0 LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl4nhKl+f 8bgdnIbgRwb6ZGzlDxgRKfaB9IUh+KmQQ344y9YBeaIWl1jHT6gzL+lVg9CpMowo V6iExXXk1o4/Rf6t30i4IwQUn2Siqz6ipPcxduTbK7O6b0PlYcRn8WCpN5qhlE0z A+TcK437S2df8MA0LzPrfGrh8mT7ctNMX3ayo1yUANuxzoIIEeKoPmpcKZx+5uMp gf9JAbjjGukG1SE3wyET38kBAGl+1n8cR2r1kw3Nue/p1DUMUTlMMn8rfndkZsS/ kDFRuvs6jhH7fDZhxi3VDVuejHvH72mvXRmXD5YvZsjQHNjlWuRgp0XGFREyGXr3 iiDnQ6LBubUZUQ== -----END CERTIFICATE-----Generated at Sat Apr 19 14:50:49 2025 by rpki-client