$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: arEQvv+7EbVTRCVpM+bw7I/Zci4d3NLeJVm3mNxxmUQ= Subject key identifier: FA:7C:68:99:C7:D2:52:ED:AF:0D:18:D9:95:E9:D4:61:29:63:5E:99 Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 6D4C83CED0B84866CC40BB3BEE213BC3BA1A817A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 0358 Signing time: Thu 03 Apr 2025 15:45:21 +0000 Manifest this update: Thu 03 Apr 2025 15:40:21 +0000 Manifest next update: Fri 04 Apr 2025 17:15:21 +0000 Files and hashes: 1: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: oRFKCFxJGvX68QWJfvbA6xvAXbsbAtUy8eErblPaedQ=) 2: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: obdRgrAlbArOEzRq2MdJUp0vE/IGIUgpRkpTPsHnYpw=) 3: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: My3yqf8SZAlUZtlcB3JmnWpb3SRX7htkUcZxm6LuIxA=) 4: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: kAy+abXsJb9Q4kp22IeSWppW6m8I+XeaZMYUvXUunLw=) 5: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: yJ3jgTP5ms7vVZ9OOIspuE+dSGOdGl3B8e0eCPkkuvo=) 6: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: p4ZDdtK86rJtR1Yy0U4pqQrkMy9Mt2wV6blAzKoSX2U=) 7: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: jwteD3hkzVMFXXEJSc8k23qf/90xvhdj/VD3gj2Catk=) 8: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: LoPTcBT12GlxJeGQytlP+87jwAVqXsZ20yC+f2z0XAE=) 9: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: Jy9FfpiRqJjeQijv4Je6SENUeGndVONxelwvwfNNzXI=) 10: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: toTKmAJJ2uBqBLv6BkPz07R/jbWOIzBv8SNZxzfQ2BE=) 11: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: LKcPnvBQTsCR4w5Kx2YxxQoR+f2G/pvTMjh3hci1fU0=) 12: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: bRN9WIaNgBfL6hWP8Q0NfsbEb+S5Yh1ES6lsal3H0uY=) 13: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: SxwKmFdaPow3guK7NvONFCZ6G0PoorcTxWmZaoSvQiM=) 14: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: bGoZmuVAEB87yvgYuC6xqdUZRj5nlGp3K0afR23g6e0=) 15: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: mr8O2GLITID87EQbUR0mW/IyDelg6k8ezJcKyZbdo9E=) 16: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: +Vx7cPWX17QUm5q4oEHBBrGiQvI6E8LOHxd5Tzb+tsE=) 17: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: LQgVQ1MyyeW/dmCTdxbfNRo0tK6PErHXDmnl/WHeT/0=) 18: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: qupft+yfIDkLB2YnMTYFZT4P6Bv9II0x6lbxw2SsutA=) 19: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: fHsDulc+1xp80jqhKPKtHjI+D1+Glp+svd8TMxrbCTU=) 20: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: DRa+aO7PfiWNiVUAYWYYHBzJhLs+CludiMSn8iGHVjs=) 21: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: ce0p5l8EbnIlkfTcKoQYlCwW/M5epxY2k2J2uChkpXk=) 22: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: 8EdY1bwfX2htrpnhHvYT4yLsf3n4DjnGjUcl+BBMtxU=) 23: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: T3/+meO0E6Kscbv4zABgR7LjWbA9HZkY2ThRNjT1/ho=) 24: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: USXMXzOV5ANsNLdkdDGh+aelwmgR1a255Z8q4twzCv0=) 25: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: WDswPYGmfUApWBKWmWKB7joRjtpdfklPe2mHyoQ8sx8=) 26: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: 0IPNooT5QWBhGrICiMetYy7pCF+C6k7B4M0htQlo2Og=) 27: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: /R73oyZwtycfOIardsCBqBElyZyLAge3FIVtq7MzkqA=) 28: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: LIxp+Yx66SN3S5aAmVFOSGb98XSFAyI0SpT0sQdYaJk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 04 Apr 2025 13:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:4c:83:ce:d0:b8:48:66:cc:40:bb:3b:ee:21:3b:c3:ba:1a:81:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Apr 3 15:40:21 2025 GMT Not After : Apr 4 17:15:21 2025 GMT Subject: CN=FA7C6899C7D252EDAF0D18D995E9D46129635E99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:90:5c:3f:aa:1c:59:59:6b:a5:ec:e4:ea:85: 9d:e3:53:04:26:dd:a1:92:b6:87:0c:85:f8:89:39: 76:3f:0d:8b:7a:27:7b:d8:cf:d8:5e:7f:ad:5f:62: b1:48:ec:31:26:1a:03:67:16:6d:21:21:22:bb:82: e6:05:be:1c:aa:a5:1f:d9:55:92:f0:79:7e:33:64: dc:76:f2:a9:35:f5:f2:3c:fc:f8:08:f8:22:6e:14: bd:d8:bb:8f:5c:de:51:4d:07:1b:17:1c:98:f9:29: 20:87:f2:3c:10:cb:af:ad:86:9b:e1:49:14:4f:54: 3e:3d:56:6a:ca:c4:f5:2b:24:dd:52:75:cd:4b:06: 8d:69:d0:a7:a0:66:cb:f7:3a:d7:ad:e2:8b:72:61: ff:3b:70:95:51:1e:1f:26:c0:5e:07:95:e1:86:3d: b2:72:46:38:d3:22:c1:8f:1a:56:e1:08:94:de:42: 83:c4:dd:e2:1e:f3:50:e0:3e:fd:44:30:2b:aa:43: 41:0b:ea:91:5c:87:ae:9d:59:b6:72:4c:f1:bc:af: 0f:7d:c9:17:36:3c:bf:7d:9a:77:a4:da:b9:86:27: 5e:70:3c:6a:f7:db:52:27:cd:a4:c9:88:68:f4:f8: dc:ed:9e:80:d5:7e:f7:e2:84:52:fd:32:55:80:79: 3a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:7C:68:99:C7:D2:52:ED:AF:0D:18:D9:95:E9:D4:61:29:63:5E:99 X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:c5:07:52:c5:b9:44:03:ad:12:09:0b:d5:f2:d3:65:16:3c: eb:0e:91:c8:6a:a2:a6:25:6e:d6:9f:6c:8c:87:93:65:00:3d: 8b:74:85:ae:fe:dd:d4:4e:27:7b:4b:ae:f2:c0:30:ee:d4:1e: 48:ee:64:c4:f1:f0:7c:1e:56:1d:42:e3:77:57:c3:49:00:1b: 38:c1:f6:24:c1:6e:51:2d:1d:b7:9e:8c:d1:53:4a:f4:51:c9: bc:b4:8a:9a:e8:a1:51:b5:85:24:f5:0e:c1:36:e2:ee:af:78: 2d:8e:8a:f5:89:18:a3:e4:aa:c0:9f:33:4f:28:fc:8a:af:7e: 61:a4:8e:42:3d:d7:ad:4f:94:bf:9e:97:2d:65:d4:e6:39:b2: 5a:54:08:39:33:e1:e4:11:54:dc:06:a4:b5:2f:0d:d8:8c:ac: e8:e5:b0:8d:54:57:80:88:56:92:b6:0b:45:78:b0:58:a8:d4: 77:c6:9e:aa:1e:7d:c4:15:f8:cf:ae:67:b9:7b:a0:20:f3:64: b4:88:07:39:d2:cc:cb:9c:c7:9a:d9:b6:a2:ae:89:24:a1:8c: 69:82:23:ae:d8:d1:bd:ea:93:f3:01:5e:de:f3:ac:00:15:b2: d7:db:06:3d:07:7b:09:39:d3:a0:af:f2:85:4b:e1:ac:68:de: 6b:16:c2:62 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUbUyDztC4SGbMQLs77iE7w7oagXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNTA0MDMxNTQwMjFaFw0yNTA0MDQxNzE1MjFaMDMxMTAvBgNV BAMTKEZBN0M2ODk5QzdEMjUyRURBRjBEMThEOTk1RTlENDYxMjk2MzVFOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCakFw/qhxZWWul7OTqhZ3jUwQm 3aGStocMhfiJOXY/DYt6J3vYz9hef61fYrFI7DEmGgNnFm0hISK7guYFvhyqpR/Z VZLweX4zZNx28qk19fI8/PgI+CJuFL3Yu49c3lFNBxsXHJj5KSCH8jwQy6+thpvh SRRPVD49VmrKxPUrJN1Sdc1LBo1p0KegZsv3Otet4otyYf87cJVRHh8mwF4HleGG PbJyRjjTIsGPGlbhCJTeQoPE3eIe81DgPv1EMCuqQ0EL6pFch66dWbZyTPG8rw99 yRc2PL99mnek2rmGJ15wPGr321InzaTJiGj0+NztnoDVfvfihFL9MlWAeTrLAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU+nxomcfSUu2vDRjZlenUYSljXpkwHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArsUHUsW5RAOtEgkL1fLT ZRY86w6RyGqipiVu1p9sjIeTZQA9i3SFrv7d1E4ne0uu8sAw7tQeSO5kxPHwfB5W HULjd1fDSQAbOMH2JMFuUS0dt56M0VNK9FHJvLSKmuihUbWFJPUOwTbi7q94LY6K 9YkYo+SqwJ8zTyj8iq9+YaSOQj3XrU+Uv56XLWXU5jmyWlQIOTPh5BFU3AaktS8N 2Iys6OWwjVRXgIhWkrYLRXiwWKjUd8aeqh59xBX4z65nuXugIPNktIgHOdLMy5zH mtm2oq6JJKGMaYIjrtjRveqT8wFe3vOsABWy19sGPQd7CTnToK/yhUvhrGjeaxbC Yg== -----END CERTIFICATE-----Generated at Thu Apr 3 23:53:08 2025 by rpki-client