$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: vOjfQK8XHB3oGK2LTXoi1QELr4KsHrYBTS0DEzfPF+0= Subject key identifier: 86:ED:4B:18:5B:CD:42:7E:D7:45:E0:B1:D0:21:3D:2A:80:67:6F:9D Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 7E06965AD2DACDB228823C3C046C507439A566 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 0402 Signing time: Fri 06 Jun 2025 11:47:30 +0000 Manifest this update: Fri 06 Jun 2025 11:42:30 +0000 Manifest next update: Sat 07 Jun 2025 14:41:30 +0000 Files and hashes: 1: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: MBTQi0HOcbTwY/4fQl+vTOHLOQ2FmR/EhBIZ6Dj3u14=) 2: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: lxi2m0tJ4IwcIv1Qu/mxuwgzf8BGdtHdxfKNM9mKZEQ=) 3: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: 4jq0qwMJqWtfRUuzz3vPyKHtua4FM5/8Y3cvVGfTKBM=) 4: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: EQc8ZSWRYu3w3yABE1KT+uLZnchUtUDhUBMKc9gsz8U=) 5: 34362e3138332e33312e302f32342d3234203d3e20383334.roa (hash: xUsUi3YtopFm9VP8hMqKJ5OknqKCy1oSAbxFuFcm2oA=) 6: 34362e3138332e32392e302f32342d3234203d3e20313734.roa (hash: iFoLwhPM2dsVM0j9MR72yEvFI7xyXfHeaQDbIOf/NSg=) 7: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: pxnqedD3kuwz1m+9x0q4e9R46P3xXGAP6tM7JZr4zqQ=) 8: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: oTN0mTa1fCa6zbhOwvK23MLybSOqrQ3Lnm2nPNDnfSQ=) 9: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ii72WRjo+pDoTtYybgLKaFsOG8JUV0CPdunTnf7/tAg=) 10: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: U6sIE1tc5XNg8Vw7jnbxLLCNANnB9wH3voxb1FhuZwc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 14:41:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:06:96:5a:d2:da:cd:b2:28:82:3c:3c:04:6c:50:74:39:a5:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Jun 6 11:42:30 2025 GMT Not After : Jun 7 14:41:30 2025 GMT Subject: CN=86ED4B185BCD427ED745E0B1D0213D2A80676F9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:02:91:71:a7:b7:a7:ec:7a:44:96:c5:10:96: 5d:1a:33:97:3d:d0:24:90:31:dc:1b:76:32:ea:69: 42:e6:bc:55:a7:67:c4:ab:2e:01:be:f4:bc:34:2f: 49:03:2f:a2:ff:ca:b6:68:9a:26:a5:81:4e:f4:ac: a9:b7:42:f2:ed:e2:d3:8a:f4:d6:c9:88:9f:ef:78: 42:8e:a1:53:5a:5b:2a:90:46:55:12:46:a0:b6:a8: 5d:90:f8:10:fe:3d:06:1a:9b:c6:57:7d:f8:0b:34: 44:21:86:f6:9a:ab:83:6a:83:ad:ff:ba:f8:ce:af: 5d:e4:26:4f:d9:7c:9e:a8:cc:4b:df:9a:64:92:aa: 82:8e:f6:78:85:6b:05:60:1e:0f:01:38:d1:d3:1e: 79:67:14:a6:7e:d6:0d:15:3f:8e:3c:9a:6a:7a:45: b4:37:66:f4:48:6b:dc:28:02:bb:17:2f:f2:f5:65: fd:14:74:9e:cf:f5:95:b9:f9:ff:eb:4a:c9:11:06: 0b:f2:05:34:16:49:fd:4a:c1:2c:17:30:86:37:7b: 6f:78:1d:11:78:17:df:bf:25:e3:95:62:f1:49:a0: f2:00:78:22:4d:c7:ee:59:0e:e1:4c:09:29:7b:5d: 37:7f:e3:5c:11:a4:fa:ab:2c:1a:85:8c:dc:d3:e7: ac:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:ED:4B:18:5B:CD:42:7E:D7:45:E0:B1:D0:21:3D:2A:80:67:6F:9D X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:45:cf:a8:e7:c0:3e:01:1a:b5:cb:7c:c7:60:eb:ed:61:08: df:45:75:28:63:89:8c:d7:6a:db:e9:e3:d2:01:ea:23:83:30: 71:66:36:61:99:d2:ff:ef:f7:98:37:3e:0f:75:cc:19:d1:c2: 39:f1:fa:7a:a7:ad:6f:6b:2b:f3:af:05:a0:e1:ec:74:c1:af: 7a:f9:57:c5:c9:25:29:08:4e:1a:fc:40:41:8a:c2:0d:d6:68: 56:63:de:95:d0:fd:29:de:64:46:7e:b5:87:70:6a:37:7d:80: 99:c1:b8:5f:2f:4b:fe:da:b3:65:75:c0:4d:c5:da:d0:15:3d: a4:12:74:97:8e:22:9b:60:55:44:03:3c:22:a2:08:59:1c:e5: b9:42:7e:6d:33:e3:0d:b7:89:2d:f0:a8:ff:b6:81:5b:bf:e7: 16:18:9d:1c:83:0d:51:11:c3:1d:b5:4c:c5:60:e2:df:cb:80: 0e:5d:e8:1b:a7:81:bd:04:81:7f:6e:20:a3:66:39:75:00:d4: 88:1a:ef:7f:97:4f:8a:96:c6:8d:d4:ec:7e:f2:d3:52:b7:f9: 79:a5:32:4a:cf:03:8d:e4:e6:8f:3a:28:8b:29:05:28:e6:2c: ec:fa:66:71:ab:4f:e3:1b:3d:46:e6:5a:ad:ef:98:1c:c0:91: c5:cd:b6:28 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgITfgaWWtLazbIogjw8BGxQdDmlZjANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEygyNGU1Mzc4OGJkNGVmYTIzYjFhODIwN2I3ZTc0YThlMWNj Njc3YjAwMB4XDTI1MDYwNjExNDIzMFoXDTI1MDYwNzE0NDEzMFowMzExMC8GA1UE AxMoODZFRDRCMTg1QkNENDI3RUQ3NDVFMEIxRDAyMTNEMkE4MDY3NkY5RDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMsCkXGnt6fsekSWxRCWXRozlz3Q JJAx3Bt2MuppQua8VadnxKsuAb70vDQvSQMvov/KtmiaJqWBTvSsqbdC8u3i04r0 1smIn+94Qo6hU1pbKpBGVRJGoLaoXZD4EP49Bhqbxld9+As0RCGG9pqrg2qDrf+6 +M6vXeQmT9l8nqjMS9+aZJKqgo72eIVrBWAeDwE40dMeeWcUpn7WDRU/jjyaanpF tDdm9Ehr3CgCuxcv8vVl/RR0ns/1lbn5/+tKyREGC/IFNBZJ/UrBLBcwhjd7b3gd EXgX378l45Vi8Umg8gB4Ik3H7lkO4UwJKXtdN3/jXBGk+qssGoWM3NPnrA0CAwEA AaOCAkcwggJDMB0GA1UdDgQWBBSG7UsYW81CftdF4LHQIT0qgGdvnTAfBgNVHSME GDAWgBQk5TeIvU76I7GoIHt+dKjhzGd7ADAOBgNVHQ8BAf8EBAMCB4AwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5u ZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQz OTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFBODIwN0I3RTc0QThFMUNDNjc3QjAwLmNy bDBkBggrBgEFBQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBl Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvSk9VM2lMMU8taU94cUNCN2ZuU280Y3hu ZXdBLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzE2YWNiOWEwLTZk MWUtNGFlNC05MTc3LWQ5MzhlOTgwNDM5NS8wLzI0RTUzNzg4QkQ0RUZBMjNCMUE4 MjA3QjdFNzRBOEUxQ0M2NzdCMDAubWZ0MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggrBgEFBQcB CAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCMRc+o58A+ARq1y3zHYOvt YQjfRXUoY4mM12rb6ePSAeojgzBxZjZhmdL/7/eYNz4PdcwZ0cI58fp6p61vayvz rwWg4ex0wa96+VfFySUpCE4a/EBBisIN1mhWY96V0P0p3mRGfrWHcGo3fYCZwbhf L0v+2rNldcBNxdrQFT2kEnSXjiKbYFVEAzwioghZHOW5Qn5tM+MNt4kt8Kj/toFb v+cWGJ0cgw1REcMdtUzFYOLfy4AOXegbp4G9BIF/biCjZjl1ANSIGu9/l0+KlsaN 1Ox+8tNSt/l5pTJKzwON5OaPOiiLKQUo5izs+mZxq0/jGz1G5lqt75gcwJHFzbYo -----END CERTIFICATE-----Generated at Sat Jun 7 08:06:34 2025 by rpki-client