$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: 8hQwcTSCker5VYt5l0LIxybl5psKOJxqh4qcbll3sfs= Subject key identifier: 82:43:4E:AF:02:57:03:FC:89:78:5E:18:44:16:4F:5C:9C:E9:74:84 Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 56596AFAF2A51730A250E3259B4C93A5C9FEB29F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 03AB Signing time: Fri 04 Apr 2025 13:15:40 +0000 Manifest this update: Fri 04 Apr 2025 13:10:40 +0000 Manifest next update: Sat 05 Apr 2025 15:08:40 +0000 Files and hashes: 1: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: eznERkc7DZbwVr+HCdvBRo/nv4eEoy29a9bx8QDzOz0=) 2: 34362e3138332e33312e302f32342d3234203d3e20383334.roa (hash: xUsUi3YtopFm9VP8hMqKJ5OknqKCy1oSAbxFuFcm2oA=) 3: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: yMp4N27BXYFMvxFXpYtEzVI3r3SVHmOz4dCZdlG1vnk=) 4: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: sxCRvdRH/61CgPyAucOSXXg3g5Gmmg1S97sa3AiLp/w=) 5: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: UnC4dY5BEMTU+QUmHEUrhfl+EBwa6d4Fy2eujPhitvA=) 6: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: 2bumHwEz40dpJkeu08sIkGwnS/32q6AADYWC0TJvVM0=) 7: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: JlUuMcDs9iMbjR7dJiBbcJHNKwygu5z2CyX5rtJmf5E=) 8: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: 93WlArlicDYcrFXuyD5oQHa3ZB3bdIjadlrADmzUdDQ=) 9: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ii72WRjo+pDoTtYybgLKaFsOG8JUV0CPdunTnf7/tAg=) 10: 34362e3138332e32392e302f32342d3234203d3e20313734.roa (hash: iFoLwhPM2dsVM0j9MR72yEvFI7xyXfHeaQDbIOf/NSg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 15:08:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:59:6a:fa:f2:a5:17:30:a2:50:e3:25:9b:4c:93:a5:c9:fe:b2:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Apr 4 13:10:40 2025 GMT Not After : Apr 5 15:08:40 2025 GMT Subject: CN=82434EAF025703FC89785E1844164F5C9CE97484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1c:91:72:1d:9a:98:03:dc:01:ee:b3:a7:e1: ac:4e:ab:8f:e4:47:69:65:48:b9:de:23:d9:6b:15: 80:5f:14:c2:8e:a5:aa:1e:75:f2:e9:89:8f:b1:49: 6c:5a:eb:79:98:39:f1:be:db:c9:0c:39:7f:99:40: 2b:73:8f:e5:21:4b:d1:db:d5:3e:2d:6a:a0:25:ef: c7:87:4b:e5:10:9c:5a:e3:5f:58:c1:8c:b5:4d:1a: 7c:26:d3:16:14:22:00:cf:04:41:b6:12:ad:e5:de: e4:5b:95:8a:9b:11:0f:85:f8:18:57:ea:a0:2f:0e: 14:d1:34:98:f2:87:f2:35:d8:e3:2a:3e:91:9e:06: f6:44:49:57:04:21:b6:2a:ae:39:e7:88:6b:5f:8b: 4f:f5:f8:69:6c:b4:02:4c:4b:aa:c1:9e:c6:7c:be: d4:ef:78:d3:4e:02:f7:75:9b:5c:af:0c:ec:a8:af: f5:ea:a5:fa:5b:c4:34:47:fb:79:7f:dd:d8:34:cb: d3:a4:91:93:4c:42:c2:95:de:c2:da:65:a5:3a:67: 0e:fe:c9:4b:20:e1:d7:c1:03:c7:ba:99:a2:87:28: 5a:a8:0a:a9:15:ac:3c:d2:5e:2e:cf:ff:8c:7d:7b: 39:68:18:e3:af:2f:04:d5:06:99:02:3b:75:e8:95: 2f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:43:4E:AF:02:57:03:FC:89:78:5E:18:44:16:4F:5C:9C:E9:74:84 X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:f4:c1:0d:ca:62:75:7f:4a:91:f1:ec:74:e7:7b:d3:f1:71: 14:48:76:8b:b9:e7:28:f4:9d:64:75:77:74:48:cb:a6:b9:b8: 6b:7d:40:cf:f3:0d:c7:b1:64:ed:ab:c7:75:dd:41:3f:77:0c: 66:b5:e5:e5:12:3f:62:da:da:e0:c5:85:51:11:a7:fb:f1:4d: 55:f9:50:73:67:fb:af:a6:86:cf:68:ff:05:a3:a2:e5:10:ff: 6f:90:b5:80:92:cb:b4:1e:a5:a7:c8:65:04:db:b2:35:95:24: 45:4d:d0:b6:71:cd:2e:45:be:6b:83:83:96:84:4c:83:44:ef: 5e:02:53:f4:cb:b0:2f:7b:a5:89:7b:c9:ac:cc:5c:7e:ba:35: 1e:bf:7e:37:c9:5f:84:96:65:d4:35:5b:09:21:a7:eb:3e:d3: 92:de:fe:43:c5:08:90:52:1e:d4:b4:ab:22:7b:e5:5a:8c:24: c6:3a:3c:43:ac:cc:3e:11:7c:fa:0d:69:08:34:ec:40:24:7a: 7c:f1:e1:a6:d5:f5:58:4f:1d:4d:0c:ee:5e:43:fa:b2:c1:f9: 5f:ad:b2:52:84:08:55:78:92:a3:bc:42:cd:23:fb:bb:8e:c1: 93:01:93:c8:d8:21:07:30:96:f5:f7:a4:f4:db:dd:59:44:c4: 72:75:21:8e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUVllq+vKlFzCiUOMlm0yTpcn+sp8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNTA0MDQxMzEwNDBaFw0yNTA0MDUxNTA4NDBaMDMxMTAvBgNV BAMTKDgyNDM0RUFGMDI1NzAzRkM4OTc4NUUxODQ0MTY0RjVDOUNFOTc0ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1HJFyHZqYA9wB7rOn4axOq4/k R2llSLneI9lrFYBfFMKOpaoedfLpiY+xSWxa63mYOfG+28kMOX+ZQCtzj+UhS9Hb 1T4taqAl78eHS+UQnFrjX1jBjLVNGnwm0xYUIgDPBEG2Eq3l3uRblYqbEQ+F+BhX 6qAvDhTRNJjyh/I12OMqPpGeBvZESVcEIbYqrjnniGtfi0/1+GlstAJMS6rBnsZ8 vtTveNNOAvd1m1yvDOyor/XqpfpbxDRH+3l/3dg0y9OkkZNMQsKV3sLaZaU6Zw7+ yUsg4dfBA8e6maKHKFqoCqkVrDzSXi7P/4x9ezloGOOvLwTVBpkCO3XolS/RAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUgkNOrwJXA/yJeF4YRBZPXJzpdIQwHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsfTBDcpidX9KkfHsdOd7 0/FxFEh2i7nnKPSdZHV3dEjLprm4a31Az/MNx7Fk7avHdd1BP3cMZrXl5RI/Ytra 4MWFURGn+/FNVflQc2f7r6aGz2j/BaOi5RD/b5C1gJLLtB6lp8hlBNuyNZUkRU3Q tnHNLkW+a4ODloRMg0TvXgJT9MuwL3uliXvJrMxcfro1Hr9+N8lfhJZl1DVbCSGn 6z7Tkt7+Q8UIkFIe1LSrInvlWowkxjo8Q6zMPhF8+g1pCDTsQCR6fPHhptX1WE8d TQzuXkP6ssH5X62yUoQIVXiSo7xCzSP7u47BkwGTyNghBzCW9fek9NvdWUTEcnUh jg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:45:35 2025 by rpki-client