$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: 1W0oS1ZqW26fOXBHXPe3b661csh1/dGzefej9X5BZNk= Subject key identifier: 17:29:E7:49:7A:49:BC:F2:81:50:9B:6F:F5:2A:57:43:32:AA:84:01 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 7BFA5E0BBC3DED82888A697096629F020DFC605B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 02BB Signing time: Sun 16 Feb 2025 16:01:46 +0000 Manifest this update: Sun 16 Feb 2025 15:56:46 +0000 Manifest next update: Mon 17 Feb 2025 17:12:46 +0000 Files and hashes: 1: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=) 2: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=) 3: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: 6ESBw5ko2F/A0YWMs45EECkc31DqN6myXQB/kyK5i80=) 4: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 17 Feb 2025 14:00:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:fa:5e:0b:bc:3d:ed:82:88:8a:69:70:96:62:9f:02:0d:fc:60:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Feb 16 15:56:46 2025 GMT Not After : Feb 17 17:12:46 2025 GMT Subject: CN=1729E7497A49BCF281509B6FF52A574332AA8401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:25:8d:38:60:de:17:bd:cc:8d:63:86:68:0f: 3e:6f:6a:54:69:b9:56:5d:2e:ac:6e:9c:7f:b1:a9: 42:f5:43:fd:97:9b:cd:a4:01:87:ef:9c:0a:9e:65: 72:2e:ef:01:8f:f0:b4:1c:1a:c2:e8:ce:9c:ba:3e: cf:82:1b:c9:ef:41:50:8f:79:32:a5:55:59:d6:55: 1d:79:1d:0f:60:62:7b:54:88:ee:70:b3:9c:f7:b4: 79:a1:56:4b:d8:68:50:e1:41:2f:0f:40:44:60:45: 1f:e4:0b:f7:65:fa:f5:b8:7a:c8:93:10:b2:d3:39: c1:5b:1b:a3:94:55:fd:d9:d6:8b:9f:a3:39:2d:11: f7:9b:32:33:76:e5:38:bf:be:52:aa:cf:93:f2:e5: fc:e6:3b:0c:8d:46:45:ad:a7:29:39:7b:a7:f8:64: 45:14:fc:45:4e:f7:53:3c:42:b8:75:1d:b5:ac:64: 21:b5:c8:6e:55:4a:4d:e3:60:fc:6b:2d:01:c4:f2: 67:57:4f:d8:83:ab:6e:c2:d5:52:c2:4d:08:06:b1: 01:08:16:d1:21:36:16:34:0a:7d:b7:9c:7e:86:de: 4f:8d:37:ac:8d:d9:77:81:2d:ce:f5:0b:f7:1c:f1: 47:9c:26:e3:e2:83:b6:bd:49:6f:4e:df:ae:e1:11: 53:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:29:E7:49:7A:49:BC:F2:81:50:9B:6F:F5:2A:57:43:32:AA:84:01 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:25:f7:e2:20:91:65:c0:07:f4:57:30:8f:a1:09:01:c7:11: ac:b0:94:7b:3f:f6:a9:20:5c:5c:94:7b:91:33:34:38:f0:96: 15:13:85:c5:ec:76:b3:48:c7:e2:55:e2:d8:6a:f9:46:aa:07: 79:bc:9e:55:1b:30:36:98:c4:a4:62:e0:10:d6:84:19:5a:aa: bf:f3:7c:0a:76:af:71:e1:85:97:a7:c2:8e:20:d6:c4:3d:dc: af:e9:da:4e:9c:c6:50:ff:b3:26:75:16:fd:92:78:9d:d4:7f: 4a:11:a3:87:56:1f:8d:17:0e:fe:48:78:b8:14:fc:32:44:73: 70:a9:60:a8:ce:e7:4f:71:d6:e3:60:c0:3f:9b:ef:11:6e:14: 2c:9c:65:f3:84:c9:70:90:39:ee:72:a6:50:2b:73:4a:c2:2c: 48:49:00:0d:bb:1e:35:b2:56:23:e6:0b:72:a6:a1:2d:a1:ce: 7b:89:f6:07:25:f9:fc:33:c3:2a:2f:b4:56:5d:4e:29:a6:0f: 9e:d1:0a:c6:c1:94:75:d5:2b:67:30:23:04:29:9d:54:a0:f4: 87:5e:4a:92:43:cd:13:7e:3c:89:69:9d:2e:a4:3f:e0:e9:39: d3:16:b1:0a:d0:3d:ae:33:08:e8:da:e9:3e:de:8f:04:10:56: 6e:14:3e:30 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUe/peC7w97YKIimlwlmKfAg38YFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTAyMTYxNTU2NDZaFw0yNTAyMTcxNzEyNDZaMDMxMTAvBgNV BAMTKDE3MjlFNzQ5N0E0OUJDRjI4MTUwOUI2RkY1MkE1NzQzMzJBQTg0MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6JY04YN4XvcyNY4ZoDz5valRp uVZdLqxunH+xqUL1Q/2Xm82kAYfvnAqeZXIu7wGP8LQcGsLozpy6Ps+CG8nvQVCP eTKlVVnWVR15HQ9gYntUiO5ws5z3tHmhVkvYaFDhQS8PQERgRR/kC/dl+vW4esiT ELLTOcFbG6OUVf3Z1oufozktEfebMjN25Ti/vlKqz5Py5fzmOwyNRkWtpyk5e6f4 ZEUU/EVO91M8Qrh1HbWsZCG1yG5VSk3jYPxrLQHE8mdXT9iDq27C1VLCTQgGsQEI FtEhNhY0Cn23nH6G3k+NN6yN2XeBLc71C/cc8UecJuPig7a9SW9O367hEVObAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUFynnSXpJvPKBUJtv9SpXQzKqhAEwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALyX34iCRZcAH9Fcwj6EJ AccRrLCUez/2qSBcXJR7kTM0OPCWFROFxex2s0jH4lXi2Gr5RqoHebyeVRswNpjE pGLgENaEGVqqv/N8CnavceGFl6fCjiDWxD3cr+naTpzGUP+zJnUW/ZJ4ndR/ShGj h1YfjRcO/kh4uBT8MkRzcKlgqM7nT3HW42DAP5vvEW4ULJxl84TJcJA57nKmUCtz SsIsSEkADbseNbJWI+YLcqahLaHOe4n2ByX5/DPDKi+0Vl1OKaYPntEKxsGUddUr ZzAjBCmdVKD0h15KkkPNE348iWmdLqQ/4Ok50xaxCtA9rjMI6NrpPt6PBBBWbhQ+ MA== -----END CERTIFICATE-----Generated at Sun Feb 16 20:20:23 2025 by rpki-client