$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft File: 0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft (raw, json) Hash identifier: 7GNJaQ93NzX3tqkvyz6nEzH1YXsomgJMERTD6f9hh80= Subject key identifier: 5A:49:F0:6F:AE:C4:E6:BE:A6:D9:95:31:B6:48:87:7C:8A:7D:9C:00 Authority key identifier: 0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3 Certificate issuer: /CN=0d7ffae300def0876bf84890fb6ea17be841a4d3 Certificate serial: 2EEB60733F7BB1B1DE37CBE8778F5AEC91202C33 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft Manifest number: AE Signing time: Thu 17 Apr 2025 17:03:39 +0000 Manifest this update: Thu 17 Apr 2025 16:58:39 +0000 Manifest next update: Fri 18 Apr 2025 20:31:39 +0000 Files and hashes: 1: 3138352e3231332e3235312e302f32342d3234203d3e203632323430.roa (hash: r8RD1SHQl6OybEgdZXTaDzaRDBKJoFWuS6Yc77FVHmo=) 2: 38352e3131372e3232392e302f32342d3234203d3e20323132323338.roa (hash: qWG9h0hKE/+rc67V6b0QtNqJKNBV/dmrN+3owun/5GY=) 3: 3139342e33342e3235332e302f32342d3234203d3e2035303635.roa (hash: tD+eYvXQsGkCcpnz6s7EBRYpOf8Iu4vdb3Qy27wUI6g=) 4: 0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl (hash: jRXmodlGYUpqOTTs3ZXRHgu2HY/vH7ss86kwwCjf+fw=) 5: 3138352e3231332e3234392e302f32342d3234203d3e20343030393039.roa (hash: 4O3foUV7f18NUYJQaeBYgK+aW1lr+7o+ea8CcQjVzCw=) 6: 38352e3131372e3233312e302f32342d3234203d3e203536353934.roa (hash: UV54BiPkSqZcI5HHAY2kqiR/Mb+BJaMnW0h9cdeDsZM=) 7: 38352e3131372e3233302e302f32342d3234203d3e2035303635.roa (hash: 8/mMTd8OI6hx+rEazKaA5i9flVTt9So8wwSfFF6xpVo=) 8: 3138352e3231332e3234382e302f32342d3234203d3e203230343733.roa (hash: wPG7+ewf3YavylvXnnocD/9r9dGd3xv6uHxMRf9sKNA=) 9: 38352e3131372e3232382e302f32342d3234203d3e20323135303236.roa (hash: WUrbTcKV2+qO0uflme+Vda37GmhrcRAgBhkN6Ok9SGQ=) 10: 3139342e33342e3235322e302f32342d3234203d3e203239383032.roa (hash: MPp6Igfxvoo4H6VVtRMvz7wqXYqi9rOeS8G4+bL/Qls=) 11: 3139342e33342e3235342e302f32342d3234203d3e20313532363732.roa (hash: hBCTJH2VP/g2W82hp9JFwDkEQwn2f5ZxdgSFMedjM7Q=) 12: 3139342e33342e3235352e302f32342d3234203d3e203536353934.roa (hash: x2RfjpSN3xicSqXOSngzYM3QyNU0bV4bA1DJ2SOK7nM=) 13: 3138352e3231332e3235302e302f32342d3234203d3e20323132323338.roa (hash: ygSJr7gJnzCgddZdASy6lFYbTZobnImgktqUZvda03k=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 18 Apr 2025 20:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:eb:60:73:3f:7b:b1:b1:de:37:cb:e8:77:8f:5a:ec:91:20:2c:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d7ffae300def0876bf84890fb6ea17be841a4d3 Validity Not Before: Apr 17 16:58:39 2025 GMT Not After : Apr 18 20:31:39 2025 GMT Subject: CN=5A49F06FAEC4E6BEA6D99531B648877C8A7D9C00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a7:5f:61:78:a8:7f:6c:55:21:89:c8:ee:e2: 14:0a:67:b9:57:1e:3d:b9:f5:cd:22:ba:1b:ab:0a: 74:1b:c0:90:02:6b:59:03:69:f7:56:f3:3e:c0:17: 97:0d:5d:82:78:6a:42:e2:e7:8d:77:10:e2:7d:2e: 5b:7a:ee:d0:7f:89:2d:29:08:14:de:b6:d8:ff:a2: a3:7b:05:50:d5:e3:41:6a:a6:9b:15:ab:4c:be:9b: f8:8c:46:16:7d:6d:9c:9e:94:c3:39:ac:51:a4:d8: 05:d3:00:8e:55:fe:5a:bf:f0:13:cb:3c:21:4d:53: 18:65:7a:3d:e8:08:88:83:34:e0:9c:25:5a:b2:e7: c0:55:0a:6c:03:55:41:cb:d3:00:a5:11:83:52:f0: ca:df:2e:8a:62:ec:f6:6f:40:7e:c0:0f:14:e6:5c: 3a:12:73:42:18:c0:95:f0:3c:ae:bf:dc:e5:7c:63: d4:66:61:6b:09:a8:dc:a4:95:78:11:d7:ab:92:b7: e3:1c:3e:05:4f:6f:71:d5:07:be:66:db:ea:04:90: cc:93:98:09:3c:27:1e:ff:f6:9d:44:94:ec:b6:3d: 80:59:18:9c:64:d7:61:80:69:e7:e3:7e:7d:7f:e6: 2e:47:be:fe:60:e4:a6:33:45:c8:e2:fa:3d:25:32: 48:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:49:F0:6F:AE:C4:E6:BE:A6:D9:95:31:B6:48:87:7C:8A:7D:9C:00 X509v3 Authority Key Identifier: keyid:0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:48:1c:18:24:ea:96:b4:29:0c:7a:76:56:7f:c0:fe:57:5f: a8:33:26:ae:5a:27:52:42:f4:e0:4c:f1:b6:ac:f9:75:98:6e: f3:ac:69:60:b1:f4:c2:fe:f0:f5:71:b8:d8:74:4d:54:0c:61: 30:8d:6b:dd:11:78:df:15:1d:76:4c:bd:52:f7:8d:50:06:a1: 5a:46:11:8f:90:08:ee:7e:30:b5:89:f0:1c:fd:70:f9:c6:04: 0a:ad:e4:ad:9f:95:fb:b1:b1:a0:34:c6:b5:20:7f:c3:7d:fd: f4:54:7f:70:b4:45:12:4e:4e:d8:bc:dc:55:9f:66:f9:34:ff: 29:99:20:81:80:9e:e7:01:b0:f8:5f:14:af:21:a2:f3:76:7d: 52:d3:f0:3c:e5:a4:05:ef:58:a2:d0:14:67:79:5b:47:10:fd: 24:9b:ef:8a:9d:c7:54:15:57:77:72:13:89:32:be:0b:2e:a3: b1:89:28:c5:d4:e0:6f:93:e7:cf:de:fe:6b:9d:72:d5:3f:41: d6:98:7d:8e:20:49:33:51:8b:56:69:99:47:01:62:3e:7e:4a: 33:f5:a3:fe:6e:37:7a:45:fe:0e:60:47:81:63:99:94:9b:7d: 3f:4d:2d:89:95:71:ab:c2:41:3c:a9:42:4a:ab:23:67:f7:a8: 05:16:1a:31 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIULutgcz97sbHeN8vod49a7JEgLDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMGQ3ZmZhZTMwMGRlZjA4NzZiZjg0ODkwZmI2ZWExN2Jl ODQxYTRkMzAeFw0yNTA0MTcxNjU4MzlaFw0yNTA0MTgyMDMxMzlaMDMxMTAvBgNV BAMTKDVBNDlGMDZGQUVDNEU2QkVBNkQ5OTUzMUI2NDg4NzdDOEE3RDlDMDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8p19heKh/bFUhicju4hQKZ7lX Hj259c0iuhurCnQbwJACa1kDafdW8z7AF5cNXYJ4akLi5413EOJ9Llt67tB/iS0p CBTettj/oqN7BVDV40FqppsVq0y+m/iMRhZ9bZyelMM5rFGk2AXTAI5V/lq/8BPL PCFNUxhlej3oCIiDNOCcJVqy58BVCmwDVUHL0wClEYNS8MrfLopi7PZvQH7ADxTm XDoSc0IYwJXwPK6/3OV8Y9RmYWsJqNyklXgR16uSt+McPgVPb3HVB75m2+oEkMyT mAk8Jx7/9p1ElOy2PYBZGJxk12GAaefjfn1/5i5Hvv5g5KYzRcji+j0lMkiZAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUWknwb67E5r6m2ZUxtkiHfIp9nAAwHwYDVR0j BBgwFoAUDX/64wDe8Idr+EiQ+26he+hBpNMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODExM2RkYTYtN2FkZS00NDVkLThjNmUtNDQ4YTc4ZTQ4 Y2ExLzEvMEQ3RkZBRTMwMERFRjA4NzZCRjg0ODkwRkI2RUExN0JFODQxQTREMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RYXzY0d0RlOElkci1FaVEtMjZoZS1o QnBOTS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84MTEzZGRhNi03 YWRlLTQ0NWQtOGM2ZS00NDhhNzhlNDhjYTEvMS8wRDdGRkFFMzAwREVGMDg3NkJG ODQ4OTBGQjZFQTE3QkU4NDFBNEQzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGkgcGCTqlrQpDHp2Vn/A /ldfqDMmrlonUkL04Ezxtqz5dZhu86xpYLH0wv7w9XG42HRNVAxhMI1r3RF43xUd dky9UveNUAahWkYRj5AI7n4wtYnwHP1w+cYECq3krZ+V+7GxoDTGtSB/w3399FR/ cLRFEk5O2LzcVZ9m+TT/KZkggYCe5wGw+F8UryGi83Z9UtPwPOWkBe9YotAUZ3lb RxD9JJvvip3HVBVXd3ITiTK+Cy6jsYkoxdTgb5Pnz97+a51y1T9B1ph9jiBJM1GL VmmZRwFiPn5KM/Wj/m43ekX+DmBHgWOZlJt9P00tiZVxq8JBPKlCSqsjZ/eoBRYa MQ== -----END CERTIFICATE-----Generated at Fri Apr 18 06:43:38 2025 by rpki-client