$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft File: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft (raw, json) Hash identifier: 48VljdMAC9K8DLPUh6fJqoXefPYtiThkQ/wKas9owEM= Subject key identifier: FF:65:F5:D2:52:9C:BD:B9:FE:9F:67:7A:F2:86:F6:E9:27:10:B7:65 Authority key identifier: D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 Certificate issuer: /CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Certificate serial: 7BBF2FFA7CFE9C0A1DDD3C6A47B1C0B805239A0E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft Manifest number: 03E2 Signing time: Fri 04 Apr 2025 22:10:45 +0000 Manifest this update: Fri 04 Apr 2025 22:05:45 +0000 Manifest next update: Sun 06 Apr 2025 01:30:45 +0000 Files and hashes: 1: 39332e39322e32322e302f32332d3234203d3e203534333339.roa (hash: MlVhq9YMUDch69apYFS1riPDRY/vCEBSVcnZ0AXUbzA=) 2: 34352e38362e39332e302f32342d3234203d3e203631333137.roa (hash: 1x2zpcTAYyd8XetSB0JjPvLUa4clQe7hwjPf8ExgQOI=) 3: 37382e32342e3132342e302f32342d3234203d3e203534333339.roa (hash: KBQWp2YW6b35tXBZxmWFRr/DTme9e2nhX14tjQgVgwA=) 4: 39332e39322e31382e302f32342d3234203d3e203534333339.roa (hash: ZPrP8dQxnBlRV+SMhznGOOGWIIG1iXyuTJIlGLJRrkk=) 5: 37382e32342e3132342e302f32332d3234203d3e20383334.roa (hash: aR9bXXTYwrcEpOUA5zP1Au4UdLHmUATKygkKxMy2Hyo=) 6: 37382e32342e3132352e302f32342d3234203d3e203534333339.roa (hash: 7W/JQiIhBxvV9lPwlVaE2K95jNPOksJaHe90LVwGv1I=) 7: 37382e32342e3132332e302f32342d3234203d3e2037303138.roa (hash: /Sw/kTcH9aO7bMcRnVprTh49TII5UJ49lP8PepQkn1Y=) 8: D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl (hash: B97icFXlb6Txve1KIV+zlS6QLTdiBhu3UzAN9UcA/I8=) 9: 37382e32342e3132322e302f32342d3234203d3e2037303138.roa (hash: RiGLyTpjx/lhYnZMR/g3INSwpo5JHGzbqqOnRRhQZa8=) 10: 37382e32342e3132362e302f32332d3234203d3e203131343236.roa (hash: QHhKDdx7KbEi2pWBI66gL/yJWrRkXWlW9Ll3iu5yUnk=) 11: 37382e32342e3132312e302f32342d3234203d3e203631333137.roa (hash: PNy4BBOReJ4B4LRwKHBjnzscIyK0n1F3JT7zrSI8uHw=) 12: 34352e38362e39322e302f32342d3234203d3e20323039313831.roa (hash: axad6y4WO54wAX0JBbPnOOK6hI/gTIiMU9ubKRwS/L8=) 13: 34352e38362e39352e302f32342d3234203d3e2031323939.roa (hash: yQKHHpn8wCUHU+dOg286104MyMwPlf9k9qfBkCNGEsg=) 14: 34352e38362e39342e302f32342d3234203d3e2039303039.roa (hash: gq03q2PZTenb5MfLZJOhv7nheUzD9xSGdvhncjMBFfc=) 15: 39332e39322e31392e302f32342d3234203d3e203631333137.roa (hash: bCly8plczaq5qd0H9MlQ1Z8xZKSunOI/jFWKgR1UqBg=) 16: 39332e39322e32302e302f32342d3234203d3e2035353131.roa (hash: Anw+Ot0jzMET4Sk6hQNdmMLNf7QzBxX2vhTMbwb0Hp4=) 17: 39332e39322e32312e302f32342d3234203d3e203631333137.roa (hash: fW+zXQmtdqPL01ivRHM0ry5dwDotUJmdzQHE3ZemyUE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 19:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:bf:2f:fa:7c:fe:9c:0a:1d:dd:3c:6a:47:b1:c0:b8:05:23:9a:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d01ba013bc1e6d86f0d6d58eafa54e27fada3444 Validity Not Before: Apr 4 22:05:45 2025 GMT Not After : Apr 6 01:30:45 2025 GMT Subject: CN=FF65F5D2529CBDB9FE9F677AF286F6E92710B765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b0:c7:ef:dd:12:60:ef:2f:d5:bd:c9:01:59: 5a:6f:cc:60:7b:14:0b:e0:1d:f1:16:d5:c5:d9:8e: 86:f8:77:ab:0b:60:be:f0:a5:a2:de:64:dc:94:4a: 4e:91:28:c7:b3:16:88:25:1d:63:bc:c7:68:cf:df: 0a:e2:b2:11:3b:36:93:1c:39:34:a7:9f:72:1c:68: 27:9c:32:fc:68:7f:cc:79:cc:6a:a5:d9:58:c7:98: 30:e6:dc:42:91:af:b2:55:f9:6a:41:d2:e6:b6:2e: 47:2a:20:57:8d:76:04:d1:d8:01:0f:7d:6c:d6:24: 99:bc:c6:53:a7:a4:11:93:4e:fd:24:25:62:5a:96: b3:76:56:9d:14:f9:b3:79:c2:34:79:4b:9b:ba:d7: 44:46:23:a4:3e:89:6b:dc:15:9c:d8:3b:71:9f:5c: d7:25:70:bb:50:b0:e0:a2:c5:df:2b:c2:b2:81:8c: c1:2f:b4:93:6a:ee:f3:31:3f:2a:c7:24:59:21:79: 46:39:cb:b7:ff:d2:d8:3b:bf:77:8f:0e:3e:eb:66: bf:f1:03:cb:e8:51:69:9d:c3:33:2a:86:3f:27:0e: a3:9b:a8:db:ac:df:3e:a7:72:82:19:25:75:c9:e5: 23:9b:06:23:8a:98:a5:64:31:10:3b:25:11:c0:b9: 85:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:65:F5:D2:52:9C:BD:B9:FE:9F:67:7A:F2:86:F6:E9:27:10:B7:65 X509v3 Authority Key Identifier: keyid:D0:1B:A0:13:BC:1E:6D:86:F0:D6:D5:8E:AF:A5:4E:27:FA:DA:34:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0BugE7webYbw1tWOr6VOJ_raNEQ.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/a522a52f-6534-4165-a6a7-ef9f74ef9431/1/D01BA013BC1E6D86F0D6D58EAFA54E27FADA3444.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:e9:c8:a4:6b:ea:eb:38:5d:5f:7d:bf:7b:51:6a:b3:b2:46: a5:4e:9a:e6:23:74:c6:4a:e0:cf:03:bd:38:e9:86:47:ee:d9: 67:4b:90:a8:af:ec:87:72:da:6c:3b:ac:b0:c8:95:d7:c4:50: 3a:62:1c:49:c8:bb:f9:28:2b:e3:66:30:5d:11:f8:b6:36:c7: 6f:00:d7:dd:e4:dc:bc:50:ac:20:45:0c:fd:36:86:cb:6d:1a: 32:c4:e2:52:85:47:3a:c1:5d:d2:33:9c:5c:e4:fe:9d:04:4e: 58:bb:0f:b6:01:c0:31:9a:ba:3d:45:18:50:6a:58:3f:07:83: 83:f9:b4:99:44:5d:3d:35:4d:af:da:52:e9:fd:23:e9:fb:38: e8:59:ca:50:ad:8f:27:cf:34:4e:80:cd:33:c1:8c:eb:a1:7e: bd:dc:ec:7b:b0:2c:6a:f1:99:9d:00:a1:75:3f:ad:f0:6f:38: 13:12:0b:85:5a:ac:d7:fe:10:17:04:96:9c:75:f3:7b:27:3d: a0:bd:bb:a4:96:b0:73:b9:c9:93:32:8a:47:56:95:2e:2f:3f: bf:7b:b6:70:28:14:95:67:5a:f9:3e:e2:22:33:12:15:dc:84: 83:60:d3:8f:3d:4e:dd:de:aa:88:d3:97:f4:b8:95:a0:5d:f1: 0c:6d:0e:4d -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUe78v+nz+nAod3TxqR7HAuAUjmg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDAxYmEwMTNiYzFlNmQ4NmYwZDZkNThlYWZhNTRlMjdm YWRhMzQ0NDAeFw0yNTA0MDQyMjA1NDVaFw0yNTA0MDYwMTMwNDVaMDMxMTAvBgNV BAMTKEZGNjVGNUQyNTI5Q0JEQjlGRTlGNjc3QUYyODZGNkU5MjcxMEI3NjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmsMfv3RJg7y/VvckBWVpvzGB7 FAvgHfEW1cXZjob4d6sLYL7wpaLeZNyUSk6RKMezFoglHWO8x2jP3wrishE7NpMc OTSnn3IcaCecMvxof8x5zGql2VjHmDDm3EKRr7JV+WpB0ua2LkcqIFeNdgTR2AEP fWzWJJm8xlOnpBGTTv0kJWJalrN2Vp0U+bN5wjR5S5u610RGI6Q+iWvcFZzYO3Gf XNclcLtQsOCixd8rwrKBjMEvtJNq7vMxPyrHJFkheUY5y7f/0tg7v3ePDj7rZr/x A8voUWmdwzMqhj8nDqObqNus3z6ncoIZJXXJ5SObBiOKmKVkMRA7JRHAuYWrAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU/2X10lKcvbn+n2d68ob26ScQt2UwHwYDVR0j BBgwFoAU0BugE7webYbw1tWOr6VOJ/raNEQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYTUyMmE1MmYtNjUzNC00MTY1LWE2YTctZWY5Zjc0ZWY5 NDMxLzEvRDAxQkEwMTNCQzFFNkQ4NkYwRDZENThFQUZBNTRFMjdGQURBMzQ0NC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBCdWdFN3dlYllidzF0V09yNlZPSl9y YU5FUS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hNTIyYTUyZi02 NTM0LTQxNjUtYTZhNy1lZjlmNzRlZjk0MzEvMS9EMDFCQTAxM0JDMUU2RDg2RjBE NkQ1OEVBRkE1NEUyN0ZBREEzNDQ0Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdunIpGvq6zhdX32/e1Fq s7JGpU6a5iN0xkrgzwO9OOmGR+7ZZ0uQqK/sh3LabDussMiV18RQOmIcSci7+Sgr 42YwXRH4tjbHbwDX3eTcvFCsIEUM/TaGy20aMsTiUoVHOsFd0jOcXOT+nQROWLsP tgHAMZq6PUUYUGpYPweDg/m0mURdPTVNr9pS6f0j6fs46FnKUK2PJ880ToDNM8GM 66F+vdzse7AsavGZnQChdT+t8G84ExILhVqs1/4QFwSWnHXzeyc9oL27pJawc7nJ kzKKR1aVLi8/v3u2cCgUlWda+T7iIjMSFdyEg2DTjz1O3d6qiNOX9LiVoF3xDG0O TQ== -----END CERTIFICATE-----Generated at Sat Apr 5 01:30:28 2025 by rpki-client