$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft File: D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft (raw, json) Hash identifier: akSSxuVGzDfV443jvq060lnGzX3j6aWNP90grzUMzMM= Subject key identifier: 08:B2:87:0A:27:B0:1A:14:60:BD:DC:D8:9C:A3:8E:6C:E2:36:95:FD Authority key identifier: D6:42:97:5F:53:5F:45:FD:9F:6D:8F:EA:62:6B:C6:D2:4B:C9:D8:D8 Certificate issuer: /CN=d642975f535f45fd9f6d8fea626bc6d24bc9d8d8 Certificate serial: 5C17116A46C7F99491ADED70E1CA4EA55A1CA70B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft Manifest number: 02D6 Signing time: Wed 02 Apr 2025 23:40:35 +0000 Manifest this update: Wed 02 Apr 2025 23:35:35 +0000 Manifest next update: Fri 04 Apr 2025 01:12:35 +0000 Files and hashes: 1: 323030313a3637633a326265383a3a2f34382d3438203d3e20323035333239.roa (hash: 3wDhadYEfX0Hhy3fPxID0nH+bbX55tStnGOk9S2bMKU=) 2: D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.crl (hash: qK4GqYiX3XySbvDsFpjfOd5NOeqH9O3qOqn9KamnCfE=) 3: AS202881.asa (hash: n7g3r7+FlCCQyP417H6Uudw0ZEIUQH6oYUZ2fSNBDRU=) 4: 323030313a3637633a326265383a3a2f34382d3438203d3e20323032383831.roa (hash: tHiNPLeborN3MzxDKSTEAgj3ZJMcJjV9OqmGVy4ABhE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.crl rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Apr 2025 22:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:17:11:6a:46:c7:f9:94:91:ad:ed:70:e1:ca:4e:a5:5a:1c:a7:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d642975f535f45fd9f6d8fea626bc6d24bc9d8d8 Validity Not Before: Apr 2 23:35:35 2025 GMT Not After : Apr 4 01:12:35 2025 GMT Subject: CN=08B2870A27B01A1460BDDCD89CA38E6CE23695FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:87:72:36:1a:58:15:e6:fb:2b:c6:0f:5d:ec: ce:ed:a4:31:51:59:60:d4:23:6e:3d:81:a8:d9:55: 7c:56:33:5c:73:d8:a7:a3:b6:ce:b5:05:f7:0d:a6: ed:66:22:3b:96:14:0f:13:aa:45:33:f2:8a:c8:aa: 4b:0a:87:75:61:b0:75:4e:0a:e3:43:67:b2:64:7b: 3b:8b:b9:3a:47:26:6f:f6:c4:cf:fe:79:4d:38:b0: 20:48:c1:76:e0:a1:54:c1:ad:14:c2:27:c7:2f:7b: 67:d0:5e:eb:16:ea:0f:b6:39:db:e5:d9:10:00:00: fb:fd:73:6a:a0:e7:99:08:e0:3f:f0:90:02:af:cb: b4:82:ea:91:0b:9b:98:4c:da:86:43:4f:74:82:50: af:64:a2:d6:10:ae:6a:51:1d:ff:53:f5:0e:a6:70: 70:bc:78:fb:15:f7:fc:85:41:74:50:e6:a0:17:9d: ec:52:79:b1:1a:70:87:9e:cd:e2:fe:8f:8f:28:81: 5c:68:2e:4b:3f:87:b6:d2:1c:1e:ae:81:88:93:61: 85:ff:cc:0a:cb:4b:89:70:08:cf:42:10:9b:6f:9b: 61:86:19:bd:0c:a0:86:4f:8e:9e:f2:f9:02:85:2f: 68:f0:f2:21:f8:5d:ae:45:95:4a:3b:ba:16:b7:05: bf:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B2:87:0A:27:B0:1A:14:60:BD:DC:D8:9C:A3:8E:6C:E2:36:95:FD X509v3 Authority Key Identifier: keyid:D6:42:97:5F:53:5F:45:FD:9F:6D:8F:EA:62:6B:C6:D2:4B:C9:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kKXX1NfRf2fbY_qYmvG0kvJ2Ng.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/d697160c-acc5-4b51-bf55-10c7a6e66980/3/D642975F535F45FD9F6D8FEA626BC6D24BC9D8D8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c3:47:1a:23:6f:e3:c7:85:a7:a8:55:ec:a8:5e:7f:c8:72:83: b2:94:90:37:d4:26:69:70:ad:62:8e:1e:eb:35:d7:6c:67:e4: 67:58:97:d4:d6:18:7f:09:77:4a:a2:54:e8:4e:6e:69:9a:30: 04:1c:23:14:1b:2a:40:8f:35:cc:6e:c9:3f:1f:9f:ff:20:06: 5d:cb:91:bb:50:cc:7c:39:c5:14:82:ff:8a:02:c1:42:73:a3: 0b:0c:8c:5b:e4:a9:e8:d6:88:93:7b:ad:1d:96:99:f2:69:21: ef:13:2c:61:cb:97:b9:84:48:ff:55:e3:4f:68:35:2b:d3:1e: d4:74:87:f4:27:f5:9e:71:d6:8d:47:94:de:74:f2:87:66:62: 6c:28:06:fd:17:11:75:fe:fd:21:24:a9:a7:51:43:fd:c7:25: ce:ee:d3:5c:1d:78:54:64:28:06:69:6e:c6:db:a3:83:e9:76: 81:80:5e:d8:6c:b2:1e:14:c4:f5:86:a3:41:b3:09:75:bd:98: fe:56:aa:9d:25:2b:a5:b8:b8:24:a5:e5:84:19:7e:14:64:5b: c7:22:48:c7:6b:6d:f9:c9:e5:8f:0d:94:c9:df:a7:f2:55:36: 56:fc:ab:e3:d7:43:d3:33:59:63:22:67:78:37:58:2c:53:5d: 34:ec:00:23 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUXBcRakbH+ZSRre1w4cpOpVocpwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDY0Mjk3NWY1MzVmNDVmZDlmNmQ4ZmVhNjI2YmM2ZDI0 YmM5ZDhkODAeFw0yNTA0MDIyMzM1MzVaFw0yNTA0MDQwMTEyMzVaMDMxMTAvBgNV BAMTKDA4QjI4NzBBMjdCMDFBMTQ2MEJERENEODlDQTM4RTZDRTIzNjk1RkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEh3I2GlgV5vsrxg9d7M7tpDFR WWDUI249gajZVXxWM1xz2Kejts61BfcNpu1mIjuWFA8TqkUz8orIqksKh3VhsHVO CuNDZ7JkezuLuTpHJm/2xM/+eU04sCBIwXbgoVTBrRTCJ8cve2fQXusW6g+2Odvl 2RAAAPv9c2qg55kI4D/wkAKvy7SC6pELm5hM2oZDT3SCUK9kotYQrmpRHf9T9Q6m cHC8ePsV9/yFQXRQ5qAXnexSebEacIeezeL+j48ogVxoLks/h7bSHB6ugYiTYYX/ zArLS4lwCM9CEJtvm2GGGb0MoIZPjp7y+QKFL2jw8iH4Xa5FlUo7uha3Bb/DAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUCLKHCiewGhRgvdzYnKOObOI2lf0wHwYDVR0j BBgwFoAU1kKXX1NfRf2fbY/qYmvG0kvJ2NgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZDY5NzE2MGMtYWNjNS00YjUxLWJmNTUtMTBjN2E2ZTY2 OTgwLzMvRDY0Mjk3NUY1MzVGNDVGRDlGNkQ4RkVBNjI2QkM2RDI0QkM5RDhEOC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFrS1hYMU5mUmYyZmJZX3FZbXZHMGt2 SjJOZy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kNjk3MTYwYy1h Y2M1LTRiNTEtYmY1NS0xMGM3YTZlNjY5ODAvMy9ENjQyOTc1RjUzNUY0NUZEOUY2 RDhGRUE2MjZCQzZEMjRCQzlEOEQ4Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAw0caI2/jx4WnqFXsqF5/ yHKDspSQN9QmaXCtYo4e6zXXbGfkZ1iX1NYYfwl3SqJU6E5uaZowBBwjFBsqQI81 zG7JPx+f/yAGXcuRu1DMfDnFFIL/igLBQnOjCwyMW+Sp6NaIk3utHZaZ8mkh7xMs YcuXuYRI/1XjT2g1K9Me1HSH9Cf1nnHWjUeU3nTyh2ZibCgG/RcRdf79ISSpp1FD /cclzu7TXB14VGQoBmluxtujg+l2gYBe2GyyHhTE9YajQbMJdb2Y/laqnSUrpbi4 JKXlhBl+FGRbxyJIx2tt+cnljw2Uyd+n8lU2Vvyr49dD0zNZYyJneDdYLFNdNOwA Iw== -----END CERTIFICATE-----Generated at Thu Apr 3 07:06:15 2025 by rpki-client