$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: dpdsAhRiAHtPEDW1CJoSRg05PXJ52XpUUXJtkMMDQC4= Subject key identifier: B6:F4:6D:37:7C:9C:1A:26:DF:EA:38:84:D3:72:DA:E2:D2:67:56:F5 Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 50617AE4871FA2884AAEED0EE21018BFE24B774D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 016A Signing time: Fri 04 Apr 2025 14:58:31 +0000 Manifest this update: Fri 04 Apr 2025 14:53:31 +0000 Manifest next update: Sat 05 Apr 2025 15:33:31 +0000 Files and hashes: 1: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: 5gKZW/GJ6szyeA660SSSZ04c5MFxaWdT28EUODZAZVs=) 2: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: jXKKUMSDIyTb4ezvVpRo3NFIUpia25d8OkLWehTc52I=) 3: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 8/2mbGbaC4ennlzI7y1e8hUNr9fsr7Pr+/K69/OYKQg=) 4: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: Fa+HJyGeN4OUII4mISEevZUyzThis5w7MVhgz+1adr4=) 5: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: +JU+ydXmMjIBHlt1kVXfkJBGqdmH1ATfk8PRfe8t4Rc=) 6: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: 7H9TXOPmRSCpSLvpUH5h0kneMvmA5e0Xb9ByogPe2KE=) 7: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: 2yKfO2WqsfZLWhFp8Vgn43JsqJJGZp0JL5E1MzApx8g=) 8: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) 9: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: OPFsSmaIbZUrUqgYPmbkidDkTNHM+GlE1kH2EkAQFYk=) 10: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: W33AY8n66YBiKFAdMlU1PcWz7qog9dVaO6LUtxa3ULA=) 11: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: eJSksT4tbDIQ9nxZDstLl/kGIUJo4Eck2iH/dVXoJzg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 15:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:61:7a:e4:87:1f:a2:88:4a:ae:ed:0e:e2:10:18:bf:e2:4b:77:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Apr 4 14:53:31 2025 GMT Not After : Apr 5 15:33:31 2025 GMT Subject: CN=B6F46D377C9C1A26DFEA3884D372DAE2D26756F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ef:f2:5d:39:f3:4a:a6:03:84:cc:66:36:68: 8c:14:27:e2:a7:67:54:dc:ec:2d:c8:98:aa:fb:0e: ff:b6:98:ac:50:9a:7a:e1:d8:20:00:aa:a3:22:b0: f1:ea:ee:99:0f:85:aa:0b:b7:27:1c:f6:56:ce:fc: 8d:ac:c5:49:ab:cb:de:8d:8e:14:5f:ec:61:d8:76: ef:bc:f8:cf:00:71:a5:8c:45:05:eb:b0:72:45:6b: ea:cb:94:85:61:ce:14:e0:98:1f:94:4d:4d:ff:60: 8b:f2:d6:af:06:0a:fe:7e:a3:b4:af:41:0f:4f:12: 03:39:67:02:52:c6:c0:b9:b7:e7:04:17:a8:29:26: 21:35:81:7f:85:a4:82:f5:85:eb:a4:fa:0b:60:d1: f6:32:86:b6:5f:7e:a4:ff:2b:0c:7f:cb:4f:a3:64: 72:68:3d:74:5c:60:55:1d:33:64:11:75:2d:ad:27: 2d:6d:1b:c8:3f:35:95:f5:3d:3f:b6:1a:42:61:8c: cb:09:da:32:e5:76:d8:97:82:5f:a9:5f:a8:07:97: e6:04:68:ff:4b:59:1a:96:03:e2:4a:1c:c8:90:e3: 63:6a:27:42:1d:a5:49:1d:20:3d:17:f2:44:29:5a: eb:d5:e3:c2:33:61:86:3a:2f:65:9e:0c:8b:96:ec: 62:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:F4:6D:37:7C:9C:1A:26:DF:EA:38:84:D3:72:DA:E2:D2:67:56:F5 X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:49:f2:c2:d4:46:7e:0a:be:f2:12:2d:a0:55:2c:99:7e:24: bf:cd:40:e9:35:6c:ce:bb:e3:f1:d8:13:9b:a1:c7:f2:86:cf: da:47:8f:8e:37:f1:47:80:22:fd:85:a8:53:03:30:66:61:06: 48:03:f5:40:82:ad:e7:ef:a7:06:c5:3f:3d:27:53:b7:41:f1: d9:b6:cc:8b:35:48:4d:20:14:31:ad:3d:b0:1d:2b:0e:52:9f: f1:df:fc:e3:df:b8:c1:8a:cd:30:ab:e2:8c:1f:c1:fc:86:6c: ec:6b:37:41:bb:a7:3b:e6:d6:79:1b:df:97:b1:34:0c:0a:f4: eb:f5:5b:8d:35:ed:31:02:d0:9f:a4:2a:65:ea:4a:7a:31:09: 99:54:d0:64:18:3d:cf:72:2a:28:a5:bb:db:05:4e:54:53:17: 60:f5:e5:1f:51:02:93:67:7a:d1:c2:f5:cf:77:65:88:38:d7: 63:ab:6c:01:e3:83:c6:75:90:f1:c0:17:aa:12:59:7a:04:98: 7b:82:08:76:43:22:00:2b:b6:10:e7:9a:b4:d5:1b:d1:e9:67: 5a:a9:cb:22:65:52:89:d9:be:14:f3:52:e5:fe:f9:fd:1d:08: 3b:ed:82:71:c7:d2:dc:89:62:6e:fb:f6:2b:7e:3a:2e:af:99: 13:90:21:18 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUUGF65IcfoohKru0O4hAYv+JLd00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNTA0MDQxNDUzMzFaFw0yNTA0MDUxNTMzMzFaMDMxMTAvBgNV BAMTKEI2RjQ2RDM3N0M5QzFBMjZERkVBMzg4NEQzNzJEQUUyRDI2NzU2RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv7/JdOfNKpgOEzGY2aIwUJ+Kn Z1Tc7C3ImKr7Dv+2mKxQmnrh2CAAqqMisPHq7pkPhaoLtycc9lbO/I2sxUmry96N jhRf7GHYdu+8+M8AcaWMRQXrsHJFa+rLlIVhzhTgmB+UTU3/YIvy1q8GCv5+o7Sv QQ9PEgM5ZwJSxsC5t+cEF6gpJiE1gX+FpIL1heuk+gtg0fYyhrZffqT/Kwx/y0+j ZHJoPXRcYFUdM2QRdS2tJy1tG8g/NZX1PT+2GkJhjMsJ2jLldtiXgl+pX6gHl+YE aP9LWRqWA+JKHMiQ42NqJ0IdpUkdID0X8kQpWuvV48IzYYY6L2WeDIuW7GIRAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUtvRtN3ycGibf6jiE03La4tJnVvUwHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT0nywtRGfgq+8hItoFUs mX4kv81A6TVszrvj8dgTm6HH8obP2kePjjfxR4Ai/YWoUwMwZmEGSAP1QIKt5++n BsU/PSdTt0Hx2bbMizVITSAUMa09sB0rDlKf8d/849+4wYrNMKvijB/B/IZs7Gs3 QbunO+bWeRvfl7E0DAr06/VbjTXtMQLQn6QqZepKejEJmVTQZBg9z3IqKKW72wVO VFMXYPXlH1ECk2d60cL1z3dliDjXY6tsAeODxnWQ8cAXqhJZegSYe4IIdkMiACu2 EOeatNUb0elnWqnLImVSidm+FPNS5f75/R0IO+2CccfS3Ilibvv2K346Lq+ZE5Ah GA== -----END CERTIFICATE-----Generated at Sat Apr 5 04:33:41 2025 by rpki-client