$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: nQxaPmK9K8osOek7nNTqT7CxZnb9vN5qFY6QodXaV8A= Subject key identifier: E0:A1:E2:82:D2:30:47:18:EF:9C:7B:3F:A5:B8:0B:B9:C5:40:98:09 Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 7F075A51DD095CB00DC614AF4B84DE636F433A3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 01BE Signing time: Fri 06 Jun 2025 05:25:22 +0000 Manifest this update: Fri 06 Jun 2025 05:20:22 +0000 Manifest next update: Sat 07 Jun 2025 06:18:22 +0000 Files and hashes: 1: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: Fa+HJyGeN4OUII4mISEevZUyzThis5w7MVhgz+1adr4=) 2: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) 3: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: eJSksT4tbDIQ9nxZDstLl/kGIUJo4Eck2iH/dVXoJzg=) 4: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: +JU+ydXmMjIBHlt1kVXfkJBGqdmH1ATfk8PRfe8t4Rc=) 5: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: AlJuKmL8aPhUjRVxdzQRVbfp/f+XZupuWOMPs15QJNM=) 6: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: 5gKZW/GJ6szyeA660SSSZ04c5MFxaWdT28EUODZAZVs=) 7: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: 7H9TXOPmRSCpSLvpUH5h0kneMvmA5e0Xb9ByogPe2KE=) 8: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: jXKKUMSDIyTb4ezvVpRo3NFIUpia25d8OkLWehTc52I=) 9: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: 2yKfO2WqsfZLWhFp8Vgn43JsqJJGZp0JL5E1MzApx8g=) 10: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: W33AY8n66YBiKFAdMlU1PcWz7qog9dVaO6LUtxa3ULA=) 11: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 8/2mbGbaC4ennlzI7y1e8hUNr9fsr7Pr+/K69/OYKQg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 07 Jun 2025 06:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:07:5a:51:dd:09:5c:b0:0d:c6:14:af:4b:84:de:63:6f:43:3a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Jun 6 05:20:22 2025 GMT Not After : Jun 7 06:18:22 2025 GMT Subject: CN=E0A1E282D2304718EF9C7B3FA5B80BB9C5409809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d2:8c:7a:62:40:bc:c5:bd:9c:a3:34:03:a9: c3:00:4c:cd:ed:1d:d5:4b:44:10:04:a0:69:56:20: 9c:d7:77:79:97:13:73:c1:81:14:a9:09:ea:56:15: 95:c2:05:f5:15:df:5f:56:fa:0a:cd:c4:ca:7f:4e: 37:5e:43:c6:c3:44:89:d1:29:ec:31:ca:a2:14:c4: 90:44:07:dd:b5:09:14:ba:95:10:46:af:12:ad:10: a7:a5:d0:84:ff:be:a1:c0:68:34:cf:8d:ed:d0:11: f7:df:82:fe:a6:5f:9c:f0:fa:9e:7d:26:72:55:78: f2:ff:48:6c:45:58:96:92:52:53:18:fe:31:bf:87: 4e:fb:39:e2:87:83:2f:bf:89:05:ad:15:a1:62:6e: e7:ae:e2:dc:2c:ea:db:53:bd:bf:99:bd:1e:87:4e: 00:a6:b2:dc:4a:72:e0:7e:9f:16:2b:a7:f6:31:6a: d0:1d:fc:54:59:a3:71:6e:ab:62:d7:1d:db:4d:18: 46:ae:43:50:7a:dc:30:4d:ce:cb:dd:1a:69:ac:04: 94:76:79:14:81:35:e2:1b:ce:89:2f:60:85:80:a0: f9:d6:70:d7:3c:53:ff:4f:cb:0f:b8:7a:f6:e7:ff: 57:34:cd:59:0a:18:cd:99:80:34:51:81:28:c1:7e: c9:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A1:E2:82:D2:30:47:18:EF:9C:7B:3F:A5:B8:0B:B9:C5:40:98:09 X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:4a:e9:a1:ec:16:44:b3:69:46:ff:33:fe:e5:1e:be:51:43: 76:fd:d2:d7:eb:c0:04:f3:11:ac:01:b7:2b:f1:05:a4:0d:db: 67:81:a7:83:46:ec:e4:f4:c0:c9:4c:ff:74:67:40:a5:19:2d: ac:09:81:47:23:23:bd:cd:07:f1:51:c4:cc:ef:3a:01:0d:4a: 59:b6:89:13:3b:9a:a7:bf:4f:9c:57:bf:6e:ec:a8:ed:b8:e4: 4e:11:4e:9f:00:56:2f:bf:bd:e7:78:62:be:a3:1d:80:cc:d4: 8b:fd:9a:be:42:56:82:36:58:00:34:72:a7:be:18:eb:7b:dd: 79:65:8a:1b:ab:6a:73:53:81:d6:de:e3:ed:a7:30:c8:54:06: ec:00:3d:98:5f:cd:18:4e:b1:c0:a0:26:51:ff:91:14:00:aa: 65:4c:4b:75:07:d7:d8:ae:a8:ba:78:8e:7b:bd:15:b8:96:0f: 53:39:a7:c3:60:10:a3:ff:0e:fa:d1:44:fa:d5:c9:6e:78:e7: d7:be:80:b5:77:04:51:95:2b:43:62:c7:49:b0:8c:5e:1d:ad: 25:3b:e6:5f:29:5d:5d:5b:49:b2:1f:3c:17:53:4d:dd:0f:ac: 7d:7b:d9:c4:a5:d8:62:e0:89:b2:d4:97:8b:fc:aa:87:01:d1: ae:b3:bb:75 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUfwdaUd0JXLANxhSvS4TeY29DOj0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNTA2MDYwNTIwMjJaFw0yNTA2MDcwNjE4MjJaMDMxMTAvBgNV BAMTKEUwQTFFMjgyRDIzMDQ3MThFRjlDN0IzRkE1QjgwQkI5QzU0MDk4MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe0ox6YkC8xb2cozQDqcMATM3t HdVLRBAEoGlWIJzXd3mXE3PBgRSpCepWFZXCBfUV319W+grNxMp/TjdeQ8bDRInR KewxyqIUxJBEB921CRS6lRBGrxKtEKel0IT/vqHAaDTPje3QEfffgv6mX5zw+p59 JnJVePL/SGxFWJaSUlMY/jG/h077OeKHgy+/iQWtFaFibueu4tws6ttTvb+ZvR6H TgCmstxKcuB+nxYrp/YxatAd/FRZo3Fuq2LXHdtNGEauQ1B63DBNzsvdGmmsBJR2 eRSBNeIbzokvYIWAoPnWcNc8U/9Pyw+4evbn/1c0zVkKGM2ZgDRRgSjBfsnRAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU4KHigtIwRxjvnHs/pbgLucVAmAkwHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqUrpoewWRLNpRv8z/uUe vlFDdv3S1+vABPMRrAG3K/EFpA3bZ4Gng0bs5PTAyUz/dGdApRktrAmBRyMjvc0H 8VHEzO86AQ1KWbaJEzuap79PnFe/buyo7bjkThFOnwBWL7+953hivqMdgMzUi/2a vkJWgjZYADRyp74Y63vdeWWKG6tqc1OB1t7j7acwyFQG7AA9mF/NGE6xwKAmUf+R FACqZUxLdQfX2K6ouniOe70VuJYPUzmnw2AQo/8O+tFE+tXJbnjn176AtXcEUZUr Q2LHSbCMXh2tJTvmXyldXVtJsh88F1NN3Q+sfXvZxKXYYuCJstSXi/yqhwHRrrO7 dQ== -----END CERTIFICATE-----Generated at Fri Jun 6 23:39:39 2025 by rpki-client