$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft File: rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft (raw, json) Hash identifier: XTLhWYhSQxTar+OrzXVOEfTY0xW3XUtgu+FDVpa93Z4= Subject key identifier: A0:01:88:B9:8D:F8:70:FB:0C:DD:0F:74:7A:49:89:83:07:45:87:A2 Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Certificate serial: 0196B77E517252C42662B2482FB610D1EE48 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft Manifest number: 1571 Signing time: Sat 10 May 2025 00:00:31 +0000 Manifest this update: Sat 10 May 2025 00:00:31 +0000 Manifest next update: Sun 11 May 2025 00:00:31 +0000 Files and hashes: 1: 0SyYaQgLQzTmHyjwALNgjgW6Ips.roa (hash: 9FZRGxKEG0jtfYGiry8IM0OKO6/JFkO8TxODVgljdw8=) 2: 1oM3GP4XRi0mqDBcN0k0C4RTdHY.roa (hash: Eqko1gSCAK/Ec5hGsjBzpPB0Hmmto77uxcqKM6nkuos=) 3: 4JhjKslYK-x39Xd53DH9TC69Rk8.roa (hash: e58H1T1DE3lMwZ8TDVT9NRaFGvcdvvX7mUpQQhawZYI=) 4: 4rBl4Xgj-eyO-Qb6KkYRdP_q3yA.roa (hash: 9Fg4JBY24DsNxM7h9nmxlQnxm85kk0BWdXCDra924l8=) 5: D-_QiVeAYymMyrqyEwwxZVlJ77w.roa (hash: pLHDIfQfn00HxVAd67SY9GUFCYPJH9fT0t4z495xhcU=) 6: LJxVZiUixLD-53taCYTeHpz1Qxo.roa (hash: 0J/nc4NcQHmTykQt3YoAW1Bys+edw+D023ftiwp2qWk=) 7: MKj1D95IscsnJcwFu1G_QR6ra0Y.roa (hash: fa1NTOC8gwDd/cU25OwEYI6M+pi4vH6HCYjqk3JwdQU=) 8: PQ4JRK_v8Rb4S6Y1Hjjg1mh8-RM.roa (hash: 6S6SDi+NoevpWtxjp+Phs+mUreAi/RCvfLId1bbLsWc=) 9: SHESx2HqUfWZxboQ6jP2hImYKmU.roa (hash: OlCdziBdwRc0FY5ejIFVQ8Nt867ISEKKLNxKfPnLzFA=) 10: TevPA31zpqIvq6GeQSDxtNa30UQ.roa (hash: 2nDbpMbvjKPaiiXiHqb4sCzw1FXoCOAaM9XlGLGbhC8=) 11: U2a4Mi5anG6MoVx-kSkOlCHuZ9U.roa (hash: WzVg8UcZ00h0mbpXiGBDaneFB3IZyzn0LFRbQNJ9OXc=) 12: UU4qmywXJeD0s-bEtA06YqQJbXY.roa (hash: U8vbKeUDnyxjI4tldoiMN64co7xQZg9nWw+wDHbmz3c=) 13: bHfPn3msgwx5FPQ-Adt7HpQNCIk.roa (hash: mn8L9NM8fYmycQe3GG9bUyJmLWRnJsF0fPb8aD5LaTM=) 14: bicuo27VbekDKZ2baxGyIAeBOBw.roa (hash: SWEpCpnN+xzcUkxLs6Bt4xTFqOqzIoS1IpAm8o8Z7uw=) 15: cbX3FwOgi9rS1ENe_k5BLCxVdg4.roa (hash: 35j9cePlwM12en+EIoj2uwLnq2TReRAiO2SX/9vwgDk=) 16: nwRRU278nZ-OoZkxunLEdDGvAcI.roa (hash: XtojZB9yoPUFiPBHYDNCJYd8iy1TyLCfmu2Ry8BmvwU=) 17: rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl (hash: 5hNPH4wOPMtyMUNRjPuAjtKk1QJ6+f0u3Bm2pQfRd3c=) 18: xZHK8sMXJRR9tFEPi8Dz0m2XwJE.roa (hash: P4VjA7AD0Rq8qJwX9hUh9U04YYNDoPlLqjbXRLiEoic=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 May 2025 00:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:b7:7e:51:72:52:c4:26:62:b2:48:2f:b6:10:d1:ee:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5 Validity Not Before: May 10 00:00:31 2025 GMT Not After : May 11 00:00:31 2025 GMT Subject: CN=a00188b98df870fb0cdd0f747a498983074587a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fe:45:e5:d5:5d:bb:f6:92:f1:8b:9e:b5:a5: 01:36:ca:70:d3:36:e1:74:41:59:2f:c0:17:75:4c: dc:62:cd:0b:63:c9:17:f8:7f:a6:c8:c4:d3:78:d7: f7:fc:54:f7:7e:d0:72:25:c4:d6:79:d1:70:bc:2c: a1:d9:e7:91:3e:47:d9:39:b5:c8:95:ff:c6:a7:0a: a1:22:d1:1a:b3:83:8e:f3:be:59:fe:3e:00:11:17: 00:5f:08:60:71:3d:08:f5:93:da:3e:b3:d5:46:35: 80:50:eb:07:d8:3d:cb:06:8a:2f:d5:25:cd:c6:7f: ad:ab:14:79:a9:85:ef:11:99:1d:eb:a7:55:6e:ee: b8:c5:b1:ad:08:a4:30:45:47:4d:90:d8:98:a7:e9: 95:40:c7:e8:18:c7:fc:06:01:65:9a:94:88:71:be: 05:16:7f:33:b7:1c:f9:e6:78:f7:dd:7a:35:ec:81: 0c:0b:7a:bd:d6:e3:04:b9:b0:1d:82:1c:50:10:77: 84:3c:7b:24:5f:5b:9c:1b:1b:f0:5b:12:f8:35:45: b5:15:78:39:4c:4e:d0:ac:e9:2a:e3:74:a4:77:fd: 75:62:72:48:0b:a8:76:cb:15:ea:55:7f:c5:f9:64: 1a:ac:7c:65:7f:38:f2:fd:48:e7:89:bc:98:70:82: 26:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:01:88:B9:8D:F8:70:FB:0C:DD:0F:74:7A:49:89:83:07:45:87:A2 X509v3 Authority Key Identifier: keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:3c:5c:42:67:46:49:f8:84:8f:51:e9:84:31:24:f4:60:ef: ca:27:0b:05:25:d3:f7:f0:8b:40:eb:db:1a:e9:97:cf:27:66: 80:e5:b5:47:cf:b4:0b:74:42:89:29:48:26:07:d7:86:97:3c: 67:e4:ee:28:f4:75:75:23:eb:48:e4:37:6d:1a:5d:6c:27:68: e3:81:10:1a:52:ca:6e:6d:18:a0:03:5a:99:09:53:55:d2:d4: c1:aa:ea:1f:22:5d:11:1a:8e:d8:e4:08:df:f6:f0:31:69:66: 75:65:64:55:f6:4c:f5:7f:d6:22:f9:f1:c7:ef:e9:32:b2:dd: 4f:10:8f:fa:62:8c:f8:07:9b:08:cf:f4:2f:62:40:1f:ed:c6: 21:83:4c:a6:6d:87:53:5b:7f:3c:84:7d:77:8b:8e:8f:f6:16: 84:ac:05:b8:1a:75:63:64:8d:7f:3b:a7:a3:57:65:62:b0:ca: 6a:53:a5:5f:f8:f1:b5:99:9d:34:5f:98:f9:e2:d6:2b:00:cd: 84:16:1e:de:c6:b8:07:e0:3b:87:9b:fa:f0:0a:a0:90:1d:04: cc:5d:b1:ab:b5:14:e8:56:b1:28:c8:8b:c7:4e:9f:6e:f5:f9: 49:10:50:d7:70:5d:1d:bf:b5:36:0b:21:4f:64:18:d6:f4:6b: 89:89:67:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZa3flFyUsQmYrJIL7YQ0e5IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3 MjAyZDUwHhcNMjUwNTEwMDAwMDMxWhcNMjUwNTExMDAwMDMxWjAzMTEwLwYDVQQD EyhhMDAxODhiOThkZjg3MGZiMGNkZDBmNzQ3YTQ5ODk4MzA3NDU4N2EyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmv5F5dVdu/aS8YuetaUBNspw0zbh dEFZL8AXdUzcYs0LY8kX+H+myMTTeNf3/FT3ftByJcTWedFwvCyh2eeRPkfZObXI lf/GpwqhItEas4OO875Z/j4AERcAXwhgcT0I9ZPaPrPVRjWAUOsH2D3LBoov1SXN xn+tqxR5qYXvEZkd66dVbu64xbGtCKQwRUdNkNiYp+mVQMfoGMf8BgFlmpSIcb4F Fn8ztxz55nj33Xo17IEMC3q91uMEubAdghxQEHeEPHskX1ucGxvwWxL4NUW1FXg5 TE7QrOkq43Skd/11YnJIC6h2yxXqVX/F+WQarHxlfzjy/UjnibyYcIImnwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKABiLmN+HD7DN0PdHpJiYMHRYeiMB8GA1UdIwQY MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct YzUxNWYzNTRjYzVhLzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATTxcQmdG SfiEj1HphDEk9GDvyicLBSXT9/CLQOvbGumXzydmgOW1R8+0C3RCiSlIJgfXhpc8 Z+TuKPR1dSPrSOQ3bRpdbCdo44EQGlLKbm0YoANamQlTVdLUwarqHyJdERqO2OQI 3/bwMWlmdWVkVfZM9X/WIvnxx+/pMrLdTxCP+mKM+AebCM/0L2JAH+3GIYNMpm2H U1t/PIR9d4uOj/YWhKwFuBp1Y2SNfzuno1dlYrDKalOlX/jxtZmdNF+Y+eLWKwDN hBYe3sa4B+A7h5v68AqgkB0EzF2xq7UU6FaxKMiLx06fbvX5SRBQ13BdHb+1Ngsh T2QY1vRriYlnjw== -----END CERTIFICATE-----Generated at Sat May 10 07:09:34 2025 by rpki-client