$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft File: 520NqzR6OOK4e1oiovfJ4hwYybw.mft (raw, json) Hash identifier: V+bnaJ1C3YIZ7L4LNPTdduOUDAQbEe/9j28L+oskoE0= Subject key identifier: BD:C1:62:D0:A0:19:BE:FF:1B:81:79:5F:78:6A:9E:F0:21:6F:96:FA Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Certificate serial: 0196A4D38A425A3E181FF5C446AFF40E78D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft Manifest number: 1012 Signing time: Tue 06 May 2025 09:00:48 +0000 Manifest this update: Tue 06 May 2025 09:00:48 +0000 Manifest next update: Wed 07 May 2025 09:00:48 +0000 Files and hashes: 1: 1-i_ESwYWDKjvxe-cLQFb33q5Qu0.roa (hash: MWN71QN/v297mIABIQi0BIqexEx6vQv3LxWHulQ1lh0=) 2: 3uMGCa1hGu4z3o3-_G7z4ipL-iU.roa (hash: W9UTR4UDUFmqfh0USMFmsobpW7zQlT5fd2b07I+b238=) 3: 520NqzR6OOK4e1oiovfJ4hwYybw.crl (hash: dwOvZjt/gFFiDxes4nCFajX2Ct6JbbcThM8nX19Ocu4=) 4: 53Cd6ksm6jJ9RlO5imUtuWj1rJA.roa (hash: cQll3lCbJxJtoxzsBZdQMm8ZJ1gmBBCp3yO2flYfKKU=) 5: 5aybWk2Ky5dF88Dl5BHsEFM1SO0.roa (hash: H+JwBN0SZWGViTYdzpWvA1lltG+ihuV8ot5mKPyc2Ag=) 6: D51k8Yufzem8ogKjVaG-BE3-N9Q.roa (hash: LfZnqpQQPapIc1GbVrcmd90U2aDXCgwED1y7JLo14nI=) 7: EEzCfGegHPEpdqTqvMRMlcFre1Y.roa (hash: uwoju1vAFdOs3H0Q+w/qT7aEQBJpMP98DiaXonyIQ9M=) 8: EQAhdlSS1FIFJlau-mazb3tbQD8.roa (hash: EYIWh35VYrIjFevk0wSjam09x/CTgAsspbJddnJMeDU=) 9: QCPaGZ8bi2Da50RQ4k8ya1w0dq4.roa (hash: UeTuehE3XWxqnHJAwNv7xL7hPz4xW2vyEJKj+BsbTow=) 10: aAu5S5IbLCTcHF2sjNSq_YvIkRs.roa (hash: Ofs8Vq4O2KmWTmDnq5aKJmZojKw/IVecQ8WTuC45ixk=) 11: fjY_g_wwgFPVt57q0tJYGzzoSDw.roa (hash: qq4Ldl54/taiWut/8vwq9PH71gezdeLMf1VMPmsHUe8=) 12: pw1_qD5J6o76enPdGNTr_4Viub8.roa (hash: L6pLEncIISYEMGBKzu7DbyUXVYEOgT4kfh4modTEATA=) 13: qigZWtFurHaD054OcaOqq49am_w.roa (hash: Sa19eTl0ldE9k7oxfeYcou5g3EZnF3X8bF0Hbur3zdE=) 14: tKmEC4MB5hqVQbFF_5qlwwlDujU.roa (hash: DWWPvUtVR9Z8569/gJySYMoNxwD1GjHbMP8gxFtXEzs=) 15: tRNXUlx68rKP9UOE-hhExB1kws8.roa (hash: +Hd3tIKng2pbogIxn1dcX/j1LNU33NvuDwSbS4tdpEA=) 16: ve2cUb4I36o88cUncaHeOHK5tGk.roa (hash: 6gTupRG97QR/JQvN8ay2tdbOI4Q3EMkpnACGQxjxniI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 May 2025 09:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:a4:d3:8a:42:5a:3e:18:1f:f5:c4:46:af:f4:0e:78:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc Validity Not Before: May 6 09:00:48 2025 GMT Not After : May 7 09:00:48 2025 GMT Subject: CN=bdc162d0a019beff1b81795f786a9ef0216f96fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:38:f8:66:61:17:59:1d:fb:e4:a9:36:86:c4: 82:70:2e:f7:a9:18:af:52:c3:fe:a9:f1:fc:f3:dc: c2:a3:bb:2b:1e:5a:85:78:8b:59:ad:38:c4:ac:f0: b5:f1:82:10:07:3c:45:fc:e1:22:5e:e1:82:d3:a8: f4:6f:b4:4a:d1:90:12:0f:a4:6c:8a:2a:41:ec:f2: ba:7f:9d:51:78:83:b0:63:ef:d1:27:9c:29:88:2b: 05:73:92:2d:71:79:a9:59:ff:ca:ed:68:86:5f:93: 20:d4:df:a7:91:ca:ae:c0:34:07:51:f1:11:3f:24: 77:ff:76:cb:82:a3:5a:d2:6a:43:78:cd:ad:cb:ae: 61:11:2c:bc:16:7e:3d:72:1e:48:d3:70:52:f4:a0: e7:ec:00:eb:13:b8:8d:a7:1d:a5:83:37:90:c7:5e: a2:89:c4:1e:37:55:77:e7:18:bc:eb:c1:b3:3b:79: 0a:38:f8:a6:68:18:ed:ec:5c:ed:a9:eb:ca:d6:df: 32:af:4b:d7:18:70:a5:54:72:67:14:f3:1a:5a:74: 2d:e6:af:c9:5a:c8:05:6c:87:d9:8b:76:5f:08:4c: b1:fe:b6:fa:c6:3b:5e:44:77:f5:35:74:b5:32:72: 2c:75:d8:12:fb:66:07:a1:12:98:7e:2c:b8:d6:8a: 1c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C1:62:D0:A0:19:BE:FF:1B:81:79:5F:78:6A:9E:F0:21:6F:96:FA X509v3 Authority Key Identifier: keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:6b:dd:7e:45:3a:05:cb:5e:cd:07:93:05:56:23:b4:10:65: de:d8:01:33:18:c8:4f:37:a4:c3:15:96:21:8a:2a:0e:9f:8f: 4a:c8:1c:a2:cc:b7:5f:04:38:dd:aa:16:68:d9:7f:b4:7c:12: 49:79:37:9c:a7:cd:e4:07:0d:ab:66:05:06:b0:72:33:33:7c: 5e:21:f2:11:1e:f9:be:49:48:dd:cf:e4:eb:d2:0c:49:ef:d2: a4:70:47:76:ae:4e:92:82:30:f2:44:2b:bb:74:ea:2f:e5:8e: ff:2b:85:94:93:9f:c6:44:cb:af:b6:84:36:47:78:38:ef:cc: 9a:f3:59:02:e7:fd:a8:70:ae:5d:3e:33:65:f3:fd:bb:f3:62: 8d:15:0d:9a:3b:9b:8d:4b:6c:61:37:84:1b:18:33:a4:1b:08: 8f:14:11:5c:aa:0b:a2:47:59:71:a8:8d:ac:ff:df:d4:93:1f: 18:08:35:86:52:38:95:2c:88:2d:61:dd:00:14:6f:2d:e9:3c: 2e:99:f5:1c:f5:09:78:96:3b:19:e7:43:29:50:8e:d1:f5:75: 04:03:bb:f7:72:0d:89:ba:15:a8:fb:6b:7b:10:02:53:94:7e: c9:8a:1c:b4:56:15:4b:38:bb:b6:ad:69:fe:51:04:3c:e5:2e: a4:a1:64:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZak04pCWj4YH/XERq/0DnjXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3NmQwZGFiMzQ3YTM4ZTJiODdiNWEyMmEyZjdjOWUyMWMx OGM5YmMwHhcNMjUwNTA2MDkwMDQ4WhcNMjUwNTA3MDkwMDQ4WjAzMTEwLwYDVQQD EyhiZGMxNjJkMGEwMTliZWZmMWI4MTc5NWY3ODZhOWVmMDIxNmY5NmZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTj4ZmEXWR375Kk2hsSCcC73qRiv UsP+qfH889zCo7srHlqFeItZrTjErPC18YIQBzxF/OEiXuGC06j0b7RK0ZASD6Rs iipB7PK6f51ReIOwY+/RJ5wpiCsFc5ItcXmpWf/K7WiGX5Mg1N+nkcquwDQHUfER PyR3/3bLgqNa0mpDeM2ty65hESy8Fn49ch5I03BS9KDn7ADrE7iNpx2lgzeQx16i icQeN1V35xi868GzO3kKOPimaBjt7FztqevK1t8yr0vXGHClVHJnFPMaWnQt5q/J WsgFbIfZi3ZfCEyx/rb6xjteRHf1NXS1MnIsddgS+2YHoRKYfiy41oocXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL3BYtCgGb7/G4F5X3hqnvAhb5b6MB8GA1UdIwQY MBaAFOdtDas0ejjiuHtaIqL3yeIcGMm8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDkt YmQzYmZjOTliZGE5LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi8zZGJiM2QtZjMyOC00YjI3LTk1ZDktYmQzYmZjOTliZGE5 LzEvNTIwTnF6UjZPT0s0ZTFvaW92Zko0aHdZeWJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL2vdfkU6 BctezQeTBVYjtBBl3tgBMxjITzekwxWWIYoqDp+PSsgcosy3XwQ43aoWaNl/tHwS SXk3nKfN5AcNq2YFBrByMzN8XiHyER75vklI3c/k69IMSe/SpHBHdq5OkoIw8kQr u3TqL+WO/yuFlJOfxkTLr7aENkd4OO/MmvNZAuf9qHCuXT4zZfP9u/NijRUNmjub jUtsYTeEGxgzpBsIjxQRXKoLokdZcaiNrP/f1JMfGAg1hlI4lSyILWHdABRvLek8 Lpn1HPUJeJY7GedDKVCO0fV1BAO793INiboVqPtrexACU5R+yYoctFYVSzi7tq1p /lEEPOUupKFkZQ== -----END CERTIFICATE-----Generated at Tue May 6 15:43:16 2025 by rpki-client