$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft File: s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft (raw, json) Hash identifier: 99oe/JxY6zBsx/6MfLxTeukijt5F2OSDQbQ5aj3kW34= Subject key identifier: 19:67:5E:77:73:CD:4E:69:5F:23:03:81:6C:46:2B:25:2C:EA:FD:90 Authority key identifier: B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 Certificate issuer: /CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Certificate serial: 0196BD8035C3F08C019DBAEA154E4F42D137 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft Manifest number: 154A Signing time: Sun 11 May 2025 04:00:18 +0000 Manifest this update: Sun 11 May 2025 04:00:18 +0000 Manifest next update: Mon 12 May 2025 04:00:18 +0000 Files and hashes: 1: 1IyxB14_QkLsvmLRx3j-3a6Zjk4.roa (hash: htWKauGvhiwmC3uhHI9F9baGTADLWNpjXIog5aUAkzA=) 2: Hrw24NCuWIUCpkj_ixSA3ykRPr4.roa (hash: EL86DxycBZAbHkapsC+FVYde7DJDbg6IvsLrlIhK4Mg=) 3: HzkqLbs1liYqOOnORyYsONDUWCk.roa (hash: uXYRvHJ6LJgN5jTlxHsTjXJyetqQoAXwubqH0//UAWg=) 4: KW8HM7Vt-viFSQssh-MaAGQ56LI.roa (hash: LVB3HoG1zrGwq6DA6Whlqb+iZJnipajeWgJUkFDtgQ8=) 5: N8YU9P6afQ3l1ax9yLIDe6D0fIk.roa (hash: EU77Dk5F7GrtkJ85p7yvIHvzXNj6aNgdhN+Tn5j+zs0=) 6: NxaezdRi3ofV0Ea6FtmKMCg4Xno.roa (hash: OxfdQ+cdMI49CYY0Q1jeMkKHuJPcs1w/NoTD4eAZ2MA=) 7: jGaeQ05R3hLIsxNTb7dpc8FaO6w.roa (hash: 4TEbxdiinYCpm4mycPqOwDmBBxQQxUxqZfGO0t4kbOg=) 8: mSsD_9FMfN2LP7M_Mwsa2ue8f54.roa (hash: 9X0dNAuuQyEHvxBMN4gp2QewnB9NGpB0KtQCW0IE4VU=) 9: oRsHwl0lqDdQsW8I1c5igLUyNzs.roa (hash: 8g9A+Hdue1idAErOv1qWZKgEKPMgG/A4+RlDqNfgnkI=) 10: oreGjQwv74g6OpxObQTCv-MnU1M.roa (hash: d1IJwSRdqQjA5VA/VLC7+miffsmnB8Nxer6G7ClHfMc=) 11: p2_R78qfiRDhzvxPsVGCBtVmaJE.roa (hash: AfONkYdMNZkN9Er/D4pbys1uxPQQYlJm+sdpKa5QxNI=) 12: s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl (hash: osPBQ02nFr060oMWFTJNfAHuKVYwM6EOeodaSAf9MbU=) 13: vxg-yi7SqRx3q3DlZJY82nlINbw.roa (hash: 8Tp3GLDI+FIAlBt1x2bg1AA0ZulV2JjhMEdWi/PMtGA=) 14: wjy1-qmg6rYR0UilXbPOrktmKnc.roa (hash: OCHLZL4VOIDtWxajhki14b+EkeW6juZq6cOYKpzs8QI=) 15: xMcgE5el8x0M_rTEbVyhY3X3x1c.roa (hash: PGLJrZJLBXcLan5LC1jzJXTcMWQ+drrbyWZOiA3GgNU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 May 2025 04:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:bd:80:35:c3:f0:8c:01:9d:ba:ea:15:4e:4f:42:d1:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b3a5d99863db2e49b44f6c324eb04388fc7515d2 Validity Not Before: May 11 04:00:18 2025 GMT Not After : May 12 04:00:18 2025 GMT Subject: CN=19675e7773cd4e695f2303816c462b252ceafd90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4a:40:43:42:19:f6:39:6e:72:29:48:55:d0: 67:77:b7:13:32:6e:45:1b:72:92:f1:3c:f3:26:ac: 11:3c:d7:88:c4:be:d0:61:ee:bd:58:ff:5c:9f:04: 30:56:f0:bb:c4:3d:27:59:df:21:00:8a:19:e8:bb: 6d:ee:18:e9:5d:1f:a7:d0:24:6a:da:d1:d5:ab:6d: 86:26:ad:f4:29:86:d6:0e:ef:2b:65:a0:8a:2f:5f: 17:12:40:da:48:a2:ab:55:f0:3d:64:3f:9e:ac:8c: 81:c9:95:72:ac:88:db:55:fb:77:cc:da:e6:19:14: 03:5f:19:91:7c:7e:eb:00:ff:18:63:09:b3:36:a9: e0:21:48:03:63:6f:56:91:04:e2:6a:9d:9e:9b:50: 4b:d7:61:d8:6a:e0:88:33:24:f3:23:d1:5b:31:22: d6:57:3a:89:87:16:ba:2e:40:0d:26:ef:d4:e6:e0: b9:5d:5e:a6:84:ea:87:7f:09:41:3f:4b:b8:c7:d7: 15:b7:bc:af:24:a6:34:a7:3f:41:69:8f:01:7f:de: b1:67:ef:cb:3b:ba:37:c1:fd:43:cd:5b:14:37:07: bc:ac:11:f0:b3:9d:68:cf:69:97:20:b1:93:b9:2d: e6:e8:21:2b:09:01:0b:e7:6a:40:d3:34:b4:94:0c: c6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:67:5E:77:73:CD:4E:69:5F:23:03:81:6C:46:2B:25:2C:EA:FD:90 X509v3 Authority Key Identifier: keyid:B3:A5:D9:98:63:DB:2E:49:B4:4F:6C:32:4E:B0:43:88:FC:75:15:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s6XZmGPbLkm0T2wyTrBDiPx1FdI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/29e9bc-b190-409e-86b0-eec5d50efa94/1/s6XZmGPbLkm0T2wyTrBDiPx1FdI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:4f:e5:73:e7:5b:90:34:b1:22:fb:6b:de:c0:8f:28:d4:2f: ea:7c:56:8a:18:a0:3f:6d:88:86:7c:35:de:2f:8e:b1:99:97: 42:08:a1:f7:d0:e9:71:1d:cf:23:9a:f6:f3:27:0a:67:c8:1c: d9:44:6c:a5:9a:8f:bb:d8:01:96:f2:35:05:8e:0e:34:0b:79: 7d:46:89:82:00:3a:89:3a:e0:f8:1a:3e:5a:c4:2c:97:33:39: 36:18:7e:f9:0b:63:63:00:e0:bd:1b:e6:42:7c:43:32:1e:e2: b7:15:3f:25:ad:76:f7:2a:56:72:76:b6:12:3b:1c:11:fc:c4: 93:9d:f6:9f:51:91:e8:0c:84:fc:2c:cf:f9:af:16:ad:bf:b1: 93:14:7b:51:df:61:9b:3a:9d:7b:eb:db:a1:2f:bb:a1:e5:ec: ad:90:e7:3b:0e:85:e3:25:9f:d5:6a:dd:dd:d9:d4:97:1d:52: 47:07:e9:8f:70:ed:dc:96:b0:75:fe:d8:76:ec:1f:92:cd:cb: 42:3f:38:a3:a2:a5:f7:cd:a8:66:d1:0f:c6:8e:21:f7:af:fa: b1:9b:65:a2:81:1a:c6:59:79:84:f7:34:af:77:8a:1b:70:3e: 1b:a2:b8:63:25:59:fb:1f:b6:e3:16:89:a3:ca:0b:59:f1:40: a5:9d:41:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZa9gDXD8IwBnbrqFU5PQtE3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIzYTVkOTk4NjNkYjJlNDliNDRmNmMzMjRlYjA0Mzg4ZmM3 NTE1ZDIwHhcNMjUwNTExMDQwMDE4WhcNMjUwNTEyMDQwMDE4WjAzMTEwLwYDVQQD EygxOTY3NWU3NzczY2Q0ZTY5NWYyMzAzODE2YzQ2MmIyNTJjZWFmZDkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkpAQ0IZ9jlucilIVdBnd7cTMm5F G3KS8TzzJqwRPNeIxL7QYe69WP9cnwQwVvC7xD0nWd8hAIoZ6Ltt7hjpXR+n0CRq 2tHVq22GJq30KYbWDu8rZaCKL18XEkDaSKKrVfA9ZD+erIyByZVyrIjbVft3zNrm GRQDXxmRfH7rAP8YYwmzNqngIUgDY29WkQTiap2em1BL12HYauCIMyTzI9FbMSLW VzqJhxa6LkANJu/U5uC5XV6mhOqHfwlBP0u4x9cVt7yvJKY0pz9BaY8Bf96xZ+/L O7o3wf1DzVsUNwe8rBHws51oz2mXILGTuS3m6CErCQEL52pA0zS0lAzG4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBlnXndzzU5pXyMDgWxGKyUs6v2QMB8GA1UdIwQY MBaAFLOl2Zhj2y5JtE9sMk6wQ4j8dRXSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAt ZWVjNWQ1MGVmYTk0LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8yOWU5YmMtYjE5MC00MDllLTg2YjAtZWVjNWQ1MGVmYTk0 LzEvczZYWm1HUGJMa20wVDJ3eVRyQkRpUHgxRmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF0/lc+db kDSxIvtr3sCPKNQv6nxWihigP22Ihnw13i+OsZmXQgih99DpcR3PI5r28ycKZ8gc 2URspZqPu9gBlvI1BY4ONAt5fUaJggA6iTrg+Bo+WsQslzM5Nhh++QtjYwDgvRvm QnxDMh7itxU/Ja129ypWcna2EjscEfzEk532n1GR6AyE/CzP+a8Wrb+xkxR7Ud9h mzqde+vboS+7oeXsrZDnOw6F4yWf1Wrd3dnUlx1SRwfpj3Dt3Jawdf7Yduwfks3L Qj84o6Kl982oZtEPxo4h96/6sZtlooEaxll5hPc0r3eKG3A+G6K4YyVZ+x+24xaJ o8oLWfFApZ1Bag== -----END CERTIFICATE-----Generated at Sun May 11 11:00:24 2025 by rpki-client