$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft File: BVFgW2dezk4PznF1rjGpP6gnK6Y.mft (raw, json) Hash identifier: GWyPUVY2TUH5IsssACXIHgADOqBScaaSbugPGo5+1N0= Subject key identifier: 41:E9:0A:05:E6:31:BB:3C:7A:EF:F9:99:56:AA:37:9A:5C:F9:DE:FF Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6 Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6 Certificate serial: 0196A277E20D9AA80B6E7AEE7C1998BCD6CE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft Manifest number: 1558 Signing time: Mon 05 May 2025 22:01:27 +0000 Manifest this update: Mon 05 May 2025 22:01:27 +0000 Manifest next update: Tue 06 May 2025 22:01:27 +0000 Files and hashes: 1: 5t_gEPyzONNwmcX_6ew0Ih3Mk2Q.roa (hash: vkkst1UDRXFHGnw3oCIz/VahP4EJhU4cLye1AO0QLS0=) 2: B-VB7mD6d3yYH8PU8AgFih1fMDc.roa (hash: T5HGrFxvsUPySvUxTWFtkDKWgc+DSV2mLNavrR7oxEo=) 3: BVFgW2dezk4PznF1rjGpP6gnK6Y.crl (hash: 4eD7j4VXigBHA0NEvvNlKKEG7zF+vgl9Tm2OHZa7KM4=) 4: FQTXSvb27ypAWeWR6u4PUk-NFzc.roa (hash: oVmw4Wr4zacFRrwMuuDV+itYXymrywavxqZKYRr/zHc=) 5: GIdtnYTfB_OfNmkj58C5zvwyoiY.roa (hash: mrolhVBCf9ezcIiNdke1ILuseOXCo3lGnZtCw7CJdqk=) 6: JIWScFv9Kksz3-WjVTMxXPLjiWo.roa (hash: 9Ejcda+LEF9Prza7a6M4k8Cqx+Jsocz8uwzratsGHfs=) 7: Ry99V7wdnB63QA0YiggryZhHU-U.roa (hash: mMBh91Bzq2gPCtQkwNpkOUuuvLHWXUK22LlIXX1xS/g=) 8: T2zf4MlLIMSvzzuDsJMAjIOyKkY.roa (hash: ueRz8nTweEwyQ4f6p4yvV8towA7SPGMkaN88JD99IhM=) 9: WTBCbSxb7h1w4Up4KNg9SZTnE6c.roa (hash: zGDl99MvN6NddN0ACg6xKrKwSNupTCXGaQXZUdGsWZY=) 10: Wgn-Z3i6lXU4mVGYn9zEOu2Y5uo.roa (hash: KDlQZdCuo/nIV3/PuDzNC2v7AGRYnk63vIIL7+xFyqo=) 11: ZNVBvSaI1BNlFT5y4meV0Zbgnzw.roa (hash: bWlw2kG0F8Yo+irCKVO4en+85QCKnglxRBdSlkv67r0=) 12: ZmV3RrHyNbdlPpXWHxyJNKlqz_0.roa (hash: duiYNAfkU9vNSfSeoTIVT6MoGsXF5yCoHKwjI4a3RZo=) 13: bLACyeWnCQUwWZqE5WZ_BrmQU6Y.roa (hash: uwoE5/d36cX/Ks6beQm+PxMT5NEUJYwmYJZfciGwpzU=) 14: lSQaQo1pT929AIuNEO-jfbBj_uI.roa (hash: aky/WPIxzMhPYRkj4RXOkjGc0PhL0aXcIKo/I7TPgXM=) 15: lmjGoIkmtRARzMHJ3Iv6xZvWT5U.roa (hash: D1V3yIkbb8Fb2YGAP6nceG/MedRCxNzvPEgyVbvAN7Q=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 06 May 2025 18:19:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:a2:77:e2:0d:9a:a8:0b:6e:7a:ee:7c:19:98:bc:d6:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6 Validity Not Before: May 5 22:01:27 2025 GMT Not After : May 6 22:01:27 2025 GMT Subject: CN=41e90a05e631bb3c7aeff99956aa379a5cf9deff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:3d:20:18:56:26:d5:30:eb:81:82:96:b3:e2: 32:0a:7c:ac:03:46:98:76:36:4f:e3:65:67:02:9e: ac:04:ec:4e:9b:d1:ba:99:92:04:4e:49:0d:db:42: 7f:1e:0b:45:be:71:b1:bb:e5:7d:d8:62:bf:74:b7: 70:15:5b:ef:19:84:dd:9b:60:da:b2:83:76:1a:0d: c1:27:b5:43:c8:97:ef:2d:39:f7:3d:bb:32:a6:0e: 6e:f6:82:fe:ed:bb:51:f0:f0:fb:90:6d:ba:af:15: 94:da:e5:89:d0:6d:5e:08:45:38:06:89:48:ab:b8: 07:8d:42:9b:54:e3:e6:c3:07:81:7c:27:25:f5:8b: 47:a3:27:68:b5:34:ee:34:ce:7f:cf:fd:4c:03:1e: 15:d4:cd:b4:cb:b7:04:31:99:2a:b8:ad:d5:ef:d9: 23:84:dc:0e:53:79:f2:c3:3c:82:11:50:7d:16:b9: fa:ef:f9:de:40:12:92:9b:b7:a5:c6:93:4a:d2:9c: 50:0b:a5:d0:37:bd:41:92:f9:56:6d:3c:e7:18:57: ad:34:29:71:77:6d:fe:8b:1f:fd:15:43:32:5e:b8: 72:00:81:ee:ab:27:2a:93:a3:31:0f:14:42:8a:c4: 8e:a9:2a:4b:4e:98:aa:3e:8e:87:4d:13:e1:3c:57: 4e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E9:0A:05:E6:31:BB:3C:7A:EF:F9:99:56:AA:37:9A:5C:F9:DE:FF X509v3 Authority Key Identifier: keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:2c:7c:48:b2:66:fe:95:99:d3:bf:f6:a8:24:8e:77:27:a0: 0f:4e:9b:57:06:f6:a0:e5:13:2f:94:7f:22:79:a0:a5:31:c7: 2e:31:75:6f:c8:7d:c1:67:84:83:9c:01:3a:ce:ad:d7:35:dd: 0f:bd:08:e7:96:8c:30:43:0b:01:fc:c9:bd:0c:9a:42:1e:84: 87:a2:37:28:b1:3f:93:9e:db:1a:0d:7b:3c:39:9d:5a:49:0a: 8b:c3:fa:0d:ad:26:ae:88:dd:78:9f:99:f4:45:e3:ae:b5:07: 68:d6:9c:40:9d:da:56:f0:b9:eb:7a:45:1c:38:95:a8:db:bc: a6:3b:e6:ef:19:1d:21:ac:47:63:83:fb:3f:fd:4e:df:f1:3c: 22:bd:62:2a:95:f6:e2:01:b8:8c:5b:5e:3f:00:05:62:db:ee: 77:76:39:c4:fc:44:81:68:5d:ad:7a:32:64:1a:f9:6e:95:b8: ff:99:5e:f3:10:74:ad:82:59:ed:e2:a5:14:22:4d:50:6b:89: c2:35:0e:8b:f4:f7:3f:ba:f2:f4:5a:4e:ba:89:7b:ff:a6:e9: 6f:f7:9f:90:60:42:3c:84:a5:8c:d8:da:ab:81:db:48:ad:4a: 6b:8a:8c:8a:ff:03:ec:4f:e3:d7:d6:34:53:16:45:65:b8:3a: 06:ff:ce:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZaid+INmqgLbnrufBmYvNbOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1NTE2MDViNjc1ZWNlNGUwZmNlNzE3NWFlMzFhOTNmYTgy NzJiYTYwHhcNMjUwNTA1MjIwMTI3WhcNMjUwNTA2MjIwMTI3WjAzMTEwLwYDVQQD Eyg0MWU5MGEwNWU2MzFiYjNjN2FlZmY5OTk1NmFhMzc5YTVjZjlkZWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4T0gGFYm1TDrgYKWs+IyCnysA0aY djZP42VnAp6sBOxOm9G6mZIETkkN20J/HgtFvnGxu+V92GK/dLdwFVvvGYTdm2Da soN2Gg3BJ7VDyJfvLTn3Pbsypg5u9oL+7btR8PD7kG26rxWU2uWJ0G1eCEU4BolI q7gHjUKbVOPmwweBfCcl9YtHoydotTTuNM5/z/1MAx4V1M20y7cEMZkquK3V79kj hNwOU3nywzyCEVB9Frn67/neQBKSm7elxpNK0pxQC6XQN71BkvlWbTznGFetNClx d23+ix/9FUMyXrhyAIHuqycqk6MxDxRCisSOqSpLTpiqPo6HTRPhPFdOsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEHpCgXmMbs8eu/5mVaqN5pc+d7/MB8GA1UdIwQY MBaAFAVRYFtnXs5OD85xda4xqT+oJyumMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEt MDc3OWY0OGVjZWEwLzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8yOGVhNDUtN2QzMC00NmRmLThmMmEtMDc3OWY0OGVjZWEw LzEvQlZGZ1cyZGV6azRQem5GMXJqR3BQNmduSzZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACSx8SLJm /pWZ07/2qCSOdyegD06bVwb2oOUTL5R/InmgpTHHLjF1b8h9wWeEg5wBOs6t1zXd D70I55aMMEMLAfzJvQyaQh6Eh6I3KLE/k57bGg17PDmdWkkKi8P6Da0mrojdeJ+Z 9EXjrrUHaNacQJ3aVvC563pFHDiVqNu8pjvm7xkdIaxHY4P7P/1O3/E8Ir1iKpX2 4gG4jFtePwAFYtvud3Y5xPxEgWhdrXoyZBr5bpW4/5le8xB0rYJZ7eKlFCJNUGuJ wjUOi/T3P7ry9FpOuol7/6bpb/efkGBCPISljNjaq4HbSK1Ka4qMiv8D7E/j19Y0 UxZFZbg6Bv/Oow== -----END CERTIFICATE-----Generated at Tue May 6 03:49:42 2025 by rpki-client