$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: bH/aYmWlzOQl//T+G0lhQEX6avKZRhClpMYoX0xmUE8= Subject key identifier: A1:F0:28:03:57:83:D9:A4:5E:F7:F6:67:5F:25:A8:F2:F3:16:A7:24 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 0196A98C1FF04D3663E2A87E1B59F3CC1B46 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 160E Signing time: Wed 07 May 2025 07:00:54 +0000 Manifest this update: Wed 07 May 2025 07:00:54 +0000 Manifest next update: Thu 08 May 2025 07:00:54 +0000 Files and hashes: 1: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: 9lLLHOq6MLN1Cb6myguRuB42teSFAjESyiihRpjnRl4=) 2: Ah3Te5hM-O8F8onb0dcABVDFZXI.roa (hash: K/P29Mes2DqUAPSJVgfXDkMKDw/Tgn0hmuZkj++0kUU=) 3: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 4: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 5: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 6: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 7: Yi0nd0HQTo9UHyApKJKZ_31fLCY.roa (hash: v4qPaeNlpozaTJfY+bZOEAyAqTWnNdm8Vt4Lx3Z6MKw=) 8: ixxzr0nDJC4AjQqKMOvhCRZIBS4.roa (hash: vRjMINEnN58WR68J2uy0IhPriH+22u9mcJzheawrNoA=) 9: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 10: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 May 2025 23:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:a9:8c:1f:f0:4d:36:63:e2:a8:7e:1b:59:f3:cc:1b:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: May 7 07:00:54 2025 GMT Not After : May 8 07:00:54 2025 GMT Subject: CN=a1f028035783d9a45ef7f6675f25a8f2f316a724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:59:de:54:e4:60:1c:b1:58:28:b3:05:c3:8e: 3e:22:ba:5f:af:89:91:f5:cf:b5:b3:25:31:2b:b9: 7d:e0:9e:b1:1a:64:06:37:4d:e6:21:36:cd:33:b3: c6:79:ff:39:68:4b:2a:55:0d:e6:57:ef:0d:a1:41: e8:dd:0a:a3:24:81:99:ea:d7:86:e0:1a:58:35:7e: a0:fa:1a:dc:bb:fa:1c:63:f3:69:72:e6:79:06:cf: ae:2d:87:4e:f0:26:f7:48:55:9f:28:53:72:ca:4d: 2d:9c:a2:9f:52:d7:2e:33:c4:25:ab:dc:48:91:f9: 37:67:b7:eb:3b:03:1b:4e:88:c9:d3:2b:f7:ae:c1: b3:f2:26:8a:f3:e1:4e:f0:c7:f1:91:ac:49:e8:24: 22:d4:71:5c:01:c5:24:90:40:37:7c:0c:bc:f0:63: ac:55:d7:62:ee:46:9e:03:9b:33:2b:e3:47:99:94: 2c:39:0a:c0:7a:b7:92:5c:70:9f:7d:65:20:d2:7a: bc:3b:33:07:bc:91:0e:42:3a:8f:cf:00:91:83:98: bf:97:1b:80:f2:a8:d1:92:cf:6c:f0:a4:53:aa:77: 8a:c7:d4:14:7e:98:56:36:63:5e:79:1b:9f:3c:22: 28:60:f7:e6:b2:ee:4a:ff:22:10:01:e9:b3:2f:e7: ca:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:F0:28:03:57:83:D9:A4:5E:F7:F6:67:5F:25:A8:F2:F3:16:A7:24 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:c3:fd:fe:c5:5f:04:ea:35:c8:e3:83:6e:49:c7:ba:29:ae: 0b:5d:1e:74:81:fe:a1:a5:3a:e4:c1:42:07:00:a4:d2:1e:32: 48:00:ca:01:eb:a8:24:22:cf:cd:80:d4:b1:4b:dd:29:c2:e4: 1c:c6:fd:8b:c0:d4:e8:5d:af:4e:50:f5:b2:f5:ba:9b:c8:23: e5:4e:79:e2:a9:0a:80:bb:75:b9:89:fd:ed:2e:d8:9d:2c:44: dd:c1:00:5d:84:02:d8:d8:8b:cd:22:35:ba:d0:6a:22:55:10: 6c:3c:e9:f7:19:57:62:91:f5:b3:b9:b7:c0:d9:36:bb:6b:ad: 66:8e:b1:25:51:6c:d5:9b:88:cf:03:e0:4a:e8:2f:eb:9e:eb: ba:c9:62:fc:15:b8:6f:ec:f4:fe:03:9c:9f:38:6f:a7:84:15: e1:d2:e9:16:db:a6:49:b1:0b:ea:53:85:88:ff:df:72:52:7d: 5d:12:81:28:09:a0:b3:5c:b3:bf:1e:d9:18:99:92:0a:1a:12: a3:7e:6a:e2:a3:f6:43:e0:79:69:54:b4:28:b6:b7:02:18:62: b8:de:ac:00:39:41:49:52:98:40:1e:17:4d:84:a4:2b:3a:d4: 95:d6:27:13:ec:bb:0f:df:96:1e:40:07:66:fc:f5:93:bc:56: 00:bc:7e:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZapjB/wTTZj4qh+G1nzzBtGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUwNTA3MDcwMDU0WhcNMjUwNTA4MDcwMDU0WjAzMTEwLwYDVQQD EyhhMWYwMjgwMzU3ODNkOWE0NWVmN2Y2Njc1ZjI1YThmMmYzMTZhNzI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlneVORgHLFYKLMFw44+Irpfr4mR 9c+1syUxK7l94J6xGmQGN03mITbNM7PGef85aEsqVQ3mV+8NoUHo3QqjJIGZ6teG 4BpYNX6g+hrcu/ocY/NpcuZ5Bs+uLYdO8Cb3SFWfKFNyyk0tnKKfUtcuM8Qlq9xI kfk3Z7frOwMbTojJ0yv3rsGz8iaK8+FO8MfxkaxJ6CQi1HFcAcUkkEA3fAy88GOs Vddi7kaeA5szK+NHmZQsOQrAereSXHCffWUg0nq8OzMHvJEOQjqPzwCRg5i/lxuA 8qjRks9s8KRTqneKx9QUfphWNmNeeRufPCIoYPfmsu5K/yIQAemzL+fK5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKHwKANXg9mkXvf2Z18lqPLzFqckMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUcP9/sVf BOo1yOODbknHuimuC10edIH+oaU65MFCBwCk0h4ySADKAeuoJCLPzYDUsUvdKcLk HMb9i8DU6F2vTlD1svW6m8gj5U554qkKgLt1uYn97S7YnSxE3cEAXYQC2NiLzSI1 utBqIlUQbDzp9xlXYpH1s7m3wNk2u2utZo6xJVFs1ZuIzwPgSugv657rusli/BW4 b+z0/gOcnzhvp4QV4dLpFtumSbEL6lOFiP/fclJ9XRKBKAmgs1yzvx7ZGJmSChoS o35q4qP2Q+B5aVS0KLa3AhhiuN6sADlBSVKYQB4XTYSkKzrUldYnE+y7D9+WHkAH Zvz1k7xWALx+IA== -----END CERTIFICATE-----Generated at Wed May 7 09:32:54 2025 by rpki-client