$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: fMuQLdCbKnbH51Zh0T/i0W8lm0Mty4l/hcUIaHWAqj4= Subject key identifier: BF:E9:D0:D5:CD:ED:4F:36:02:2F:49:FC:0D:FA:90:2E:7B:16:27:CA Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 0197B5C4939A50DC95B5EEFABF1FF8B01453 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 16A1 Signing time: Sat 28 Jun 2025 09:00:48 +0000 Manifest this update: Sat 28 Jun 2025 09:00:48 +0000 Manifest next update: Sun 29 Jun 2025 09:00:48 +0000 Files and hashes: 1: 0aBlqnf_Tz2143bZSUo486RXjYM.roa (hash: kVyZCLRD7TgyBJM4krKE0Z2+lhUd6EvP0ND2sc84jxM=) 2: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: 7YnAYczBG98gb4kliXPI1TePfqM8y0SgSMycDO/Nx1A=) 3: OCoDEhkkUUK4CPoatcgNov_ZXFM.roa (hash: Vw4DPLJpcDpZqDqziJ/5/3/Wk2tB5IyX+IIC8Dh/HQU=) 4: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 5: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 6: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 7: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 8: h7r_Nwi_kdzuxp878rO4evbBYno.roa (hash: modArEqDTmYMBHMTaJCbEh9eIHKiNZBqpN9t+xMOOaU=) 9: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 10: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 09:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b5:c4:93:9a:50:dc:95:b5:ee:fa:bf:1f:f8:b0:14:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Jun 28 09:00:48 2025 GMT Not After : Jun 29 09:00:48 2025 GMT Subject: CN=bfe9d0d5cded4f36022f49fc0dfa902e7b1627ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:5c:66:d4:56:93:b8:89:ff:bc:0b:04:bd:09: 61:d6:d7:bf:e5:3c:d6:12:a8:cd:e5:c2:0d:76:22: 2d:98:7e:0c:3f:a3:d8:30:80:fe:57:d3:b1:0e:85: 43:c8:7b:e2:56:5e:9f:07:29:c3:60:49:f5:d5:c4: ad:b5:cf:ee:7a:5f:38:1a:12:3b:79:23:ab:58:b6: 91:76:2d:24:a8:7e:c0:4c:17:9a:bf:e7:4e:5c:01: e1:49:54:a0:85:e0:68:7c:45:92:c3:52:a4:44:67: 78:75:d8:f4:9c:fd:de:1c:8a:7e:12:a0:10:42:7e: 7c:e0:b0:5b:f6:f1:58:7a:25:ff:a8:ad:d0:72:99: 2c:66:5a:fa:66:66:5e:0d:18:2f:db:38:79:4d:6c: b9:25:1d:71:89:18:41:fd:0c:8d:55:60:81:f2:f7: 79:c2:de:c1:32:b1:e0:d3:70:3b:5f:c1:03:59:b8: e6:32:eb:ba:20:ae:58:48:7a:49:18:9b:42:eb:1d: af:4c:57:fd:d1:79:03:1f:85:fd:6c:a6:66:80:ed: e1:9b:9d:1a:e3:4a:5a:fd:bc:a7:d1:c7:61:56:9d: ec:c3:55:fc:5d:3e:05:d7:e2:9e:af:cf:65:98:9a: 92:20:83:5a:08:0d:33:c2:f1:33:dc:cd:61:50:99: 72:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E9:D0:D5:CD:ED:4F:36:02:2F:49:FC:0D:FA:90:2E:7B:16:27:CA X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:bb:8a:d4:58:24:5f:67:af:f7:39:66:4b:a1:58:14:e6:69: 97:71:63:97:4d:23:a9:6a:42:0d:88:d3:ec:34:7e:ab:c9:4b: 09:9b:ff:ac:14:38:fe:c4:22:31:ff:77:00:71:15:2e:a3:8f: b4:a4:11:53:0c:51:65:92:b1:76:41:3d:ec:cb:fe:82:7d:1e: 4e:ff:46:30:7b:bb:64:51:85:f2:e1:af:bb:51:b5:e9:ea:16: ec:82:26:5d:41:66:c2:2f:bd:f9:eb:48:0f:05:16:84:09:27: d7:c6:25:0d:3b:f5:8b:ca:74:51:f5:e1:db:95:41:a7:2e:bd: 91:1e:24:4d:0b:a5:e2:ca:6c:7a:8c:7f:83:97:c1:aa:5c:e2: 99:2f:81:1b:9f:97:39:4c:a5:7b:66:31:e2:d3:9e:c5:3c:5a: 86:31:19:eb:ea:4a:f4:ce:c1:57:95:b6:46:97:0a:4b:dc:83: 80:51:eb:60:79:31:75:5d:12:2b:2d:c9:1d:e1:0b:b0:34:d6: de:a9:74:30:ba:53:d9:a7:58:0d:58:2d:8e:b3:33:bc:b8:72: a6:56:a1:39:6c:93:5d:6d:8b:95:74:73:34:5a:d2:b7:d7:74: 18:3d:96:79:24:70:d2:16:ff:78:bf:00:86:d4:b7:56:1e:6d: ce:6c:f7:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe1xJOaUNyVte76vx/4sBRTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUwNjI4MDkwMDQ4WhcNMjUwNjI5MDkwMDQ4WjAzMTEwLwYDVQQD EyhiZmU5ZDBkNWNkZWQ0ZjM2MDIyZjQ5ZmMwZGZhOTAyZTdiMTYyN2NhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Fxm1FaTuIn/vAsEvQlh1te/5TzW EqjN5cINdiItmH4MP6PYMID+V9OxDoVDyHviVl6fBynDYEn11cSttc/uel84GhI7 eSOrWLaRdi0kqH7ATBeav+dOXAHhSVSgheBofEWSw1KkRGd4ddj0nP3eHIp+EqAQ Qn584LBb9vFYeiX/qK3QcpksZlr6ZmZeDRgv2zh5TWy5JR1xiRhB/QyNVWCB8vd5 wt7BMrHg03A7X8EDWbjmMuu6IK5YSHpJGJtC6x2vTFf90XkDH4X9bKZmgO3hm50a 40pa/byn0cdhVp3sw1X8XT4F1+Ker89lmJqSIINaCA0zwvEz3M1hUJlySwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL/p0NXN7U82Ai9J/A36kC57FifKMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG7uK1Fgk X2ev9zlmS6FYFOZpl3Fjl00jqWpCDYjT7DR+q8lLCZv/rBQ4/sQiMf93AHEVLqOP tKQRUwxRZZKxdkE97Mv+gn0eTv9GMHu7ZFGF8uGvu1G16eoW7IImXUFmwi+9+etI DwUWhAkn18YlDTv1i8p0UfXh25VBpy69kR4kTQul4spseox/g5fBqlzimS+BG5+X OUyle2Yx4tOexTxahjEZ6+pK9M7BV5W2RpcKS9yDgFHrYHkxdV0SKy3JHeELsDTW 3ql0MLpT2adYDVgtjrMzvLhyplahOWyTXW2LlXRzNFrSt9d0GD2WeSRw0hb/eL8A htS3Vh5tzmz39A== -----END CERTIFICATE-----Generated at Sat Jun 28 19:03:07 2025 by rpki-client