$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft File: P-3YXB7Mtf9LqTARenMpCZwP8us.mft (raw, json) Hash identifier: 1UDYcQer0S+hlUdkhQYy92OQDb5L/4rRUtSQXNmUVGk= Subject key identifier: FE:5D:95:6B:0D:11:36:0B:9C:2B:EA:D2:9F:39:06:CC:01:8E:1B:48 Authority key identifier: 3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB Certificate issuer: /CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb Certificate serial: 0196BAED9546524E4BB6B88588E3AE9D148B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft Manifest number: 1558 Signing time: Sat 10 May 2025 16:00:54 +0000 Manifest this update: Sat 10 May 2025 16:00:54 +0000 Manifest next update: Sun 11 May 2025 16:00:54 +0000 Files and hashes: 1: 4SyAKG9FRt1gAFJy5VgH5PwxTRA.roa (hash: jTSIiH7dSb5EybAsEY+n22bAiKvGllq/AuPJ12+ncpM=) 2: BPvvMmPw0v2RXdpWWHfCuRUXY28.roa (hash: xZBsJjBvf0lTF+79AIT0zRbookilcef0qHIZ5VPCKjo=) 3: BZv8sGCcNALUX5pRivC_EjiidAY.roa (hash: h2vpw3fwMWMbbCOrxK6C72hr7+aeGxdeLm1OT0QOTJY=) 4: DGiTictajwWlIqV1Y3gB4SABHrM.roa (hash: Id5c1uksWgHuNXSqMulTJtxTXfw1/TAJk3AEd7b9YRQ=) 5: Mk65rzu_RkrceH34hYZR24Obsg0.roa (hash: rTzdbjg2prHl5GqIGFCWtd1Ib91ETCuwTrOfSPbAKbI=) 6: P-3YXB7Mtf9LqTARenMpCZwP8us.crl (hash: yWd5QQ1BTCQ16QS80C5Bk8zz5XQsPjJGTfO7zWTLEeo=) 7: Q7Kremg5Fgj0SfkKKXdi8FJc68I.roa (hash: wwhqLnVWip/tEomt2waPsqqsK0Xf41SfYznp1QkJ0BM=) 8: VB2zjyzRbVcAI7qwybUzZhlXV-U.roa (hash: cbrJc/4RT0HiKhNiv2HtCVB5MjAEHV6aPZtCJF7/HaM=) 9: fScTC-RTAL4AeGIUFDXeFWgxNOU.roa (hash: LpQDvJVc9hMoS+6x9uoQSz8d+i8pdM/6GrU1p5QPkoU=) 10: gjV1b6nl-2sIdV0OViEWc13VOgw.roa (hash: YJxg+E5odCH0e5CDjaGL8I+42oC/IlpXfOKgoo/xCo4=) 11: i_vdOGwxPt-bikrKCsCq4vU6o1Y.roa (hash: Oi88txSdII7ssSiwm/zvR3/xE/bpdarLSDiFGBrNlqs=) 12: jLM5t3eg01fijHX5BZDxTUjpEGU.roa (hash: zlqEOh5qlKElj+/BR3gY6unzfRt8ygL6XM3lywwcPBU=) 13: jt3cdzogC_GhOHVIdQu1LfkbDrM.roa (hash: 4TbqHgl6LIIhOvKU0Ma8NpMAoh5pYOvW9g1cZnc89eY=) 14: mv1h37MzImfXhXtotGH2l6nUD-c.roa (hash: jma1UU++sReZAO/OYU5m4FrNNXuoRuTByWXR/ZHh5qk=) 15: pPSUgW-kch1wzV-mL74GjoJRYas.roa (hash: 14IsY2Pcu5B3SjJ5ycOJDXddH4w35As15arfEbi1nXc=) 16: sVq7ykDogd7cCsDF--hBK9DnjT4.roa (hash: yntzoQcvzBrX+tVilVNDQYJnh1oAW90RlNAXUQi35Kc=) 17: yUsdU2ULQpT4CaBLrnJG--v6B4k.roa (hash: nFPDGUe2wiSsXpmHy1xpSDCHB5E3thvkbalz4PA2+qg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 May 2025 16:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:ba:ed:95:46:52:4e:4b:b6:b8:85:88:e3:ae:9d:14:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3fedd85c1eccb5ff4ba930117a7329099c0ff2eb Validity Not Before: May 10 16:00:54 2025 GMT Not After : May 11 16:00:54 2025 GMT Subject: CN=fe5d956b0d11360b9c2bead29f3906cc018e1b48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:c3:58:1b:45:8b:c5:f1:6b:33:08:10:ed:52: 9a:d7:da:46:9b:e9:c5:a6:d7:28:7c:d6:fa:96:6f: 98:85:e9:11:aa:a4:21:bc:72:cf:f3:e2:04:48:f3: 57:10:d6:f7:52:6a:82:fe:f1:9e:e6:e3:ee:81:d2: f8:4d:22:bb:ec:53:e0:83:a0:14:a2:12:82:b1:78: 68:1d:24:62:f1:d6:64:51:49:f8:91:d5:2d:72:c6: 77:81:79:44:a2:cc:f2:31:5b:0e:97:f2:4a:48:4e: 14:ff:b1:6e:da:82:5e:94:ec:00:b4:2a:06:2d:d1: 68:34:e7:90:21:2e:ff:1d:e0:35:39:4f:d8:f6:98: a0:85:da:a3:99:21:6a:1c:1a:9c:8e:db:3a:af:7a: 7d:15:22:cc:08:df:f2:1c:3e:6e:1c:d2:0a:9d:f6: 6b:9c:3a:fa:ec:47:08:ba:53:db:2b:27:78:8f:21: ed:d6:ad:01:4e:87:44:fd:46:d2:23:40:71:f2:6d: c3:26:fa:f6:4d:64:2c:c8:33:6a:c1:8a:3d:2e:c0: 8c:a8:a0:42:72:88:48:91:39:5a:54:83:3d:9f:7a: 9f:66:f9:4a:31:76:75:f3:91:18:ce:6b:31:2a:01: a1:4a:19:f4:11:92:86:d0:d9:72:af:5a:2e:47:34: 81:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5D:95:6B:0D:11:36:0B:9C:2B:EA:D2:9F:39:06:CC:01:8E:1B:48 X509v3 Authority Key Identifier: keyid:3F:ED:D8:5C:1E:CC:B5:FF:4B:A9:30:11:7A:73:29:09:9C:0F:F2:EB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P-3YXB7Mtf9LqTARenMpCZwP8us.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41c321-347e-4c3e-affd-e2b527728e96/1/P-3YXB7Mtf9LqTARenMpCZwP8us.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:f6:dd:4f:e3:19:2d:63:d9:74:46:33:1d:e2:30:24:5f:d0: 99:8a:f8:f0:16:9d:78:b5:1d:a5:8c:50:e4:c9:b3:0a:a0:ef: fb:9e:dd:a9:93:cb:13:28:84:be:b3:34:ee:50:bf:32:66:f7: b7:3b:9b:7e:7c:e6:68:07:c3:c4:50:80:d7:d2:00:6e:45:3c: 51:72:22:43:8d:40:eb:41:94:a2:9e:19:7c:31:44:b2:74:06: d8:df:57:68:09:12:ee:3b:b8:ab:8b:e5:b8:e4:fd:53:35:88: 5c:35:6f:19:b7:6a:64:72:e8:21:43:70:e7:d5:3c:6b:61:97: 18:26:18:8b:ab:12:60:7e:d8:1b:62:2b:4e:7d:fc:87:39:53: fe:fb:fe:06:08:53:fb:bc:29:c3:92:e3:b7:07:55:b1:d1:3f: 7a:ab:0a:89:39:06:e2:82:01:27:84:ac:15:66:2c:53:a8:e5: 00:95:b4:0a:85:96:3c:05:06:d4:bc:78:b6:21:0e:41:3f:c7: 4c:c2:34:16:74:1e:f1:9e:dc:ac:4b:1d:5e:2b:26:29:9c:1c: 79:65:6e:7d:4e:f3:d5:bd:c2:85:0f:3e:f6:3b:4b:5b:80:e4: 34:ea:4d:d3:e5:44:75:01:3b:8d:f6:a5:08:aa:e6:52:ae:76: 42:c9:3c:4a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZa67ZVGUk5LtriFiOOunRSLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNmZWRkODVjMWVjY2I1ZmY0YmE5MzAxMTdhNzMyOTA5OWMw ZmYyZWIwHhcNMjUwNTEwMTYwMDU0WhcNMjUwNTExMTYwMDU0WjAzMTEwLwYDVQQD EyhmZTVkOTU2YjBkMTEzNjBiOWMyYmVhZDI5ZjM5MDZjYzAxOGUxYjQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5cNYG0WLxfFrMwgQ7VKa19pGm+nF ptcofNb6lm+YhekRqqQhvHLP8+IESPNXENb3UmqC/vGe5uPugdL4TSK77FPgg6AU ohKCsXhoHSRi8dZkUUn4kdUtcsZ3gXlEoszyMVsOl/JKSE4U/7Fu2oJelOwAtCoG LdFoNOeQIS7/HeA1OU/Y9pighdqjmSFqHBqcjts6r3p9FSLMCN/yHD5uHNIKnfZr nDr67EcIulPbKyd4jyHt1q0BTodE/UbSI0Bx8m3DJvr2TWQsyDNqwYo9LsCMqKBC cohIkTlaVIM9n3qfZvlKMXZ185EYzmsxKgGhShn0EZKG0Nlyr1ouRzSBHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP5dlWsNETYLnCvq0p85BswBjhtIMB8GA1UdIwQY MBaAFD/t2FwezLX/S6kwEXpzKQmcD/LrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC80MWMzMjEtMzQ3ZS00YzNlLWFmZmQt ZTJiNTI3NzI4ZTk2LzEvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC80MWMzMjEtMzQ3ZS00YzNlLWFmZmQtZTJiNTI3NzI4ZTk2 LzEvUC0zWVhCN010ZjlMcVRBUmVuTXBDWndQOHVzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAePbdT+MZ LWPZdEYzHeIwJF/QmYr48BadeLUdpYxQ5MmzCqDv+57dqZPLEyiEvrM07lC/Mmb3 tzubfnzmaAfDxFCA19IAbkU8UXIiQ41A60GUop4ZfDFEsnQG2N9XaAkS7ju4q4vl uOT9UzWIXDVvGbdqZHLoIUNw59U8a2GXGCYYi6sSYH7YG2IrTn38hzlT/vv+BghT +7wpw5LjtwdVsdE/eqsKiTkG4oIBJ4SsFWYsU6jlAJW0CoWWPAUG1Lx4tiEOQT/H TMI0FnQe8Z7crEsdXismKZwceWVufU7z1b3ChQ8+9jtLW4DkNOpN0+VEdQE7jfal CKrmUq52Qsk8Sg== -----END CERTIFICATE-----Generated at Sun May 11 01:56:19 2025 by rpki-client