$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft File: Nov7il7uSQgupijfJaSl1Q86qbM.mft (raw, json) Hash identifier: wL6ls51Ya77/rd7MkTfo+EXM0LQ0y6lAmptQdZIC8v4= Subject key identifier: F1:C5:71:EC:99:4E:30:B5:74:11:AF:53:4F:A0:8A:65:81:9B:75:CE Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Certificate serial: 0196A49C792AF266A65083B148CDF2B92C35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft Manifest number: 1206 Signing time: Tue 06 May 2025 08:00:39 +0000 Manifest this update: Tue 06 May 2025 08:00:39 +0000 Manifest next update: Wed 07 May 2025 08:00:39 +0000 Files and hashes: 1: 0hshT3NJf3ZcExZUQYc5nmNlGaY.roa (hash: JsM+BK5pxCs2yQ1uCb8EQL/4Y9VORNiVl/v1CM9RYLo=) 2: 1-N0MB6K4BGhCodjphO0sGfJH9lc.roa (hash: wNvOddmKqC3vtf7NfXiGQ3Hozg+ofKLNZIEe00zLk1M=) 3: 1-bbMCI3xod0gOUPFmgFsyOO30Bw.roa (hash: LKqJzBII7MGbUijDJ1j/lwoVixYqcdKqwxqkwNRG00c=) 4: 1-wabTO2fsXFXQTzOoF0K0I_DrZU.roa (hash: RTeqrHSUS0wIUgh9aXCRzEflNtC7IYLpRr5YT5/0umM=) 5: 3J88mjatVuaIP6aHK3OYk0kdbfo.roa (hash: sZs3r/v14sEOc9x0G/E9FC3LGk+16fHUKp0kj84KfPU=) 6: 59BM3cmIoy1MoFuz148y_WZgCKA.roa (hash: b8nLw7Sod/Ce2ZRbJw+OEbeY/YeQr8JvhOn6OiPAFJE=) 7: 6blgCUf86x3rCdfBH3ieROWsyRA.roa (hash: 86kM1G7rQ1SYShoyqdcl0qpLnm5lgNUyaKELq4WGkm8=) 8: 6kSNO4q11KUII70MaOJKkb7-8sg.roa (hash: po7fMOEHEv78blrhtlvLrqv8BATiXO+irHU+tW7u7Us=) 9: 6rwN2H9TdeOGb7q8HP8JJtg4qSc.roa (hash: FcA2BwhZ6jCjWY4Hf8YuwHRI8qkKyNdVMrQdqJ8aP+Q=) 10: ABJStH93Tb6FchJ9fsWarHUv7_o.roa (hash: 2aWwBiU7xdii1VsEutmj7weOOLZIls6NzS14i2lKxbg=) 11: CkXXQPJaaUDcGZXca877DoZAZBs.roa (hash: c5vNHGh+QpD+Iysn2/rTkiH0Y/dq9wFL5MpRaysUMKg=) 12: DVg1Efbw-1VF7OmnT2UlNXAKp6c.roa (hash: +oncWmQ5BpXDKZTWF4Tr8YOqt10mU/wA8TyqNvyksnI=) 13: F-W1PnZcCIg_t9g53Zhr8ZnRECY.roa (hash: vUOE0EzW5wlVnmrKCdNEm67M3EqZb+A0EvhCnOtIuZM=) 14: Gw8m4F71Ro8bNrJZTCfniFi9UXg.roa (hash: Kpelzl11O9E/pATLbGmCA+Qw1l2yU3K1pSi3l/TT1n8=) 15: IN3MTD4yGkkCDB1rJO86jTqGDXo.roa (hash: 7YOMcFzQDeiJ2ivIPHaXcmOgqcdPTr50fRvwkCG59Mg=) 16: Nov7il7uSQgupijfJaSl1Q86qbM.crl (hash: wDgy7zc+hTq6b5rBOGxT7d7JD6ini1dbI7HIrg3TNXM=) 17: S7OFuNl-GH-DU5EJTYgFgwhDjj4.roa (hash: ymztFVGLR/DYVfAE234cC1kQgAmVsycMhDqhtka8bLQ=) 18: SKTIyHXtcBSWgsqArOetabgC6Iw.roa (hash: wlTzqtL7XXgCSVJcIXH5FrXlb2kC7qEyd0/a19pmV6M=) 19: SWriLr3nVJjiUOMV3ZQzft65uIQ.roa (hash: spVCEv9GHrawAsPw1EVJ3YvZeiUgfGRBjgYb4vGUxOc=) 20: SwhgnoZF_hBARmFUiuLLJ2EVqdA.roa (hash: 48VRNmDGNhRP2L8JLtMNzB4JM3bc2vPZU8jDlCGlZ6A=) 21: V2yuW3JJ20RvCluN3rXCUUMiG7w.roa (hash: x17gUm0KUeJAMk7xHzgBZEWB6s9JGa50PPNlB66G6AI=) 22: ZnbzYHRBvUTbEjCixu-51iq0NfI.roa (hash: H6eoYf0qoCchu+RJjza0539v8DwbGRsxOIQiPaH7Gsc=) 23: gAy2L-yq3jv5ULydsY0WjO758DY.roa (hash: kDdF7XHhC12P2H5eVodHGu1h34gE1iEE5luu7KRRUlE=) 24: iuZIYZ0Q_9xllOx0JShQ49jTsMQ.roa (hash: e6DjFwBCGOrJwzBM1pVGgmVe+0POPsOMUBPxv2SOmLA=) 25: nV9zpTkg41cEF2aE_Xxas5qWLPE.roa (hash: TmF18BVISDIjbdiP8hL66Gsgu4TLs2FCPMkL0xuGpQk=) 26: ou4-Kh9DNSjfvl0SW2m8LklQ2t0.roa (hash: kGFdPKNsDJKbeK37pMl8shm8W/kYhkK5Y6eKhGhDWLA=) 27: q9T06HR6r97SU-awwQlQkmbgz5o.roa (hash: ETbjB9b9hcvuMEeWyF6+hF4G9dhj7syzfHpk/6yrsfU=) 28: w_7KSHXu7o9ktpz_Vrh_00tv7HI.roa (hash: gkGoVuf1pEqMxqdRmFn7c7MKr+cC0H9E1TpCk2Uue1E=) 29: yNNBP2CYZiCkNUVUsBEkdKlDfd8.roa (hash: vCmsgqUye/JQpQ9Ozf04BYmInQnymLIG2O0wE02K/Wg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 May 2025 08:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:a4:9c:79:2a:f2:66:a6:50:83:b1:48:cd:f2:b9:2c:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3 Validity Not Before: May 6 08:00:39 2025 GMT Not After : May 7 08:00:39 2025 GMT Subject: CN=f1c571ec994e30b57411af534fa08a65819b75ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:be:1d:36:e8:a1:9b:51:e9:74:0e:7c:cb:40: 46:87:64:ca:75:44:4c:98:5e:ee:35:75:86:3b:74: 1f:e5:df:69:44:ef:9d:ce:4d:17:54:d8:a7:ab:46: e5:4d:40:aa:82:bf:37:9c:c4:a7:02:ed:a3:3d:87: c8:a3:1c:d6:b4:54:2f:84:e1:a2:31:23:d9:01:f0: df:61:31:b1:c7:c8:44:b0:41:f6:03:b8:9c:fa:4a: 21:21:4e:17:c5:59:61:38:be:5a:7a:e7:06:d6:8c: de:13:41:7c:06:87:8f:7b:35:d0:ee:00:d9:37:2b: c4:05:1e:ec:5d:26:ad:07:ad:d8:e2:e1:55:a9:3b: bb:f8:5c:38:ed:63:5b:96:a9:29:fa:21:13:25:79: 14:67:3a:fd:6a:99:a4:b9:36:18:88:19:bc:86:ed: 7b:9f:5d:20:9e:c5:7a:af:34:ff:58:52:bf:9f:1b: be:de:1f:6b:3f:4f:58:70:53:e6:d4:9c:e6:01:a5: 15:8f:03:a2:11:0a:34:d7:ef:dc:21:ac:0a:2f:cd: 2b:64:4f:a6:03:60:91:da:f5:0b:a1:33:c3:45:0e: 41:ce:86:2a:a8:1f:34:84:e2:0c:a2:40:29:5c:0e: 31:f6:e7:df:44:84:5d:5c:50:7b:c9:e0:b6:fa:df: 6e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C5:71:EC:99:4E:30:B5:74:11:AF:53:4F:A0:8A:65:81:9B:75:CE X509v3 Authority Key Identifier: keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 96:5e:c8:ee:6e:05:cc:9d:72:c8:8b:df:60:b2:38:58:f2:18: e6:c6:3d:d5:b2:42:c1:cf:db:2b:87:81:25:56:3a:67:f7:53: 2a:af:41:45:79:a3:4a:14:f2:f3:37:d2:27:f9:26:b8:7c:d4: 14:8c:b6:be:08:e9:a2:0d:43:a7:02:db:b6:54:e2:c6:7d:48: 3d:44:a0:65:dd:ca:2e:c1:c3:e9:7e:d8:27:d6:6c:62:01:3f: 39:c9:da:88:d4:a9:8d:c2:e5:3c:28:b5:8f:93:65:f0:33:69: 1b:9a:5b:6c:9b:c7:ea:ed:55:c4:2b:b8:a4:a4:35:3a:d7:43: a7:4b:46:bd:32:92:97:2b:6a:45:11:6b:15:b5:fe:cd:bc:a1: e6:3b:9a:a8:4e:c8:6c:aa:ac:68:e5:cd:46:c6:9e:c8:49:50: 2e:55:21:9c:f5:25:97:0a:33:9d:b8:d1:5b:ae:2a:e0:fa:54: be:dd:fa:e7:6a:2c:b0:b2:5a:98:2f:e2:15:35:6f:04:9d:fb: 7b:89:eb:30:fc:ce:6d:64:72:ea:c9:0e:8d:57:ae:a4:e6:8c: ce:0b:f8:5c:b2:1a:4c:6a:62:18:54:3b:47:b0:dd:4f:83:8d: f1:2f:89:27:e1:a9:23:b9:b3:22:a9:7f:28:ce:68:be:49:75: 8a:1b:f3:b7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZaknHkq8mamUIOxSM3yuSw1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2OGJmYjhhNWVlZTQ5MDgyZWE2MjhkZjI1YTRhNWQ1MGYz YWE5YjMwHhcNMjUwNTA2MDgwMDM5WhcNMjUwNTA3MDgwMDM5WjAzMTEwLwYDVQQD EyhmMWM1NzFlYzk5NGUzMGI1NzQxMWFmNTM0ZmEwOGE2NTgxOWI3NWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7L4dNuihm1HpdA58y0BGh2TKdURM mF7uNXWGO3Qf5d9pRO+dzk0XVNinq0blTUCqgr83nMSnAu2jPYfIoxzWtFQvhOGi MSPZAfDfYTGxx8hEsEH2A7ic+kohIU4XxVlhOL5aeucG1ozeE0F8BoePezXQ7gDZ NyvEBR7sXSatB63Y4uFVqTu7+Fw47WNblqkp+iETJXkUZzr9apmkuTYYiBm8hu17 n10gnsV6rzT/WFK/nxu+3h9rP09YcFPm1JzmAaUVjwOiEQo01+/cIawKL80rZE+m A2CR2vULoTPDRQ5BzoYqqB80hOIMokApXA4x9uffRIRdXFB7yeC2+t9uswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPHFceyZTjC1dBGvU0+gimWBm3XOMB8GA1UdIwQY MBaAFDaL+4pe7kkILqYo3yWkpdUPOqmzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUt MGFlMmU5MjJhMjkyLzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS9hYTU4YzMtZTcwNi00YTQ5LWE3YzUtMGFlMmU5MjJhMjky LzEvTm92N2lsN3VTUWd1cGlqZkphU2wxUTg2cWJNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAll7I7m4F zJ1yyIvfYLI4WPIY5sY91bJCwc/bK4eBJVY6Z/dTKq9BRXmjShTy8zfSJ/kmuHzU FIy2vgjpog1DpwLbtlTixn1IPUSgZd3KLsHD6X7YJ9ZsYgE/OcnaiNSpjcLlPCi1 j5Nl8DNpG5pbbJvH6u1VxCu4pKQ1OtdDp0tGvTKSlytqRRFrFbX+zbyh5juaqE7I bKqsaOXNRsaeyElQLlUhnPUllwoznbjRW64q4PpUvt3652ossLJamC/iFTVvBJ37 e4nrMPzObWRy6skOjVeupOaMzgv4XLIaTGpiGFQ7R7DdT4ON8S+JJ+GpI7mzIql/ KM5ovkl1ihvztw== -----END CERTIFICATE-----Generated at Tue May 6 17:59:11 2025 by rpki-client