$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft File: Kb4C3qCghumID1ZMhocrvFl8xnI.mft (raw, json) Hash identifier: Nkkx8CV0Sh2l6yI7v5WltBo9d4+4y09mxXUsBEaxnYw= Subject key identifier: 97:45:4B:D9:1C:28:FE:B0:BF:07:14:4F:59:C8:0F:D4:02:C5:5F:18 Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672 Certificate serial: 0196BAB6488CEB117DE3E24DB560F758ACC6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft Manifest number: 1323 Signing time: Sat 10 May 2025 15:00:30 +0000 Manifest this update: Sat 10 May 2025 15:00:30 +0000 Manifest next update: Sun 11 May 2025 15:00:30 +0000 Files and hashes: 1: 6KpBI63kEhQRzmhRvVQxSFsUBTI.roa (hash: Ckcyw44N8h4Yete0VsDquepnFPzly6G4UPrg1n68+p4=) 2: Bl50d2SW5pMGbeTLnaL144PRWUQ.roa (hash: bI5Yiq9+r3/RdML3fweIl1fiyaU2NaLiJvR9z1M6k50=) 3: Kb4C3qCghumID1ZMhocrvFl8xnI.crl (hash: y5ZHiXaQ3tg+MkE3V53JD6bI9dTpEd+Hmg8uHyMZN3o=) 4: MLMPGj8H9Pi_UwBtlTfByiigjfM.roa (hash: pC0aw2jiKroOvxcRGHKOge3OdR3RFQ8raECTuPmJMXM=) 5: OHP3S03u5tMHflzGMFoSd5vTyZk.roa (hash: nGDY1zJo3dHSTN2PJe0pXCx8heywXO+QdXtgHJbEB2A=) 6: RZnwVTO26PBx3a68dhxrN-N2_9U.roa (hash: 2uzv1j/fxffpUq8amOpURgwfPrkNCx7YPSsxO/BHSJk=) 7: XkZDM_8IFwDF5TaEYGBCOeA1rnY.roa (hash: wJ3Nd2iWllTHLJTwVq5JnkwdVdkkialVRVjZAGjLaUA=) 8: aB7sKw4yBEcglwqSevB86YJRj7Y.roa (hash: PH14Cm3gVr59rgH3FX69SJ0GUOOG1kpk0YkBDPc5P9M=) 9: j1JcZG88WoDJIAs0TuxaORvfLro.roa (hash: yIeCKxXutjytoAiiGxkiUBSn0Vk24wB2GDbKm+IJthI=) 10: nwUsD1fndRShZT-s5ssppnOFmiI.roa (hash: 5Gw61qVpay4Kz2GbqbYja1rnv6svDc1Ma6KW2KgO/Fk=) 11: zphCyxB7JvvZfrdVh3qU9-FSl5c.roa (hash: PYY+kdRiBf7TYzIHyOP800eu0rdgwqkk9pHLsntWJR8=) 12: zvPA1UGui-igyOCxkJMwtvZ5S28.roa (hash: /AfKz5TxnkzdqXaxQMADqDtWb4d/fIp2oXqMIKdkCNA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 May 2025 13:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:ba:b6:48:8c:eb:11:7d:e3:e2:4d:b5:60:f7:58:ac:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672 Validity Not Before: May 10 15:00:30 2025 GMT Not After : May 11 15:00:30 2025 GMT Subject: CN=97454bd91c28feb0bf07144f59c80fd402c55f18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:51:89:40:b8:1a:02:12:0b:7c:a2:bf:db:78: 9f:82:12:71:49:d5:b9:01:5d:b5:b0:4e:45:7e:9c: a3:ff:0a:34:e3:43:1e:1c:72:ba:54:cf:05:27:3c: 66:9e:40:44:6a:34:95:30:01:f1:72:da:2d:c3:1e: c4:22:69:4d:14:50:00:6f:01:c0:cf:0a:59:5a:86: 04:e2:81:74:47:e6:e4:0b:a3:00:d1:27:10:90:ef: 6e:9d:22:81:26:eb:4d:9e:f1:c4:66:0b:43:76:d1: c4:ac:39:a3:55:0b:f0:9a:0c:14:e9:80:a3:60:25: 4c:1e:53:78:a6:cc:27:c9:d0:b8:5c:1e:85:93:10: 05:e6:d2:90:5f:5f:d1:58:30:f4:aa:d6:af:0c:e8: 2b:9b:cb:c8:06:66:6e:a0:82:c7:e9:15:8c:42:66: 30:f4:f8:74:1c:e7:1f:df:71:44:c0:c0:86:93:80: c8:4f:4b:5e:16:72:cc:51:33:4b:d0:2d:68:e2:81: 7b:56:63:e4:4b:b0:92:1e:03:77:72:9e:34:07:b7: 0a:f4:11:59:bf:74:fc:98:6e:c5:9f:4e:ff:f3:87: 9f:70:36:87:77:50:25:32:36:4c:b7:e2:58:31:fa: 2f:ed:50:02:98:88:5c:04:ca:ae:03:1e:b1:f0:50: 57:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:45:4B:D9:1C:28:FE:B0:BF:07:14:4F:59:C8:0F:D4:02:C5:5F:18 X509v3 Authority Key Identifier: keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:37:03:82:27:61:9a:fa:1c:12:7e:73:f2:e8:20:5e:cb:73: 34:d9:7e:08:0c:4d:9c:bd:65:60:e3:81:f1:46:8e:69:7a:ed: c2:30:91:24:cf:b0:a3:ae:91:b3:9d:60:12:e1:bf:61:bb:d1: e0:1b:c4:30:49:57:c4:0b:60:c7:cf:6c:dd:03:c9:a1:e3:af: 5a:d9:5c:1d:22:33:cd:bc:e8:fb:d0:6f:2d:a3:87:11:3b:0c: e7:4e:e5:b8:b9:69:91:d4:12:39:3c:1d:b5:4f:0c:d1:42:09: f0:04:c4:17:f6:af:27:08:76:36:53:51:c5:2a:78:21:27:91: a5:1f:31:ce:b2:1d:9e:e8:e3:59:aa:79:1b:81:11:4d:55:1d: ec:5e:70:67:03:e3:ce:23:f3:42:a0:aa:3d:f9:03:f1:78:2b: f9:b4:44:88:6f:53:23:ba:3c:c7:31:45:da:b7:3f:12:31:31: d7:6e:49:a9:93:18:58:a8:09:60:42:2e:fa:46:98:35:21:38: a0:95:8c:bd:7a:a3:9d:00:51:c5:cc:5a:5c:d1:c9:8f:f0:f1: 1c:3b:46:af:c7:f4:2c:9a:29:4c:0c:eb:2a:b1:14:a1:df:03: 60:ef:23:1c:9a:a3:67:3d:a3:de:72:b0:a3:b0:4a:54:49:4e: b4:cb:6a:ed -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZa6tkiM6xF94+JNtWD3WKzGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI5YmUwMmRlYTBhMDg2ZTk4ODBmNTY0Yzg2ODcyYmJjNTk3 Y2M2NzIwHhcNMjUwNTEwMTUwMDMwWhcNMjUwNTExMTUwMDMwWjAzMTEwLwYDVQQD Eyg5NzQ1NGJkOTFjMjhmZWIwYmYwNzE0NGY1OWM4MGZkNDAyYzU1ZjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0lGJQLgaAhILfKK/23ifghJxSdW5 AV21sE5Ffpyj/wo040MeHHK6VM8FJzxmnkBEajSVMAHxctotwx7EImlNFFAAbwHA zwpZWoYE4oF0R+bkC6MA0ScQkO9unSKBJutNnvHEZgtDdtHErDmjVQvwmgwU6YCj YCVMHlN4pswnydC4XB6FkxAF5tKQX1/RWDD0qtavDOgrm8vIBmZuoILH6RWMQmYw 9Ph0HOcf33FEwMCGk4DIT0teFnLMUTNL0C1o4oF7VmPkS7CSHgN3cp40B7cK9BFZ v3T8mG7Fn07/84efcDaHd1AlMjZMt+JYMfov7VACmIhcBMquAx6x8FBXtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJdFS9kcKP6wvwcUT1nID9QCxV8YMB8GA1UdIwQY MBaAFCm+At6goIbpiA9WTIaHK7xZfMZyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMt MDAzYTE1NjhiZjNmLzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80YS9lYTFjZmYtYWU4Zi00NzE5LTg5YjMtMDAzYTE1NjhiZjNm LzEvS2I0QzNxQ2dodW1JRDFaTWhvY3J2Rmw4eG5JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARDcDgidh mvocEn5z8uggXstzNNl+CAxNnL1lYOOB8UaOaXrtwjCRJM+wo66Rs51gEuG/YbvR 4BvEMElXxAtgx89s3QPJoeOvWtlcHSIzzbzo+9BvLaOHETsM507luLlpkdQSOTwd tU8M0UIJ8ATEF/avJwh2NlNRxSp4ISeRpR8xzrIdnujjWap5G4ERTVUd7F5wZwPj ziPzQqCqPfkD8Xgr+bREiG9TI7o8xzFF2rc/EjEx125JqZMYWKgJYEIu+kaYNSE4 oJWMvXqjnQBRxcxaXNHJj/DxHDtGr8f0LJopTAzrKrEUod8DYO8jHJqjZz2j3nKw o7BKVElOtMtq7Q== -----END CERTIFICATE-----Generated at Sat May 10 22:03:40 2025 by rpki-client