$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft File: Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft (raw, json) Hash identifier: 6Eg3WtVukFjW38yWBKLa9RQcP1fhpcmJrRzybGMqO1Q= Subject key identifier: 81:02:A3:1D:E4:F5:37:31:81:95:63:DF:5A:BA:FB:22:57:74:A6:72 Authority key identifier: 43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C Certificate issuer: /CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Certificate serial: 0196BDEE055D3A92FC34F7E26AD452EC1A98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft Manifest number: 08A7 Signing time: Sun 11 May 2025 06:00:14 +0000 Manifest this update: Sun 11 May 2025 06:00:14 +0000 Manifest next update: Mon 12 May 2025 06:00:14 +0000 Files and hashes: 1: 0pA9jqxxzLz7rK77xH9_gAV2Ddc.roa (hash: kuW3cMupmnzRroMZH+onX29Wp3xp+NRO+gRxYcXjYi4=) 2: 2TnqZvmmysxhyiNZrk30acF9SlI.roa (hash: WiwIIXJhkAErUqVwl7rpQhJM1V3EKt+e61vZ4TyGts0=) 3: Dw3X8fWhKPYb3Mn-3k0h1r_9KbU.roa (hash: TMxwGgTVPG6mIC+cdCWlxe1kZRGY132KC9x3rO2T5lU=) 4: DwPcfSHFXNqM7rUhdUmfwPDUgE4.roa (hash: TJWMP4o9L/gCTxpzvrb7aiWTaCJtkInjMyTtZ8ZQv6w=) 5: I0so05T8WJ0IrbDuX6UjLySLqmI.roa (hash: dR+mdnDCO20UWtvzil7AKdca65/eFTAOBYqBvQ7au8Y=) 6: Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl (hash: 5mCglMBISsg3QKUbZAS9Tq1KU8wEEUWkZaQTTtnJGRI=) 7: SFaGChEcecBfMkYfUdNCUJpmOZs.roa (hash: urAyNSsYssS08ZQ9VO9nXj8k0R3NhqQ1uecoM5zn4Xg=) 8: VdXHdlxLvSXMtikY4Tkq1ivw7b0.roa (hash: d4XyYarFCX7iHNvauLVhaF+5yte4Mx2+kXf0dxCZBfg=) 9: VzB0p7pCZsQMiGHUlZc1UelTzYY.roa (hash: BzzAqeicP4DohtRLpuezZoWn//Z3/wAyEJHVc5sVYtU=) 10: XkP13qdKiUI4ksMyPnhV_Dq7ZH8.roa (hash: YloS2aXtag5qQ1JTIqYqkyKRVfkw4jImfuhbP08yNwU=) 11: _okwze0rSlq8LhXlB7FWi8OlsK4.roa (hash: 3wzhS+5DOCgktIdxwao39vX+OQv7jnEn/glBS5LioaY=) 12: aaPCQ3vYc10mi-8M5KP_x-4UjqI.roa (hash: k87j6NF+EKH8P+VssVknz/tteS+89PmRGUWHWReOd5U=) 13: keRc_cuZtJ4i5Jvsc90Pj2Jghdg.roa (hash: gciROLJg7+/w52qQUKA87ZvQS+qeyeOp3E1ngvwPEK4=) 14: mReJXjEFw2vH3gsylG3516bpkxI.roa (hash: orfciGxm8QNpQKbu93OyqVEi/aKCukxyiFS74rnLbXg=) 15: t2p4-i0-AMgrPWWbLPjsZticI0E.roa (hash: /e/8T+eYaFYAkJQaQBKZKZelhBajXo5oP/zmVdgWK8A=) 16: wXmD77ivrLBnzkfNVUx9GVYS9fw.roa (hash: tE/07N+y9ScJvAqYYnDp5CmkVEB1T6atwgfCQwskaeM=) 17: xzcqcrFf-ra6k9gJVEfYsUOL7r0.roa (hash: tLEmQ4Ip0nJAlYr4VF0AY9UERYkLlEbUUc3k5bIYBQM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 May 2025 06:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:bd:ee:05:5d:3a:92:fc:34:f7:e2:6a:d4:52:ec:1a:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4354a419225d5d79f4a1ae1520a3b1a56d45268c Validity Not Before: May 11 06:00:14 2025 GMT Not After : May 12 06:00:14 2025 GMT Subject: CN=8102a31de4f53731819563df5abafb225774a672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:37:05:9f:18:07:a3:0f:27:51:85:f4:88:6a: ad:10:4c:4b:36:c4:14:d3:c1:3e:5f:37:a4:eb:77: 4d:e1:6e:52:0c:19:3c:c3:f4:05:4e:69:35:0f:d2: b9:3a:a0:cf:41:c3:27:f0:03:b0:34:9b:8f:d2:c6: e8:e5:8c:7c:90:5c:9c:95:21:93:9a:cd:46:87:a6: 16:5e:ba:11:d2:90:b9:1c:b3:9d:ab:8b:b4:e9:a5: 65:0a:94:c3:41:e9:ee:b5:b3:ef:b6:ae:7e:c0:55: 28:81:81:b7:fe:ca:c5:5f:46:4a:67:49:8f:fb:b4: 22:34:a7:a6:00:f2:b6:f4:2b:29:9f:af:e0:5a:a4: 0f:6c:98:99:c5:84:fd:41:91:9f:ae:43:15:79:bf: fe:7f:1c:8c:12:60:12:bb:7b:a2:3e:1c:16:44:a6: 9e:ea:bc:4a:f1:1b:ff:5f:33:c0:40:f9:a4:16:ae: eb:4f:5e:f1:9c:3a:a2:33:62:da:a7:f8:de:35:9a: a3:de:75:52:1d:dd:f5:06:c3:56:52:32:90:37:c2: ec:91:33:6c:db:e0:2f:6b:82:b0:e4:32:4c:a8:3e: 75:8a:2e:e8:b8:f8:d5:82:63:6c:ab:a1:5a:75:08: e1:97:14:c1:f4:f1:c8:74:f4:ee:ff:5e:fe:02:d2: d0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:02:A3:1D:E4:F5:37:31:81:95:63:DF:5A:BA:FB:22:57:74:A6:72 X509v3 Authority Key Identifier: keyid:43:54:A4:19:22:5D:5D:79:F4:A1:AE:15:20:A3:B1:A5:6D:45:26:8C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q1SkGSJdXXn0oa4VIKOxpW1FJow.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/0fddf0-8bbf-4350-bffa-688d51a44448/1/Q1SkGSJdXXn0oa4VIKOxpW1FJow.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 34:21:b9:81:66:fd:ef:a2:21:87:4c:67:3a:f5:f7:ab:9a:c9: af:d5:07:5e:87:f9:1c:26:14:78:49:0d:85:5f:6d:ff:6c:18: 84:aa:40:9e:a2:95:71:f3:b3:f9:8b:2d:9d:35:9f:2a:e7:84: 62:f8:2b:c7:2b:2a:03:ad:85:9c:e6:01:36:4c:8f:a5:e3:25: 04:34:9a:5d:20:6c:2d:79:a7:cc:86:c5:db:ab:aa:d8:d1:e3: 22:d8:a9:d3:d5:af:cb:71:b3:44:ab:6f:e7:9e:ef:1a:f0:58: 84:f2:84:2c:08:3e:45:3a:c6:fc:75:e4:c2:7f:3c:1b:87:aa: 40:f1:b3:bf:eb:4a:06:bf:2c:87:93:e4:d0:f6:77:b9:a8:1a: 50:3e:96:c7:fe:ad:a2:28:82:fd:de:65:a3:ad:f2:89:8a:d1: aa:6d:40:9f:fd:63:fd:8a:7e:3f:f0:bf:b6:02:44:90:54:7c: f0:a0:3a:d1:26:36:b5:d7:f3:15:f1:ad:59:7e:a2:bc:40:19: 4c:ca:5d:16:b0:9b:23:c5:d8:8c:ca:97:de:6e:8d:50:dc:0b: b2:47:72:bf:de:42:e6:06:7b:4c:c6:4c:af:8c:7c:f6:01:4c: da:e0:9e:53:86:5f:1e:ed:18:04:10:83:99:6d:0c:5c:ae:71: ec:a1:e7:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZa97gVdOpL8NPfiatRS7BqYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQzNTRhNDE5MjI1ZDVkNzlmNGExYWUxNTIwYTNiMWE1NmQ0 NTI2OGMwHhcNMjUwNTExMDYwMDE0WhcNMjUwNTEyMDYwMDE0WjAzMTEwLwYDVQQD Eyg4MTAyYTMxZGU0ZjUzNzMxODE5NTYzZGY1YWJhZmIyMjU3NzRhNjcyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0TcFnxgHow8nUYX0iGqtEExLNsQU 08E+Xzek63dN4W5SDBk8w/QFTmk1D9K5OqDPQcMn8AOwNJuP0sbo5Yx8kFyclSGT ms1Gh6YWXroR0pC5HLOdq4u06aVlCpTDQenutbPvtq5+wFUogYG3/srFX0ZKZ0mP +7QiNKemAPK29Cspn6/gWqQPbJiZxYT9QZGfrkMVeb/+fxyMEmASu3uiPhwWRKae 6rxK8Rv/XzPAQPmkFq7rT17xnDqiM2Lap/jeNZqj3nVSHd31BsNWUjKQN8LskTNs 2+Ava4Kw5DJMqD51ii7ouPjVgmNsq6FadQjhlxTB9PHIdPTu/17+AtLQ1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIECox3k9TcxgZVj31q6+yJXdKZyMB8GA1UdIwQY MBaAFENUpBkiXV159KGuFSCjsaVtRSaMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEt Njg4ZDUxYTQ0NDQ4LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny8wZmRkZjAtOGJiZi00MzUwLWJmZmEtNjg4ZDUxYTQ0NDQ4 LzEvUTFTa0dTSmRYWG4wb2E0VklLT3hwVzFGSm93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANCG5gWb9 76Ihh0xnOvX3q5rJr9UHXof5HCYUeEkNhV9t/2wYhKpAnqKVcfOz+YstnTWfKueE YvgrxysqA62FnOYBNkyPpeMlBDSaXSBsLXmnzIbF26uq2NHjItip09Wvy3GzRKtv 557vGvBYhPKELAg+RTrG/HXkwn88G4eqQPGzv+tKBr8sh5Pk0PZ3uagaUD6Wx/6t oiiC/d5lo63yiYrRqm1An/1j/Yp+P/C/tgJEkFR88KA60SY2tdfzFfGtWX6ivEAZ TMpdFrCbI8XYjMqX3m6NUNwLskdyv95C5gZ7TMZMr4x89gFM2uCeU4ZfHu0YBBCD mW0MXK5x7KHnuA== -----END CERTIFICATE-----Generated at Sun May 11 13:17:36 2025 by rpki-client