$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft File: h3itgWjgnPktTgSYJX-OnOq_BpI.mft (raw, json) Hash identifier: /4KfXkiT8AtijWzcS5+TrSO1juTOUtkIoo7Y9Qu0VQE= Subject key identifier: 18:13:36:A6:96:60:08:EB:72:CB:5A:FA:89:6C:B3:EB:D3:EE:FB:9A Authority key identifier: 87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 Certificate issuer: /CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Certificate serial: 01969CACD754690EBE87F276D12D2821B7D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft Manifest number: 1540 Signing time: Sun 04 May 2025 19:01:35 +0000 Manifest this update: Sun 04 May 2025 19:01:35 +0000 Manifest next update: Mon 05 May 2025 19:01:35 +0000 Files and hashes: 1: 3VQFHIG_0NRiYGSMTzNDYelPmMs.roa (hash: T8N7lYcGBn0m7uBQBcevnqsWbvysQD6cxVHO1RDwUvg=) 2: 41kwTSa8H9b9pjrkUzwf85FQ470.roa (hash: 6DgsyUX2uyntOPFl8yDMIgTXXXs0mzyQ219673BzCzU=) 3: CdQNI5gcW0_1cf24cLvP-tL_omw.roa (hash: fyArCRfx7SbzhmzmpSevkzJflw0c7SkqK2TimwbjqzM=) 4: RXJMzhMtehSuCCi6uqljNw1_L-s.roa (hash: Xot9S/JUju+/cZl9baS7ZUR4Rh18U5S5qk4hiX6txpg=) 5: TpqMtUwJukfz53BZIUdbM-kP9dU.roa (hash: sJ+1FquCHUKBx1oFow8K9ca95AgoJ61IjnusPLlcDN8=) 6: WEKuOaRTTX2rTln9asflqP9Y2Os.roa (hash: EcqtEEKcbvmbmPvboEcXGauHM+e7HHmS4JSP0Le2t4o=) 7: XmOvv05xULfAWuDqrX7juNO-0qI.roa (hash: eJeMTOSpJLyqSZNQmSL2OZUvlINOSkmPnV9aTneLjHg=) 8: Xzib8AfEYqY2cHmuuM-ww_w5sW0.roa (hash: 6XHRFIs5VNl1aw2+x8Rz4IQniQIfYw9CyiplPPtk5bE=) 9: aMv6gEqWxpGKwwWm6t5nV_iaM3Q.roa (hash: +a48j1hsLG2vzEIY2MRVBswlr1+jm51V+Dk+4EhL/9Y=) 10: h3itgWjgnPktTgSYJX-OnOq_BpI.crl (hash: IqyQFghiqyAxQcj8TCJ6u3aR48gAc5H++FwxwWOPQ7w=) 11: jF6aKXBNyHTawjaz9GVexS6_Vps.roa (hash: FiDTfOMoZak8gOhtJT/8yhL0tIdZjUn13AvzOxfMN0E=) 12: s6XbpS6zvG-OGcqP78qsGOOoOlQ.roa (hash: vai/46FuXyssCtnAk+MIcYY2mUqRBxwISqAf2lFmzsg=) 13: vsuobB7Q7M7H0d2b7icsBX46rF8.roa (hash: 7WzZ613I/LXa4Zefx9tEqY2ZhSRre3hj1QC98fA5RuY=) 14: xP11eIeQX9x-FJdxDPaYbALauGA.roa (hash: X/B/3lK+XxCa5BQgDlvPLTFtIiO9rYw/6L5OCGSXKQE=) 15: xT7aM3kUy4b46Qb4CAkkSam9t5g.roa (hash: Rfd0mKt9HyiAqh5+s2geHZ1SUFHa0fSNkwoTUgmAYpI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 05 May 2025 19:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:9c:ac:d7:54:69:0e:be:87:f2:76:d1:2d:28:21:b7:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8778ad8168e09cf92d4e0498257f8e9ceabf0692 Validity Not Before: May 4 19:01:35 2025 GMT Not After : May 5 19:01:35 2025 GMT Subject: CN=181336a6966008eb72cb5afa896cb3ebd3eefb9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e0:2a:30:d8:9b:25:68:72:fb:aa:80:d4:28: b2:4a:d7:f6:b0:94:06:31:7d:f9:6e:87:e1:9a:f7: 1b:09:4f:3f:9c:42:53:4b:f0:c5:b1:63:bd:ba:0a: 02:c7:b2:3b:34:9f:b3:63:44:b0:e0:70:ef:4f:e2: fd:24:4c:a6:16:a6:71:e6:50:71:0c:f6:26:a4:7c: c2:a3:6e:af:d6:1b:74:91:92:63:d3:19:c4:fb:db: a1:6f:27:f2:fb:fd:cc:32:bc:a2:0d:56:47:9c:6d: f4:4f:c9:32:b8:13:71:a1:55:dc:63:14:00:3b:bf: ca:67:61:2b:67:3a:47:da:84:a3:77:65:64:77:fd: 09:5a:5f:4a:e1:60:41:e0:fe:f8:50:eb:5a:5f:23: 80:b5:8d:60:da:1b:a9:64:fc:ab:91:a6:bb:f6:04: d6:9d:be:60:1b:9b:6a:55:7d:a4:55:45:16:31:0c: ac:b7:6b:97:4e:15:1e:3b:b9:a9:0d:59:7b:78:00: 40:fd:ed:0d:03:c0:bd:73:2f:59:8f:27:f9:fa:b9: 8c:15:1b:06:31:31:76:a2:fe:f8:0f:5f:42:7b:a9: 65:04:4c:d9:cf:87:8c:c6:d0:5c:89:8d:13:d9:81: 04:e5:35:54:6d:1d:53:f6:0f:c6:34:be:d9:83:17: 0d:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:13:36:A6:96:60:08:EB:72:CB:5A:FA:89:6C:B3:EB:D3:EE:FB:9A X509v3 Authority Key Identifier: keyid:87:78:AD:81:68:E0:9C:F9:2D:4E:04:98:25:7F:8E:9C:EA:BF:06:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3itgWjgnPktTgSYJX-OnOq_BpI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f07f8d-9df0-49c6-b2f0-aa9d691811e7/1/h3itgWjgnPktTgSYJX-OnOq_BpI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ae:73:7a:a8:1e:a2:d1:4c:51:7a:c7:f3:75:ab:d6:f5:37: 60:c8:99:73:f1:54:83:38:bf:5e:5d:c4:65:a4:1c:da:3c:6c: d3:7a:28:6e:a9:1a:e6:05:eb:c1:17:ba:55:bf:8d:81:a4:a9: 56:eb:fa:95:97:ef:3e:4b:27:4c:68:02:68:c3:e4:95:7f:6a: e2:02:9a:fc:bc:e0:ae:a6:62:70:f6:0e:47:dc:ac:a1:ad:b8: 35:39:43:d3:92:08:20:fa:a8:52:d0:3b:87:9e:39:94:4c:4a: 80:bd:5a:13:28:fa:3f:5e:7e:10:ab:d6:2f:18:4a:eb:c9:2d: ac:51:f6:a0:b4:55:0c:32:fc:dc:c8:9d:bf:f2:b7:a3:b8:85: b8:3d:91:d3:56:6a:7e:6f:a2:ee:f7:47:f3:89:32:cb:1f:01: 07:1f:12:b4:25:d4:9b:9f:c0:5a:79:57:8f:39:a9:d0:b7:51: 58:df:1b:38:18:99:f3:1d:0b:1a:85:78:a7:0b:ee:c6:46:01: e6:22:b0:3c:19:79:12:d5:52:32:6b:a5:30:3e:50:07:ca:36: bc:39:0c:49:17:59:af:50:da:4c:e6:86:e9:ae:47:12:ff:ca: 11:18:ee:bc:63:9e:85:c8:58:a8:fd:0b:a4:a2:63:c0:cb:88: a8:d0:5a:5c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZacrNdUaQ6+h/J20S0oIbfXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg3NzhhZDgxNjhlMDljZjkyZDRlMDQ5ODI1N2Y4ZTljZWFi ZjA2OTIwHhcNMjUwNTA0MTkwMTM1WhcNMjUwNTA1MTkwMTM1WjAzMTEwLwYDVQQD EygxODEzMzZhNjk2NjAwOGViNzJjYjVhZmE4OTZjYjNlYmQzZWVmYjlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp+AqMNibJWhy+6qA1CiyStf2sJQG MX35bofhmvcbCU8/nEJTS/DFsWO9ugoCx7I7NJ+zY0Sw4HDvT+L9JEymFqZx5lBx DPYmpHzCo26v1ht0kZJj0xnE+9uhbyfy+/3MMryiDVZHnG30T8kyuBNxoVXcYxQA O7/KZ2ErZzpH2oSjd2Vkd/0JWl9K4WBB4P74UOtaXyOAtY1g2hupZPyrkaa79gTW nb5gG5tqVX2kVUUWMQyst2uXThUeO7mpDVl7eABA/e0NA8C9cy9Zjyf5+rmMFRsG MTF2ov74D19Ce6llBEzZz4eMxtBciY0T2YEE5TVUbR1T9g/GNL7ZgxcNRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBgTNqaWYAjrcsta+olss+vT7vuaMB8GA1UdIwQY MBaAFId4rYFo4Jz5LU4EmCV/jpzqvwaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAt YWE5ZDY5MTgxMWU3LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9mMDdmOGQtOWRmMC00OWM2LWIyZjAtYWE5ZDY5MTgxMWU3 LzEvaDNpdGdXamduUGt0VGdTWUpYLU9uT3FfQnBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi65zeqge otFMUXrH83Wr1vU3YMiZc/FUgzi/Xl3EZaQc2jxs03oobqka5gXrwRe6Vb+NgaSp Vuv6lZfvPksnTGgCaMPklX9q4gKa/LzgrqZicPYOR9ysoa24NTlD05IIIPqoUtA7 h545lExKgL1aEyj6P15+EKvWLxhK68ktrFH2oLRVDDL83Midv/K3o7iFuD2R01Zq fm+i7vdH84kyyx8BBx8StCXUm5/AWnlXjzmp0LdRWN8bOBiZ8x0LGoV4pwvuxkYB 5iKwPBl5EtVSMmulMD5QB8o2vDkMSRdZr1DaTOaG6a5HEv/KERjuvGOehchYqP0L pKJjwMuIqNBaXA== -----END CERTIFICATE-----Generated at Mon May 5 04:49:41 2025 by rpki-client