$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft File: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft (raw, json) Hash identifier: ltxwtCo3FLOQmcaEY+jaZwSyUegrxyRdwOTYF8gzAFg= Subject key identifier: 1B:05:FE:BD:9D:03:D9:8A:88:41:CE:97:91:26:C8:CC:97:04:E6:85 Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Certificate serial: 0196A79D9DC2D7F281D1C8399D72E5369AA5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft Manifest number: 149B Signing time: Tue 06 May 2025 22:00:46 +0000 Manifest this update: Tue 06 May 2025 22:00:46 +0000 Manifest next update: Wed 07 May 2025 22:00:46 +0000 Files and hashes: 1: 3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl (hash: C3kXTzliNoCRUtBdjVs5ziFHUyp6y0JXFFY7OZPRPXE=) 2: 41fVJkrPbHKQA079D4QVuoSoMHA.roa (hash: sr+TybZqUtIImaDgTqztSGD1XE6oloq4BZ2M4Xpg+u0=) 3: 4pf6JhZ2ZrbzDs3KIhxGjElBlaw.roa (hash: vXT1uBYUu9e7P+u/IiXkrVdl2Zw3UbzSeW2UWFK34Jw=) 4: 6klSWkjjUTbGuPtDfN8cALab9cs.roa (hash: sdgQjkXScGhQKnR4al8+skMwfxtoqagBTslhZkfSKNY=) 5: B3w7E9gvZEzFwMrG99Xq-T1MEBw.roa (hash: X2c/+qNKKXp5+FBng9aKxlFFZbDBWHiqkfhHgQbP6bg=) 6: C2H1BSmYMIrZggVB3V-MZ8CR5SY.roa (hash: MAmDjDLmFQyW+O4vZbG4q4tWTwrvQlayeoQlXr+Fu/8=) 7: DJ2HKm_1c1O48zC-cc12FURV1-w.roa (hash: odPYR1sTJx4nskAcxBKfAydZplTxWpbfAnjmQhPzJX8=) 8: GmlPqmYgpg61oCrtTG9RzmgTZRQ.roa (hash: lOFhsoN8S3GIIvzatAuS7mkyT16CCVPA77MjKa8aWWc=) 9: H2lVKMz_X46KFKjX_6x9tvmH1uE.roa (hash: RB7IG/Ldoyl84GgxDa9yMrGgoraAfien6HZCweyoCaw=) 10: RZCNuFYkMVfet6khSeCWtqT4r3s.roa (hash: bz5sfARWaL0oWhzQTAMOexVtHrjfBeAF+vBi8eYpl/U=) 11: Sn1YHf-JTelJa8AbFEu9eCrJc-Y.roa (hash: 4RQ4/nSSdbUjaSMtOe+F2ienAydzSYTXwrbRmuUcEJY=) 12: UE3TFsD19f6wQr0gTHDaiwhGdqA.roa (hash: h9a9K3MMF0WQfDnzSvLb5P+n54cp7dIKew88pGDYldk=) 13: VicyF_0e_bvvcn0fKM8q40zu1n8.roa (hash: C5AQCG/2PEYP519Z6IOs4YDYOnLl0s41qulpvbJvJ4g=) 14: _HxOSGDLp42EFmYvwzkWMgsUDRc.roa (hash: ld3Ed4rdMoSUbT+R2+5BJt8zZUTSFFBqMJ22iFdBG+s=) 15: cHLxjuzlgoGDINIVaFsru4PZ9BE.roa (hash: o3eUI2kqgbIKISwJ6D+XZ6uUN50wRiiahX5yY1sTPn4=) 16: lknEfiAWsTgVxunxpJ4Cim6vi_Y.roa (hash: 9nT6QBaPn6YGSLcfszLUc2cPb60rXG8wS9MlLTeVBhw=) 17: mdB3D_zcc3ZMQewiv3J0UZ_sUlo.roa (hash: NsB59ITpkzoeK9pRuPozIMWrvt6Lae+60ChrUSCRg50=) 18: mjTSWLEuvIRJ-mDUVhSblHWE7N4.roa (hash: rmzWSKN3Yb/xA6p/q8UxEXQjDhun2rkoNnE76zOjZHo=) 19: pxtXnWk-oYZ7Qby89ddSCgu91ts.roa (hash: RB8UdezmP543bft1AFoJ1CEu6eopqGc7lCF9jSa1eTc=) 20: q74_W6xdG6goIDi1c08_8gJ6uTE.roa (hash: pxdR0KPAM6OXX14ayHaIWzZB+fjREFkJhs6uGstYGhI=) 21: r3Ck7fpoOKp57Mk1jJgw8XHWAxg.roa (hash: jDsvxvKf5uFW/4bW6b3NOwjRJy48sDgwtQTJJofZqGM=) 22: v99_kaWjoTKnpnOcBogb8Emjk4M.roa (hash: unshnZnS3tg5XPSrGj9Iy+gxnhESQoD/3z5Y8oIxogo=) 23: y38_fk_dl6De5uovg7WKuAzPolA.roa (hash: PsHTMj/SkJczqFC8znjT596YhybynG/bm1yXYsS6Cxs=) 24: z6d9djVL2RnXuevi6Ot8E8e62tc.roa (hash: o9Kh9fFp+5NbfQXFw6W0ABs1khVR+g751jXSLlxLU4c=) 25: zUeLco_9U8ifNR5PMJI3zpijW74.roa (hash: 3lduL1beP27BPGmbMBwONs6g5YeSTXx0lXyH1JulpN4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 May 2025 22:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:a7:9d:9d:c2:d7:f2:81:d1:c8:39:9d:72:e5:36:9a:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589 Validity Not Before: May 6 22:00:46 2025 GMT Not After : May 7 22:00:46 2025 GMT Subject: CN=1b05febd9d03d98a8841ce979126c8cc9704e685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:44:14:67:db:6c:3e:72:9e:52:25:2d:fd:4b: 7a:4e:80:f3:3c:c5:e0:1e:95:f0:a5:f6:5a:6f:d6: 03:77:cf:85:68:6b:9f:fc:70:6f:d5:1c:9a:32:a9: 9f:7f:00:96:e0:09:61:53:ec:8a:a2:33:06:9d:16: a3:7d:8e:f5:0a:6f:0f:95:f9:6b:73:26:fd:8a:ed: 91:57:8c:66:96:19:92:a9:96:b6:c4:ec:5f:48:c5: 01:f9:6b:73:e3:de:9e:3c:42:b2:78:61:a1:70:86: 81:b4:46:ac:f9:34:b2:d0:e1:ce:35:89:70:ca:bd: 3c:cb:85:27:6c:4d:ba:87:25:40:e4:58:01:c3:82: 58:46:91:5f:09:65:04:53:51:8a:40:70:d1:50:af: 4c:7e:f4:72:0c:ad:4b:31:dc:7d:56:c9:2c:71:b4: 22:bf:16:78:a3:38:f6:54:9b:93:b5:1f:4f:b9:59: 6b:4f:e1:7c:0f:a0:08:cc:06:01:14:82:79:66:78: 76:4c:28:3c:79:78:be:a4:8f:36:1c:ca:32:f2:62: 2e:da:67:77:fe:96:3f:d2:b0:62:6b:b8:00:15:5e: b9:21:78:3b:95:61:b4:8f:fd:e5:16:ee:09:2e:07: 39:c6:06:68:2b:6c:9a:a0:46:c2:76:5e:ba:42:a2: ca:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:05:FE:BD:9D:03:D9:8A:88:41:CE:97:91:26:C8:CC:97:04:E6:85 X509v3 Authority Key Identifier: keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:e3:3b:4a:81:00:1e:26:97:db:e0:75:68:0a:c6:d9:b9:7f: 60:18:8a:44:a8:59:7f:48:46:df:f5:d9:aa:4a:0d:28:7d:f8: c1:d8:11:b7:49:8f:ce:95:29:4f:91:f5:4c:ce:7e:bf:74:9a: 3d:e1:78:65:63:b8:45:a6:10:9c:da:8d:d2:26:a5:a1:7d:ba: 34:7d:a7:d0:b1:2a:39:66:93:d8:80:76:b1:f9:be:67:c7:77: d2:b8:9b:70:dd:e1:f9:e1:d0:5a:cb:59:6a:7b:80:2f:30:6c: dd:90:03:62:40:55:83:41:65:b3:c9:52:5f:54:60:7d:22:30: ef:9c:a6:ab:cf:00:84:fa:6d:54:6e:b2:af:00:d5:b3:86:85: 6c:bd:2b:92:97:d0:cb:75:58:0b:78:c8:96:fd:80:15:bf:c6: ef:83:71:ff:10:30:0c:f2:44:31:db:ca:04:85:5b:19:06:60: 80:5f:a1:34:09:7f:c9:70:97:03:7d:cd:da:10:d7:b3:3b:54: 0f:7d:c7:11:3e:41:ac:f8:fc:d0:f9:9d:2f:95:e1:8d:d9:c3: 24:f1:b3:cb:e4:4a:85:b7:84:45:ed:33:93:66:04:25:e0:3f: aa:43:93:48:b6:f3:8b:2e:eb:84:bc:74:c3:69:37:a7:9f:b2: b9:3d:8f:4e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZannZ3C1/KB0cg5nXLlNpqlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRjZWY1OGQ0Y2ZhMzU1NDNmODQ4OGEyNzU2ZTY5MjRlNjQ3 YjQ1ODkwHhcNMjUwNTA2MjIwMDQ2WhcNMjUwNTA3MjIwMDQ2WjAzMTEwLwYDVQQD EygxYjA1ZmViZDlkMDNkOThhODg0MWNlOTc5MTI2YzhjYzk3MDRlNjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA40QUZ9tsPnKeUiUt/Ut6ToDzPMXg HpXwpfZab9YDd8+FaGuf/HBv1RyaMqmffwCW4AlhU+yKojMGnRajfY71Cm8Plflr cyb9iu2RV4xmlhmSqZa2xOxfSMUB+Wtz496ePEKyeGGhcIaBtEas+TSy0OHONYlw yr08y4UnbE26hyVA5FgBw4JYRpFfCWUEU1GKQHDRUK9MfvRyDK1LMdx9VskscbQi vxZ4ozj2VJuTtR9PuVlrT+F8D6AIzAYBFIJ5Znh2TCg8eXi+pI82HMoy8mIu2md3 /pY/0rBia7gAFV65IXg7lWG0j/3lFu4JLgc5xgZoK2yaoEbCdl66QqLKgQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBsF/r2dA9mKiEHOl5EmyMyXBOaFMB8GA1UdIwQY MBaAFNzvWNTPo1VD+EiKJ1bmkk5ke0WJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMt MmVjZTA0ZTE4NWMyLzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS9lYTQ0NTUtNzgzNi00NGM0LWIyYTMtMmVjZTA0ZTE4NWMy LzEvM085WTFNLWpWVVA0U0lvblZ1YVNUbVI3UllrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf+M7SoEA HiaX2+B1aArG2bl/YBiKRKhZf0hG3/XZqkoNKH34wdgRt0mPzpUpT5H1TM5+v3Sa PeF4ZWO4RaYQnNqN0ialoX26NH2n0LEqOWaT2IB2sfm+Z8d30ribcN3h+eHQWstZ anuALzBs3ZADYkBVg0Fls8lSX1RgfSIw75ymq88AhPptVG6yrwDVs4aFbL0rkpfQ y3VYC3jIlv2AFb/G74Nx/xAwDPJEMdvKBIVbGQZggF+hNAl/yXCXA33N2hDXsztU D33HET5BrPj80PmdL5XhjdnDJPGzy+RKhbeERe0zk2YEJeA/qkOTSLbziy7rhLx0 w2k3p5+yuT2PTg== -----END CERTIFICATE-----Generated at Wed May 7 08:40:06 2025 by rpki-client