$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: 8e0YHF/tfTZB6f3vqnej5J7XHiwyVQPhydrN2X9Kgrs= Subject key identifier: 08:81:EB:D1:98:3B:99:06:35:A3:AA:2D:CB:35:EA:15:EB:03:E0:97 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 0196CFF48C5D6240874ABEC317A56D3CE580 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 07F7 Signing time: Wed 14 May 2025 18:00:32 +0000 Manifest this update: Wed 14 May 2025 18:00:32 +0000 Manifest next update: Thu 15 May 2025 18:00:32 +0000 Files and hashes: 1: AVhJFVI2rddRDN9TZkxu2cOqd_U.roa (hash: Z21jddbs3xWpC/IPmSRdmy8CLER4CTA+wtUEhdmSjWA=) 2: GJoKWxqXVe9byJ7vEN4O3FsAPbw.roa (hash: 3INb6wymsZxncaYsZTd/NPz0kxdapcCp+SJMbjM8l0Y=) 3: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 4: Qu4ONRj9Tnvy_jUVCaYk-FPrpBY.roa (hash: uN7owuwNEzSt/aZwd8y6vL95cBARm3xUUdKefTm2BpI=) 5: TAjOCfxKmVaufyeMAaRjJQRrJpo.roa (hash: SxUJ/IMNoKh2IGXhAoqHbHYgCNszkM1cz1fmREsS+Ko=) 6: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: nc45exsOn/gSZxcQ+GX46z/okqwpeoEkT+t0HZhq9Mo=) 7: WNXcUWyOPw_jgwsMhjt3tr-DAXY.roa (hash: xCXJ3TCSOan9saMZR5HLRDriokOQriL1DMFUL1E2Cpg=) 8: ZGAhlZjnasS5BKxbuKtTlb2IG8g.roa (hash: /CWZhme5O1ZBpiwykCFeFAG1hv6S2QE4eqN/Qea+vmc=) 9: cbgxDriMd1w8Ezk1j_uW9c-uk8k.roa (hash: RA/kZIx4fzU+RCbQ8O1BxIKCZRJDjC4JRLSNt3ovrQ8=) 10: cblkW3ZYAZ5VQl8X3gHLFnE7S8g.roa (hash: +MK4cG6/hNPklJaXz5PxE5zp6rLCIwlFMKcCPx37Jxo=) 11: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 12: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 13: jDpfwbf-MYo1z6WLxxoQR9fD_bw.roa (hash: zExaE643LO98tK4NvHjnGSmdQinpnm87QOpAVLfdMLY=) 14: obpj78Cj4h6AqPChG513fVXXoMs.roa (hash: xhWt95TQUSf4jmhliYXpfzfmunJAIuxitDmmO5ohsLY=) 15: puM6zDTCACkm8XM63GmrJCmb9w4.roa (hash: /wWLN32nFvo5E1f9qQj5og/sDQq7KYw38OVpA8GGi58=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 15 May 2025 17:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:cf:f4:8c:5d:62:40:87:4a:be:c3:17:a5:6d:3c:e5:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: May 14 18:00:32 2025 GMT Not After : May 15 18:00:32 2025 GMT Subject: CN=0881ebd1983b990635a3aa2dcb35ea15eb03e097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e4:9d:b1:a2:fb:c9:41:3f:e3:85:09:aa:a1: 46:3d:6d:28:fe:13:e2:7f:3e:cd:9e:d2:3b:bb:9f: a4:c1:13:8c:0d:12:cf:b6:71:6d:e6:f8:d1:d8:74: 66:92:1e:41:36:48:4c:2f:a2:ab:f3:bd:04:3c:cc: 9f:d0:87:ec:26:26:20:65:93:c8:f4:1f:44:4e:0b: 2f:22:6d:1a:37:16:49:56:8e:cc:d5:5c:65:2e:fb: 65:80:fe:da:d4:e1:6f:cf:31:d8:2a:b8:12:bb:1f: 39:eb:a1:74:a0:8b:6f:f0:b6:a6:b0:1e:34:44:fe: 49:cb:9e:9c:5c:24:f1:74:ae:5e:41:7b:68:e4:08: ab:d7:19:59:95:48:db:83:ef:7f:78:bf:f8:54:37: cb:a2:24:31:b7:e2:6d:f3:8c:ed:42:1f:d3:d1:ed: b4:a9:a1:9e:92:0b:0f:5d:a1:e1:f1:5d:31:6e:e9: 60:90:4e:36:37:c3:35:4d:b9:16:31:48:c6:c0:67: 52:55:31:81:5e:a5:10:de:e6:69:b8:9d:04:b0:33: 4c:bb:7b:ec:bf:61:3d:3e:34:57:20:19:02:f1:21: ed:a4:24:7d:28:f7:e8:28:a3:c8:92:04:d4:67:0b: 54:0e:38:c1:c8:04:8e:ba:ee:ff:0f:41:19:10:46: 28:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:81:EB:D1:98:3B:99:06:35:A3:AA:2D:CB:35:EA:15:EB:03:E0:97 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:55:28:f5:7d:90:5e:c8:97:fc:f3:3c:1c:8b:73:8e:83:4f: 5c:87:61:4f:1c:dd:4f:b4:fe:e0:6d:36:b9:42:79:4b:37:a1: e1:ae:09:5c:2e:26:1a:51:26:2b:80:98:79:dc:a8:13:7f:32: 78:62:cb:db:24:4b:6a:86:c5:05:3c:4c:e5:4e:23:61:e9:47: a9:ff:05:71:d7:a5:ff:64:7e:3e:10:57:06:87:8a:34:d2:d1: 95:33:ed:a0:a2:05:18:e2:5f:d4:80:45:70:e5:50:37:8e:ce: 85:49:bc:24:db:f5:8a:42:a6:76:35:6a:9f:8b:e8:73:5b:7e: a5:b4:10:f0:a2:89:b8:cf:62:53:fa:92:66:16:ab:87:9e:84: 22:db:34:5c:66:aa:85:d5:86:ca:a3:d5:69:df:8c:55:c9:1d: 59:18:d8:ac:03:b7:f6:c2:9e:e1:1e:e9:0b:9f:53:be:2d:8c: 09:63:e7:ac:c6:c5:5e:f1:55:6a:8a:b6:32:7c:bb:ab:8e:45: 1a:ed:5e:41:95:61:b5:4f:84:ff:a3:b5:5d:dc:73:4a:11:84: 25:fa:ff:73:94:fd:e0:62:f3:a0:c6:2d:0f:ab:fe:f9:e4:7c: 5b:e1:78:f8:cf:3a:68:6f:aa:c3:f1:8e:e0:54:a1:98:c7:09: e6:c4:66:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZbP9IxdYkCHSr7DF6VtPOWAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUwNTE0MTgwMDMyWhcNMjUwNTE1MTgwMDMyWjAzMTEwLwYDVQQD EygwODgxZWJkMTk4M2I5OTA2MzVhM2FhMmRjYjM1ZWExNWViMDNlMDk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzOSdsaL7yUE/44UJqqFGPW0o/hPi fz7NntI7u5+kwROMDRLPtnFt5vjR2HRmkh5BNkhML6Kr870EPMyf0IfsJiYgZZPI 9B9ETgsvIm0aNxZJVo7M1VxlLvtlgP7a1OFvzzHYKrgSux8566F0oItv8LamsB40 RP5Jy56cXCTxdK5eQXto5Air1xlZlUjbg+9/eL/4VDfLoiQxt+Jt84ztQh/T0e20 qaGekgsPXaHh8V0xbulgkE42N8M1TbkWMUjGwGdSVTGBXqUQ3uZpuJ0EsDNMu3vs v2E9PjRXIBkC8SHtpCR9KPfoKKPIkgTUZwtUDjjByASOuu7/D0EZEEYoIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAiB69GYO5kGNaOqLcs16hXrA+CXMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB1Uo9X2Q XsiX/PM8HItzjoNPXIdhTxzdT7T+4G02uUJ5Szeh4a4JXC4mGlEmK4CYedyoE38y eGLL2yRLaobFBTxM5U4jYelHqf8Fcdel/2R+PhBXBoeKNNLRlTPtoKIFGOJf1IBF cOVQN47OhUm8JNv1ikKmdjVqn4voc1t+pbQQ8KKJuM9iU/qSZharh56EIts0XGaq hdWGyqPVad+MVckdWRjYrAO39sKe4R7pC59Tvi2MCWPnrMbFXvFVaoq2Mny7q45F Gu1eQZVhtU+E/6O1XdxzShGEJfr/c5T94GLzoMYtD6v++eR8W+F4+M86aG+qw/GO 4FShmMcJ5sRmlg== -----END CERTIFICATE-----Generated at Thu May 15 03:01:38 2025 by rpki-client