$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: wA1xGt6tXwVgLsDIrwkH77GB7QXzinXljJ6UMV3UfYs= Subject key identifier: 61:F8:63:51:A7:86:8B:0D:9A:04:3E:45:8D:D2:C7:81:40:18:E9:0E Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 0197CCF174C5F9EE6D7497877E378054EFF5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 087D Signing time: Wed 02 Jul 2025 21:01:05 +0000 Manifest this update: Wed 02 Jul 2025 21:01:05 +0000 Manifest next update: Thu 03 Jul 2025 21:01:05 +0000 Files and hashes: 1: 1FJeVgZId139knZgMTYZmAnwLDs.roa (hash: VPpFwlCkzXISful3TlM5ZgodfCcJYCCPoZqn50dkuRo=) 2: BaoLehfzYM1vkBF2LqjuxCVGppw.roa (hash: wk0ycjZln2vcCwTCcN83YoDpaabATIZRlFvsl/RZ67U=) 3: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 4: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: P+uPY7btKPim3YD6EbTeOBQgReVgRJ5tTYvamAW0vVc=) 5: WNXcUWyOPw_jgwsMhjt3tr-DAXY.roa (hash: xCXJ3TCSOan9saMZR5HLRDriokOQriL1DMFUL1E2Cpg=) 6: Wbt2iaP6Wu29ETEZevGjkYyyw8Y.roa (hash: mBaJPapqwbvtmJukkLZju5JRZWG5d49D3KPZxGiRkTk=) 7: ZGAhlZjnasS5BKxbuKtTlb2IG8g.roa (hash: /CWZhme5O1ZBpiwykCFeFAG1hv6S2QE4eqN/Qea+vmc=) 8: cbgxDriMd1w8Ezk1j_uW9c-uk8k.roa (hash: RA/kZIx4fzU+RCbQ8O1BxIKCZRJDjC4JRLSNt3ovrQ8=) 9: cblkW3ZYAZ5VQl8X3gHLFnE7S8g.roa (hash: +MK4cG6/hNPklJaXz5PxE5zp6rLCIwlFMKcCPx37Jxo=) 10: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 11: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 12: jDpfwbf-MYo1z6WLxxoQR9fD_bw.roa (hash: zExaE643LO98tK4NvHjnGSmdQinpnm87QOpAVLfdMLY=) 13: obpj78Cj4h6AqPChG513fVXXoMs.roa (hash: xhWt95TQUSf4jmhliYXpfzfmunJAIuxitDmmO5ohsLY=) 14: puM6zDTCACkm8XM63GmrJCmb9w4.roa (hash: /wWLN32nFvo5E1f9qQj5og/sDQq7KYw38OVpA8GGi58=) 15: zAnPUHrCJSV18x-mMc7-hNiZjaY.roa (hash: LG3Y0utc8dwpuU3oGtbD8u6QKi2Bv7dHexHJeWNV5Hk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 03 Jul 2025 21:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:cc:f1:74:c5:f9:ee:6d:74:97:87:7e:37:80:54:ef:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jul 2 21:01:05 2025 GMT Not After : Jul 3 21:01:05 2025 GMT Subject: CN=61f86351a7868b0d9a043e458dd2c7814018e90e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1b:c8:7f:b8:b0:91:c9:a9:c8:cc:ca:74:85: 73:e8:62:df:a6:9e:46:1f:b0:46:18:0c:a4:d1:47: 55:3c:9c:42:3d:d8:08:79:58:d8:b5:4d:01:4c:dc: 1b:8d:5b:15:ad:f8:d1:5f:63:c0:22:a0:31:76:4b: 85:db:c4:1e:78:81:7d:83:54:50:84:57:7c:e9:5c: c8:19:b1:1e:0b:76:cc:8c:d2:cb:33:d0:6e:73:e8: 86:a3:6d:26:99:71:09:5e:fd:9e:b3:4b:30:06:69: f9:2f:1d:25:aa:f1:f2:bb:42:76:f5:3e:51:6e:1f: f0:b7:ec:46:31:55:76:8b:a4:8f:eb:b3:b8:d7:17: cc:f0:96:5e:eb:76:9d:77:a3:c1:68:4d:36:1d:5a: d3:3e:99:d1:4f:57:fa:92:43:c7:07:76:40:1c:eb: 76:53:cd:5f:b2:f0:da:d1:16:34:dc:e1:d7:5c:5e: db:08:a0:94:b8:db:50:e5:f9:75:69:f1:b5:08:31: 99:bf:f5:d7:66:76:84:2c:2b:f5:81:4c:7f:b3:ef: dc:98:2b:c3:fb:47:e9:1e:bc:cb:3e:cb:b2:2a:f3: 91:83:3b:4e:67:75:21:de:05:6f:74:bd:ff:f8:c9: af:ce:0b:63:8a:82:43:8b:d9:7e:80:9c:24:04:3a: 8c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F8:63:51:A7:86:8B:0D:9A:04:3E:45:8D:D2:C7:81:40:18:E9:0E X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:99:7c:25:33:ed:29:9a:83:6f:58:b8:b6:d2:e1:c4:e9:96: e7:0f:20:0b:ee:b7:e5:76:23:bd:33:07:02:bd:8a:35:69:86: 06:6f:27:bd:e7:62:3b:f0:08:c6:23:f1:ad:2d:63:38:a7:eb: 47:c2:42:0d:84:8e:d4:7f:b7:72:4e:2e:fd:e7:ba:a8:0e:5f: 2f:3d:34:35:eb:c4:35:ea:29:59:60:ad:4f:f0:c4:b8:30:9c: 71:fd:95:a0:00:d5:1c:bb:f3:9b:af:b6:35:c7:3d:fa:a3:eb: 96:fa:07:3c:59:c5:ba:ff:2e:2f:58:45:6e:f3:92:53:39:ce: 2a:31:01:23:91:11:d8:fb:1f:20:eb:2e:ab:26:bb:f0:41:4f: 03:25:63:b4:d2:da:89:a9:96:bb:eb:6f:54:ef:98:b8:e9:7b: 43:c5:78:79:79:27:ac:ac:9c:8d:86:09:1f:a7:26:6d:57:20: 97:76:09:f7:87:48:70:58:41:a7:ae:b6:b0:ff:ef:71:0c:e1: cd:64:47:aa:17:84:af:f0:43:06:cf:1f:32:f7:53:ef:59:79: 2e:c9:ad:53:32:da:ab:b5:ce:5f:8d:34:eb:a0:b5:16:fa:9b: e3:81:ce:6f:9b:ed:68:f3:9c:dc:76:64:b9:fa:e7:ab:9d:86: d4:7a:a2:2c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZfM8XTF+e5tdJeHfjeAVO/1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUwNzAyMjEwMTA1WhcNMjUwNzAzMjEwMTA1WjAzMTEwLwYDVQQD Eyg2MWY4NjM1MWE3ODY4YjBkOWEwNDNlNDU4ZGQyYzc4MTQwMThlOTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApBvIf7iwkcmpyMzKdIVz6GLfpp5G H7BGGAyk0UdVPJxCPdgIeVjYtU0BTNwbjVsVrfjRX2PAIqAxdkuF28QeeIF9g1RQ hFd86VzIGbEeC3bMjNLLM9Buc+iGo20mmXEJXv2es0swBmn5Lx0lqvHyu0J29T5R bh/wt+xGMVV2i6SP67O41xfM8JZe63add6PBaE02HVrTPpnRT1f6kkPHB3ZAHOt2 U81fsvDa0RY03OHXXF7bCKCUuNtQ5fl1afG1CDGZv/XXZnaELCv1gUx/s+/cmCvD +0fpHrzLPsuyKvORgztOZ3Uh3gVvdL3/+MmvzgtjioJDi9l+gJwkBDqMcQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGH4Y1GnhosNmgQ+RY3Sx4FAGOkOMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWJl8JTPt KZqDb1i4ttLhxOmW5w8gC+635XYjvTMHAr2KNWmGBm8nvediO/AIxiPxrS1jOKfr R8JCDYSO1H+3ck4u/ee6qA5fLz00NevENeopWWCtT/DEuDCccf2VoADVHLvzm6+2 Ncc9+qPrlvoHPFnFuv8uL1hFbvOSUznOKjEBI5ER2PsfIOsuqya78EFPAyVjtNLa iamWu+tvVO+YuOl7Q8V4eXknrKycjYYJH6cmbVcgl3YJ94dIcFhBp662sP/vcQzh zWRHqheEr/BDBs8fMvdT71l5LsmtUzLaq7XOX40066C1Fvqb44HOb5vtaPOc3HZk ufrnq52G1HqiLA== -----END CERTIFICATE-----Generated at Thu Jul 3 07:08:17 2025 by rpki-client