$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: Fjbm35vjcv7BfHzWUX69g/UPO9Wj+1c3hRjDoDBzgjc= Subject key identifier: FF:38:97:AE:D0:C8:1C:BF:AA:26:6F:86:23:CA:ED:C2:F8:4A:F4:48 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 0197CE0414BB32E4BB18126B00A86628F787 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 11E0 Signing time: Thu 03 Jul 2025 02:01:03 +0000 Manifest this update: Thu 03 Jul 2025 02:01:03 +0000 Manifest next update: Fri 04 Jul 2025 02:01:03 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: MceCU4XPd0t7fhZxTxvxReumv1Q.roa (hash: 5TdX80iYVUkF2JY7Z9ZEOYjAnRhS8f4vWckTIPnEXdo=) 4: PSbAgR9oWL_1M-wwCnHY0Z_n_5s.roa (hash: UVsiOXoHlbBoR5HA9KIjZeyp4Ya5xZxEFqXfSX00QTE=) 5: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 6: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 7: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 8: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 9: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 10: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 11: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 12: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: TVpVLb+HaOreyY8Y6TVPZRTvaRz5pHBsHZKvdA7F5RY=) 13: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 04 Jul 2025 02:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:ce:04:14:bb:32:e4:bb:18:12:6b:00:a8:66:28:f7:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: Jul 3 02:01:03 2025 GMT Not After : Jul 4 02:01:03 2025 GMT Subject: CN=ff3897aed0c81cbfaa266f8623caedc2f84af448 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ca:af:1d:5e:d1:6e:8a:2e:d4:48:ba:34:d5: f9:b4:24:12:82:3f:29:5b:ba:21:e5:b3:36:a8:7f: 5c:4a:ba:77:40:55:95:c2:07:68:76:35:d8:3c:84: 9b:6e:9c:45:5c:53:db:16:d5:7f:51:33:27:fb:66: 4c:fe:2a:7a:a2:0c:a4:42:3f:73:e8:f3:db:53:73: e7:b5:86:00:52:f6:f1:93:05:70:aa:28:f2:9a:90: b7:19:9c:5b:81:95:9a:4f:64:53:9d:ef:66:7c:8f: fb:56:22:36:cf:06:60:31:88:9f:e8:80:04:93:1a: b2:e1:a1:18:1c:ef:fa:d6:7a:eb:26:4c:f7:f0:54: 55:01:87:da:64:4f:6c:ee:e2:de:81:66:87:f4:8b: fb:72:39:be:81:57:1d:03:89:1b:9a:3c:43:b2:19: bc:c1:b1:f4:cf:c3:97:88:be:5d:f1:07:8a:13:38: 24:45:05:6d:35:50:2e:ab:7c:c0:b0:73:16:e0:12: f2:9f:9e:f0:03:a7:17:23:fe:61:ef:9a:22:0b:1c: ff:93:8c:d4:4c:fd:9e:19:e8:a0:30:c0:a6:41:bd: 1c:62:fc:b6:c4:7c:d2:9a:64:85:f8:c4:9c:7c:b3: 4f:7a:cd:6f:9b:96:c0:5f:8e:84:c5:df:a1:8b:74: d5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:38:97:AE:D0:C8:1C:BF:AA:26:6F:86:23:CA:ED:C2:F8:4A:F4:48 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:8a:2a:54:85:1d:96:07:67:c3:00:39:79:aa:a6:47:15:46: 22:1d:fe:ba:29:7c:d8:ff:d4:45:d1:5d:56:4a:37:ed:e8:3c: 74:79:bc:ef:ff:72:53:c1:b8:b1:e0:e1:2c:81:c6:2d:34:b4: 0c:22:bb:34:e8:79:92:8b:54:99:61:11:2c:02:24:11:e7:4e: 3c:af:72:08:ff:f2:ca:b0:dd:9b:39:1d:38:7d:5f:46:b4:b2: 4a:04:d4:10:2d:ab:14:bb:38:06:51:2c:85:90:c2:97:ad:63: df:94:a6:5d:aa:4e:72:8f:fa:0c:d1:12:fe:f4:b9:39:d1:ad: cb:f1:86:e4:49:32:90:a4:8a:b6:ce:df:a5:8e:87:ab:47:ea: 06:77:1e:1d:e4:d0:b6:f6:85:e9:8e:cf:93:b0:71:54:1a:03: be:27:08:15:9b:87:5b:aa:3c:d0:30:13:2a:ac:49:38:94:37: fb:fc:73:2b:25:e8:67:44:fb:43:e2:d3:ad:46:dd:2c:8f:aa: ab:a2:fd:40:3e:aa:cc:24:82:f2:fe:20:9c:e8:e6:c0:6e:6c: 8b:13:c1:e8:c3:d4:7b:6a:7d:83:42:59:6e:08:8b:8f:56:4e: fc:07:b7:fb:2c:a4:9b:6a:c9:2f:6c:9f:39:01:cb:74:bf:46: 13:97:d7:5d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZfOBBS7MuS7GBJrAKhmKPeHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUwNzAzMDIwMTAzWhcNMjUwNzA0MDIwMTAzWjAzMTEwLwYDVQQD EyhmZjM4OTdhZWQwYzgxY2JmYWEyNjZmODYyM2NhZWRjMmY4NGFmNDQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4cqvHV7Rboou1Ei6NNX5tCQSgj8p W7oh5bM2qH9cSrp3QFWVwgdodjXYPISbbpxFXFPbFtV/UTMn+2ZM/ip6ogykQj9z 6PPbU3PntYYAUvbxkwVwqijympC3GZxbgZWaT2RTne9mfI/7ViI2zwZgMYif6IAE kxqy4aEYHO/61nrrJkz38FRVAYfaZE9s7uLegWaH9Iv7cjm+gVcdA4kbmjxDshm8 wbH0z8OXiL5d8QeKEzgkRQVtNVAuq3zAsHMW4BLyn57wA6cXI/5h75oiCxz/k4zU TP2eGeigMMCmQb0cYvy2xHzSmmSF+MScfLNPes1vm5bAX46Exd+hi3TVPQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP84l67QyBy/qiZvhiPK7cL4SvRIMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQIoqVIUd lgdnwwA5eaqmRxVGIh3+uil82P/URdFdVko37eg8dHm87/9yU8G4seDhLIHGLTS0 DCK7NOh5kotUmWERLAIkEedOPK9yCP/yyrDdmzkdOH1fRrSySgTUEC2rFLs4BlEs hZDCl61j35SmXapOco/6DNES/vS5OdGty/GG5EkykKSKts7fpY6Hq0fqBnceHeTQ tvaF6Y7Pk7BxVBoDvicIFZuHW6o80DATKqxJOJQ3+/xzKyXoZ0T7Q+LTrUbdLI+q q6L9QD6qzCSC8v4gnOjmwG5sixPB6MPUe2p9g0JZbgiLj1ZO/Ae3+yykm2rJL2yf OQHLdL9GE5fXXQ== -----END CERTIFICATE-----Generated at Thu Jul 3 10:36:14 2025 by rpki-client