$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft File: hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft (raw, json) Hash identifier: SBM3BwJM06YuM9aXbZS13b+BV2Maej1MupYPh6oQzIo= Subject key identifier: DE:C1:CD:56:12:E4:1E:4D:F6:B3:57:74:81:B1:A3:7B:DD:69:31:47 Authority key identifier: 85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD Certificate issuer: /CN=85d0e763f935c171694f172056eb44209db2e2cd Certificate serial: 0196CB3C2AF6F01692E62CC244D3DE3C5C3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft Manifest number: 115A Signing time: Tue 13 May 2025 20:00:40 +0000 Manifest this update: Tue 13 May 2025 20:00:40 +0000 Manifest next update: Wed 14 May 2025 20:00:40 +0000 Files and hashes: 1: 2Il6q-ZqOuI80bOhmO2ATk_4gjA.roa (hash: qZ2AvjwfuN5RofSpAulT+zvOokvk9hdo9R5gBG6wVV8=) 2: EqxVNlycylxq6ufI9ng2ltdK1KM.roa (hash: b+kpuQsONfGhMD7qgwxZkbzW/4IKkzNE5v/myC4W0qY=) 3: MceCU4XPd0t7fhZxTxvxReumv1Q.roa (hash: 5TdX80iYVUkF2JY7Z9ZEOYjAnRhS8f4vWckTIPnEXdo=) 4: PSbAgR9oWL_1M-wwCnHY0Z_n_5s.roa (hash: UVsiOXoHlbBoR5HA9KIjZeyp4Ya5xZxEFqXfSX00QTE=) 5: QdYIwbhgXZFZDGrsD1bCfWnJfNM.roa (hash: GAa3KktDwm+TlBojUO7F6LnOQMJ0zxC/VLgeFCn23pI=) 6: V1rb0y6iu1TTOsIZQYPUPITNZdc.roa (hash: 4TLj9uQX2T55ymBodPD3FK/tTeE67Ngmw9g4awglSqU=) 7: Yjrt4HsK8wh6pJI81KOUWlnSEwg.roa (hash: XmuwPChIn1UvgMab/4oMWsQTN7bkJ51y5zUd1xVolH0=) 8: aaic0TQ08KDxqNotu0QjynGFp8k.roa (hash: y+rn4gyMmixGkyVVHgb8Zj+xOMFFm7BJm3FAMYf/M4M=) 9: cO2-NOuH2RV4sPciOdoA32su67Q.roa (hash: 9jc3V+7f0q1/c2NMI1faaA1MEEx9FCl4Vp7wxvOlyNU=) 10: euovkC8FzqkWizkBlJiIPuOidbU.roa (hash: NVQ3tcOFWDZctMMGjmKl2U9mGUa0NK9LjFLKrJC2iHM=) 11: gdNItxWNsM4KiGU05OylhksApCc.roa (hash: WiPvUqderzx9CicZMrqZIDKRBrczrFFx57GnwN1V0lI=) 12: hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl (hash: GEi9WLDDtnDneEL+RcH5zXYBHGxkiPncYSulXgBlnLk=) 13: oMpZucICfk-8ZesIjg26RzH9z8Q.roa (hash: avfjdtl0mm9+afn2EBtC58m5oIaLp8/rBFhWdaYQq6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 14 May 2025 20:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:cb:3c:2a:f6:f0:16:92:e6:2c:c2:44:d3:de:3c:5c:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=85d0e763f935c171694f172056eb44209db2e2cd Validity Not Before: May 13 20:00:40 2025 GMT Not After : May 14 20:00:40 2025 GMT Subject: CN=dec1cd5612e41e4df6b3577481b1a37bdd693147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5d:25:e4:45:c3:bd:a2:70:19:62:e4:7c:80: 94:3c:0f:e6:16:07:b9:11:d7:92:49:32:52:62:27: 22:3a:19:56:34:e9:90:df:c4:26:ff:4c:5a:eb:88: f0:e2:4f:09:31:bb:67:f7:08:16:c2:34:0f:4d:77: 1c:e2:5b:d0:ab:36:c3:d9:35:41:5c:b8:5c:86:b8: 90:14:55:e3:04:05:72:30:bf:9b:79:06:8a:79:6e: 8f:00:d9:66:58:42:d9:3b:a3:7a:8f:83:54:e4:83: 86:c6:1e:7c:12:a2:b6:00:8b:19:ce:15:c8:bf:a3: be:ab:4c:8c:71:71:83:21:ce:26:42:3d:cd:09:bf: ac:7e:48:7b:7c:f2:ea:ab:02:89:7a:3a:84:f1:c6: 16:7e:76:9d:db:a6:38:16:58:59:48:82:45:65:87: e5:52:19:43:0c:1b:26:52:33:d3:cd:21:d2:3e:61: 8a:ab:f3:fd:59:d4:5c:84:28:06:2d:b8:f9:f0:e5: c8:5f:b6:64:f9:93:e1:78:5b:a3:64:83:d5:0f:5a: 24:07:f0:b9:d1:15:5b:40:97:52:fb:d4:80:9f:b3: 22:3c:55:48:5c:b4:2f:d1:7d:3e:52:eb:ca:8b:43: 68:58:89:10:fb:91:88:85:8b:1d:7c:b0:3e:92:f6: c0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:C1:CD:56:12:E4:1E:4D:F6:B3:57:74:81:B1:A3:7B:DD:69:31:47 X509v3 Authority Key Identifier: keyid:85:D0:E7:63:F9:35:C1:71:69:4F:17:20:56:EB:44:20:9D:B2:E2:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hdDnY_k1wXFpTxcgVutEIJ2y4s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/746410-026b-45c9-81cd-f12835f0247b/1/hdDnY_k1wXFpTxcgVutEIJ2y4s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:ea:17:d1:ac:5d:43:c1:f1:cc:cf:f4:dd:e8:f0:0f:9e:a7: ae:4a:b4:ab:38:48:61:53:0c:a9:fa:81:5b:dd:07:19:2a:ba: 46:31:2d:e3:fa:11:f5:83:8a:cf:44:28:eb:58:35:6f:19:a8: e8:c6:3f:56:d3:14:a1:7d:f6:90:b9:ae:51:e6:cc:bf:33:c6: d8:59:ee:36:c0:30:f5:ed:88:b4:aa:5b:70:88:7e:94:c6:3a: f6:f0:64:b0:f4:76:d4:46:6e:49:d8:02:df:cc:96:62:11:2b: 09:1e:79:20:cf:c0:29:12:f7:b9:b3:bd:29:ad:c9:2f:ed:e8: ba:a1:17:71:65:f4:cb:8c:15:d5:8f:85:82:8c:49:bc:3b:bb: 85:71:05:f3:18:d1:be:48:80:d6:6c:c0:92:65:50:18:74:0b: 36:50:5c:57:34:e4:2f:6e:d8:b9:8e:3f:4c:d4:0f:71:42:73: af:58:55:a3:5b:93:0c:20:28:2f:5a:94:65:92:35:cf:63:be: 55:01:dd:e3:ac:60:83:41:c8:c4:3e:d0:08:28:d1:09:4b:df: cd:b2:9c:65:36:5e:f1:0b:37:8a:2e:72:16:7e:c8:72:e0:dc: a7:20:4a:d5:c1:d1:aa:4d:dc:dd:07:55:16:ca:b8:97:d0:ab: 25:aa:f8:86 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZbLPCr28BaS5izCRNPePFw6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1ZDBlNzYzZjkzNWMxNzE2OTRmMTcyMDU2ZWI0NDIwOWRi MmUyY2QwHhcNMjUwNTEzMjAwMDQwWhcNMjUwNTE0MjAwMDQwWjAzMTEwLwYDVQQD EyhkZWMxY2Q1NjEyZTQxZTRkZjZiMzU3NzQ4MWIxYTM3YmRkNjkzMTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu10l5EXDvaJwGWLkfICUPA/mFge5 EdeSSTJSYiciOhlWNOmQ38Qm/0xa64jw4k8JMbtn9wgWwjQPTXcc4lvQqzbD2TVB XLhchriQFFXjBAVyML+beQaKeW6PANlmWELZO6N6j4NU5IOGxh58EqK2AIsZzhXI v6O+q0yMcXGDIc4mQj3NCb+sfkh7fPLqqwKJejqE8cYWfnad26Y4FlhZSIJFZYfl UhlDDBsmUjPTzSHSPmGKq/P9WdRchCgGLbj58OXIX7Zk+ZPheFujZIPVD1okB/C5 0RVbQJdS+9SAn7MiPFVIXLQv0X0+UuvKi0NoWIkQ+5GIhYsdfLA+kvbA7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN7BzVYS5B5N9rNXdIGxo3vdaTFHMB8GA1UdIwQY MBaAFIXQ52P5NcFxaU8XIFbrRCCdsuLNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2Qt ZjEyODM1ZjAyNDdiLzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi83NDY0MTAtMDI2Yi00NWM5LTgxY2QtZjEyODM1ZjAyNDdi LzEvaGREbllfazF3WEZwVHhjZ1Z1dEVJSjJ5NHMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmOoX0axd Q8HxzM/03ejwD56nrkq0qzhIYVMMqfqBW90HGSq6RjEt4/oR9YOKz0Qo61g1bxmo 6MY/VtMUoX32kLmuUebMvzPG2FnuNsAw9e2ItKpbcIh+lMY69vBksPR21EZuSdgC 38yWYhErCR55IM/AKRL3ubO9Ka3JL+3ouqEXcWX0y4wV1Y+FgoxJvDu7hXEF8xjR vkiA1mzAkmVQGHQLNlBcVzTkL27YuY4/TNQPcUJzr1hVo1uTDCAoL1qUZZI1z2O+ VQHd46xgg0HIxD7QCCjRCUvfzbKcZTZe8Qs3ii5yFn7IcuDcpyBK1cHRqk3c3QdV Fsq4l9CrJar4hg== -----END CERTIFICATE-----Generated at Wed May 14 04:29:21 2025 by rpki-client