$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: cZ1QL14i44iLGJfr1k99uq3AITl00zqmUVeV2FEW7ps= Subject key identifier: 97:33:32:2E:7A:D6:92:E3:11:9F:60:1D:77:FE:9C:74:29:D6:0B:8B Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 0197B6A18DBAADFFEB5BF7F8B1ED4A94C785 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 137E Signing time: Sat 28 Jun 2025 13:02:10 +0000 Manifest this update: Sat 28 Jun 2025 13:02:10 +0000 Manifest next update: Sun 29 Jun 2025 13:02:10 +0000 Files and hashes: 1: 4_O_iIpyAI9RehObq-pOpadb0Oc.roa (hash: yk0faU3G873g+gLSQoGVoe7NYYyCWEaHzHI6ZIk9UdY=) 2: 7loUqY3SMQ476AvW8cBj_oE5D0w.roa (hash: 9ZWiK7Ya0oQoJXKuXssFNZZZ1jcO9WaxjH/2eSSyYlw=) 3: 9qXJnie35SdfH2J2EgodKBngTzA.roa (hash: jwDaD5ZgcucjZdcdoISWLpA3Zdrcncz7G1jWAlDHN4k=) 4: _K6pKy4r_yxn6KKjdedN6hKQIRc.roa (hash: Fa8PiwPRQ/Nbg/tMa4sLtAZckTKFYG8hQ2oLAm3z+YE=) 5: eeGo9wragRSvkLaXijzUVv6g1UQ.roa (hash: f0fCuBwmYqh4E9JpX2SXK0IGaTdlCqkrpCwPLzLM7U8=) 6: f_BAmJDU6YD_W-jGGFTEv2Fs7Ak.roa (hash: PaLYZLAv0TrU+Bsc9bxTmK6PnOfA5lCBIqcJSl9Ay7o=) 7: h0Rq-64YdH2Rhgx8VqQPxecaOJk.roa (hash: +OMPPDfPiGbQBs5xm10WtKzO2XvkhzUC6VL8TFg0R8M=) 8: p7CrYRPqjfqg5-SpOOWgZYcH7pg.roa (hash: VxeYJO6+oO8JTtkcjhdpm2dOlDG12rU/cm/baKhjYqs=) 9: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: 7nYr1pfd4L8F3qpf2mIAuA7mbnQlJmSnoGIkApBbeL8=) 10: vm5i6AVzmYzAz9qPwbnD4VrLfVA.roa (hash: VDQ8oeDiLzJU7KaKEM2DHEI37PMjg/GP0JQI1knZDEc=) 11: yj9vr2VnE10QnxtDsz-n2QVr0i4.roa (hash: oY4OEejijqth0Kn/mWSI257F9MR4bW3yyLCjseFCr/g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 13:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:b6:a1:8d:ba:ad:ff:eb:5b:f7:f8:b1:ed:4a:94:c7:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: Jun 28 13:02:10 2025 GMT Not After : Jun 29 13:02:10 2025 GMT Subject: CN=9733322e7ad692e3119f601d77fe9c7429d60b8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d2:23:f1:72:70:12:54:34:d3:71:a5:a5:a8: ca:c5:13:26:c8:42:57:14:28:70:e5:3f:7b:d3:82: 2d:bc:82:88:dd:1f:ec:61:90:8f:56:d2:59:e4:17: 11:5e:af:97:ca:a4:6b:51:3d:b4:81:9d:e3:1e:38: 3a:81:fd:48:56:1e:54:50:e8:3b:8b:b4:1f:c8:6c: 11:41:98:ae:5f:6b:29:66:14:fe:d3:2d:78:3b:ff: ce:9d:24:8a:17:fa:aa:8a:16:af:99:ce:ba:d8:3a: 98:66:cf:70:b0:45:4e:93:2a:d4:f2:4a:ec:16:b6: 84:a5:a8:9d:88:75:24:b1:1e:ff:4c:e0:aa:bd:47: 0f:f8:97:ff:af:22:c9:4e:1d:e6:e2:40:51:50:63: 14:f2:d2:f2:8b:c1:f8:96:a5:82:1a:63:22:c2:2e: 6f:fb:7c:ff:3c:a5:f0:02:5c:1e:73:26:36:6e:d3: 58:cb:05:d4:6a:a3:88:90:5b:9c:bb:a8:cb:87:89: 97:65:20:64:34:84:33:ed:6b:2e:d0:d1:0a:9e:8d: d0:43:10:dc:cd:fd:ce:a4:f2:ac:00:f6:47:7d:e6: 9a:0e:68:d1:56:ec:35:4a:57:a7:10:c5:59:fc:f5: 98:81:e2:85:ed:91:9b:e0:80:ac:ec:4b:7b:d8:81: a7:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:33:32:2E:7A:D6:92:E3:11:9F:60:1D:77:FE:9C:74:29:D6:0B:8B X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:12:63:b2:5d:75:49:2e:66:6e:20:2b:c9:fc:a2:3a:fe:90: f0:1b:57:07:95:24:fa:50:7f:64:e0:9f:43:22:e2:7a:ef:09: 05:7d:c2:b1:14:c4:85:10:a4:2e:9f:8a:94:ef:73:c3:7b:fc: bd:f5:c6:77:a6:a7:9e:d7:ea:4c:50:9f:19:df:3a:1e:67:57: 01:7a:7f:3a:64:b9:79:fb:ef:19:09:fb:23:6b:ec:a3:0c:fb: 20:46:01:11:3d:cb:46:f7:6d:a4:31:5e:18:fc:22:e3:21:6e: fa:6d:7f:72:e2:df:d8:c3:fd:a9:cf:76:ec:49:a3:21:85:ec: 2e:a5:e1:87:0e:b2:05:81:74:f7:d7:df:77:59:ed:9b:6d:53: 01:64:86:d9:00:14:e1:34:4f:eb:72:af:17:8b:71:f4:93:71: 78:11:80:5b:3b:df:02:be:a7:76:e8:be:df:cf:ee:59:3e:39: b0:7c:81:8a:bd:c2:85:9c:ea:48:2d:c4:10:ec:30:b5:7d:1b: b0:ec:cd:f6:c4:5c:4d:82:79:11:10:32:09:da:07:7f:1d:cd: 3e:1e:d2:99:79:e6:fa:fa:24:80:81:c8:10:f0:e2:76:22:60: 23:0c:0c:51:8c:c4:3f:d5:53:42:60:4c:32:9d:24:e8:d3:bb: 68:11:24:ae -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZe2oY26rf/rW/f4se1KlMeFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjUwNjI4MTMwMjEwWhcNMjUwNjI5MTMwMjEwWjAzMTEwLwYDVQQD Eyg5NzMzMzIyZTdhZDY5MmUzMTE5ZjYwMWQ3N2ZlOWM3NDI5ZDYwYjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0dIj8XJwElQ003GlpajKxRMmyEJX FChw5T9704ItvIKI3R/sYZCPVtJZ5BcRXq+XyqRrUT20gZ3jHjg6gf1IVh5UUOg7 i7QfyGwRQZiuX2spZhT+0y14O//OnSSKF/qqihavmc662DqYZs9wsEVOkyrU8krs FraEpaidiHUksR7/TOCqvUcP+Jf/ryLJTh3m4kBRUGMU8tLyi8H4lqWCGmMiwi5v +3z/PKXwAlwecyY2btNYywXUaqOIkFucu6jLh4mXZSBkNIQz7Wsu0NEKno3QQxDc zf3OpPKsAPZHfeaaDmjRVuw1SlenEMVZ/PWYgeKF7ZGb4ICs7Et72IGnjwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJczMi561pLjEZ9gHXf+nHQp1guLMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjhJjsl11 SS5mbiAryfyiOv6Q8BtXB5Uk+lB/ZOCfQyLieu8JBX3CsRTEhRCkLp+KlO9zw3v8 vfXGd6anntfqTFCfGd86HmdXAXp/OmS5efvvGQn7I2vsowz7IEYBET3LRvdtpDFe GPwi4yFu+m1/cuLf2MP9qc927EmjIYXsLqXhhw6yBYF099ffd1ntm21TAWSG2QAU 4TRP63KvF4tx9JNxeBGAWzvfAr6ndui+38/uWT45sHyBir3ChZzqSC3EEOwwtX0b sOzN9sRcTYJ5ERAyCdoHfx3NPh7SmXnm+vokgIHIEPDidiJgIwwMUYzEP9VTQmBM Mp0k6NO7aBEkrg== -----END CERTIFICATE-----Generated at Sat Jun 28 22:39:34 2025 by rpki-client