$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft File: pnhXc98xO5FxG_a8WxSezCRrnok.mft (raw, json) Hash identifier: KkMGZ8jxJmbA9RMo4aQVIqSv196MrbZsCQqRj22xIHI= Subject key identifier: 98:8E:DA:3A:D4:98:F5:1A:F3:5F:47:73:DC:B7:A0:A6:C1:B9:AE:06 Authority key identifier: A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 Certificate issuer: /CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Certificate serial: 0196ADD67D80E2F9D812ED2A2B52A7382792 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft Manifest number: 12F5 Signing time: Thu 08 May 2025 03:00:37 +0000 Manifest this update: Thu 08 May 2025 03:00:37 +0000 Manifest next update: Fri 09 May 2025 03:00:37 +0000 Files and hashes: 1: 4_O_iIpyAI9RehObq-pOpadb0Oc.roa (hash: yk0faU3G873g+gLSQoGVoe7NYYyCWEaHzHI6ZIk9UdY=) 2: 7loUqY3SMQ476AvW8cBj_oE5D0w.roa (hash: 9ZWiK7Ya0oQoJXKuXssFNZZZ1jcO9WaxjH/2eSSyYlw=) 3: 9qXJnie35SdfH2J2EgodKBngTzA.roa (hash: jwDaD5ZgcucjZdcdoISWLpA3Zdrcncz7G1jWAlDHN4k=) 4: _K6pKy4r_yxn6KKjdedN6hKQIRc.roa (hash: Fa8PiwPRQ/Nbg/tMa4sLtAZckTKFYG8hQ2oLAm3z+YE=) 5: eeGo9wragRSvkLaXijzUVv6g1UQ.roa (hash: f0fCuBwmYqh4E9JpX2SXK0IGaTdlCqkrpCwPLzLM7U8=) 6: f_BAmJDU6YD_W-jGGFTEv2Fs7Ak.roa (hash: PaLYZLAv0TrU+Bsc9bxTmK6PnOfA5lCBIqcJSl9Ay7o=) 7: h0Rq-64YdH2Rhgx8VqQPxecaOJk.roa (hash: +OMPPDfPiGbQBs5xm10WtKzO2XvkhzUC6VL8TFg0R8M=) 8: p7CrYRPqjfqg5-SpOOWgZYcH7pg.roa (hash: VxeYJO6+oO8JTtkcjhdpm2dOlDG12rU/cm/baKhjYqs=) 9: pnhXc98xO5FxG_a8WxSezCRrnok.crl (hash: Jk9umZEAFXLC/LYJSp5BWJiCQYnqCyOZv4fan1Fug2c=) 10: vm5i6AVzmYzAz9qPwbnD4VrLfVA.roa (hash: VDQ8oeDiLzJU7KaKEM2DHEI37PMjg/GP0JQI1knZDEc=) 11: yj9vr2VnE10QnxtDsz-n2QVr0i4.roa (hash: oY4OEejijqth0Kn/mWSI257F9MR4bW3yyLCjseFCr/g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 20:38:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:ad:d6:7d:80:e2:f9:d8:12:ed:2a:2b:52:a7:38:27:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a6785773df313b91711bf6bc5b149ecc246b9e89 Validity Not Before: May 8 03:00:37 2025 GMT Not After : May 9 03:00:37 2025 GMT Subject: CN=988eda3ad498f51af35f4773dcb7a0a6c1b9ae06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0c:51:e3:79:90:c4:a1:1d:c9:16:d3:c4:53: 70:bb:dd:c7:e7:c7:46:6b:1b:05:59:07:f2:b5:4e: 15:6b:84:5d:bb:1d:b7:89:d7:7f:32:85:ac:9d:9b: c6:9e:88:0a:cd:09:c4:b5:d5:3d:15:21:4c:18:3f: 25:9d:6e:ea:4b:c5:93:61:68:bb:7b:50:8c:63:4d: 7c:2f:c3:f2:04:b6:eb:29:7b:47:d6:d6:97:fa:7f: 01:82:b9:59:c0:d5:52:47:7f:5b:e2:45:95:07:0c: 55:f0:d9:df:f0:8f:8f:21:ff:b5:44:e5:78:49:0c: 79:62:cb:b6:c6:d4:38:b8:62:cd:e7:3d:b9:58:da: 77:c1:36:1e:bc:52:51:af:65:90:1d:b3:a4:a0:86: 91:d2:e5:da:e9:a9:20:56:14:3c:cd:26:2e:9e:29: 8e:56:83:0b:65:a8:16:f8:39:33:90:1a:84:1c:d4: f2:c3:35:ed:82:14:0c:b2:5b:35:7d:c0:ea:89:11: 6f:5f:8e:f3:dd:bc:0e:03:54:8e:74:53:65:4d:f0: 55:98:5b:c5:dc:8a:fd:9b:6a:cf:28:b0:cb:6e:bf: 06:c1:8a:79:c1:2e:4e:93:be:2f:65:a1:75:75:1e: ca:fc:4e:00:23:a9:cd:1f:3b:d4:3a:9f:da:23:cb: 19:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:8E:DA:3A:D4:98:F5:1A:F3:5F:47:73:DC:B7:A0:A6:C1:B9:AE:06 X509v3 Authority Key Identifier: keyid:A6:78:57:73:DF:31:3B:91:71:1B:F6:BC:5B:14:9E:CC:24:6B:9E:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnhXc98xO5FxG_a8WxSezCRrnok.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/ae9211-c52d-480d-a591-d75869c0c71e/1/pnhXc98xO5FxG_a8WxSezCRrnok.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:87:c5:0a:23:ee:0c:01:88:a4:fe:2c:07:0c:71:7d:42:18: b7:9c:17:40:c6:02:b6:5d:ef:c8:ce:e6:70:ff:00:5f:90:23: 86:58:c2:d9:94:83:5d:d8:ea:f7:d9:b4:34:19:eb:34:04:11: f9:4f:d3:24:d9:51:2e:77:86:b2:64:3a:3a:57:5d:f7:31:8d: e9:4f:6c:3d:bd:98:19:95:60:89:f9:59:73:96:cd:62:b1:4f: a0:32:80:5c:19:53:3d:7b:9c:d2:e4:02:e5:7b:0f:09:10:48: a9:bd:f2:ae:69:9e:72:ea:91:eb:c0:e8:57:71:9d:2f:f7:14: 6d:d3:72:f0:1c:77:0b:c4:6e:58:04:dc:23:a1:e2:28:7b:eb: ef:cd:e2:29:66:03:d2:4e:31:20:4c:5c:b7:39:e8:49:9d:96: e5:1d:38:dc:97:6a:1e:d1:a0:60:ee:c9:e2:28:b4:87:79:95: 17:c7:03:c1:b8:7f:e1:dd:0b:5a:27:cc:4f:59:4b:8a:60:ce: e5:a7:07:f9:35:2d:70:e8:0c:f4:05:da:04:3f:75:1c:f7:98: d1:57:4f:32:5c:ba:ad:99:37:e8:c4:95:45:95:f9:a8:73:42: 23:8d:29:42:55:77:65:e3:77:9f:e3:85:fe:8e:d6:40:ee:ce: 55:d1:3c:04 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZat1n2A4vnYEu0qK1KnOCeSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2Nzg1NzczZGYzMTNiOTE3MTFiZjZiYzViMTQ5ZWNjMjQ2 YjllODkwHhcNMjUwNTA4MDMwMDM3WhcNMjUwNTA5MDMwMDM3WjAzMTEwLwYDVQQD Eyg5ODhlZGEzYWQ0OThmNTFhZjM1ZjQ3NzNkY2I3YTBhNmMxYjlhZTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgxR43mQxKEdyRbTxFNwu93H58dG axsFWQfytU4Va4Rdux23idd/MoWsnZvGnogKzQnEtdU9FSFMGD8lnW7qS8WTYWi7 e1CMY018L8PyBLbrKXtH1taX+n8BgrlZwNVSR39b4kWVBwxV8Nnf8I+PIf+1ROV4 SQx5Ysu2xtQ4uGLN5z25WNp3wTYevFJRr2WQHbOkoIaR0uXa6akgVhQ8zSYunimO VoMLZagW+DkzkBqEHNTywzXtghQMsls1fcDqiRFvX47z3bwOA1SOdFNlTfBVmFvF 3Ir9m2rPKLDLbr8GwYp5wS5Ok74vZaF1dR7K/E4AI6nNHzvUOp/aI8sZ5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJiO2jrUmPUa819Hc9y3oKbBua4GMB8GA1UdIwQY MBaAFKZ4V3PfMTuRcRv2vFsUnswka56JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEt ZDc1ODY5YzBjNzFlLzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMS9hZTkyMTEtYzUyZC00ODBkLWE1OTEtZDc1ODY5YzBjNzFl LzEvcG5oWGM5OHhPNUZ4R19hOFd4U2V6Q1Jybm9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgIfFCiPu DAGIpP4sBwxxfUIYt5wXQMYCtl3vyM7mcP8AX5AjhljC2ZSDXdjq99m0NBnrNAQR +U/TJNlRLneGsmQ6Oldd9zGN6U9sPb2YGZVgiflZc5bNYrFPoDKAXBlTPXuc0uQC 5XsPCRBIqb3yrmmecuqR68DoV3GdL/cUbdNy8Bx3C8RuWATcI6HiKHvr783iKWYD 0k4xIExctznoSZ2W5R043JdqHtGgYO7J4ii0h3mVF8cDwbh/4d0LWifMT1lLimDO 5acH+TUtcOgM9AXaBD91HPeY0VdPMly6rZk36MSVRZX5qHNCI40pQlV3ZeN3n+OF /o7WQO7OVdE8BA== -----END CERTIFICATE-----Generated at Thu May 8 04:57:41 2025 by rpki-client