$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft File: 71fC2dk6x8-bLxfKp4WbaYWzm50.mft (raw, json) Hash identifier: 1mGi0rIjA85dFPB317VGprp2YF5caod3MTZfIgJpYUs= Subject key identifier: EE:D1:C0:08:76:C5:F8:1A:F5:8E:AA:E8:6E:6E:1B:55:78:3D:29:E2 Authority key identifier: EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D Certificate issuer: /CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Certificate serial: 0196A91E0BFD786D8894B54546C9BD3B98F2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft Manifest number: 1161 Signing time: Wed 07 May 2025 05:00:40 +0000 Manifest this update: Wed 07 May 2025 05:00:40 +0000 Manifest next update: Thu 08 May 2025 05:00:40 +0000 Files and hashes: 1: 71fC2dk6x8-bLxfKp4WbaYWzm50.crl (hash: 7odnPdl/efL8cRrUH4uUSbS42uWaX1v9S6qegQGIsTs=) 2: CFEprGG9zI2SPXEkfveiqcGkxys.roa (hash: zwoMXpp3WPmfn1e+WeBEAccAThpouC8C+SBbtldgA/c=) 3: RLjWAiBDW7OGzF_VcCkKg-SuzTE.roa (hash: DCBINTtLxKJQkC6BRMLb3TMqWlrNb5ZnwJro+/q+QhU=) 4: Xd2QaW60upMnqwQIBHXXIoPXPzs.roa (hash: +i6BQOs/QyU2pk+3pSoh+wtk4Cf+VFJXifr7WtqVoY4=) 5: Y7MCndXsFTXJQ9JQMk8qe5DbA3I.roa (hash: czsRXCWC1Pe09oI3RL5+Wn/UEu1+T8qYOVriAgl/ENI=) 6: ZWH5dik-57qT_VKYcibYh0fZMes.roa (hash: V4HyXcC7GD93JW+xBhzBdGWwVycZxFz98efL+J+3t6c=) 7: d3w3nqB5Kl-FSC0jSCG-gsD4dlY.roa (hash: 33QNQ+kF6mFEetO5Rno9ayPExXyzerB4sZWFH0Ulruk=) 8: kaXih0ftxLoxKevElyyNGY3Am90.roa (hash: VV+Kmbg3++xVZSuR6z9QplDGDyuGw9lzxK6+uDRXc2k=) 9: mMAwso5PyMiUkBDuP91mCU2ukBI.roa (hash: 8lAOzf9Ul80EHkivmkCJNmV8WShjC87n8hXocC2Jg4o=) 10: n8t1FbmmcHRL1T025PodTqR3IcA.roa (hash: 449VA6EYanQ2mGU5FM+jEwpoRl0iEuk30UHtcfYkgJs=) 11: rL6AzulHQOLcRfhqRrPdMX43AzM.roa (hash: /p4sN3vL44k5lwQiWwAvoayVUuPAubPMAhf99ERn0+c=) 12: xE9QBs_-I-okZvOErWXLkoKDqmk.roa (hash: PCh0aczn6Bj3Hiz+iIpjZK10Xg+FpiTDJMX+WibJh2o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 05:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:a9:1e:0b:fd:78:6d:88:94:b5:45:46:c9:bd:3b:98:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ef57c2d9d93ac7cf9b2f17caa7859b6985b39b9d Validity Not Before: May 7 05:00:40 2025 GMT Not After : May 8 05:00:40 2025 GMT Subject: CN=eed1c00876c5f81af58eaae86e6e1b55783d29e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:29:b8:71:51:1e:9f:71:d7:10:e1:2b:e5:35: f0:05:54:73:92:9d:8d:5f:5a:62:53:97:75:f8:00: d0:c7:89:2e:54:53:9f:26:be:7f:d4:95:c8:69:98: db:71:53:d8:79:50:16:32:27:b8:24:ef:a7:4d:2b: f4:0d:b7:30:ad:63:d9:5a:4c:af:83:9a:75:7e:50: 8b:d1:ec:ae:ef:5c:a4:af:21:9f:dc:21:40:f9:83: c2:c0:57:5d:32:f0:c9:5c:22:8e:f9:94:9c:b4:d1: 5c:e0:e6:e4:31:f3:0a:06:2e:05:e6:a4:5a:79:b3: 1f:c3:67:d2:02:b7:45:5a:ee:95:9a:f9:03:73:50: 02:37:cb:23:1a:da:86:d9:1c:0f:9a:15:2c:e8:3f: 87:13:d1:64:b0:e4:b7:a2:8c:0a:8c:15:ec:27:ef: f5:0a:7b:41:60:4a:85:4b:ba:ed:99:10:45:3e:8b: 39:d1:c7:86:4e:52:e4:74:59:6e:ac:35:c9:3e:86: 6b:75:74:a8:b8:56:cf:0b:59:7b:ea:b0:19:e0:ec: bb:e3:51:66:f3:8c:49:b4:bd:bb:1f:f4:27:69:57: ea:89:58:4b:a9:7f:66:92:27:c9:64:cc:9b:4d:47: c3:3b:ee:93:c2:bb:d5:22:63:7d:31:65:5b:4e:e2: b2:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:D1:C0:08:76:C5:F8:1A:F5:8E:AA:E8:6E:6E:1B:55:78:3D:29:E2 X509v3 Authority Key Identifier: keyid:EF:57:C2:D9:D9:3A:C7:CF:9B:2F:17:CA:A7:85:9B:69:85:B3:9B:9D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/71fC2dk6x8-bLxfKp4WbaYWzm50.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/1e04b8-1031-43f9-9667-8e6f878db5f4/1/71fC2dk6x8-bLxfKp4WbaYWzm50.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:ba:54:a1:6c:27:76:49:e5:58:52:b3:e8:1e:af:64:a1:34: 57:0b:34:39:c8:88:df:b8:0b:56:fa:07:01:02:c1:7b:7b:06: 32:76:26:77:f2:0c:75:4b:6a:47:ba:63:4b:7f:91:84:e1:45: 8a:93:e1:a7:00:17:ed:48:ea:05:f4:fd:b1:d8:58:90:46:3c: 88:ed:d3:25:6e:5a:dd:3f:8e:1a:df:49:02:fd:e5:b6:95:10: 36:6f:20:85:36:01:e3:f6:4e:49:05:7f:81:5e:73:81:1c:e6: 0c:50:71:a0:25:35:c4:1a:1c:db:67:40:d4:d4:0b:a4:20:50: ce:d3:78:b3:0c:5a:46:92:1f:6b:fc:93:8b:0e:b6:f0:83:a6: ce:69:d0:62:be:5c:03:b8:0f:18:38:db:d3:96:79:b1:48:cd: 4c:a9:60:e9:7a:ad:9c:a1:20:59:18:32:a1:7a:66:5b:b9:17: 9c:ac:53:aa:fb:65:0c:80:65:72:ad:26:59:94:a4:8b:70:5e: 44:6b:a3:e4:65:14:a3:5e:96:7b:67:0c:80:90:ba:03:24:e8: 50:79:49:77:b3:17:57:1f:2a:e1:57:23:68:f4:10:44:aa:77: bf:62:b5:d4:fd:12:0d:2e:fc:ed:93:72:38:a1:86:69:67:34: a0:29:96:1f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZapHgv9eG2IlLVFRsm9O5jyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGVmNTdjMmQ5ZDkzYWM3Y2Y5YjJmMTdjYWE3ODU5YjY5ODVi MzliOWQwHhcNMjUwNTA3MDUwMDQwWhcNMjUwNTA4MDUwMDQwWjAzMTEwLwYDVQQD EyhlZWQxYzAwODc2YzVmODFhZjU4ZWFhZTg2ZTZlMWI1NTc4M2QyOWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmym4cVEen3HXEOEr5TXwBVRzkp2N X1piU5d1+ADQx4kuVFOfJr5/1JXIaZjbcVPYeVAWMie4JO+nTSv0DbcwrWPZWkyv g5p1flCL0eyu71ykryGf3CFA+YPCwFddMvDJXCKO+ZSctNFc4ObkMfMKBi4F5qRa ebMfw2fSArdFWu6VmvkDc1ACN8sjGtqG2RwPmhUs6D+HE9FksOS3oowKjBXsJ+/1 CntBYEqFS7rtmRBFPos50ceGTlLkdFlurDXJPoZrdXSouFbPC1l76rAZ4Oy741Fm 84xJtL27H/QnaVfqiVhLqX9mkifJZMybTUfDO+6TwrvVImN9MWVbTuKy7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO7RwAh2xfga9Y6q6G5uG1V4PSniMB8GA1UdIwQY MBaAFO9XwtnZOsfPmy8XyqeFm2mFs5udMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2Njct OGU2Zjg3OGRiNWY0LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8xZTA0YjgtMTAzMS00M2Y5LTk2NjctOGU2Zjg3OGRiNWY0 LzEvNzFmQzJkazZ4OC1iTHhmS3A0V2JhWVd6bTUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAILpUoWwn dknlWFKz6B6vZKE0Vws0OciI37gLVvoHAQLBe3sGMnYmd/IMdUtqR7pjS3+RhOFF ipPhpwAX7UjqBfT9sdhYkEY8iO3TJW5a3T+OGt9JAv3ltpUQNm8ghTYB4/ZOSQV/ gV5zgRzmDFBxoCU1xBoc22dA1NQLpCBQztN4swxaRpIfa/yTiw628IOmzmnQYr5c A7gPGDjb05Z5sUjNTKlg6XqtnKEgWRgyoXpmW7kXnKxTqvtlDIBlcq0mWZSki3Be RGuj5GUUo16We2cMgJC6AyToUHlJd7MXVx8q4VcjaPQQRKp3v2K11P0SDS787ZNy OKGGaWc0oCmWHw== -----END CERTIFICATE-----Generated at Wed May 7 13:33:26 2025 by rpki-client