$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: 1c82dbABwo3roR+2FEsgRyw6g8sbaM57wyWXpceVA3o= Subject key identifier: 09:9C:40:0A:C9:59:7A:F4:32:3D:A8:CC:72:71:AF:AD:13:D5:BF:66 Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 65F9E2A6B7CE926E99FBA8D065FBAC4F29F7D2E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 03DA Signing time: Thu 08 May 2025 22:10:24 +0000 Manifest this update: Thu 08 May 2025 22:05:24 +0000 Manifest next update: Sat 10 May 2025 01:14:24 +0000 Files and hashes: 1: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: 4jq0qwMJqWtfRUuzz3vPyKHtua4FM5/8Y3cvVGfTKBM=) 2: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: MBTQi0HOcbTwY/4fQl+vTOHLOQ2FmR/EhBIZ6Dj3u14=) 3: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: vCb+lwmF71KvLP0HrzzI0VodiHkwMGK55EK0WV0nQ1M=) 4: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: 93WlArlicDYcrFXuyD5oQHa3ZB3bdIjadlrADmzUdDQ=) 5: 34362e3138332e33312e302f32342d3234203d3e20383334.roa (hash: xUsUi3YtopFm9VP8hMqKJ5OknqKCy1oSAbxFuFcm2oA=) 6: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: lxi2m0tJ4IwcIv1Qu/mxuwgzf8BGdtHdxfKNM9mKZEQ=) 7: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: eznERkc7DZbwVr+HCdvBRo/nv4eEoy29a9bx8QDzOz0=) 8: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: yMp4N27BXYFMvxFXpYtEzVI3r3SVHmOz4dCZdlG1vnk=) 9: 34362e3138332e32392e302f32342d3234203d3e20313734.roa (hash: iFoLwhPM2dsVM0j9MR72yEvFI7xyXfHeaQDbIOf/NSg=) 10: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ii72WRjo+pDoTtYybgLKaFsOG8JUV0CPdunTnf7/tAg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 00:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:f9:e2:a6:b7:ce:92:6e:99:fb:a8:d0:65:fb:ac:4f:29:f7:d2:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: May 8 22:05:24 2025 GMT Not After : May 10 01:14:24 2025 GMT Subject: CN=099C400AC9597AF4323DA8CC7271AFAD13D5BF66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b9:80:f7:38:bc:d5:2e:ca:bc:87:19:be:85: 66:8f:65:60:6a:b0:fd:97:e6:89:d6:b4:57:e3:5d: fc:3e:ec:15:45:f3:ca:51:d7:87:fd:2a:7e:ba:96: bf:ac:14:82:1f:3d:43:0c:29:18:13:3b:0f:35:ae: 19:d1:43:9f:ac:d2:1e:42:d1:e7:ea:1b:b7:bb:5a: cb:18:7b:81:de:0f:d8:c9:03:aa:ed:06:b2:20:8d: 16:82:16:b1:6e:6f:20:b2:11:59:12:e2:10:1b:c5: 14:fd:e5:92:19:80:a6:ba:f1:f0:99:a3:bb:14:75: ef:25:b7:0b:8c:72:c9:53:d4:09:72:1b:5b:f3:37: 8a:63:61:b4:c1:a3:86:f3:ab:35:b8:de:9a:bc:b5: e9:71:48:9a:3a:ad:f6:3c:6a:ed:d7:8f:c0:84:9c: a6:e8:dc:99:27:fe:12:33:6b:d4:5c:8a:ca:6b:48: 13:79:81:aa:80:da:b3:9b:28:b3:25:04:7b:b8:b6: 08:6e:95:39:54:9c:a8:56:18:3c:70:fc:ff:a8:8e: a6:5a:48:db:83:12:ed:0f:d4:1f:ee:c2:6a:a9:59: 88:43:24:38:2d:92:22:4d:d6:e0:d9:d4:f4:58:04: a8:f8:a2:91:8b:be:9b:24:f6:04:34:37:0f:fe:31: 44:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9C:40:0A:C9:59:7A:F4:32:3D:A8:CC:72:71:AF:AD:13:D5:BF:66 X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:33:6b:40:b0:7c:37:39:21:05:60:31:53:94:c5:32:fd:7e: a9:a0:a8:87:fe:ff:27:13:30:f3:57:bd:c9:c2:ca:b3:30:ce: f4:59:05:56:fa:50:24:c7:c0:94:5f:e1:24:2c:d1:76:60:a1: 85:90:1d:4d:f7:97:08:fc:11:86:b2:bc:a0:e9:e8:57:77:18: 07:bf:e0:f9:47:8f:0d:ca:c4:de:5a:14:69:36:f1:28:bd:ce: 92:0c:9d:32:db:a4:ad:9a:f1:60:3a:73:52:9e:85:1c:05:c9: 44:09:6b:da:8b:a6:86:c9:46:7d:99:63:dd:df:7c:42:bf:a5: 0d:45:a6:a7:04:b5:11:d2:76:0b:f2:13:f0:8a:2e:ac:22:9f: 7e:ca:70:36:64:16:f3:49:99:e3:5f:5d:de:11:57:41:1c:22: 81:29:18:27:42:8d:23:c4:ab:30:ff:a7:a4:ef:d8:45:3a:4d: 2a:e3:14:6b:a3:31:c4:2a:99:c7:9e:3a:cd:bf:be:b8:1d:ff: 6b:f0:32:a0:10:21:68:be:7c:af:05:7e:74:6f:6e:03:6f:aa: 52:f3:7f:0c:1b:ec:77:7d:5d:03:8a:aa:e3:3a:7b:ea:c8:e9: a0:86:da:4e:30:f4:dd:82:6b:d2:26:0d:63:9d:0d:a1:42:e3: a9:10:2c:5e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUZfniprfOkm6Z+6jQZfusTyn30uMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNTA1MDgyMjA1MjRaFw0yNTA1MTAwMTE0MjRaMDMxMTAvBgNV BAMTKDA5OUM0MDBBQzk1OTdBRjQzMjNEQThDQzcyNzFBRkFEMTNENUJGNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBuYD3OLzVLsq8hxm+hWaPZWBq sP2X5onWtFfjXfw+7BVF88pR14f9Kn66lr+sFIIfPUMMKRgTOw81rhnRQ5+s0h5C 0efqG7e7WssYe4HeD9jJA6rtBrIgjRaCFrFubyCyEVkS4hAbxRT95ZIZgKa68fCZ o7sUde8ltwuMcslT1AlyG1vzN4pjYbTBo4bzqzW43pq8telxSJo6rfY8au3Xj8CE nKbo3Jkn/hIza9RcisprSBN5gaqA2rObKLMlBHu4tghulTlUnKhWGDxw/P+ojqZa SNuDEu0P1B/uwmqpWYhDJDgtkiJN1uDZ1PRYBKj4opGLvpsk9gQ0Nw/+MUSFAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUCZxACslZevQyPajMcnGvrRPVv2YwHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVzNrQLB8NzkhBWAxU5TF Mv1+qaCoh/7/JxMw81e9ycLKszDO9FkFVvpQJMfAlF/hJCzRdmChhZAdTfeXCPwR hrK8oOnoV3cYB7/g+UePDcrE3loUaTbxKL3OkgydMtukrZrxYDpzUp6FHAXJRAlr 2oumhslGfZlj3d98Qr+lDUWmpwS1EdJ2C/IT8IourCKffspwNmQW80mZ419d3hFX QRwigSkYJ0KNI8SrMP+npO/YRTpNKuMUa6MxxCqZx546zb++uB3/a/AyoBAhaL58 rwV+dG9uA2+qUvN/DBvsd31dA4qq4zp76sjpoIbaTjD03YJr0iYNY50NoULjqRAs Xg== -----END CERTIFICATE-----Generated at Fri May 9 07:11:14 2025 by rpki-client