$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: mDXgDi0K1uSRXZJiC6S1ji/qW2pm7FUEdG4UAOWCGP4= Subject key identifier: 3A:1D:27:80:EB:D8:26:EA:F2:1A:E6:7A:C0:08:C9:EF:A7:2B:3B:B2 Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 732FB7495917D0CF8508E7CBBB6D8E39EBE096ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 041F Signing time: Sat 28 Jun 2025 15:49:10 +0000 Manifest this update: Sat 28 Jun 2025 15:44:10 +0000 Manifest next update: Sun 29 Jun 2025 18:53:10 +0000 Files and hashes: 1: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: MBTQi0HOcbTwY/4fQl+vTOHLOQ2FmR/EhBIZ6Dj3u14=) 2: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: lxi2m0tJ4IwcIv1Qu/mxuwgzf8BGdtHdxfKNM9mKZEQ=) 3: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ii72WRjo+pDoTtYybgLKaFsOG8JUV0CPdunTnf7/tAg=) 4: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: U6sIE1tc5XNg8Vw7jnbxLLCNANnB9wH3voxb1FhuZwc=) 5: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: pxnqedD3kuwz1m+9x0q4e9R46P3xXGAP6tM7JZr4zqQ=) 6: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: EQc8ZSWRYu3w3yABE1KT+uLZnchUtUDhUBMKc9gsz8U=) 7: 34362e3138332e33312e302f32342d3234203d3e20383334.roa (hash: xUsUi3YtopFm9VP8hMqKJ5OknqKCy1oSAbxFuFcm2oA=) 8: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: JrYxAik1LSrCHWYYCnmlrWVCeG5WAB2pTmvtc84oy0c=) 9: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: 4jq0qwMJqWtfRUuzz3vPyKHtua4FM5/8Y3cvVGfTKBM=) 10: 34362e3138332e32392e302f32342d3234203d3e20313734.roa (hash: iFoLwhPM2dsVM0j9MR72yEvFI7xyXfHeaQDbIOf/NSg=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 15:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:2f:b7:49:59:17:d0:cf:85:08:e7:cb:bb:6d:8e:39:eb:e0:96:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Jun 28 15:44:10 2025 GMT Not After : Jun 29 18:53:10 2025 GMT Subject: CN=3A1D2780EBD826EAF21AE67AC008C9EFA72B3BB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4b:93:3a:54:b5:91:5a:e6:4b:aa:db:53:1f: 5e:89:d6:fc:81:b8:cc:eb:f0:38:fe:6b:fb:aa:5e: 30:de:d3:49:63:82:78:0b:3a:b8:2b:96:e5:c0:64: ab:5a:40:11:78:71:d4:1d:46:74:d0:8a:fc:db:14: 1f:86:78:f8:e6:d8:0a:1d:40:dd:72:0e:63:19:da: 2b:5c:d6:50:cc:5e:64:52:18:58:ed:4e:c4:aa:6d: 03:ec:a9:6f:ee:cc:b5:58:ec:14:ae:3f:6c:7a:50: a0:17:ab:ff:af:fc:72:8c:e3:3d:b6:09:ed:a8:c8: ce:5f:01:65:4a:1e:9f:62:89:b7:f9:8e:ae:c3:0a: d0:df:4a:8d:8b:35:c1:77:dc:74:a6:5c:35:8d:13: 09:7e:40:af:f8:6d:aa:a5:4c:76:aa:1d:db:27:a4: d2:81:29:8c:d0:61:ad:d9:f6:49:98:80:ea:85:b4: 84:00:a5:1d:de:39:f6:8d:5d:f3:e8:86:72:9f:19: ca:2b:11:d8:97:1e:7e:ac:fb:5a:8d:97:2a:ba:2e: 99:60:ec:96:fe:64:4d:df:8d:50:3e:fe:8c:d1:f2: e9:38:d0:3c:3d:d3:6a:02:60:c8:39:26:e7:fd:13: 9f:b2:96:6f:dd:3c:91:6c:1b:7d:14:cc:aa:22:cf: 0d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1D:27:80:EB:D8:26:EA:F2:1A:E6:7A:C0:08:C9:EF:A7:2B:3B:B2 X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:70:03:8a:1e:3e:f9:43:a4:d1:f5:07:98:cc:65:e3:58:12: ba:49:78:3a:ba:16:91:1f:f0:5d:ab:86:45:32:f5:7f:14:b4: 19:4e:ee:01:22:44:31:c7:9f:33:d0:19:9d:28:39:d9:fd:0f: 32:1a:30:bf:dd:d4:e2:c2:8d:e1:7b:a8:97:ff:5a:28:71:35: 28:82:67:51:8a:2d:01:f7:4b:69:2a:9e:63:14:70:6c:47:d7: a0:62:7d:ea:06:d9:14:fb:f1:a6:62:1a:b8:0f:00:c5:68:e4: f7:62:af:9f:66:95:99:41:5a:c8:23:4b:da:ff:7b:9a:1f:43: 1f:8d:b5:9a:4c:3b:b2:47:c2:8c:54:98:c5:c2:ac:19:d0:a3: 1e:eb:4b:66:b2:77:ac:b1:c0:06:f8:81:01:a8:7a:7f:3d:94: b0:93:24:24:94:58:5b:78:7f:25:5c:4e:0e:ac:5e:f2:1d:b7: c9:e7:03:c0:22:df:d9:c9:1a:c2:26:25:c4:71:2d:1f:a8:15: b2:ff:44:44:16:b7:8b:75:93:67:a4:ef:a6:ac:40:31:50:4b: 64:c1:08:6b:9f:9b:4e:1f:3d:0e:62:f4:f7:09:86:af:6c:a3: 57:1b:4e:29:97:aa:9f:10:8e:4e:e9:f4:18:5b:89:27:e4:05: a0:cf:50:a5 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUcy+3SVkX0M+FCOfLu22OOevglu0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNTA2MjgxNTQ0MTBaFw0yNTA2MjkxODUzMTBaMDMxMTAvBgNV BAMTKDNBMUQyNzgwRUJEODI2RUFGMjFBRTY3QUMwMDhDOUVGQTcyQjNCQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaS5M6VLWRWuZLqttTH16J1vyB uMzr8Dj+a/uqXjDe00ljgngLOrgrluXAZKtaQBF4cdQdRnTQivzbFB+GePjm2Aod QN1yDmMZ2itc1lDMXmRSGFjtTsSqbQPsqW/uzLVY7BSuP2x6UKAXq/+v/HKM4z22 Ce2oyM5fAWVKHp9iibf5jq7DCtDfSo2LNcF33HSmXDWNEwl+QK/4baqlTHaqHdsn pNKBKYzQYa3Z9kmYgOqFtIQApR3eOfaNXfPohnKfGcorEdiXHn6s+1qNlyq6Lplg 7Jb+ZE3fjVA+/ozR8uk40Dw902oCYMg5Juf9E5+ylm/dPJFsG30UzKoizw3xAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUOh0ngOvYJuryGuZ6wAjJ76crO7IwHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEXADih4++UOk0fUHmMxl 41gSukl4OroWkR/wXauGRTL1fxS0GU7uASJEMcefM9AZnSg52f0PMhowv93U4sKN 4Xuol/9aKHE1KIJnUYotAfdLaSqeYxRwbEfXoGJ96gbZFPvxpmIauA8AxWjk92Kv n2aVmUFayCNL2v97mh9DH421mkw7skfCjFSYxcKsGdCjHutLZrJ3rLHABviBAah6 fz2UsJMkJJRYW3h/JVxODqxe8h23yecDwCLf2ckawiYlxHEtH6gVsv9ERBa3i3WT Z6TvpqxAMVBLZMEIa5+bTh89DmL09wmGr2yjVxtOKZeqnxCOTun0GFuJJ+QFoM9Q pQ== -----END CERTIFICATE-----Generated at Sat Jun 28 20:31:37 2025 by rpki-client