$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: yIHl5uohEx/qGXscsApXASL60kjieTVdQ1l7PqqcUyU= Subject key identifier: F4:76:33:94:45:E0:87:81:47:1B:F4:63:89:CB:C6:20:A8:F4:75:90 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 01CC23403CE456870281F3AB868F70DB3B2F94E7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 0327 Signing time: Fri 09 May 2025 02:10:25 +0000 Manifest this update: Fri 09 May 2025 02:05:25 +0000 Manifest next update: Sat 10 May 2025 03:05:25 +0000 Files and hashes: 1: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: RhIjHNXayp0tS4DN32atD6aHafLrHUAz0HkdV618CRY=) 2: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: W1jxvmdLHQHcziBfnsw9fORbwxRfsMyQmuMeyE+YAnI=) 3: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: VqRU0PsdkYcQlfLEqZmAkEPw8yvo7sqFgCP45AzG5Gs=) 4: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 03:05:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:cc:23:40:3c:e4:56:87:02:81:f3:ab:86:8f:70:db:3b:2f:94:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: May 9 02:05:25 2025 GMT Not After : May 10 03:05:25 2025 GMT Subject: CN=F476339445E08781471BF46389CBC620A8F47590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:72:07:d4:57:b3:fb:c5:b2:aa:43:54:57:8c: 49:9f:1e:8e:95:1e:b3:27:e4:43:77:e9:ce:5d:a7: a3:05:5c:3a:4e:6d:df:f1:19:b8:dd:07:fa:2b:78: 79:48:fc:7a:25:7f:e5:01:e5:e8:3e:5e:4e:20:b1: 37:3c:87:46:6e:c0:75:40:79:cc:81:33:d9:33:11: 27:32:64:67:14:2b:c9:17:06:0c:33:83:14:23:90: bb:20:f0:8e:35:88:a3:ac:00:1d:91:7f:13:34:6a: 33:cc:ad:31:e0:22:43:17:b0:29:6d:d4:f4:aa:89: 4d:b2:03:67:ea:01:29:df:7d:ab:b4:ff:29:dc:19: f7:55:a6:47:fc:17:36:28:ab:58:01:cf:9c:40:a5: 7f:cb:a3:49:2e:d5:a5:31:8f:9a:e2:ba:6c:cc:1a: 07:da:f7:da:94:b8:99:12:30:31:0f:a7:b0:73:0c: 59:92:48:d6:46:42:c9:9d:ef:1c:b0:d5:a1:0f:dc: bc:e7:81:54:75:a1:2b:26:a0:84:4b:6d:01:16:78: cf:39:03:0b:15:37:a6:96:61:79:20:9e:5d:0f:67: cc:d0:eb:6f:e1:a0:67:62:a5:ae:22:6a:6b:4d:ae: 0f:20:89:59:e1:1b:0e:d9:df:c0:ef:1b:f2:89:4f: e6:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:76:33:94:45:E0:87:81:47:1B:F4:63:89:CB:C6:20:A8:F4:75:90 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:5d:31:9a:22:a8:43:6e:a9:e5:91:7c:09:17:8d:05:63:e4: 3f:60:65:af:ee:db:67:fe:0a:71:59:fc:eb:ca:8c:0f:b1:f8: 85:49:42:39:bb:50:01:c8:8f:ae:e4:35:ba:17:98:7a:2d:ad: 44:5a:29:fc:87:1a:0a:18:0d:ee:d3:fe:d5:fe:f0:c3:ad:d0: 60:60:b8:f9:23:44:9c:ab:b2:42:28:99:c6:7e:be:e8:e7:cd: 7f:5e:d7:a8:91:bf:41:8c:e0:95:08:df:dc:c7:4c:f2:e9:27: 3f:a4:9a:2f:e3:54:00:0f:a1:b0:5a:3d:a8:71:31:ad:f8:b4: 5d:b1:b9:c7:57:28:2b:bd:ef:0f:3a:f2:99:00:16:b2:f5:83: 75:39:16:12:0e:94:17:b6:e5:49:63:6d:2e:f0:4f:02:e6:0d: 48:2c:30:07:ab:29:c0:60:1a:1a:59:c5:65:b6:03:24:92:4b: a5:ff:b9:54:7e:ed:1a:49:2d:fa:c4:e8:74:39:da:de:17:2f: 60:48:d4:79:02:4e:e4:aa:d5:47:ef:14:0f:93:98:3a:a1:fa: 1b:1d:62:b4:0c:a1:d3:b7:92:80:46:27:5b:ff:da:f4:17:20: 58:c3:44:9d:26:40:36:aa:34:c5:58:01:d9:c4:fb:14:52:7b: 16:b4:e7:c1 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUAcwjQDzkVocCgfOrho9w2zsvlOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTA1MDkwMjA1MjVaFw0yNTA1MTAwMzA1MjVaMDMxMTAvBgNV BAMTKEY0NzYzMzk0NDVFMDg3ODE0NzFCRjQ2Mzg5Q0JDNjIwQThGNDc1OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCDcgfUV7P7xbKqQ1RXjEmfHo6V HrMn5EN36c5dp6MFXDpObd/xGbjdB/oreHlI/Holf+UB5eg+Xk4gsTc8h0ZuwHVA ecyBM9kzEScyZGcUK8kXBgwzgxQjkLsg8I41iKOsAB2RfxM0ajPMrTHgIkMXsClt 1PSqiU2yA2fqASnffau0/yncGfdVpkf8FzYoq1gBz5xApX/Lo0ku1aUxj5riumzM Ggfa99qUuJkSMDEPp7BzDFmSSNZGQsmd7xyw1aEP3LzngVR1oSsmoIRLbQEWeM85 AwsVN6aWYXkgnl0PZ8zQ62/hoGdipa4iamtNrg8giVnhGw7Z38DvG/KJT+ZxAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU9HYzlEXgh4FHG/RjicvGIKj0dZAwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEV0xmiKoQ26p5ZF8CReN BWPkP2Blr+7bZ/4KcVn868qMD7H4hUlCObtQAciPruQ1uheYei2tRFop/IcaChgN 7tP+1f7ww63QYGC4+SNEnKuyQiiZxn6+6OfNf17XqJG/QYzglQjf3MdM8uknP6Sa L+NUAA+hsFo9qHExrfi0XbG5x1coK73vDzrymQAWsvWDdTkWEg6UF7blSWNtLvBP AuYNSCwwB6spwGAaGlnFZbYDJJJLpf+5VH7tGkkt+sTodDna3hcvYEjUeQJO5KrV R+8UD5OYOqH6Gx1itAyh07eSgEYnW//a9BcgWMNEnSZANqo0xVgB2cT7FFJ7FrTn wQ== -----END CERTIFICATE-----Generated at Fri May 9 11:18:07 2025 by rpki-client