$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft File: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft (raw, json) Hash identifier: Gm39sdLnhVRP/hySEqgp32FZTHLIfWg/1WdadD34qyQ= Subject key identifier: 36:55:FE:29:FF:69:BC:AC:42:69:40:A6:AC:93:C1:21:1E:85:4B:86 Authority key identifier: 8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C Certificate issuer: /CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Certificate serial: 07CF5EF63088C5D34A5393A7BD5C87AE8A064BF7 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft Manifest number: 016E Signing time: Wed 07 May 2025 19:39:20 +0000 Manifest this update: Wed 07 May 2025 19:34:20 +0000 Manifest next update: Thu 08 May 2025 19:55:20 +0000 Files and hashes: 1: 326131333a393634343a343030303a3a2f34302d3430203d3e20323034323931.roa (hash: tezZfjQIJSEoaPdienMyz3PTigWBtWV225R5RVQQguw=) 2: 326131333a393634343a343061653a3a2f34382d3438203d3e20323034323931.roa (hash: 0Augomo0JPTrdfBB/3ITj/ZgfSBftNdAdE/vOPCbcS0=) 3: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl (hash: ok8Z0oQZJIWh8G033G0j9jiE/2/98caL/18QY2CVEsk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 May 2025 19:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:cf:5e:f6:30:88:c5:d3:4a:53:93:a7:bd:5c:87:ae:8a:06:4b:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Validity Not Before: May 7 19:34:20 2025 GMT Not After : May 8 19:55:20 2025 GMT Subject: CN=3655FE29FF69BCAC426940A6AC93C1211E854B86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:73:c4:96:8a:51:b1:72:3f:b0:2e:a8:4e:71: 70:9a:31:c3:86:fa:e9:d8:91:2c:ea:88:e1:8b:15: 75:ff:14:ca:15:b5:ac:c1:3f:7c:01:ef:9a:bd:9d: c2:d6:24:96:ec:c9:ed:af:dd:5a:c3:59:fa:2f:f9: c5:4e:7a:eb:96:ec:dc:8f:8f:d9:9b:75:a1:5e:3e: 65:d7:09:0d:2e:7a:33:bf:70:d1:70:3d:a8:4c:ac: 4f:54:be:23:3d:2e:23:b7:8c:3b:ca:b5:b8:c7:b6: 61:60:30:2e:6b:e0:91:c4:c3:92:b2:73:20:2f:2b: ac:6e:b5:78:5c:70:c2:ef:fe:78:b3:06:22:cd:ea: dc:e2:eb:fd:09:3d:4b:2f:da:b2:30:7b:3a:48:fb: 90:f9:e6:4c:62:80:6f:99:ec:fe:67:4f:5f:10:93: de:2d:02:bb:b9:48:5b:18:4c:ec:50:60:41:5d:33: cf:c0:ad:9d:7a:58:2e:f9:67:31:47:60:e9:78:0b: cf:8e:83:6e:f5:ad:84:22:61:94:73:fe:fd:32:8b: cd:7a:a2:1a:96:d5:23:87:d9:45:13:b9:ae:63:00: af:c5:87:60:4b:5a:c2:74:90:b1:9e:dc:48:ed:a8: 89:ae:7d:d9:2f:89:51:bf:9d:5b:08:ec:3a:87:15: b3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:55:FE:29:FF:69:BC:AC:42:69:40:A6:AC:93:C1:21:1E:85:4B:86 X509v3 Authority Key Identifier: keyid:8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:77:b0:56:4d:ce:49:5e:e2:80:f4:f0:32:cb:47:2c:db:26: 7e:68:54:d5:2d:cc:c9:ac:2e:03:0d:47:5c:63:56:f8:7b:79: 00:4a:51:51:a0:13:37:02:cc:89:a5:96:07:4c:7b:fe:c3:7f: 59:4a:a3:f4:1a:3d:aa:c3:3a:ec:92:71:de:79:9e:31:e0:4e: 70:8c:f1:47:31:f4:63:7a:7f:85:c6:8d:4f:a6:78:e4:2d:a4: 5f:a6:3b:45:bb:e7:af:92:0f:47:43:97:cd:2d:7f:ee:fe:ee: f6:3c:9d:f6:af:09:04:8b:ba:93:25:12:03:a0:cc:6e:7f:7c: c4:ba:ad:06:a9:f1:79:fa:81:fa:8f:88:84:ca:92:47:ca:75: 87:1f:66:6a:f6:15:c8:75:1b:a0:73:8c:28:07:1a:f0:de:51: db:ae:0a:70:b2:af:d6:2a:d5:af:5f:b9:3c:8a:6b:5b:92:2a: 85:da:23:a2:e5:36:e2:a6:ec:31:19:5e:49:4a:43:c7:90:0c: 3d:a6:4b:e5:f8:ca:ca:77:6d:23:a5:a3:b2:ef:a8:75:3f:71: d3:21:fa:06:6e:1e:30:00:f2:4f:a8:2a:43:03:28:e1:c5:23: f0:1e:ff:6b:f3:df:a7:b0:79:da:87:5e:c3:76:3d:eb:7e:7e: 05:62:d0:3c -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUB89e9jCIxdNKU5OnvVyHrooGS/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEw OUU2RTk1QzAeFw0yNTA1MDcxOTM0MjBaFw0yNTA1MDgxOTU1MjBaMDMxMTAvBgNV BAMTKDM2NTVGRTI5RkY2OUJDQUM0MjY5NDBBNkFDOTNDMTIxMUU4NTRCODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMc8SWilGxcj+wLqhOcXCaMcOG +unYkSzqiOGLFXX/FMoVtazBP3wB75q9ncLWJJbsye2v3VrDWfov+cVOeuuW7NyP j9mbdaFePmXXCQ0uejO/cNFwPahMrE9UviM9LiO3jDvKtbjHtmFgMC5r4JHEw5Ky cyAvK6xutXhccMLv/nizBiLN6tzi6/0JPUsv2rIwezpI+5D55kxigG+Z7P5nT18Q k94tAru5SFsYTOxQYEFdM8/ArZ16WC75ZzFHYOl4C8+Og271rYQiYZRz/v0yi816 ohqW1SOH2UUTua5jAK/Fh2BLWsJ0kLGe3EjtqImufdkviVG/nVsI7DqHFbMJAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUNlX+Kf9pvKxCaUCmrJPBIR6FS4YwHwYDVR0j BBgwFoAUi60wfNTfEQFOQO3f/9YPmgnm6VwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzEvOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEwOUU2RTk1Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00MDBhLTRm ZDEtYWI4YS1lNzYxNmUyNDViNDkvMC84QkFEMzA3Q0Q0REYxMTAxNEU0MEVEREZG RkQ2MEY5QTA5RTZFOTVDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY1ZWFlNzQ1LThhYzktNGU3MS1iYzk0LWZjYjI2MTcwM2Y5Ni8xLzhCQUQzMDdD RDRERjExMDE0RTQwRURERkZGRDYwRjlBMDlFNkU5NUMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBjd7BW Tc5JXuKA9PAyy0cs2yZ+aFTVLczJrC4DDUdcY1b4e3kASlFRoBM3AsyJpZYHTHv+ w39ZSqP0Gj2qwzrsknHeeZ4x4E5wjPFHMfRjen+Fxo1PpnjkLaRfpjtFu+evkg9H Q5fNLX/u/u72PJ32rwkEi7qTJRIDoMxuf3zEuq0GqfF5+oH6j4iEypJHynWHH2Zq 9hXIdRugc4woBxrw3lHbrgpwsq/WKtWvX7k8imtbkiqF2iOi5TbipuwxGV5JSkPH kAw9pkvl+MrKd20jpaOy76h1P3HTIfoGbh4wAPJPqCpDAyjhxSPwHv9r89+nsHna h17Ddj3rfn4FYtA8 -----END CERTIFICATE-----Generated at Thu May 8 08:35:43 2025 by rpki-client