$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft File: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft (raw, json) Hash identifier: 0Y4KpNyFpOKLxxJlm+81rwYos9sbDN4MmD7Vn5WNsus= Subject key identifier: 19:86:F5:48:4B:0A:F4:7E:82:F8:25:45:EF:C4:8D:CB:AE:03:9C:5F Authority key identifier: 42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 Certificate issuer: /CN=42e508fba8960f48071b119accbf57bdbf3a8057 Certificate serial: 74810FF55C5437CBC505584F3460193D190A6CC0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft Manifest number: 012B Signing time: Thu 08 May 2025 15:11:21 +0000 Manifest this update: Thu 08 May 2025 15:06:21 +0000 Manifest next update: Fri 09 May 2025 15:34:21 +0000 Files and hashes: 1: 36322e3138322e3139322e302f32312d3234203d3e203432353332.roa (hash: 3uX+IJtCK1auUN/owB303ntI6bBy0+b5ouSYztCnTmQ=) 2: 326130623a346530343a3a2f33322d3438203d3e203236393534.roa (hash: LizvwJL2nprToghg5qQqGpfO97UmahWuyDJ1ZaaEJS0=) 3: 5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer (hash: xVnvGBOQAGx7ddcmxacteZKEbUgAqtkW3B5rWiVC4Gw=) 4: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl (hash: dLnVsGUmIioU/uu2Wy8x1AVe9E1CR0BHppXyMU6ryAY=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 May 2025 15:34:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:81:0f:f5:5c:54:37:cb:c5:05:58:4f:34:60:19:3d:19:0a:6c:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42e508fba8960f48071b119accbf57bdbf3a8057 Validity Not Before: May 8 15:06:21 2025 GMT Not After : May 9 15:34:21 2025 GMT Subject: CN=1986F5484B0AF47E82F82545EFC48DCBAE039C5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ce:60:b6:fc:77:96:a3:95:b4:6a:fb:8e:34: b8:71:f4:16:d0:78:8a:82:b0:35:c0:1f:4f:4b:98: 7e:b3:c7:6c:05:00:0d:04:2f:4e:bd:eb:1d:50:43: 3e:8d:18:a4:5e:0b:6b:a5:5a:69:65:ec:80:4c:3c: 45:cf:c4:f6:ba:a3:57:38:cb:76:e2:ea:c1:88:bd: ee:c9:d3:83:75:fd:47:15:df:e4:1f:3b:e2:9f:10: 9b:40:25:48:03:48:8b:22:e9:3c:e1:e5:10:f1:f5: 29:78:df:fb:f8:10:dc:02:cd:c7:07:f1:b6:6e:df: cf:d3:c2:d4:60:12:e2:f8:7e:50:07:2d:5c:69:a7: 90:3d:27:ee:bd:58:f6:6e:67:66:36:d0:96:69:f1: aa:30:9c:b7:76:da:d8:91:d1:a0:da:30:ea:02:ec: d4:1c:85:10:d5:c3:25:3c:d0:25:76:4d:bc:ef:7e: 72:57:65:94:27:df:a7:e6:ee:ef:d5:af:9e:5e:99: ae:79:98:12:88:1d:68:98:b4:d6:62:8f:1f:c1:6d: 00:9f:ce:44:ed:eb:d9:8a:d0:36:f7:bc:40:f0:ae: 5e:bc:6f:2b:83:69:25:cc:56:26:c9:8d:54:ea:fb: 8a:4b:30:d5:df:c7:0d:54:e4:ca:69:20:db:04:af: da:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:86:F5:48:4B:0A:F4:7E:82:F8:25:45:EF:C4:8D:CB:AE:03:9C:5F X509v3 Authority Key Identifier: keyid:42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:5b:90:47:d2:e2:61:f9:f7:9c:75:f2:19:6f:60:23:e9:0a: 4a:22:c9:38:d4:3d:52:b0:08:1c:cc:96:66:c2:f5:f7:e5:1a: df:fa:57:c1:59:bf:6d:fb:c7:d8:c8:15:8c:8b:66:db:d7:58: 82:db:3e:79:c7:12:a5:23:df:02:fe:9f:3f:5f:5b:59:1a:df: 4f:b3:ec:38:a7:09:00:b0:a4:7b:41:f0:3f:b1:36:56:d8:14: 27:23:b1:1f:2c:74:2d:e0:8c:1d:c6:6b:fa:5f:e4:02:66:5c: 13:e4:16:9b:f6:51:02:72:85:d4:41:71:b4:d6:bc:50:b6:bb: 17:ea:af:52:8a:85:e1:b8:d9:75:a8:b9:d9:b4:04:be:3e:e5: 0a:67:40:3f:09:fd:1f:30:34:b0:84:68:05:e1:be:84:66:66: 1e:ab:05:d5:22:a9:c8:85:56:4e:03:df:ef:11:88:ca:ec:ab: 78:85:37:2e:a0:44:d3:fb:27:74:64:f5:8a:df:38:58:8f:17: 3c:db:2d:97:11:54:68:4e:a8:01:f0:1e:50:4b:6b:d0:5d:cb: c7:9c:1f:aa:a2:46:ae:6a:9d:ab:22:df:fd:e4:d2:ae:33:db: 80:8e:c3:6f:b4:ef:e1:af:c7:1b:cf:ae:ad:7a:e9:76:7b:c9: 29:b6:13:55 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUdIEP9VxUN8vFBVhPNGAZPRkKbMAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJlNTA4ZmJhODk2MGY0ODA3MWIxMTlhY2NiZjU3YmRi ZjNhODA1NzAeFw0yNTA1MDgxNTA2MjFaFw0yNTA1MDkxNTM0MjFaMDMxMTAvBgNV BAMTKDE5ODZGNTQ4NEIwQUY0N0U4MkY4MjU0NUVGQzQ4RENCQUUwMzlDNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCozmC2/HeWo5W0avuONLhx9BbQ eIqCsDXAH09LmH6zx2wFAA0EL0696x1QQz6NGKReC2ulWmll7IBMPEXPxPa6o1c4 y3bi6sGIve7J04N1/UcV3+QfO+KfEJtAJUgDSIsi6Tzh5RDx9Sl43/v4ENwCzccH 8bZu38/TwtRgEuL4flAHLVxpp5A9J+69WPZuZ2Y20JZp8aownLd22tiR0aDaMOoC 7NQchRDVwyU80CV2TbzvfnJXZZQn36fm7u/Vr55ema55mBKIHWiYtNZijx/BbQCf zkTt69mK0Db3vEDwrl68byuDaSXMVibJjVTq+4pLMNXfxw1U5MppINsEr9rjAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUGYb1SEsK9H6C+CVF78SNy64DnF8wHwYDVR0j BBgwFoAUQuUI+6iWD0gHGxGazL9Xvb86gFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzNiOGVjMDEtOGJhNS00NzlmLWEyMjktMGFiNzBlNDgx NWJiLzAvNDJFNTA4RkJBODk2MEY0ODA3MUIxMTlBQ0NCRjU3QkRCRjNBODA1Ny5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1F1VUktNmlXRDBnSEd4R2F6TDlYdmI4 NmdGYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04 YmE1LTQ3OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC80MkU1MDhGQkE4OTYwRjQ4MDcx QjExOUFDQ0JGNTdCREJGM0E4MDU3Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaluQR9LiYfn3nHXyGW9g I+kKSiLJONQ9UrAIHMyWZsL19+Ua3/pXwVm/bfvH2MgVjItm29dYgts+eccSpSPf Av6fP19bWRrfT7PsOKcJALCke0HwP7E2VtgUJyOxHyx0LeCMHcZr+l/kAmZcE+QW m/ZRAnKF1EFxtNa8ULa7F+qvUoqF4bjZdai52bQEvj7lCmdAPwn9HzA0sIRoBeG+ hGZmHqsF1SKpyIVWTgPf7xGIyuyreIU3LqBE0/sndGT1it84WI8XPNstlxFUaE6o AfAeUEtr0F3Lx5wfqqJGrmqdqyLf/eTSrjPbgI7Db7Tv4a/HG8+urXrpdnvJKbYT VQ== -----END CERTIFICATE-----Generated at Thu May 8 18:31:34 2025 by rpki-client