$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft File: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft (raw, json) Hash identifier: sOg3OxCAOGNfg2tJnvBux9+2Em1W8vVRmGozMM4kYck= Subject key identifier: D3:4D:99:09:39:89:E4:BD:AD:F8:75:B4:6A:41:E2:A6:14:8F:BC:90 Authority key identifier: 94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 Certificate issuer: /CN=A91443440000/serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Certificate serial: 01B72D73F77AB224BE7E6E6C067EB55ABB384ACF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft Manifest number: 0172 Signing time: Sun 29 Jun 2025 10:41:57 +0000 Manifest this update: Sun 29 Jun 2025 10:36:57 +0000 Manifest next update: Mon 30 Jun 2025 13:06:57 +0000 Files and hashes: 1: 323030313a6466343a316463303a3a2f34382d3438203d3e20313533313736.roa (hash: Hm6Zisp9rtO1MRy4fuc8qXTfS/nQ+EU71DsoKF+5F24=) 2: AS153176.asa (hash: nTAPGafaR0TwBdv5jCAijmg7tuOn6F8lJBqMjy7Nxfk=) 3: 94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl (hash: Qi7dWtRgnoDc3lzmIaeAm82xvoU7qHphBtso1yg6tkk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 30 Jun 2025 13:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b7:2d:73:f7:7a:b2:24:be:7e:6e:6c:06:7e:b5:5a:bb:38:4a:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443440000, serialNumber=94A2F16DF417C32E057AA268C0E52C70D1A406C5 Validity Not Before: Jun 29 10:36:57 2025 GMT Not After : Jun 30 13:06:57 2025 GMT Subject: CN=D34D99093989E4BDADF875B46A41E2A6148FBC90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:79:6a:bf:aa:30:94:e1:e1:80:ba:1c:a0:01: 9c:8b:aa:9a:d5:03:7e:fa:e2:17:68:b0:16:0b:d6: 16:f5:97:31:27:b6:4c:15:4d:ec:94:2a:c9:4d:85: fb:18:c1:f5:8c:6e:6e:bc:66:e6:85:42:fe:b4:7f: 12:d4:31:6b:8f:73:98:1d:84:06:c1:57:33:30:4a: 55:6c:c4:26:09:67:4b:85:81:1d:04:b8:87:fc:1a: 25:2b:14:21:23:f6:1c:2f:2c:7d:85:2b:07:c1:b0: 3d:5c:11:2e:d8:0a:f7:8c:ae:d9:63:db:b5:25:1b: 5d:dd:08:93:7b:98:0e:0b:ad:c3:01:4d:68:12:56: 0b:33:a9:67:c8:04:ff:17:f5:ea:3d:41:54:60:53: 66:3e:0e:fc:3c:69:56:78:4d:ad:f3:88:7a:39:2c: db:ba:78:dc:4c:1f:48:b0:ef:b1:da:3d:da:7a:c5: 64:fe:2e:d2:a5:a8:6e:be:e0:c5:94:6c:74:a5:42: ad:05:83:67:2f:d5:8d:ae:a8:32:f9:b8:03:0c:04: 7d:24:cc:ea:fc:2d:12:9b:eb:3f:69:2d:72:69:82: f3:4f:e8:7f:91:40:d7:93:88:1d:23:b1:c1:1d:09: 64:4b:f8:9a:b0:54:4b:0a:0d:8a:5f:e1:20:65:e5: fd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:4D:99:09:39:89:E4:BD:AD:F8:75:B4:6A:41:E2:A6:14:8F:BC:90 X509v3 Authority Key Identifier: keyid:94:A2:F1:6D:F4:17:C3:2E:05:7A:A2:68:C0:E5:2C:70:D1:A4:06:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lKLxbfQXwy4FeqJowOUscNGkBsU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8d5cd14e-5f63-4f1c-94e3-27050c266480/3/94A2F16DF417C32E057AA268C0E52C70D1A406C5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:9a:5e:a3:d9:cb:58:77:48:7c:a3:3e:cf:90:44:51:1d:06: e4:33:e4:c2:1c:c7:66:53:cd:33:16:55:30:cb:4a:13:27:44: 8f:21:8a:3b:18:9f:f5:e4:07:b0:3a:37:ff:df:9d:bf:20:52: 3f:ed:13:2a:cd:da:d9:54:47:12:17:72:3b:44:12:93:35:0e: 50:7c:cf:cf:82:89:69:d3:98:73:78:d7:94:70:9b:0f:a6:20: c8:02:12:fc:75:2b:01:5c:fe:20:e7:96:ba:40:73:79:76:76: fc:92:42:09:b5:97:ca:15:2a:93:94:7b:25:c1:76:35:19:12: 77:f9:d4:76:71:13:89:16:80:6a:f5:66:0c:40:6d:9e:df:ea: b6:59:d5:ec:bc:db:09:1d:40:11:2c:2c:48:2c:c2:80:0c:65: d1:3d:ad:e8:88:0a:c0:65:94:35:fd:dd:c8:90:3b:20:3a:68: bc:dd:e0:d5:b1:3d:b9:5e:37:33:a8:ea:9e:55:74:db:bb:ac: 95:10:8c:b4:51:47:22:72:c5:d5:d3:e2:53:2f:c1:63:5f:77: 8d:5e:f4:0f:28:5b:00:4a:2f:1c:d3:54:2b:14:99:14:48:3e: 69:05:d8:0b:14:e2:3a:a5:5d:87:b1:2e:8b:bf:4e:14:63:c5: 05:ae:d1:2b -----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIUAbctc/d6siS+fm5sBn61Wrs4Ss8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxNDQzNDQwMDAwMTEwLwYDVQQFEyg5NEEyRjE2REY0 MTdDMzJFMDU3QUEyNjhDMEU1MkM3MEQxQTQwNkM1MB4XDTI1MDYyOTEwMzY1N1oX DTI1MDYzMDEzMDY1N1owMzExMC8GA1UEAxMoRDM0RDk5MDkzOTg5RTRCREFERjg3 NUI0NkE0MUUyQTYxNDhGQkM5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL55ar+qMJTh4YC6HKABnIuqmtUDfvriF2iwFgvWFvWXMSe2TBVN7JQqyU2F +xjB9Yxubrxm5oVC/rR/EtQxa49zmB2EBsFXMzBKVWzEJglnS4WBHQS4h/waJSsU ISP2HC8sfYUrB8GwPVwRLtgK94yu2WPbtSUbXd0Ik3uYDgutwwFNaBJWCzOpZ8gE /xf16j1BVGBTZj4O/DxpVnhNrfOIejks27p43EwfSLDvsdo92nrFZP4u0qWobr7g xZRsdKVCrQWDZy/Vja6oMvm4AwwEfSTM6vwtEpvrP2ktcmmC80/of5FA15OIHSOx wR0JZEv4mrBUSwoNil/hIGXl/bECAwEAAaOCAmEwggJdMB0GA1UdDgQWBBTTTZkJ OYnkva34dbRqQeKmFI+8kDAfBgNVHSMEGDAWgBSUovFt9BfDLgV6omjA5Sxw0aQG xTAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84ZDVjZDE0ZS01 ZjYzLTRmMWMtOTRlMy0yNzA1MGMyNjY0ODAvMy85NEEyRjE2REY0MTdDMzJFMDU3 QUEyNjhDMEU1MkM3MEQxQTQwNkM1LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYB BQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1 ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9sS0x4YmZRWHd5NEZlcUpvd09Vc2NO R2tCc1UuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOGQ1Y2QxNGUt NWY2My00ZjFjLTk0ZTMtMjcwNTBjMjY2NDgwLzMvOTRBMkYxNkRGNDE3QzMyRTA1 N0FBMjY4QzBFNTJDNzBEMUE0MDZDNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBACKaXqPZy1h3SHyjPs+Q RFEdBuQz5MIcx2ZTzTMWVTDLShMnRI8hijsYn/XkB7A6N//fnb8gUj/tEyrN2tlU RxIXcjtEEpM1DlB8z8+CiWnTmHN415Rwmw+mIMgCEvx1KwFc/iDnlrpAc3l2dvyS Qgm1l8oVKpOUeyXBdjUZEnf51HZxE4kWgGr1ZgxAbZ7f6rZZ1ey82wkdQBEsLEgs woAMZdE9reiICsBllDX93ciQOyA6aLzd4NWxPbleNzOo6p5VdNu7rJUQjLRRRyJy xdXT4lMvwWNfd41e9A8oWwBKLxzTVCsUmRRIPmkF2AsU4jqlXYexLou/ThRjxQWu 0Ss= -----END CERTIFICATE-----Generated at Sun Jun 29 15:35:13 2025 by rpki-client