$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: i6W3S8tIqaJlooWu2TQu9KjyApmFOuqcRgmKjZQHt+Y= Subject key identifier: 3E:7F:5C:93:E7:CE:F0:B2:8B:93:EB:CB:6A:3C:86:5E:49:CE:A3:5C Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 5DEC0022C6BDC3F9BCD49C6E436DAFD22F156B6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0436 Signing time: Fri 09 May 2025 03:20:25 +0000 Manifest this update: Fri 09 May 2025 03:15:25 +0000 Manifest next update: Sat 10 May 2025 07:02:25 +0000 Files and hashes: 1: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: 7ySWNlqh8pfpYqSc3fbfv+VTSwiuDNFNlc7aZa5se9U=) 2: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) 3: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: LaBCcb8mjeERCC5tHKO7thlovLIwutTtPGiGYEZVPF8=) 4: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: Y0ZApSmGCRch+djTYBN+U0p8LaOUa+NCEgyRR8hvTcU=) 5: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: kGVNeEKX35ugOpsFmA5GwCl6f0GnZpLJS8pEn3cyWJI=) 6: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 7: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: nWQCK+c3AQHzVDQXhn2NzNxrhwrXfqvfpn+zz+FOw3E=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 May 2025 07:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ec:00:22:c6:bd:c3:f9:bc:d4:9c:6e:43:6d:af:d2:2f:15:6b:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: May 9 03:15:25 2025 GMT Not After : May 10 07:02:25 2025 GMT Subject: CN=3E7F5C93E7CEF0B28B93EBCB6A3C865E49CEA35C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:23:9f:e3:4d:4f:8d:29:09:2c:a0:98:72:3f: 1c:8e:3d:d6:41:c2:fd:07:14:f0:14:7f:4c:5a:1e: ee:18:ba:e0:86:9a:a5:3e:74:7b:fa:f2:cc:a6:a0: 22:e7:a2:17:22:ab:3f:7f:67:9f:ae:f4:52:92:df: df:9f:27:14:94:bc:49:89:66:d7:fb:f4:47:8a:fe: 62:b5:ae:56:e2:ba:44:48:d9:ed:f2:92:53:41:c6: 13:e7:97:85:60:1e:a6:be:78:f3:49:bc:29:ef:56: 0a:df:46:52:f8:4c:ea:29:55:8a:85:ad:8f:4f:d9: 50:12:59:18:6e:ff:8d:4e:0e:97:48:65:fd:fe:5d: 31:28:5d:6f:76:f8:8b:5e:26:73:e1:e9:63:d0:f9: 89:6d:b4:b3:64:5a:da:e8:f2:ec:07:ce:b9:ef:dc: 40:27:1e:8e:b1:08:d6:e4:4f:20:b7:e3:e1:c8:87: ec:42:3f:d3:fe:7a:d1:8f:50:3a:e6:86:f3:6d:55: d7:15:8d:a6:73:09:6f:53:24:19:9c:a5:45:b2:e5: 5b:71:23:eb:1e:92:e9:f2:1f:ac:01:4d:32:95:79: ec:22:57:81:d5:0f:90:ac:61:47:bf:32:3c:c7:28: fa:db:6f:89:27:b6:97:23:f3:17:45:1b:75:db:cc: 87:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:7F:5C:93:E7:CE:F0:B2:8B:93:EB:CB:6A:3C:86:5E:49:CE:A3:5C X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:a4:44:03:58:bd:e4:d7:74:7b:00:36:04:c4:3a:2e:02:af: 54:4a:0a:d7:2b:e3:ab:26:1f:51:ff:9d:0b:00:6b:97:68:27: df:5d:cc:76:4d:59:cb:0b:cd:4a:b1:73:c5:31:6f:4f:ae:05: 22:b7:bb:f9:09:48:65:4c:af:a4:07:75:ab:eb:da:94:fc:25: de:d2:63:ff:0b:37:b2:63:08:3c:1b:c3:67:78:c7:e3:14:fa: 38:af:83:8a:1f:6c:a7:74:18:50:ed:09:f2:fa:0f:0e:24:f8: 67:cf:c2:6c:72:0b:00:55:9b:5a:42:6a:cd:74:03:3c:ef:de: 6a:0a:61:2b:24:2b:ef:d6:57:1c:23:46:04:c7:1c:1f:fe:a8: 97:48:3a:15:53:4d:43:ed:82:4c:78:ea:e8:cf:0e:05:61:fb: f3:ed:78:81:43:14:12:8d:f4:39:a7:82:e5:27:7f:cc:ac:5e: de:6a:c2:d3:30:b7:74:8b:40:9f:4f:85:74:45:77:36:e1:1d: 88:59:4d:86:2f:89:fa:c3:05:a8:14:1e:1e:13:0c:ef:4e:88: b8:cf:7e:9e:c0:22:f3:7e:a4:93:8c:17:92:d0:31:84:9e:da: 19:1b:9d:aa:bc:e5:45:0a:d3:ec:51:d0:ea:6b:aa:30:8e:46: cd:6e:7f:66 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUXewAIsa9w/m81JxuQ22v0i8Va2owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTA1MDkwMzE1MjVaFw0yNTA1MTAwNzAyMjVaMDMxMTAvBgNV BAMTKDNFN0Y1QzkzRTdDRUYwQjI4QjkzRUJDQjZBM0M4NjVFNDlDRUEzNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/I5/jTU+NKQksoJhyPxyOPdZB wv0HFPAUf0xaHu4YuuCGmqU+dHv68symoCLnohciqz9/Z5+u9FKS39+fJxSUvEmJ Ztf79EeK/mK1rlbiukRI2e3yklNBxhPnl4VgHqa+ePNJvCnvVgrfRlL4TOopVYqF rY9P2VASWRhu/41ODpdIZf3+XTEoXW92+IteJnPh6WPQ+YlttLNkWtro8uwHzrnv 3EAnHo6xCNbkTyC34+HIh+xCP9P+etGPUDrmhvNtVdcVjaZzCW9TJBmcpUWy5Vtx I+sekunyH6wBTTKVeewiV4HVD5CsYUe/MjzHKPrbb4kntpcj8xdFG3XbzIebAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUPn9ck+fO8LKLk+vLajyGXknOo1wwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApKREA1i95Nd0ewA2BMQ6 LgKvVEoK1yvjqyYfUf+dCwBrl2gn313Mdk1ZywvNSrFzxTFvT64FIre7+QlIZUyv pAd1q+valPwl3tJj/ws3smMIPBvDZ3jH4xT6OK+Dih9sp3QYUO0J8voPDiT4Z8/C bHILAFWbWkJqzXQDPO/eagphKyQr79ZXHCNGBMccH/6ol0g6FVNNQ+2CTHjq6M8O BWH78+14gUMUEo30OaeC5Sd/zKxe3mrC0zC3dItAn0+FdEV3NuEdiFlNhi+J+sMF qBQeHhMM706IuM9+nsAi836kk4wXktAxhJ7aGRudqrzlRQrT7FHQ6muqMI5GzW5/ Zg== -----END CERTIFICATE-----Generated at Fri May 9 23:45:41 2025 by rpki-client