$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: +pIGdYy/vMg9BuTfA3sw5KPl1n0/Ato0j9V1GtNlLsw= Subject key identifier: 63:36:84:49:61:B8:0E:16:4F:8F:81:AD:2B:C1:8C:28:E9:AA:64:37 Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 4BF512B92A9BF5FB73E74634F0D55E1A169CA767 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 0197 Signing time: Thu 08 May 2025 05:44:49 +0000 Manifest this update: Thu 08 May 2025 05:39:49 +0000 Manifest next update: Fri 09 May 2025 09:18:49 +0000 Files and hashes: 1: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: W33AY8n66YBiKFAdMlU1PcWz7qog9dVaO6LUtxa3ULA=) 2: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: 7H9TXOPmRSCpSLvpUH5h0kneMvmA5e0Xb9ByogPe2KE=) 3: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: +JU+ydXmMjIBHlt1kVXfkJBGqdmH1ATfk8PRfe8t4Rc=) 4: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: 3s0WD58S8heit10/2bz11ihR78rvFpIGbE4q+QDq4Yw=) 5: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: jXKKUMSDIyTb4ezvVpRo3NFIUpia25d8OkLWehTc52I=) 6: 326131333a393634323a3130303a3a2f34382d3438203d3e203438323830.roa (hash: 5gKZW/GJ6szyeA660SSSZ04c5MFxaWdT28EUODZAZVs=) 7: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: eJSksT4tbDIQ9nxZDstLl/kGIUJo4Eck2iH/dVXoJzg=) 8: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: Fa+HJyGeN4OUII4mISEevZUyzThis5w7MVhgz+1adr4=) 9: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: 2yKfO2WqsfZLWhFp8Vgn43JsqJJGZp0JL5E1MzApx8g=) 10: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 8/2mbGbaC4ennlzI7y1e8hUNr9fsr7Pr+/K69/OYKQg=) 11: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 May 2025 07:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:f5:12:b9:2a:9b:f5:fb:73:e7:46:34:f0:d5:5e:1a:16:9c:a7:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: May 8 05:39:49 2025 GMT Not After : May 9 09:18:49 2025 GMT Subject: CN=6336844961B80E164F8F81AD2BC18C28E9AA6437 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b5:69:77:64:01:92:ed:c1:3b:3d:06:85:ce: 02:06:7d:74:88:46:fa:fb:0d:70:7d:1a:54:f7:0c: b6:d1:6c:c9:81:5a:73:fa:c6:bb:23:0a:5c:f8:69: b0:6a:36:1a:83:96:d6:6b:68:9d:1c:41:02:3f:d4: 13:12:e5:7d:c8:46:01:4f:95:0b:a9:8b:76:18:db: 97:7b:dc:a2:26:dd:e1:67:84:c4:20:77:21:cb:6c: 82:1c:a1:92:27:f3:63:85:97:da:f2:39:bf:8b:0d: 12:e0:6b:48:47:70:34:a6:64:2e:b8:88:d4:fb:26: b9:c1:50:b3:ba:9d:85:01:7e:47:c4:b3:64:21:23: 9d:ef:d4:71:41:9c:c9:46:63:3a:ce:f6:e0:03:6b: 83:84:1d:42:1e:79:df:8f:16:f7:a5:eb:ac:65:96: ea:af:69:39:e2:46:b1:78:de:e8:67:60:84:a0:0b: 33:30:b6:3c:5b:f7:93:98:29:ea:e0:1b:be:3f:4e: 81:83:4b:06:19:b1:a0:9a:66:78:55:e7:0a:57:9f: 01:1d:b0:8c:23:75:d6:ae:a5:5a:47:3a:12:ff:83: 77:84:82:69:e7:88:22:04:dd:86:77:e6:da:4d:c4: bb:08:27:9d:bb:7f:62:0e:29:6f:02:2b:41:5e:78: b0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:36:84:49:61:B8:0E:16:4F:8F:81:AD:2B:C1:8C:28:E9:AA:64:37 X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e3:52:54:c9:7f:dc:cd:f4:83:19:e5:2e:02:de:e8:e3:5b: 5b:f7:aa:31:13:90:ae:42:c7:01:d5:2c:1e:55:4b:74:60:af: f6:cb:4c:74:9a:15:41:fe:ce:7c:cf:3f:9c:ca:50:06:68:91: 18:6d:c6:b3:7a:eb:da:7a:a2:1b:df:29:91:dd:93:85:b9:d0: f3:e4:21:3f:c1:39:69:4f:ce:40:5b:d5:ff:31:e5:4e:a3:7d: 45:bd:ca:ac:7c:a8:fd:6d:91:ef:6d:a5:80:4a:da:e5:1b:9e: 8b:73:27:3a:9b:a7:31:af:33:3f:40:76:00:56:68:0c:25:a8: bb:1b:84:24:49:c8:42:11:5c:d2:b2:62:47:b6:43:48:b1:2b: a8:7d:e8:10:89:9f:d4:6d:22:6d:c2:86:cb:c8:e2:70:29:d6: fc:de:20:de:c7:a1:21:ba:6c:fe:19:28:a3:d5:92:4b:93:64: 44:39:7c:31:9b:f2:18:46:16:bc:9e:77:4e:a0:ab:bf:61:a8: 36:c5:7e:9b:85:17:a0:e9:7b:f6:80:ce:a4:38:72:59:b9:07: 79:03:f9:df:85:31:bd:fe:55:47:3f:f4:6c:73:3e:ab:98:07: a4:ab:22:98:bd:08:ed:10:37:fc:e1:d7:93:08:ba:e5:30:f0: 61:fd:17:4b -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUS/USuSqb9ftz50Y08NVeGhacp2cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNTA1MDgwNTM5NDlaFw0yNTA1MDkwOTE4NDlaMDMxMTAvBgNV BAMTKDYzMzY4NDQ5NjFCODBFMTY0RjhGODFBRDJCQzE4QzI4RTlBQTY0MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2tWl3ZAGS7cE7PQaFzgIGfXSI Rvr7DXB9GlT3DLbRbMmBWnP6xrsjClz4abBqNhqDltZraJ0cQQI/1BMS5X3IRgFP lQupi3YY25d73KIm3eFnhMQgdyHLbIIcoZIn82OFl9ryOb+LDRLga0hHcDSmZC64 iNT7JrnBULO6nYUBfkfEs2QhI53v1HFBnMlGYzrO9uADa4OEHUIeed+PFvel66xl luqvaTniRrF43uhnYISgCzMwtjxb95OYKergG74/ToGDSwYZsaCaZnhV5wpXnwEd sIwjddaupVpHOhL/g3eEgmnniCIE3YZ35tpNxLsIJ527f2IOKW8CK0FeeLB1AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUYzaESWG4DhZPj4GtK8GMKOmqZDcwHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK+NSVMl/3M30gxnlLgLe 6ONbW/eqMROQrkLHAdUsHlVLdGCv9stMdJoVQf7OfM8/nMpQBmiRGG3Gs3rr2nqi G98pkd2ThbnQ8+QhP8E5aU/OQFvV/zHlTqN9Rb3KrHyo/W2R722lgEra5Ruei3Mn OpunMa8zP0B2AFZoDCWouxuEJEnIQhFc0rJiR7ZDSLErqH3oEImf1G0ibcKGy8ji cCnW/N4g3sehIbps/hkoo9WSS5NkRDl8MZvyGEYWvJ53TqCrv2GoNsV+m4UXoOl7 9oDOpDhyWbkHeQP534Uxvf5VRz/0bHM+q5gHpKsimL0I7RA3/OHXkwi65TDwYf0X Sw== -----END CERTIFICATE-----Generated at Thu May 8 13:36:11 2025 by rpki-client