$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft File: Y2O7ZYlfOlSksyShDHmsmO_ioco.mft (raw, json) Hash identifier: h6F6mrgoEI5clCd8+yec6sQgb6zOKobVcXIM9/7/Mn0= Subject key identifier: 80:BB:0A:5D:56:AD:E6:18:D5:87:C9:0E:A4:AD:71:C8:04:5C:C3:A8 Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Certificate serial: 019671C22A291FC2FF7E9E993A42DC8C6712 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft Manifest number: 0E61 Signing time: Sat 26 Apr 2025 11:01:12 +0000 Manifest this update: Sat 26 Apr 2025 11:01:12 +0000 Manifest next update: Sun 27 Apr 2025 11:01:12 +0000 Files and hashes: 1: 1-YME93lc1AWh4-bMqvVDZYenQg0.roa (hash: Euu0W5ctvY2bfvnvaMrD1zBWGCi2DVPvkYQ6p9zTjts=) 2: B-5_egLdEl752iv9qxYdq8eosj8.roa (hash: Cdvp7KAkC+/9T90gVhhsMGICo5DVTrNIRp6EnoCK4JA=) 3: HdvJhluj0mmgaFdPVm0s0ofNMQM.roa (hash: p1LONhiWBtnwDM/uG7ENsu+2YSQKoESJAbc98yta6C4=) 4: KHKAC9a3rTijbcUG7k0TG0oIfQw.roa (hash: mQICnOFfRCc92bylLzQGJ/CCdUJnG0edN7A+0K2B+IE=) 5: PG5DPUzHhisMDmHNMi2OiyC4Krk.roa (hash: 5vgSE6xpOM3tTVvShPg0nfAqcYxZUDm3VYRogPEs1nM=) 6: QWifAQ3dSu8nhEAeOh_F1BphWro.roa (hash: itO7AV5EF/O+Sl0fYRa8cl6eA4q/nRa0iBG6sGElFQI=) 7: Y2O7ZYlfOlSksyShDHmsmO_ioco.crl (hash: k9WrNHZ82Dgw508SpY4P3CIihWWDR24n9W7hRSPXbD8=) 8: cWGszmobGgkTRu82roBLKR9vgkE.roa (hash: bXFzT/7+8yagPIwyKl0fdIxc7uJ/wfFRRzbV8w0a7yI=) 9: flrC_8zXbr01pJXgtmy__huZXOA.roa (hash: vzxZLPURPSKJVHe6QAWg0rqm4QhuQOuF7VBOWspThjA=) 10: nGntDaqcmONxUi1sd87UMvT9x4I.roa (hash: JUPdqbOgdaD6LXB1MI+aJwuym5PZcQO3ILLdGvRsfU8=) 11: p_iHNwwqh2be0OjT5JQIUHp4Uvs.roa (hash: iKYw9dWKEOaAlzn5AmL4rdC2+rWU6FDA6bFijDgxb2w=) 12: sFVwAvso2RiBjXQQC5X8xPsYJBs.roa (hash: +5oPRTUTMFR48JZpxxq3OBMXLIXgfURgzHz46nSWc5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 11:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:71:c2:2a:29:1f:c2:ff:7e:9e:99:3a:42:dc:8c:67:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca Validity Not Before: Apr 26 11:01:12 2025 GMT Not After : Apr 27 11:01:12 2025 GMT Subject: CN=80bb0a5d56ade618d587c90ea4ad71c8045cc3a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:18:a9:76:e9:8f:75:25:7d:7f:b0:0a:ac:c2: 43:81:b9:b2:52:a0:82:56:4b:c8:1c:e3:08:4c:f2: c2:80:89:5f:63:4c:77:81:9b:3e:c1:3e:e8:88:90: 7c:2f:5a:bb:19:25:03:bf:aa:1f:4c:aa:83:87:bd: 40:2e:01:6d:db:c9:fc:aa:78:72:a2:7f:8b:ad:51: eb:5b:9e:4e:3a:51:fb:69:fb:4b:6b:cb:30:6c:a0: aa:5f:1a:f7:c5:13:4d:12:3c:41:51:56:8f:b3:51: b6:68:39:39:18:0b:12:21:38:81:c8:f0:e5:81:6a: ed:f5:9d:fa:18:ad:80:8e:85:08:1a:54:81:3c:34: 8b:93:49:48:65:aa:dc:47:2d:fa:a2:d2:73:b5:06: a4:66:14:1d:0c:c2:1b:ed:5a:63:af:5a:60:54:0f: 10:2a:23:fb:68:19:70:75:50:94:97:78:59:c6:aa: 92:9e:bd:48:79:9d:f4:75:ef:95:ce:3e:51:1c:d4: 2a:15:db:4c:96:f6:5f:66:da:ef:02:4f:6f:92:cc: 7d:00:72:dd:ff:06:a3:76:27:e3:a4:1d:aa:d4:da: 49:c8:f4:eb:fe:52:a5:b6:a9:97:58:69:24:c2:bd: d6:46:93:fa:1d:3a:fc:bc:6d:22:b1:d4:b5:e8:ab: 3b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:BB:0A:5D:56:AD:E6:18:D5:87:C9:0E:A4:AD:71:C8:04:5C:C3:A8 X509v3 Authority Key Identifier: keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:e7:09:57:8b:bd:c3:cc:f5:9f:f9:49:2a:2f:e2:6a:33:13: 2b:63:52:e0:8d:75:6e:96:88:0b:4d:dd:75:e3:5c:d7:02:de: cf:dc:e2:bb:23:93:64:89:0f:e4:d2:5f:10:97:0c:86:49:f2: 51:98:30:b9:b1:94:a9:e2:ce:ab:fc:2a:17:1e:11:1b:b9:03: 0d:03:d8:1a:fe:ed:57:bb:6f:3a:40:76:fc:23:59:e7:52:09: 8d:0d:29:9c:94:00:00:56:1a:f6:94:2a:5c:b2:11:04:d8:6b: 2f:ff:8e:3e:fb:ed:00:04:47:1a:e8:53:f9:58:e9:22:f8:36: 48:c1:bf:d1:41:88:9d:f6:0f:23:ef:d3:26:ab:c6:b8:36:57: a3:68:5e:af:df:89:3b:1a:ee:05:55:01:29:f6:24:83:68:2a: 0f:2d:27:e4:f3:3f:3f:a2:e7:76:64:08:9c:45:67:3a:48:7b: 4e:f3:d1:78:a4:99:cd:69:25:c7:ff:56:cd:b6:60:00:7a:37: f7:f0:0f:a1:d0:07:88:89:91:99:3d:c3:0e:81:f5:e8:9e:61: 8d:72:20:d4:cb:3e:dc:d6:52:03:fb:eb:4c:b5:fe:37:a5:89: a6:32:7f:98:fc:23:da:6b:9e:01:b5:1b:22:c1:b9:a1:b1:09: 13:5d:f2:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZxwiopH8L/fp6ZOkLcjGcSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYzNjNiYjY1ODk1ZjNhNTRhNGIzMjRhMTBjNzlhYzk4ZWZl MmExY2EwHhcNMjUwNDI2MTEwMTEyWhcNMjUwNDI3MTEwMTEyWjAzMTEwLwYDVQQD Eyg4MGJiMGE1ZDU2YWRlNjE4ZDU4N2M5MGVhNGFkNzFjODA0NWNjM2E4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRipdumPdSV9f7AKrMJDgbmyUqCC VkvIHOMITPLCgIlfY0x3gZs+wT7oiJB8L1q7GSUDv6ofTKqDh71ALgFt28n8qnhy on+LrVHrW55OOlH7aftLa8swbKCqXxr3xRNNEjxBUVaPs1G2aDk5GAsSITiByPDl gWrt9Z36GK2AjoUIGlSBPDSLk0lIZarcRy36otJztQakZhQdDMIb7Vpjr1pgVA8Q KiP7aBlwdVCUl3hZxqqSnr1IeZ30de+Vzj5RHNQqFdtMlvZfZtrvAk9vksx9AHLd /wajdifjpB2q1NpJyPTr/lKltqmXWGkkwr3WRpP6HTr8vG0isdS16Ks72wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIC7Cl1WreYY1YfJDqStccgEXMOoMB8GA1UdIwQY MBaAFGNju2WJXzpUpLMkoQx5rJjv4qHKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMt YTZjYTQ1NGRiMmQ3LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy9kYjliZjEtZTAxOS00NWE0LTg2NjMtYTZjYTQ1NGRiMmQ3 LzEvWTJPN1pZbGZPbFNrc3lTaERIbXNtT19pb2NvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFucJV4u9 w8z1n/lJKi/iajMTK2NS4I11bpaIC03ddeNc1wLez9ziuyOTZIkP5NJfEJcMhkny UZgwubGUqeLOq/wqFx4RG7kDDQPYGv7tV7tvOkB2/CNZ51IJjQ0pnJQAAFYa9pQq XLIRBNhrL/+OPvvtAARHGuhT+VjpIvg2SMG/0UGInfYPI+/TJqvGuDZXo2her9+J OxruBVUBKfYkg2gqDy0n5PM/P6LndmQInEVnOkh7TvPReKSZzWklx/9WzbZgAHo3 9/APodAHiImRmT3DDoH16J5hjXIg1Ms+3NZSA/vrTLX+N6WJpjJ/mPwj2mueAbUb IsG5obEJE13yxQ== -----END CERTIFICATE-----Generated at Sat Apr 26 19:02:53 2025 by rpki-client