$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft File: 5dbG6LztQL0DLRdxjBseOa6EGug.mft (raw, json) Hash identifier: 4LEqB8sb2ltOToUHwriaW17k/PZ/UlLgBbOY8nTeg30= Subject key identifier: BF:2C:FB:66:EF:DA:71:0E:61:AF:AD:48:6D:3A:EE:B8:3F:78:0C:5C Authority key identifier: E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8 Certificate issuer: /CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8 Certificate serial: 01967A1F8DFB75AC6E6AB3C5D492A0EBB14F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft Manifest number: 1519 Signing time: Mon 28 Apr 2025 02:00:10 +0000 Manifest this update: Mon 28 Apr 2025 02:00:10 +0000 Manifest next update: Tue 29 Apr 2025 02:00:10 +0000 Files and hashes: 1: 1-4thfGCfV_85lt2WZkN-l71fwv0.roa (hash: 7cUPpyEsjpN2LkemwyOwpAzp6M6Mod4nt5VJCSxBi3s=) 2: 1-U546Wnv3X2dlqBwiPgmgD5rG0Q.roa (hash: UYLMoDLmtnbaqveYEw4e1FYtKG5Xz2eS50cYOB7habA=) 3: 4wlDChlgzrgFapvpBy46MAFlefc.roa (hash: EYqlVV6MH4EbjLdFRd/br9sG35MzdZTRrWmN3sTJ6/Y=) 4: 5dbG6LztQL0DLRdxjBseOa6EGug.crl (hash: ezb1nH3A+YD8sg82BZIDtVjPSCbZ7aAZKuKDkhdf8Gg=) 5: 8j9-L_RONYbO5pct6BaIUP49Jq8.roa (hash: TIaaBWL1jzkAtw/gcAYt5xesS4BiLd6+3AzOv7BVHgs=) 6: A-Fkuj2Ry_3wy9lszQO5iFmpTsM.roa (hash: MqXfL/IjblbyaoanvxCZ0s6/syF5tUBaoXoKEYvO5Ck=) 7: CqQsoC1jFsSbLss7hEFtLKrKDMY.roa (hash: 7YVK/zmpOd/tEBFOBPOhNo6QF1d67oChKSOQOYEoacg=) 8: Grw7nIi6RKNyYj-gX0F5si2FPWg.roa (hash: P3/krGXIhVeYouYxQBpxzM61tb05ZyoVg+B5ZJUx//k=) 9: PPn88xNGN-bL0F7MubjXlyHvb9c.roa (hash: nLdf7Pq2piaIE9RRNqGUwrSH2EAIpbdo6397rklNDK8=) 10: QmD1NuxNLYfmzuhbCU_99CJ-o-k.roa (hash: ugpwTRCdEyAoIefE/m+oUbM/pJjpH0ikF/U5tO+O/jM=) 11: W5W8H6uR-lCCEmn3v-XsPLRNVss.roa (hash: MqFZSzbOqhNyXJIgrbDDE4K1XPvGby9AbWHLANkDs8A=) 12: cKTcZs-U_VD8X5oF6KYi9vL_XPY.roa (hash: Ojplqzn5+rFkagKqgJjGg7MR261z7vGOzqJ6p2GYag4=) 13: dUjWdWqHZ3bB28SlJrHRKXOFumI.roa (hash: L5pkt5HZhPKaDfcEd3yHsIdGb5cnUbqIUW0exwEPLyc=) 14: j3rbxvXK8ctBFBgkYLP92aiT8pc.roa (hash: SkgwXJK38mScZ5LxMMAb0ANPv8t3zcxnc/zFVB7Ba0w=) 15: mza84PKMv0aUDroEfzQZip-9Um8.roa (hash: xfLnRg1sIPVix0oNDyz6FdqLtVqmjxCCvOykxKOTB0s=) 16: u0oJmkSedaonOs5uLkSqqL59uJ4.roa (hash: C6uJzJ3uiAjMgAmGSpBjfqhHJVcbN5byOHdLx08rPTM=) 17: ujwUfZi-j2E7tiXxuxPwDEMg9Do.roa (hash: ZVTJzzTXgsjt6o/MwKVQt8mq4QnG+HkM2MYUgIyYqIM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 29 Apr 2025 02:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:7a:1f:8d:fb:75:ac:6e:6a:b3:c5:d4:92:a0:eb:b1:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5d6c6e8bced40bd032d17718c1b1e39ae841ae8 Validity Not Before: Apr 28 02:00:10 2025 GMT Not After : Apr 29 02:00:10 2025 GMT Subject: CN=bf2cfb66efda710e61afad486d3aeeb83f780c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ba:80:fe:36:93:a5:d1:e5:b1:77:b2:ac:bb: 4a:40:ac:b0:0b:29:4b:da:0d:3a:89:71:ce:8b:af: b8:96:cd:93:69:d8:12:29:d8:7a:d1:34:67:b9:f0: 5e:21:f9:ed:0d:bb:91:b8:84:53:6c:2e:ab:1d:75: 8d:70:f7:94:5f:34:a2:23:7e:51:02:e6:c7:3f:b7: cf:70:de:f2:d1:ba:50:9a:fc:6a:ad:81:dc:3c:ed: f8:48:52:e0:df:0b:a6:3e:3c:0d:e1:68:50:46:b4: 6f:aa:ba:ea:6d:52:39:0a:59:be:63:51:e7:75:10: ff:8f:2b:53:87:b0:b6:9b:22:de:ac:7e:84:4c:9f: ac:f2:6b:17:f9:b9:ad:90:d2:38:37:b0:f8:65:33: 37:4e:05:e6:1b:8d:c7:f6:d3:2b:63:d9:5b:b5:96: c6:59:04:d0:8d:a5:87:46:72:58:12:65:c9:b4:c8: fa:dd:30:62:44:d7:cc:53:4e:e0:d0:1d:6a:ae:a0: c8:df:55:89:aa:88:51:60:b1:47:4e:8a:f3:e5:f2: 33:31:51:4a:ad:bb:5c:51:13:95:f9:68:18:6e:30: d9:a0:da:c1:92:ee:90:3d:a3:3c:c5:28:c7:02:04: 7f:cc:e5:08:c1:aa:04:cf:3a:16:63:b0:0a:9c:e1: 83:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2C:FB:66:EF:DA:71:0E:61:AF:AD:48:6D:3A:EE:B8:3F:78:0C:5C X509v3 Authority Key Identifier: keyid:E5:D6:C6:E8:BC:ED:40:BD:03:2D:17:71:8C:1B:1E:39:AE:84:1A:E8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dbG6LztQL0DLRdxjBseOa6EGug.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0894f7-e24d-4728-8cad-bd249b625797/1/5dbG6LztQL0DLRdxjBseOa6EGug.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:fc:fd:04:2f:bc:e7:20:5d:28:6d:d1:66:79:da:82:c6:38: ea:dd:00:b5:4b:23:1b:a4:0e:6a:e6:37:d6:18:7b:02:28:d3: 58:df:fc:3b:c5:44:d7:d7:2b:ce:d5:30:b6:e9:8a:a3:98:55: c2:26:9b:f2:15:15:ba:22:4d:28:1b:e8:82:47:10:2f:22:ba: a6:ec:d7:fa:70:38:a5:09:c0:ad:04:f1:ad:a6:f2:8f:07:97: bb:e9:c4:eb:30:29:8a:6d:ad:8f:66:42:60:77:6d:29:90:e0: b9:40:bd:cf:f6:66:91:9d:9a:cb:7f:43:fc:fa:c9:91:94:83: 46:8f:22:ee:12:69:cc:1f:67:93:9a:18:de:89:fd:95:a3:18: 0c:b2:7c:55:a1:b1:97:20:c5:28:f2:f0:b6:59:a2:12:a8:df: 00:ad:82:7e:dc:5d:0b:58:fa:49:6b:85:65:74:9c:f7:b4:63: 42:bc:9f:60:2f:ff:65:bd:7f:17:38:9c:c9:a6:a3:53:81:9e: 7f:99:c8:2d:b6:e2:3b:bd:29:63:41:b4:c0:86:80:0f:59:73: d5:65:5e:62:6b:51:65:28:ca:94:3e:63:c6:18:ca:a1:df:ae: 94:9b:20:19:f9:bd:02:1b:b8:6e:12:db:56:60:f8:b7:79:27: 23:83:50:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZ6H437daxuarPF1JKg67FPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ZDZjNmU4YmNlZDQwYmQwMzJkMTc3MThjMWIxZTM5YWU4 NDFhZTgwHhcNMjUwNDI4MDIwMDEwWhcNMjUwNDI5MDIwMDEwWjAzMTEwLwYDVQQD EyhiZjJjZmI2NmVmZGE3MTBlNjFhZmFkNDg2ZDNhZWViODNmNzgwYzVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5LqA/jaTpdHlsXeyrLtKQKywCylL 2g06iXHOi6+4ls2TadgSKdh60TRnufBeIfntDbuRuIRTbC6rHXWNcPeUXzSiI35R AubHP7fPcN7y0bpQmvxqrYHcPO34SFLg3wumPjwN4WhQRrRvqrrqbVI5Clm+Y1Hn dRD/jytTh7C2myLerH6ETJ+s8msX+bmtkNI4N7D4ZTM3TgXmG43H9tMrY9lbtZbG WQTQjaWHRnJYEmXJtMj63TBiRNfMU07g0B1qrqDI31WJqohRYLFHTorz5fIzMVFK rbtcUROV+WgYbjDZoNrBku6QPaM8xSjHAgR/zOUIwaoEzzoWY7AKnOGDRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL8s+2bv2nEOYa+tSG067rg/eAxcMB8GA1UdIwQY MBaAFOXWxui87UC9Ay0XcYwbHjmuhBroMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wODk0ZjctZTI0ZC00NzI4LThjYWQt YmQyNDliNjI1Nzk3LzEvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC8wODk0ZjctZTI0ZC00NzI4LThjYWQtYmQyNDliNjI1Nzk3 LzEvNWRiRzZMenRRTDBETFJkeGpCc2VPYTZFR3VnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAPz9BC+8 5yBdKG3RZnnagsY46t0AtUsjG6QOauY31hh7AijTWN/8O8VE19crztUwtumKo5hV wiab8hUVuiJNKBvogkcQLyK6puzX+nA4pQnArQTxrabyjweXu+nE6zApim2tj2ZC YHdtKZDguUC9z/ZmkZ2ay39D/PrJkZSDRo8i7hJpzB9nk5oY3on9laMYDLJ8VaGx lyDFKPLwtlmiEqjfAK2CftxdC1j6SWuFZXSc97RjQryfYC//Zb1/FzicyaajU4Ge f5nILbbiO70pY0G0wIaAD1lz1WVeYmtRZSjKlD5jxhjKod+ulJsgGfm9Ahu4bhLb VmD4t3knI4NQrw== -----END CERTIFICATE-----Generated at Mon Apr 28 12:28:52 2025 by rpki-client