$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft File: AOT2p3Not87P5nIgtDZXax4Aiuw.mft (raw, json) Hash identifier: BsqgUNVwnZFXEUwfUHXxovwLyESgKSmhixKMt4JmrAQ= Subject key identifier: 5E:1C:6D:FE:91:92:1C:5E:ED:A6:BB:AC:33:1A:41:C3:07:FD:83:57 Authority key identifier: 00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC Certificate issuer: /CN=00e4f6a77368b7cecfe67220b436576b1e008aec Certificate serial: 019769CF1437B4A5C15518EBBBF0D0C37EFF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft Manifest number: 1674 Signing time: Fri 13 Jun 2025 15:01:08 +0000 Manifest this update: Fri 13 Jun 2025 15:01:08 +0000 Manifest next update: Sat 14 Jun 2025 15:01:08 +0000 Files and hashes: 1: AOT2p3Not87P5nIgtDZXax4Aiuw.crl (hash: qYVaKMm1cF55gCKJQMAfEQMPWII/AIjtPcXJnsg7sNM=) 2: FxbjUgILNh8KjbR9AMUoZSmmi6c.roa (hash: 3ZmoMll6QWurJqfB3jsbC7LM7XZQRyrFHg1c4LmOwgY=) 3: Svvhgo8X1drpMq_QokkBFa4W80w.roa (hash: eEM6GVW64ZPHTJr6mZ27nOJM8iax+cOishqtH69OQFE=) 4: USyW0O_6fcBP2bF0PoHV0RL6-Y8.roa (hash: rYcvR45gztdgTjrFLAUTrj+3T6dDm1wWFyZUivL/lkQ=) 5: UqESFWwPTzjbApEAfUlqEqe0RQE.roa (hash: s8ahaYu2umakIkOHunLEsrzEdAIsc7vrgdaPFAJX/B0=) 6: VkkvGMtenz96Ubj3KDzXyym1LzY.roa (hash: E/GDo41oktFV73vvuiDk3fNXk8LkaX2ghEwTcizgkaw=) 7: ixxzr0nDJC4AjQqKMOvhCRZIBS4.roa (hash: vRjMINEnN58WR68J2uy0IhPriH+22u9mcJzheawrNoA=) 8: kLCDMTUTRbJeJajr_KP2p663xqk.roa (hash: Cd9LBaXNUzFq1myVM5COYVtjKiIjTzwaQ7rIDyhpbzE=) 9: mLGnKqO6v6O1noVxpXvCIxFUsAI.roa (hash: eYFzp6km8ZVknUVUDwRvZQMvzac7kZXeuFOwR7d+Lr8=) 10: mS1g5aNaOIe32m5_FgfjTc6VbP4.roa (hash: DRqrjZnRKpeQWBmj82tLSsN99MhvkwnNbbxykbvBnVg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 14 Jun 2025 13:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:69:cf:14:37:b4:a5:c1:55:18:eb:bb:f0:d0:c3:7e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00e4f6a77368b7cecfe67220b436576b1e008aec Validity Not Before: Jun 13 15:01:08 2025 GMT Not After : Jun 14 15:01:08 2025 GMT Subject: CN=5e1c6dfe91921c5eeda6bbac331a41c307fd8357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b7:d7:fc:c6:8e:05:a0:14:8e:86:02:61:57: 29:cf:32:28:30:ea:4c:a2:5b:b3:a2:1e:94:a1:94: af:b8:5a:c2:bd:63:11:ee:48:b8:70:94:f3:68:e9: a9:5a:db:f5:d5:91:b2:cc:e6:b0:65:0b:f7:d7:18: bf:a2:d7:69:5b:d3:20:5d:f2:52:9b:c6:66:b1:66: 71:8a:46:61:b3:1a:1c:b4:f5:a3:93:8c:13:2d:86: c2:d6:d1:3a:6a:e2:3c:2d:c3:77:25:2f:21:61:fd: 31:ff:5d:7f:d1:90:bc:e2:72:38:e9:73:53:3d:cb: 28:18:01:3f:9b:3b:32:21:82:63:53:28:35:30:ad: 8b:ed:55:16:b9:d8:c9:bf:6a:e2:47:ec:22:ea:e9: ff:3f:a1:a5:a1:99:f7:29:d1:bd:5b:92:40:49:c0: ec:c5:ef:68:77:0d:26:89:31:b8:17:c3:8b:56:d2: c6:33:c1:08:80:38:1a:23:ce:d2:74:00:cc:61:ad: c3:82:84:4c:04:e2:52:ed:bb:2b:67:fc:7e:e5:c8: 34:95:26:91:7d:3e:f7:57:37:11:70:4f:ec:c9:02: df:06:06:a5:20:28:c1:cb:0a:5f:80:ec:53:44:82: 3c:c8:15:8d:ba:6c:8e:0e:39:88:18:91:dd:f2:0a: d9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:1C:6D:FE:91:92:1C:5E:ED:A6:BB:AC:33:1A:41:C3:07:FD:83:57 X509v3 Authority Key Identifier: keyid:00:E4:F6:A7:73:68:B7:CE:CF:E6:72:20:B4:36:57:6B:1E:00:8A:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AOT2p3Not87P5nIgtDZXax4Aiuw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/31/652da9-afc4-4e20-82fc-b07d8416ae4a/1/AOT2p3Not87P5nIgtDZXax4Aiuw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ec:9a:ce:2b:6f:62:15:04:80:d9:5e:b6:45:31:38:62:f7:e2: 79:f4:74:1c:65:64:e0:3c:61:ce:fc:e6:6d:93:c3:de:a4:2c: b3:9a:47:aa:19:71:4b:3c:fe:94:de:36:b2:31:38:3e:dc:9c: c6:d6:f3:e4:af:e3:10:fe:6b:ba:d4:3d:8a:5a:0c:b9:d4:ef: ca:93:a2:cc:a8:1c:a1:b0:ad:3e:18:31:3f:f9:95:d8:a0:5a: d9:cf:53:d1:d3:df:55:4f:f5:7e:77:df:98:c5:92:6f:db:80: b0:67:be:eb:7c:79:16:a9:4e:04:fe:31:2e:9e:54:21:9e:6f: 99:54:9c:54:34:22:42:b8:d2:b4:1a:5b:93:57:12:9e:0f:ce: 9f:43:70:71:97:17:7c:ef:64:a4:0b:6e:92:e2:4f:37:0c:14: 13:a5:79:32:db:7b:e7:a5:17:91:56:44:9e:10:2f:ac:e5:49: 0a:57:75:ba:56:22:d1:1c:b4:db:d8:1b:d0:9f:4f:a0:af:b8: 6f:11:ab:6a:7a:3d:a4:2e:65:9b:98:64:04:7e:bf:e2:3b:8e: 28:32:d5:22:62:73:41:f1:be:c0:f8:6a:57:a9:0c:4d:66:8a: 75:46:57:0f:a9:d3:c9:79:3d:89:1f:59:f1:15:0a:ec:b5:aa: ff:b4:cd:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdpzxQ3tKXBVRjru/DQw37/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwZTRmNmE3NzM2OGI3Y2VjZmU2NzIyMGI0MzY1NzZiMWUw MDhhZWMwHhcNMjUwNjEzMTUwMTA4WhcNMjUwNjE0MTUwMTA4WjAzMTEwLwYDVQQD Eyg1ZTFjNmRmZTkxOTIxYzVlZWRhNmJiYWMzMzFhNDFjMzA3ZmQ4MzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx7fX/MaOBaAUjoYCYVcpzzIoMOpM oluzoh6UoZSvuFrCvWMR7ki4cJTzaOmpWtv11ZGyzOawZQv31xi/otdpW9MgXfJS m8ZmsWZxikZhsxoctPWjk4wTLYbC1tE6auI8LcN3JS8hYf0x/11/0ZC84nI46XNT PcsoGAE/mzsyIYJjUyg1MK2L7VUWudjJv2riR+wi6un/P6GloZn3KdG9W5JAScDs xe9odw0miTG4F8OLVtLGM8EIgDgaI87SdADMYa3DgoRMBOJS7bsrZ/x+5cg0lSaR fT73VzcRcE/syQLfBgalICjBywpfgOxTRII8yBWNumyODjmIGJHd8grZSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF4cbf6Rkhxe7aa7rDMaQcMH/YNXMB8GA1UdIwQY MBaAFADk9qdzaLfOz+ZyILQ2V2seAIrsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMt YjA3ZDg0MTZhZTRhLzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMS82NTJkYTktYWZjNC00ZTIwLTgyZmMtYjA3ZDg0MTZhZTRh LzEvQU9UMnAzTm90ODdQNW5JZ3REWlhheDRBaXV3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA7JrOK29i FQSA2V62RTE4YvfiefR0HGVk4DxhzvzmbZPD3qQss5pHqhlxSzz+lN42sjE4Ptyc xtbz5K/jEP5rutQ9iloMudTvypOizKgcobCtPhgxP/mV2KBa2c9T0dPfVU/1fnff mMWSb9uAsGe+63x5FqlOBP4xLp5UIZ5vmVScVDQiQrjStBpbk1cSng/On0NwcZcX fO9kpAtukuJPNwwUE6V5Mtt756UXkVZEnhAvrOVJCld1ulYi0Ry029gb0J9PoK+4 bxGrano9pC5lm5hkBH6/4juOKDLVImJzQfG+wPhqV6kMTWaKdUZXD6nTyXk9iR9Z 8RUK7LWq/7TN+Q== -----END CERTIFICATE-----Generated at Fri Jun 13 18:58:17 2025 by rpki-client