$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft File: IQIbJSIimXv-M7fksxWsjV4GeVQ.mft (raw, json) Hash identifier: fac6YRCUUs81bLAEg81i1bI+1ACgECPTnEC3OjxMX4w= Subject key identifier: BE:91:FE:19:93:F9:A9:C3:19:13:51:BD:80:A7:8E:DE:03:ED:66:ED Authority key identifier: 21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 Certificate issuer: /CN=21021b252222997bfe33b7e4b315ac8d5e067954 Certificate serial: 0196729D8B9EBDA4F8E81DF0F8A371CC287D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft Manifest number: 124C Signing time: Sat 26 Apr 2025 15:00:49 +0000 Manifest this update: Sat 26 Apr 2025 15:00:49 +0000 Manifest next update: Sun 27 Apr 2025 15:00:49 +0000 Files and hashes: 1: 3MPX8Hgcgpj46XFJe7iOfP4Vx9k.roa (hash: X8ItFNiHsxzuYcCwG/t6V7CD4qgVaZVjCW5JDwwvo1k=) 2: BxuNK2XBHdo88OQyiW_5v_yfc5A.roa (hash: MFlUpzcLU82WlS9U/NlO4CgGrVyG4i0P38/lEf9NP58=) 3: IOSFPx8A8l-pe0og_vxIgYl_NBY.roa (hash: KLjHQhBVtLRCltNJ+XqJhMVg3V2m+fHC9ZN7NVjvtDY=) 4: IQIbJSIimXv-M7fksxWsjV4GeVQ.crl (hash: G0m85po+k+JLz6HH/b7rLzUfKc3FfbJB4YYRcXbMLQM=) 5: J5ajMdCsK_xzfbhWxoAV2iRMcqc.roa (hash: i0rnl2YK8VurUbtxqh46jYu42vj9ovnjrsY7s0Ha76E=) 6: SOOVbHd5gYu2v0x209z_cGQCr2U.roa (hash: C7kQ81CYBo0Oq99DP8IV8iemt8LVtCBJNDdI4WOwNuM=) 7: VbRKF62krl-KA_0dr7N8i46qs_A.roa (hash: PCEcpmBvUl37S6P9+HKjvTq2SZP3pF9GPHCRb88sRNw=) 8: W6gW_k4PAlDXWNXHj-7uVtaEhUo.roa (hash: 2GGe0Av8ayGGsSV+o4FXLrtSMr3LqMsV0faDwoshubs=) 9: aKD3hcB9C5yMAcSqmW6f9QOwaHQ.roa (hash: sPbLFI4V1a60B2tLmjr7UwTklRBYseXpDwU9aUGzLek=) 10: y_nsYj5ukmuGHg1FwnghygZPNtE.roa (hash: Z3btILynrnMXwAKpX0v9pTVp5I1JWRzLRy4WUkLzYaI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:72:9d:8b:9e:bd:a4:f8:e8:1d:f0:f8:a3:71:cc:28:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21021b252222997bfe33b7e4b315ac8d5e067954 Validity Not Before: Apr 26 15:00:49 2025 GMT Not After : Apr 27 15:00:49 2025 GMT Subject: CN=be91fe1993f9a9c3191351bd80a78ede03ed66ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:06:03:5c:ad:6f:2c:69:16:4a:79:2f:89:f5: bb:0a:80:ca:f7:48:ac:42:22:ba:b6:e0:f1:7b:ea: e8:95:88:15:6b:36:15:40:a1:0c:f6:6d:d0:63:5e: 7d:4c:4e:5b:5e:35:c9:b1:dd:f8:f4:ef:cf:a1:64: e0:d5:59:81:aa:30:70:d7:d6:f6:7b:45:82:ee:c0: 44:ba:ba:ec:71:72:05:ab:95:0c:68:59:35:34:ed: 30:29:01:3e:89:55:52:eb:d4:eb:71:58:36:cf:bb: b2:96:91:75:32:75:25:3e:c6:90:e5:eb:5c:75:55: af:9b:ee:ed:09:e0:e9:e2:03:9b:2d:08:cd:f4:58: 7f:23:3f:ce:e1:a2:ec:4d:85:18:d3:cd:93:3c:40: b1:4f:c8:b8:9a:b6:02:d7:41:9a:7e:2e:e0:2d:c1: 17:65:2f:89:9e:c2:b1:63:1d:f8:ee:82:1b:c5:2d: 5f:41:82:48:07:73:78:7e:bd:9f:93:82:15:6c:e7: c9:f4:d7:39:66:0d:45:5b:d2:59:34:9e:65:8b:86: b7:53:71:f3:5f:c1:e3:a4:aa:b2:ee:b6:51:d3:24: 25:a9:d7:20:10:0d:a5:10:ba:e6:84:55:73:97:17: df:c7:af:06:3c:d7:73:18:c4:bb:3b:ff:9d:0b:1e: 9b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:91:FE:19:93:F9:A9:C3:19:13:51:BD:80:A7:8E:DE:03:ED:66:ED X509v3 Authority Key Identifier: keyid:21:02:1B:25:22:22:99:7B:FE:33:B7:E4:B3:15:AC:8D:5E:06:79:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQIbJSIimXv-M7fksxWsjV4GeVQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59294c-0f24-40c5-b5c3-6eac62e60df7/1/IQIbJSIimXv-M7fksxWsjV4GeVQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:5d:52:95:41:42:8c:45:e6:42:17:ae:23:96:fe:29:3a:d1: e8:d5:ce:72:52:11:68:1c:2d:39:5d:27:e7:53:4b:72:b9:46: d2:61:77:d7:f5:2f:05:1b:cd:1b:5b:5f:3b:58:40:e5:49:fb: 20:5e:8e:bf:2a:cd:ba:0e:2d:55:1b:d0:aa:cf:25:c3:2c:40: 7f:55:e3:1b:f3:60:c3:74:24:08:5b:43:1f:e0:30:b8:03:26: 98:c1:47:21:75:a5:49:fe:55:df:f3:61:b5:de:43:ea:5a:41: d0:ba:e7:82:b2:76:9c:48:f7:a1:af:0a:3a:bd:7c:be:75:83: fa:e2:75:65:ee:2a:aa:55:d1:33:7e:26:3a:23:02:c5:44:ba: 33:41:69:10:a9:a0:b0:a1:fd:55:c4:17:ee:72:d8:2e:4b:e7: df:32:fb:1a:44:45:ab:fb:7b:98:00:a3:b8:fe:24:ed:1f:9e: 59:f3:8c:d9:e1:67:d1:c2:30:e0:85:f2:4e:33:29:0d:28:01: d4:a5:92:33:b7:6f:5c:87:08:7b:99:35:c4:70:32:ec:b8:94: 87:1b:19:d2:8c:49:de:bc:c1:f8:05:7b:a2:9b:f4:05:79:79: d9:38:07:c4:b9:f0:bc:f9:03:8b:65:5c:33:5e:5b:03:79:f2: 70:20:6b:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZynYuevaT46B3w+KNxzCh9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDIxYjI1MjIyMjk5N2JmZTMzYjdlNGIzMTVhYzhkNWUw Njc5NTQwHhcNMjUwNDI2MTUwMDQ5WhcNMjUwNDI3MTUwMDQ5WjAzMTEwLwYDVQQD EyhiZTkxZmUxOTkzZjlhOWMzMTkxMzUxYmQ4MGE3OGVkZTAzZWQ2NmVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAYDXK1vLGkWSnkvifW7CoDK90is QiK6tuDxe+rolYgVazYVQKEM9m3QY159TE5bXjXJsd349O/PoWTg1VmBqjBw19b2 e0WC7sBEurrscXIFq5UMaFk1NO0wKQE+iVVS69TrcVg2z7uylpF1MnUlPsaQ5etc dVWvm+7tCeDp4gObLQjN9Fh/Iz/O4aLsTYUY082TPECxT8i4mrYC10Gafi7gLcEX ZS+JnsKxYx347oIbxS1fQYJIB3N4fr2fk4IVbOfJ9Nc5Zg1FW9JZNJ5li4a3U3Hz X8HjpKqy7rZR0yQlqdcgEA2lELrmhFVzlxffx68GPNdzGMS7O/+dCx6b4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL6R/hmT+anDGRNRvYCnjt4D7WbtMB8GA1UdIwQY MBaAFCECGyUiIpl7/jO35LMVrI1eBnlUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMt NmVhYzYyZTYwZGY3LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC81OTI5NGMtMGYyNC00MGM1LWI1YzMtNmVhYzYyZTYwZGY3 LzEvSVFJYkpTSWltWHYtTTdma3N4V3NqVjRHZVZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg11SlUFC jEXmQheuI5b+KTrR6NXOclIRaBwtOV0n51NLcrlG0mF31/UvBRvNG1tfO1hA5Un7 IF6OvyrNug4tVRvQqs8lwyxAf1XjG/Ngw3QkCFtDH+AwuAMmmMFHIXWlSf5V3/Nh td5D6lpB0LrngrJ2nEj3oa8KOr18vnWD+uJ1Ze4qqlXRM34mOiMCxUS6M0FpEKmg sKH9VcQX7nLYLkvn3zL7GkRFq/t7mACjuP4k7R+eWfOM2eFn0cIw4IXyTjMpDSgB 1KWSM7dvXIcIe5k1xHAy7LiUhxsZ0oxJ3rzB+AV7opv0BXl52TgHxLnwvPkDi2Vc M15bA3nycCBrYg== -----END CERTIFICATE-----Generated at Sun Apr 27 00:56:17 2025 by rpki-client