$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft File: OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft (raw, json) Hash identifier: kYNYF00dhXVvEfeWeH5ZpEmIcKIIyqcDV2YLJ/KTUNU= Subject key identifier: E1:FD:62:2F:B5:DB:85:18:7B:E6:B3:3F:8B:8A:14:F3:17:9C:AA:A9 Authority key identifier: 38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84 Certificate issuer: /CN=38203463eb944b25c65135ca47bdbdab646f3984 Certificate serial: 019674F9DE67F94C02258A1387004AB700B7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft Manifest number: 124D Signing time: Sun 27 Apr 2025 02:00:54 +0000 Manifest this update: Sun 27 Apr 2025 02:00:54 +0000 Manifest next update: Mon 28 Apr 2025 02:00:54 +0000 Files and hashes: 1: 0Fmh8eaTe-TA8TzJaqV0xDv1Pzo.roa (hash: ZxN3vaamtDqMo8xYPJBI33oBeaqJ8QIz0amzm/bnvtg=) 2: 3nej7O_5-sZXCWeuqPyGbja9XnQ.roa (hash: p+MNFJ74eHqjwkPNS5+3QDf8dfQpJUlMjkJWwIsIN5s=) 3: JpI0mKHoKJGb5HpwhqpgQJ-989w.roa (hash: +p1PcccuIrfXBOI8p25PVV972uHT5dceE6dg0Tn0L/g=) 4: OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl (hash: HrgybVsyFbhTOl6cdSH9/MBhZ3bscRKSyg7ij5uAwI4=) 5: Q718Z9XRXwbb8eAv-JSYxNy8m3E.roa (hash: QwKiyK2H3mBEUzLEautBF28TXwWRoI+nh+WAF8i9ayk=) 6: eapLNVKWkPJvIKSSw8FvjnbqKM4.roa (hash: lQyg7ma6RsIJVyHbW0BuPsXW31hRi/B1a2UZgfzLbWY=) 7: flTVx8-F7E37FHcVoN5708sXexM.roa (hash: snTHoXZxUjfO9kURa3StUkh2LzhC8cP2m56/uoBtpVA=) 8: itNeHRmlhkmkLNFMeFLLpwNO4FY.roa (hash: iZAIvlpDGBx0E4icQgD8R/hQnWve6QmLhqITJu2cuoY=) 9: ktpnhSV94n1dgI9-LO5orxsroMo.roa (hash: HdTZITsdNE12a7HbwFoAmzx8Exmybo0iwACkTzBDWZ0=) 10: p6yu9K0prb-3wy95x-qc7KcMywQ.roa (hash: bNVvwouaPK4oyavhTkisO8oVhR1iolZntv1z6WFieUk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 20:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:74:f9:de:67:f9:4c:02:25:8a:13:87:00:4a:b7:00:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38203463eb944b25c65135ca47bdbdab646f3984 Validity Not Before: Apr 27 02:00:54 2025 GMT Not After : Apr 28 02:00:54 2025 GMT Subject: CN=e1fd622fb5db85187be6b33f8b8a14f3179caaa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:54:14:36:02:63:05:9c:8f:54:33:98:90:18: 46:2e:a8:77:c4:8a:50:25:84:85:dd:29:4b:af:88: f4:4f:58:30:f8:37:be:4f:90:4c:81:e1:b7:31:d8: 0c:1e:b0:7c:1f:8d:59:2b:9e:83:3f:a6:a8:56:e3: 56:da:b9:9a:02:ef:d7:b6:35:96:28:0e:bc:b0:14: 97:65:f0:54:13:47:d0:ac:17:fb:9a:b6:02:47:08: 36:15:f3:c3:aa:04:98:74:03:64:b1:75:d9:cc:77: 52:ea:fd:c0:e2:f5:24:e0:10:a3:b9:9e:74:aa:a0: a8:5e:b7:44:08:4d:89:ff:e3:a8:19:fa:84:21:42: 72:37:15:fe:4b:41:08:48:4d:4f:42:c5:73:65:6a: bb:25:60:a9:0f:6f:67:4c:8c:34:43:8d:3c:07:16: 69:4f:f0:e5:48:ec:03:e0:64:51:e3:9e:b9:3c:3e: 60:46:e2:aa:72:aa:e6:26:5f:3f:f6:6b:24:24:0e: af:2d:91:35:06:2f:d3:33:32:19:83:75:f9:4f:ec: bc:f6:c5:45:00:3a:d1:66:8e:ac:19:c9:04:98:7c: 90:b4:d4:25:4b:df:dd:72:9b:a4:c7:54:e6:d8:e0: a6:7a:4f:63:db:32:2e:56:4a:c7:12:39:f0:83:51: 19:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:FD:62:2F:B5:DB:85:18:7B:E6:B3:3F:8B:8A:14:F3:17:9C:AA:A9 X509v3 Authority Key Identifier: keyid:38:20:34:63:EB:94:4B:25:C6:51:35:CA:47:BD:BD:AB:64:6F:39:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OCA0Y-uUSyXGUTXKR729q2RvOYQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/0a2984-a869-440d-b578-58935179b985/1/OCA0Y-uUSyXGUTXKR729q2RvOYQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:26:28:2d:87:6f:c7:da:db:cb:4b:2e:fa:ca:ae:c1:09:60: 45:68:11:7b:25:44:62:95:7a:a9:a7:be:99:0d:e6:5e:5c:e5: a9:e3:82:68:b2:26:5f:53:60:85:6c:fc:b8:9b:b2:f4:66:cf: 3c:57:0a:d0:33:85:8f:c8:66:11:b8:fa:d7:14:e0:2f:ac:b4: ac:05:69:c2:32:da:ae:b5:59:ce:0a:35:ce:b2:65:1c:11:16: 37:21:a0:d6:3c:80:13:1c:71:9b:0f:04:c7:63:15:4e:bb:ef: 62:24:ab:c1:cd:cd:56:7a:f5:cc:87:49:c3:d2:a6:ee:99:da: d2:be:bf:4d:b3:c1:f3:41:ef:42:54:ce:f6:fc:d6:a6:df:c4: 21:73:b5:6b:e8:4c:77:94:22:b6:8f:90:b3:4d:f8:fa:d9:a8: 43:76:74:91:1e:61:10:01:85:bc:5a:9d:57:a6:c4:3a:1f:fe: bc:49:f9:8c:b4:56:23:59:8d:67:40:4b:c2:c8:f5:da:9e:4f: bc:ec:a0:ef:d5:2e:a2:b0:87:b6:eb:c4:27:48:74:b6:29:30: e3:5c:3f:7a:9a:c3:e2:ec:9c:e4:98:04:0a:6b:02:d8:ca:8a: ed:a6:fd:98:1f:5f:f9:28:c1:2f:8c:c0:f7:bf:a2:10:3a:4e: ec:94:45:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZ0+d5n+UwCJYoThwBKtwC3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM4MjAzNDYzZWI5NDRiMjVjNjUxMzVjYTQ3YmRiZGFiNjQ2 ZjM5ODQwHhcNMjUwNDI3MDIwMDU0WhcNMjUwNDI4MDIwMDU0WjAzMTEwLwYDVQQD EyhlMWZkNjIyZmI1ZGI4NTE4N2JlNmIzM2Y4YjhhMTRmMzE3OWNhYWE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtVQUNgJjBZyPVDOYkBhGLqh3xIpQ JYSF3SlLr4j0T1gw+De+T5BMgeG3MdgMHrB8H41ZK56DP6aoVuNW2rmaAu/XtjWW KA68sBSXZfBUE0fQrBf7mrYCRwg2FfPDqgSYdANksXXZzHdS6v3A4vUk4BCjuZ50 qqCoXrdECE2J/+OoGfqEIUJyNxX+S0EISE1PQsVzZWq7JWCpD29nTIw0Q408BxZp T/DlSOwD4GRR4565PD5gRuKqcqrmJl8/9mskJA6vLZE1Bi/TMzIZg3X5T+y89sVF ADrRZo6sGckEmHyQtNQlS9/dcpukx1Tm2OCmek9j2zIuVkrHEjnwg1EZ4wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOH9Yi+124UYe+azP4uKFPMXnKqpMB8GA1UdIwQY MBaAFDggNGPrlEslxlE1yke9vatkbzmEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvT0NBMFktdVVTeVhHVVRYS1I3MjlxMlJ2T1lRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi8wYTI5ODQtYTg2OS00NDBkLWI1Nzgt NTg5MzUxNzliOTg1LzEvT0NBMFktdVVTeVhHVVRYS1I3MjlxMlJ2T1lRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Zi8wYTI5ODQtYTg2OS00NDBkLWI1NzgtNTg5MzUxNzliOTg1 LzEvT0NBMFktdVVTeVhHVVRYS1I3MjlxMlJ2T1lRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbiYoLYdv x9rby0su+squwQlgRWgReyVEYpV6qae+mQ3mXlzlqeOCaLImX1NghWz8uJuy9GbP PFcK0DOFj8hmEbj61xTgL6y0rAVpwjLarrVZzgo1zrJlHBEWNyGg1jyAExxxmw8E x2MVTrvvYiSrwc3NVnr1zIdJw9Km7pna0r6/TbPB80HvQlTO9vzWpt/EIXO1a+hM d5Qito+Qs034+tmoQ3Z0kR5hEAGFvFqdV6bEOh/+vEn5jLRWI1mNZ0BLwsj12p5P vOyg79UuorCHtuvEJ0h0tikw41w/eprD4uyc5JgECmsC2MqK7ab9mB9f+SjBL4zA 97+iEDpO7JRFcA== -----END CERTIFICATE-----Generated at Sun Apr 27 05:27:07 2025 by rpki-client