$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft File: bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft (raw, json) Hash identifier: CiGLp5Tghui5fKPQ5tCH1XTj58pxJe+o6QVxutdmMSA= Subject key identifier: BA:96:D4:18:AE:FE:86:6A:A5:D4:BC:56:25:6B:24:CA:FB:78:E5:13 Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Certificate serial: 01967BA063165050C9878ED64D2B25529FD3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft Manifest number: 1591 Signing time: Mon 28 Apr 2025 09:00:30 +0000 Manifest this update: Mon 28 Apr 2025 09:00:30 +0000 Manifest next update: Tue 29 Apr 2025 09:00:30 +0000 Files and hashes: 1: GJGNGTLsLaPzo7RV9J9cGo7ZCKI.roa (hash: ycPiGraLR+oJB3cwW5Zn+sG2+Vx4fOUp8s3QYwjDHdY=) 2: LJGytq9N5LZAfsPYy6Q-7xTDnFQ.roa (hash: L8DANG0AVQkhh+LlhVF97AUo2a9H2Thg2+BhZTsZc9s=) 3: UTgRulJfmraGi0toko70wCEmGFA.roa (hash: /+qQOZA++jaLu5bGfT6khqkHyM9MBYNcQ493XjcwmbI=) 4: VdTIZg10bNsf97lJZgApyqs5rnw.roa (hash: JZmVNExP4W1uSJTEkKjxhG9IYISkRZKnN8IfaygiTvg=) 5: _RuQI5qt_gCJV8eSXJjHywGzAcM.roa (hash: DUnvGlvb0qBwrlu2PMIboP80gnaIA1d0Yg1mit2U5+4=) 6: _oIa1v5_qtgCStQ7Gr8CmdhmJJk.roa (hash: sBeGOfBKlFTzuSpkLUgZSpY0MFPhQu/DyIR2/KkHkUM=) 7: acsdEgh-dFdAGSqAE_lAYWdPdzo.roa (hash: lIvBIoA3FQRV1Et4CF8cBr7OP+IuEmQHKzZDW4s0Y6A=) 8: bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl (hash: NcY3qelWI75MkcDMV3JfJsc3HwdFWMxgeYV/jn7k29k=) 9: mJjHdX3SCVwj6yoNCT7Dpu7pXSo.roa (hash: ccP3x4XUmUaf8il9YXiD7LEPdeAv9/EZKZYCHAVZnrA=) 10: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (hash: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=) 11: yE8yGiOSM9_WiLeRkIg-dqNW2to.roa (hash: lSz5irzOf2/kcuzlFP5VLqCVP2LHBpJf2WHVunZKvMQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 29 Apr 2025 08:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:7b:a0:63:16:50:50:c9:87:8e:d6:4d:2b:25:52:9f:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129 Validity Not Before: Apr 28 09:00:30 2025 GMT Not After : Apr 29 09:00:30 2025 GMT Subject: CN=ba96d418aefe866aa5d4bc56256b24cafb78e513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:98:55:45:b1:b4:c8:2b:1e:0b:52:20:e9:b5: 73:06:37:27:93:c3:60:e2:62:f2:e8:fe:0c:d6:ae: 86:09:f3:e0:a6:ed:1a:f6:cb:80:c1:a3:37:c1:e3: 43:76:e1:d1:c4:17:15:25:f3:c7:a5:de:b6:31:1b: a8:c5:de:16:85:65:bf:cd:39:a2:86:61:a3:2c:47: f1:fe:0e:43:35:ae:78:55:98:0d:a2:b4:a6:ec:e3: ba:cb:e5:3b:70:4e:02:64:32:ed:ed:1a:40:a0:ac: 81:b2:6e:36:26:e4:6b:b2:5e:a4:72:10:ed:45:52: a0:f1:9a:d6:1e:71:56:1b:d7:ef:bc:44:b7:07:20: d4:45:fb:4e:75:2d:d3:88:b4:18:16:46:e8:df:0e: b6:48:3d:b7:c2:5b:db:22:ee:11:bd:14:f5:c7:90: 21:93:0d:bb:91:53:4d:75:62:e0:54:3d:d8:b8:33: 97:4f:f4:a5:70:bb:86:a2:02:17:a4:84:fe:d5:84: ca:49:d2:7c:37:ec:6f:c5:d0:3a:93:06:3b:7d:9b: 08:d0:d9:5d:47:88:26:ee:f1:8d:7f:3f:64:e2:26: 2c:58:71:41:34:80:58:6d:37:74:5b:7c:bc:d8:71: 61:3e:11:4b:65:c8:a7:4a:c7:6f:58:68:e1:05:0f: 38:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:96:D4:18:AE:FE:86:6A:A5:D4:BC:56:25:6B:24:CA:FB:78:E5:13 X509v3 Authority Key Identifier: keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:fc:fb:a6:a5:9f:45:87:93:97:cd:c5:f0:9d:ac:2c:82:90: 03:d8:16:47:21:61:2b:1e:07:97:fb:70:7c:6b:4d:5b:1f:ad: 23:2c:61:7d:c3:ad:f0:de:9c:0f:51:1c:0b:b6:20:0a:be:ea: 3e:7d:f0:bf:ae:e7:70:62:e3:4c:c0:ab:28:6e:94:f8:bd:f9: eb:37:3b:ee:c1:aa:76:ad:8d:ef:73:af:28:c1:97:73:df:22: 67:a0:bb:05:81:65:49:d5:f9:b2:2b:c2:1b:41:df:b5:67:f7: 17:11:62:35:33:6f:8a:9c:91:42:11:a1:75:64:b6:99:59:0d: ec:f3:e8:61:1d:5f:d2:2b:c6:36:33:bf:c2:6b:86:2d:2a:3c: 5b:77:3b:4c:6b:a4:cd:be:01:a2:5f:5e:a6:8e:ff:63:ee:70: a4:92:12:91:e7:9d:ec:a6:2f:da:5c:65:50:18:52:61:4b:95: fb:64:72:08:6d:da:38:5f:82:43:79:6a:6e:43:07:54:93:cf: 70:41:ba:47:12:82:43:72:aa:ab:49:e4:5a:97:06:3e:73:77: 2b:02:72:9b:d4:32:b5:2f:d2:85:ac:67:2c:e1:22:84:5b:9c: f0:e3:8f:44:09:66:2c:23:6b:a3:70:58:6c:fc:95:32:ce:2b: c6:92:7a:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZ7oGMWUFDJh47WTSslUp/TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzAzMGE0YjY3Zjk1YzJmZWQ5MDJkNTY2NTdmYWEyNDk0 YjUxMjkwHhcNMjUwNDI4MDkwMDMwWhcNMjUwNDI5MDkwMDMwWjAzMTEwLwYDVQQD EyhiYTk2ZDQxOGFlZmU4NjZhYTVkNGJjNTYyNTZiMjRjYWZiNzhlNTEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuZhVRbG0yCseC1Ig6bVzBjcnk8Ng 4mLy6P4M1q6GCfPgpu0a9suAwaM3weNDduHRxBcVJfPHpd62MRuoxd4WhWW/zTmi hmGjLEfx/g5DNa54VZgNorSm7OO6y+U7cE4CZDLt7RpAoKyBsm42JuRrsl6kchDt RVKg8ZrWHnFWG9fvvES3ByDURftOdS3TiLQYFkbo3w62SD23wlvbIu4RvRT1x5Ah kw27kVNNdWLgVD3YuDOXT/SlcLuGogIXpIT+1YTKSdJ8N+xvxdA6kwY7fZsI0Nld R4gm7vGNfz9k4iYsWHFBNIBYbTd0W3y82HFhPhFLZcinSsdvWGjhBQ846wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLqW1Biu/oZqpdS8ViVrJMr7eOUTMB8GA1UdIwQY MBaAFG8wMKS2f5XC/tkC1WZX+qJJS1EpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYt YmYzYjIxYTI3MGYyLzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy8yYjk5YTMtZGQ1Zi00ZmZlLTgyZWYtYmYzYjIxYTI3MGYy LzEvYnpBd3BMWl9sY0wtMlFMVlpsZjZva2xMVVNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPvz7pqWf RYeTl83F8J2sLIKQA9gWRyFhKx4Hl/twfGtNWx+tIyxhfcOt8N6cD1EcC7YgCr7q Pn3wv67ncGLjTMCrKG6U+L356zc77sGqdq2N73OvKMGXc98iZ6C7BYFlSdX5sivC G0HftWf3FxFiNTNvipyRQhGhdWS2mVkN7PPoYR1f0ivGNjO/wmuGLSo8W3c7TGuk zb4Bol9epo7/Y+5wpJISkeed7KYv2lxlUBhSYUuV+2RyCG3aOF+CQ3lqbkMHVJPP cEG6RxKCQ3Kqq0nkWpcGPnN3KwJym9QytS/ShaxnLOEihFuc8OOPRAlmLCNro3BY bPyVMs4rxpJ6KA== -----END CERTIFICATE-----Generated at Mon Apr 28 15:21:52 2025 by rpki-client