$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: n/scC9aWELevJwWBeY0++6bxncMxXlLBkBMk4pdOd0M= Subject key identifier: 17:1F:D5:03:12:C9:C1:8F:21:D3:9F:88:20:B5:D1:74:69:6A:23:8E Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 01967378F6C10EFC47482336691D2C479EBA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 07C7 Signing time: Sat 26 Apr 2025 19:00:29 +0000 Manifest this update: Sat 26 Apr 2025 19:00:29 +0000 Manifest next update: Sun 27 Apr 2025 19:00:29 +0000 Files and hashes: 1: AVhJFVI2rddRDN9TZkxu2cOqd_U.roa (hash: Z21jddbs3xWpC/IPmSRdmy8CLER4CTA+wtUEhdmSjWA=) 2: GJoKWxqXVe9byJ7vEN4O3FsAPbw.roa (hash: 3INb6wymsZxncaYsZTd/NPz0kxdapcCp+SJMbjM8l0Y=) 3: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 4: Qu4ONRj9Tnvy_jUVCaYk-FPrpBY.roa (hash: uN7owuwNEzSt/aZwd8y6vL95cBARm3xUUdKefTm2BpI=) 5: TAjOCfxKmVaufyeMAaRjJQRrJpo.roa (hash: SxUJ/IMNoKh2IGXhAoqHbHYgCNszkM1cz1fmREsS+Ko=) 6: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: FrnKhjOb2ZaJ3C8zoNkjvj9AyCK9LO8C15JgjKHarBc=) 7: WNXcUWyOPw_jgwsMhjt3tr-DAXY.roa (hash: xCXJ3TCSOan9saMZR5HLRDriokOQriL1DMFUL1E2Cpg=) 8: ZGAhlZjnasS5BKxbuKtTlb2IG8g.roa (hash: /CWZhme5O1ZBpiwykCFeFAG1hv6S2QE4eqN/Qea+vmc=) 9: cbgxDriMd1w8Ezk1j_uW9c-uk8k.roa (hash: RA/kZIx4fzU+RCbQ8O1BxIKCZRJDjC4JRLSNt3ovrQ8=) 10: cblkW3ZYAZ5VQl8X3gHLFnE7S8g.roa (hash: +MK4cG6/hNPklJaXz5PxE5zp6rLCIwlFMKcCPx37Jxo=) 11: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 12: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 13: jDpfwbf-MYo1z6WLxxoQR9fD_bw.roa (hash: zExaE643LO98tK4NvHjnGSmdQinpnm87QOpAVLfdMLY=) 14: puM6zDTCACkm8XM63GmrJCmb9w4.roa (hash: /wWLN32nFvo5E1f9qQj5og/sDQq7KYw38OVpA8GGi58=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 27 Apr 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:96:73:78:f6:c1:0e:fc:47:48:23:36:69:1d:2c:47:9e:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Apr 26 19:00:29 2025 GMT Not After : Apr 27 19:00:29 2025 GMT Subject: CN=171fd50312c9c18f21d39f8820b5d174696a238e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7d:9e:ac:96:0e:86:5b:55:d1:c3:fe:c1:73: 36:74:07:11:cf:70:4a:4d:59:a7:af:f2:06:a1:ae: b3:3e:8e:bf:8e:30:88:2a:0d:87:14:93:d6:3c:24: 89:97:71:0a:55:f7:0e:e1:b5:36:ae:f8:fc:d4:c0: 34:f7:85:c6:88:04:72:d1:be:74:d4:fe:98:36:39: 26:f4:e1:3c:ca:c3:08:de:17:59:63:ef:a6:d2:33: 02:1e:13:4a:96:6f:ec:a7:96:a1:03:68:ac:8c:f7: ae:d6:3d:d4:96:a0:c4:c1:fc:fe:36:c5:e3:3d:59: 65:10:10:7d:2f:0b:a7:b8:e4:d6:f6:86:90:86:8b: 71:18:9e:f2:91:7d:3b:c6:80:b1:ff:93:db:e1:c9: 3f:39:69:90:d3:c9:70:7d:3a:cd:0c:e3:6c:13:46: e8:30:a9:9d:f7:d3:61:a8:83:71:c9:b0:d1:2c:cd: f9:07:8d:ec:b2:14:ed:46:58:09:d1:e7:1a:7b:79: 13:e5:8f:47:68:63:25:67:3d:70:1e:9f:03:6a:4e: 34:4f:1c:57:52:6b:36:a6:d3:fe:20:e7:b9:5b:6e: b7:7d:49:08:dd:86:a0:c5:29:2d:91:4a:6e:93:c2: 4f:f4:c7:2a:af:60:65:67:ba:df:ef:d9:54:07:38: 2d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:1F:D5:03:12:C9:C1:8F:21:D3:9F:88:20:B5:D1:74:69:6A:23:8E X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:5e:35:25:a2:a7:4a:72:ad:98:80:4d:29:2d:3c:a7:9e:ba: df:c6:ce:e5:0f:7d:49:ed:61:d4:89:76:ab:ae:e6:6b:fd:a8: 4b:6f:c1:68:bd:c7:b3:04:8e:69:c2:8f:2e:f2:d0:e5:9c:3a: 37:3d:df:4b:35:ce:83:1c:a0:c3:a5:a5:f4:71:20:47:6b:ef: dc:ef:85:2a:cf:4a:01:0d:f2:87:e8:71:b5:d5:b2:be:95:3d: c4:1b:f3:a4:56:c6:9f:9c:da:63:56:9c:3a:af:a6:de:fa:44: 91:c4:a0:94:76:11:ad:a6:ba:d6:fa:0d:bc:0d:bf:7b:0f:42: 6c:77:d1:9c:51:27:6b:eb:01:7f:19:99:98:81:35:28:36:28: 33:19:12:f7:5b:cd:ea:60:ba:43:c0:dd:d6:3a:f2:d9:be:57: 16:6e:2f:4c:c3:92:ff:a2:6e:b5:e8:07:ec:6f:06:bf:c4:8c: 04:fe:2d:d0:f6:3a:98:7b:63:2e:00:db:cc:03:f2:4d:82:ee: 89:13:d4:f1:21:16:be:7a:15:96:e6:98:55:42:b8:b8:8a:5e: f5:18:3c:6e:c1:66:e9:ba:46:49:16:e1:cf:5c:53:8f:74:b9: 40:74:ff:3c:3b:87:9c:3c:28:8d:11:3c:a5:20:5d:ba:88:bc: 7a:7e:96:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZZzePbBDvxHSCM2aR0sR566MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUwNDI2MTkwMDI5WhcNMjUwNDI3MTkwMDI5WjAzMTEwLwYDVQQD EygxNzFmZDUwMzEyYzljMThmMjFkMzlmODgyMGI1ZDE3NDY5NmEyMzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwn2erJYOhltV0cP+wXM2dAcRz3BK TVmnr/IGoa6zPo6/jjCIKg2HFJPWPCSJl3EKVfcO4bU2rvj81MA094XGiARy0b50 1P6YNjkm9OE8ysMI3hdZY++m0jMCHhNKlm/sp5ahA2isjPeu1j3UlqDEwfz+NsXj PVllEBB9LwunuOTW9oaQhotxGJ7ykX07xoCx/5Pb4ck/OWmQ08lwfTrNDONsE0bo MKmd99NhqINxybDRLM35B43sshTtRlgJ0ecae3kT5Y9HaGMlZz1wHp8Dak40TxxX Ums2ptP+IOe5W263fUkI3YagxSktkUpuk8JP9Mcqr2BlZ7rf79lUBzgtPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBcf1QMSycGPIdOfiCC10XRpaiOOMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAl41JaKn SnKtmIBNKS08p56638bO5Q99Se1h1Il2q67ma/2oS2/BaL3HswSOacKPLvLQ5Zw6 Nz3fSzXOgxygw6Wl9HEgR2vv3O+FKs9KAQ3yh+hxtdWyvpU9xBvzpFbGn5zaY1ac Oq+m3vpEkcSglHYRraa61voNvA2/ew9CbHfRnFEna+sBfxmZmIE1KDYoMxkS91vN 6mC6Q8Dd1jry2b5XFm4vTMOS/6JutegH7G8Gv8SMBP4t0PY6mHtjLgDbzAPyTYLu iRPU8SEWvnoVluaYVUK4uIpe9Rg8bsFm6bpGSRbhz1xTj3S5QHT/PDuHnDwojRE8 pSBduoi8en6WNw== -----END CERTIFICATE-----Generated at Sun Apr 27 04:41:45 2025 by rpki-client