$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft File: Us2aZRLb8lpfGbgn16LH4iou6N0.mft (raw, json) Hash identifier: RSM7CjBex4shEkcGHVRehawl1bTePn02O8pwjTpX45g= Subject key identifier: D8:6C:87:7C:46:72:13:4B:4D:C7:AD:5B:BA:4B:B7:B8:1B:38:DD:17 Authority key identifier: 52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD Certificate issuer: /CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Certificate serial: 0197722D2B58532674F39D8B8DA8C263B824 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft Manifest number: 084E Signing time: Sun 15 Jun 2025 06:00:52 +0000 Manifest this update: Sun 15 Jun 2025 06:00:52 +0000 Manifest next update: Mon 16 Jun 2025 06:00:52 +0000 Files and hashes: 1: 1FJeVgZId139knZgMTYZmAnwLDs.roa (hash: VPpFwlCkzXISful3TlM5ZgodfCcJYCCPoZqn50dkuRo=) 2: BaoLehfzYM1vkBF2LqjuxCVGppw.roa (hash: wk0ycjZln2vcCwTCcN83YoDpaabATIZRlFvsl/RZ67U=) 3: ONKzBcZlLaDvBXj0ChQkq0AcBAo.roa (hash: xt6U3+zGv+p5+qldoLqBIRpHRAbFRfEFMt0N2Y4HxPA=) 4: Us2aZRLb8lpfGbgn16LH4iou6N0.crl (hash: RGiQimfmgCj9LYB34V+4bIWtp24x3L1nFiIFeLDv+LY=) 5: WNXcUWyOPw_jgwsMhjt3tr-DAXY.roa (hash: xCXJ3TCSOan9saMZR5HLRDriokOQriL1DMFUL1E2Cpg=) 6: Wbt2iaP6Wu29ETEZevGjkYyyw8Y.roa (hash: mBaJPapqwbvtmJukkLZju5JRZWG5d49D3KPZxGiRkTk=) 7: ZGAhlZjnasS5BKxbuKtTlb2IG8g.roa (hash: /CWZhme5O1ZBpiwykCFeFAG1hv6S2QE4eqN/Qea+vmc=) 8: cbgxDriMd1w8Ezk1j_uW9c-uk8k.roa (hash: RA/kZIx4fzU+RCbQ8O1BxIKCZRJDjC4JRLSNt3ovrQ8=) 9: cblkW3ZYAZ5VQl8X3gHLFnE7S8g.roa (hash: +MK4cG6/hNPklJaXz5PxE5zp6rLCIwlFMKcCPx37Jxo=) 10: dxXbgNQXIcZf-wRxxpxKbsjTAhQ.roa (hash: 7Q2urw+eTsZ+V/fuq0yE3c5anzy795+Z4CJRGjeU6Hk=) 11: fYtRnjgkdcOcs2OTSoOyF7XeMYQ.roa (hash: BGM9RaFK/cZe9M2jNupJdVSdkow5uJUKCy6zw6S9pgQ=) 12: jDpfwbf-MYo1z6WLxxoQR9fD_bw.roa (hash: zExaE643LO98tK4NvHjnGSmdQinpnm87QOpAVLfdMLY=) 13: obpj78Cj4h6AqPChG513fVXXoMs.roa (hash: xhWt95TQUSf4jmhliYXpfzfmunJAIuxitDmmO5ohsLY=) 14: puM6zDTCACkm8XM63GmrJCmb9w4.roa (hash: /wWLN32nFvo5E1f9qQj5og/sDQq7KYw38OVpA8GGi58=) 15: zAnPUHrCJSV18x-mMc7-hNiZjaY.roa (hash: LG3Y0utc8dwpuU3oGtbD8u6QKi2Bv7dHexHJeWNV5Hk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 22:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:72:2d:2b:58:53:26:74:f3:9d:8b:8d:a8:c2:63:b8:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52cd9a6512dbf25a5f19b827d7a2c7e22a2ee8dd Validity Not Before: Jun 15 06:00:52 2025 GMT Not After : Jun 16 06:00:52 2025 GMT Subject: CN=d86c877c4672134b4dc7ad5bba4bb7b81b38dd17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:60:ca:f5:09:50:55:a1:67:87:9d:2c:22:7a: e9:b0:6e:b9:0b:26:03:bf:dd:b7:a0:c9:5c:49:e7: 2a:7b:b6:3d:c4:46:6c:64:cf:44:45:e8:27:38:60: 78:3e:fa:8e:94:bb:e2:2f:9b:40:93:d0:92:75:e9: 22:cc:6e:bb:aa:40:fc:dc:39:1a:67:67:40:e7:a0: fd:bc:82:a6:f5:b9:f1:63:42:fe:e4:29:46:2e:89: b5:df:37:2a:2e:06:32:7d:67:4a:84:b3:e5:1b:e9: dd:8f:ea:82:13:ef:91:c0:97:7f:8f:2b:2c:cc:01: ce:e4:d2:ec:45:ac:38:6d:9c:3a:0e:fb:14:f2:70: 63:e0:b6:89:e3:1a:5d:d8:f9:b0:5c:cf:f4:77:5e: 70:88:ce:93:09:8f:56:8c:98:fc:84:c0:02:52:c1: 48:74:83:04:9d:c5:13:12:e2:d8:d0:ac:31:0a:56: 07:05:ae:2c:6a:6e:10:dc:ec:57:68:aa:43:fc:54: ad:5e:7d:00:d6:56:e3:47:67:b3:64:70:ac:c5:20: e9:55:59:2d:f4:e0:e8:70:2c:06:1a:3b:c8:0a:21: a2:dd:c8:9e:68:10:e6:8d:7d:fd:15:31:0b:ae:38: cc:66:bd:c3:1e:94:8b:a9:81:49:b5:54:28:74:69: ca:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6C:87:7C:46:72:13:4B:4D:C7:AD:5B:BA:4B:B7:B8:1B:38:DD:17 X509v3 Authority Key Identifier: keyid:52:CD:9A:65:12:DB:F2:5A:5F:19:B8:27:D7:A2:C7:E2:2A:2E:E8:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Us2aZRLb8lpfGbgn16LH4iou6N0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/2223ca-ce38-49bb-b125-cca37606bf18/1/Us2aZRLb8lpfGbgn16LH4iou6N0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:d5:1f:6d:fc:ee:1d:62:8d:84:fd:d5:9f:f3:02:0e:43:fd: cf:1b:04:4b:82:6e:5e:06:33:ac:0c:0b:8d:d0:a6:47:52:16: 46:5d:2c:3e:f8:d1:59:05:24:b5:60:6d:f7:91:c2:d2:61:52: f8:c8:cb:c0:bf:61:87:61:66:29:3e:a9:4b:16:81:4f:76:1c: 60:63:3f:9a:90:e4:19:9d:3b:15:bb:44:46:87:9a:83:24:ac: 96:63:74:0e:bb:4c:d4:16:6d:a1:6b:57:5d:11:8d:37:0f:64: a9:48:65:10:b8:31:3e:2f:20:88:41:9a:1a:9c:47:66:73:c1: 22:34:d3:a3:99:78:46:58:42:95:8c:b9:24:ee:7a:7a:fb:d5: 5e:d0:44:8a:f4:8a:a9:6d:ed:d1:99:66:03:76:12:c9:2b:88: 0e:1a:c4:cc:14:39:29:87:7c:c7:79:af:45:00:0b:b1:8e:f1: 23:03:0c:c5:16:68:89:18:19:41:b7:c3:e1:93:d5:a9:cf:f1: d3:6d:94:df:0d:09:d6:3b:ad:94:56:c1:7e:cb:15:52:96:5b: c2:21:94:96:b4:07:e2:12:16:ad:dc:ae:be:42:78:88:c8:25: d6:a5:ef:0a:6b:7d:6c:c3:29:bf:3e:cb:9e:16:9b:ea:80:a4: 44:76:11:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZdyLStYUyZ0852LjajCY7gkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUyY2Q5YTY1MTJkYmYyNWE1ZjE5YjgyN2Q3YTJjN2UyMmEy ZWU4ZGQwHhcNMjUwNjE1MDYwMDUyWhcNMjUwNjE2MDYwMDUyWjAzMTEwLwYDVQQD EyhkODZjODc3YzQ2NzIxMzRiNGRjN2FkNWJiYTRiYjdiODFiMzhkZDE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2DK9QlQVaFnh50sInrpsG65CyYD v923oMlcSecqe7Y9xEZsZM9ERegnOGB4PvqOlLviL5tAk9CSdekizG67qkD83Dka Z2dA56D9vIKm9bnxY0L+5ClGLom13zcqLgYyfWdKhLPlG+ndj+qCE++RwJd/jyss zAHO5NLsRaw4bZw6DvsU8nBj4LaJ4xpd2PmwXM/0d15wiM6TCY9WjJj8hMACUsFI dIMEncUTEuLY0KwxClYHBa4sam4Q3OxXaKpD/FStXn0A1lbjR2ezZHCsxSDpVVkt 9ODocCwGGjvICiGi3cieaBDmjX39FTELrjjMZr3DHpSLqYFJtVQodGnKKwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNhsh3xGchNLTcetW7pLt7gbON0XMB8GA1UdIwQY MBaAFFLNmmUS2/JaXxm4J9eix+IqLujdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUt Y2NhMzc2MDZiZjE4LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8yMjIzY2EtY2UzOC00OWJiLWIxMjUtY2NhMzc2MDZiZjE4 LzEvVXMyYVpSTGI4bHBmR2JnbjE2TEg0aW91Nk4wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh9Ufbfzu HWKNhP3Vn/MCDkP9zxsES4JuXgYzrAwLjdCmR1IWRl0sPvjRWQUktWBt95HC0mFS +MjLwL9hh2FmKT6pSxaBT3YcYGM/mpDkGZ07FbtERoeagySslmN0DrtM1BZtoWtX XRGNNw9kqUhlELgxPi8giEGaGpxHZnPBIjTTo5l4RlhClYy5JO56evvVXtBEivSK qW3t0ZlmA3YSySuIDhrEzBQ5KYd8x3mvRQALsY7xIwMMxRZoiRgZQbfD4ZPVqc/x 022U3w0J1jutlFbBfssVUpZbwiGUlrQH4hIWrdyuvkJ4iMgl1qXvCmt9bMMpvz7L nhab6oCkRHYRKw== -----END CERTIFICATE-----Generated at Sun Jun 15 08:29:19 2025 by rpki-client